This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/0b9e6da4-dc46-470f-b0e9-16e6e57d479a/0/3130332e3137362e3139382e302f32342d3234203d3e20313437313334.roa File: 3130332e3137362e3139382e302f32342d3234203d3e20313437313334.roa (raw, json) Hash identifier: 0lcfKrVdmd9kh0sslDDW+5Kmpau5fuDZNnMcPzu+YgU= Subject key identifier: 2A:0F:DF:13:CD:07:6D:50:53:30:23:5F:08:01:D7:2D:A9:A9:80:E6 Certificate issuer: /CN=1D5FBED26611C99226941DBD91139C594B399F46 Certificate serial: 01031C894489D62E94937895F45A5D9C7D7F8AAC Authority key identifier: 1D:5F:BE:D2:66:11:C9:92:26:94:1D:BD:91:13:9C:59:4B:39:9F:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D5FBED26611C99226941DBD91139C594B399F46.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0b9e6da4-dc46-470f-b0e9-16e6e57d479a/0/3130332e3137362e3139382e302f32342d3234203d3e20313437313334.roa Signing time: Sat 24 Jan 2026 16:00:02 +0000 ROA not before: Sat 24 Jan 2026 15:55:02 +0000 ROA not after: Sat 23 Jan 2027 16:00:02 +0000 asID: 147134 IP address blocks: 103.176.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0b9e6da4-dc46-470f-b0e9-16e6e57d479a/0/1D5FBED26611C99226941DBD91139C594B399F46.crl rsync://repo-rpki.idnic.net/repo/0b9e6da4-dc46-470f-b0e9-16e6e57d479a/0/1D5FBED26611C99226941DBD91139C594B399F46.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D5FBED26611C99226941DBD91139C594B399F46.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Feb 2026 11:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:03:1c:89:44:89:d6:2e:94:93:78:95:f4:5a:5d:9c:7d:7f:8a:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D5FBED26611C99226941DBD91139C594B399F46 Validity Not Before: Jan 24 15:55:02 2026 GMT Not After : Jan 23 16:00:02 2027 GMT Subject: CN=2A0FDF13CD076D505330235F0801D72DA9A980E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ce:52:ac:e8:2d:ba:11:79:da:9a:f8:72:8c: 78:ee:f1:14:67:6f:28:e4:9b:41:ba:9b:9f:53:b9: 68:6c:b9:ce:a0:31:89:7c:a9:53:c4:77:64:9f:51: 35:17:a1:ff:46:5e:ac:db:99:ed:c9:f7:42:21:0f: 53:f9:2f:97:19:52:9f:12:d6:c9:e7:64:cb:50:02: d9:36:c8:a6:60:95:23:46:d8:75:99:8b:12:db:6a: ab:16:6b:c1:f1:31:c0:32:65:f7:11:71:59:52:8a: 7a:3c:c6:c7:ad:3e:42:10:2c:a7:5f:ec:e9:12:33: 58:27:ea:42:03:6b:1f:dd:24:68:db:d9:d3:a5:e4: 01:f5:ff:78:d5:48:50:48:1f:ef:63:0d:99:47:f2: 95:c7:de:44:c7:9c:5f:83:cb:12:d3:9e:29:63:66: 20:53:78:25:27:d2:6d:61:6f:cd:c2:11:a9:f0:d6: 64:44:db:93:9e:1f:67:f3:aa:ca:7e:15:83:cb:85: 0b:ac:60:a0:01:a5:9d:d6:9b:09:36:ee:7e:35:7e: 5d:96:bc:ac:cf:0b:ce:d9:77:b7:2d:df:c6:61:e0: e1:24:ee:4e:e9:a1:a9:a4:43:17:1d:bc:8f:42:3d: ed:50:51:b0:6a:d1:d7:65:ae:81:53:9f:d2:02:e1: 1a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:0F:DF:13:CD:07:6D:50:53:30:23:5F:08:01:D7:2D:A9:A9:80:E6 X509v3 Authority Key Identifier: keyid:1D:5F:BE:D2:66:11:C9:92:26:94:1D:BD:91:13:9C:59:4B:39:9F:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0b9e6da4-dc46-470f-b0e9-16e6e57d479a/0/1D5FBED26611C99226941DBD91139C594B399F46.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D5FBED26611C99226941DBD91139C594B399F46.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0b9e6da4-dc46-470f-b0e9-16e6e57d479a/0/3130332e3137362e3139382e302f32342d3234203d3e20313437313334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.198.0/24 Signature Algorithm: sha256WithRSAEncryption 21:02:4f:b6:97:62:67:31:9c:eb:a3:7a:c9:0a:6e:c8:f4:15: a1:4b:16:9e:06:1e:d0:2b:c1:81:84:53:80:8c:52:16:21:13: 2b:c5:5e:dc:d7:fd:9d:52:76:ca:f6:39:0d:19:22:b4:cb:ee: 8d:c6:81:97:29:36:0f:7e:5a:a7:73:0e:f0:7a:a5:59:e9:d7: 3a:26:0b:04:bd:0d:52:dd:8c:1e:4b:1f:8e:bb:ca:08:b4:19: f7:53:d8:f5:4f:cf:c9:9c:9e:7a:c7:f6:15:e4:d4:b2:77:91: 03:c0:e0:df:69:32:9c:10:63:cf:6e:a2:2c:25:4e:c7:9e:ea: 58:74:05:e1:0b:ab:ae:59:cc:a7:01:b8:47:cc:75:1d:1c:62: b4:77:d3:73:98:0d:7e:bd:cd:90:73:ea:a2:ea:e5:51:dc:3c: ef:9d:03:e8:6c:a7:bc:60:c6:89:f1:e6:9f:74:c9:d8:84:8f: 11:53:1f:83:26:64:5a:d5:24:74:f8:2a:25:5d:de:4a:a4:39: 7c:f0:fd:56:a9:fd:f5:84:99:3b:43:0d:d6:30:90:8f:53:98: 21:85:99:ad:b4:a1:5a:2e:f8:c4:45:5e:3c:44:87:07:8d:a6: 0d:6f:ba:eb:f4:7f:3e:92:84:6b:db:53:32:23:8a:83:e5:6c: 4f:ea:eb:18 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAQMciUSJ1i6Uk3iV9FpdnH1/iqwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ1RkJFRDI2NjExQzk5MjI2OTQxREJEOTExMzlDNTk0 QjM5OUY0NjAeFw0yNjAxMjQxNTU1MDJaFw0yNzAxMjMxNjAwMDJaMDMxMTAvBgNV BAMTKDJBMEZERjEzQ0QwNzZENTA1MzMwMjM1RjA4MDFENzJEQTlBOTgwRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzzlKs6C26EXnamvhyjHju8RRn byjkm0G6m59TuWhsuc6gMYl8qVPEd2SfUTUXof9GXqzbme3J90IhD1P5L5cZUp8S 1snnZMtQAtk2yKZglSNG2HWZixLbaqsWa8HxMcAyZfcRcVlSino8xsetPkIQLKdf 7OkSM1gn6kIDax/dJGjb2dOl5AH1/3jVSFBIH+9jDZlH8pXH3kTHnF+DyxLTnilj ZiBTeCUn0m1hb83CEanw1mRE25OeH2fzqsp+FYPLhQusYKABpZ3Wmwk27n41fl2W vKzPC87Zd7ct38Zh4OEk7k7poamkQxcdvI9CPe1QUbBq0ddlroFTn9IC4RqNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUKg/fE80HbVBTMCNfCAHXLampgOYwHwYDVR0j BBgwFoAUHV++0mYRyZImlB29kROcWUs5n0YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YjllNmRhNC1kYzQ2LTQ3MGYtYjBlOS0xNmU2ZTU3ZDQ3OWEvMC8xRDVGQkVEMjY2 MTFDOTkyMjY5NDFEQkQ5MTEzOUM1OTRCMzk5RjQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQ1RkJFRDI2NjExQzk5MjI2OTQxREJEOTExMzlDNTk0QjM5 OUY0Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBiOWU2ZGE0LWRjNDYtNDcwZi1i MGU5LTE2ZTZlNTdkNDc5YS8wLzMxMzAzMzJlMzEzNzM2MmUzMTM5MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMTMzMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnsMYwDQYJ KoZIhvcNAQELBQADggEBACECT7aXYmcxnOujeskKbsj0FaFLFp4GHtArwYGEU4CM UhYhEyvFXtzX/Z1Sdsr2OQ0ZIrTL7o3GgZcpNg9+WqdzDvB6pVnp1zomCwS9DVLd jB5LH467ygi0GfdT2PVPz8mcnnrH9hXk1LJ3kQPA4N9pMpwQY89uoiwlTsee6lh0 BeELq65ZzKcBuEfMdR0cYrR303OYDX69zZBz6qLq5VHcPO+dA+hsp7xgxonx5p90 ydiEjxFTH4MmZFrVJHT4KiVd3kqkOXzw/Vap/fWEmTtDDdYwkI9TmCGFma20oVou +MRFXjxEhweNpg1vuuv0fz6ShGvbUzIjioPlbE/q6xg= -----END CERTIFICATE-----Generated at Mon Feb 2 12:55:38 2026 by rpki-client