This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/3130332e33302e3232302e302f32322d3233203d3e203338313438.roa File: 3130332e33302e3232302e302f32322d3233203d3e203338313438.roa (raw, json) Hash identifier: dip5cfpPOxv7j5avMlkj27CtA1ffgVlncphql09alQk= Subject key identifier: 67:8D:DD:BB:5D:22:F9:E4:54:35:20:AB:46:09:8F:05:4D:0D:AF:B7 Certificate issuer: /CN=B921DAABB84949DDC2500D4F0A6D93FA0EB384E1 Certificate serial: 49950316A6E5957729CAC06BEC89DD3A84F5F51B Authority key identifier: B9:21:DA:AB:B8:49:49:DD:C2:50:0D:4F:0A:6D:93:FA:0E:B3:84:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/3130332e33302e3232302e302f32322d3233203d3e203338313438.roa Signing time: Thu 18 Sep 2025 18:00:01 +0000 ROA not before: Thu 18 Sep 2025 17:55:01 +0000 ROA not after: Thu 17 Sep 2026 18:00:01 +0000 asID: 38148 IP address blocks: 103.30.220.0/22 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 17:22:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:95:03:16:a6:e5:95:77:29:ca:c0:6b:ec:89:dd:3a:84:f5:f5:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B921DAABB84949DDC2500D4F0A6D93FA0EB384E1 Validity Not Before: Sep 18 17:55:01 2025 GMT Not After : Sep 17 18:00:01 2026 GMT Subject: CN=678DDDBB5D22F9E4543520AB46098F054D0DAFB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9d:7e:54:21:b1:9c:84:bb:14:7f:27:a3:45: 60:d9:63:c9:29:dd:44:50:8e:3e:ba:69:bf:cf:32: 83:f3:0e:89:f8:ae:f2:fc:97:6f:e1:d4:c9:96:13: 13:72:df:29:33:d1:73:af:32:68:a7:d2:34:f9:e7: 04:3b:d4:38:ee:bf:8a:47:0e:2a:c7:41:29:55:f7: 69:31:ff:88:6d:90:84:88:29:ec:bc:52:cb:93:3f: e4:f4:ab:e8:08:56:b8:45:3c:e6:02:14:7c:43:6d: 1e:bd:90:71:7e:75:d7:38:cd:a0:4c:65:17:dc:f2: 28:df:59:70:75:d5:5e:ae:2e:66:9e:e3:56:45:c3: be:5e:66:49:59:7b:c2:58:fd:60:70:1b:7b:93:2f: bc:38:9b:8e:f3:4a:88:07:ce:42:e7:66:7a:5f:a7: a5:eb:8b:d1:2f:77:e7:27:95:e8:b1:cb:77:f6:6c: 11:7e:81:94:5e:9b:66:67:30:ce:14:76:72:00:db: e7:2a:c7:8f:6a:4a:15:29:0b:a1:cf:9d:31:d8:48: c3:08:b4:5d:ff:85:f9:da:f9:1e:4b:70:9d:7a:5d: 6b:05:53:41:39:18:cc:a6:39:1c:b8:fe:a6:4a:98: c5:e3:58:8c:84:45:d3:fc:1e:34:94:ab:4b:1f:f8: f9:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:8D:DD:BB:5D:22:F9:E4:54:35:20:AB:46:09:8F:05:4D:0D:AF:B7 X509v3 Authority Key Identifier: keyid:B9:21:DA:AB:B8:49:49:DD:C2:50:0D:4F:0A:6D:93:FA:0E:B3:84:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/3130332e33302e3232302e302f32322d3233203d3e203338313438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.30.220.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:97:b0:45:8e:28:87:24:ad:87:a3:38:27:b6:7c:fc:85:b0: bc:0c:ee:9c:73:61:d2:20:c4:a2:7a:a7:ee:f5:dc:eb:e0:9a: ad:f5:82:11:43:fc:86:e5:cb:1e:1d:15:14:cc:a4:89:14:7f: 40:2c:4a:33:ec:f7:c9:f7:91:88:ed:31:e7:0f:af:67:6b:29: 02:40:3a:12:f5:24:4a:bd:ba:f6:22:9e:3c:2a:47:61:b4:36: 41:10:33:e7:c1:bf:f4:10:2f:f2:6a:f5:b1:cd:57:b0:7f:97: 25:34:27:57:4d:93:ba:f4:d8:bd:8d:27:b7:b7:7a:8b:a5:e4: f5:2c:e1:87:c1:57:2d:a3:89:b7:01:db:ff:5d:31:a4:0e:b8: e0:3e:06:10:c5:24:12:06:a6:62:93:d5:ad:1c:46:18:ec:26: 60:14:9f:fd:42:9b:91:62:54:7e:8a:80:89:5e:db:19:08:e0: 34:7b:0b:94:b4:cd:c5:b4:e6:70:13:c2:a5:b2:b1:8b:90:09: 79:4e:8b:b8:c9:10:75:9d:bc:c4:25:0a:56:f3:51:98:22:b8: 34:1a:50:94:9b:ef:13:16:d0:03:ec:6d:e5:9e:39:fc:70:a6: 67:f6:f5:46:7e:fd:de:bb:4e:50:c4:e0:8f:e1:a5:f2:d7:92: 51:81:5b:3d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSZUDFqbllXcpysBr7IndOoT19RswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjkyMURBQUJCODQ5NDlEREMyNTAwRDRGMEE2RDkzRkEw RUIzODRFMTAeFw0yNTA5MTgxNzU1MDFaFw0yNjA5MTcxODAwMDFaMDMxMTAvBgNV BAMTKDY3OEREREJCNUQyMkY5RTQ1NDM1MjBBQjQ2MDk4RjA1NEQwREFGQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAnX5UIbGchLsUfyejRWDZY8kp 3URQjj66ab/PMoPzDon4rvL8l2/h1MmWExNy3ykz0XOvMmin0jT55wQ71Djuv4pH DirHQSlV92kx/4htkISIKey8UsuTP+T0q+gIVrhFPOYCFHxDbR69kHF+ddc4zaBM ZRfc8ijfWXB11V6uLmae41ZFw75eZklZe8JY/WBwG3uTL7w4m47zSogHzkLnZnpf p6Xri9Evd+cnleixy3f2bBF+gZRem2ZnMM4UdnIA2+cqx49qShUpC6HPnTHYSMMI tF3/hfna+R5LcJ16XWsFU0E5GMymORy4/qZKmMXjWIyERdP8HjSUq0sf+PmbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZ43du10i+eRUNSCrRgmPBU0Nr7cwHwYDVR0j BBgwFoAUuSHaq7hJSd3CUA1PCm2T+g6zhOEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NTkyYzI3NC0xMWRiLTQxMjctYmFiYi1hZWFlOTkyODRiMDAvMC9COTIxREFBQkI4 NDk0OUREQzI1MDBENEYwQTZEOTNGQTBFQjM4NEUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjkyMURBQUJCODQ5NDlEREMyNTAwRDRGMEE2RDkzRkEwRUIz ODRFMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE1OTJjMjc0LTExZGItNDEyNy1i YWJiLWFlYWU5OTI4NGIwMC8wLzMxMzAzMzJlMzMzMDJlMzIzMjMwMmUzMDJmMzIz MjJkMzIzMzIwM2QzZTIwMzMzODMxMzQzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmce3DANBgkqhkiG 9w0BAQsFAAOCAQEAmpewRY4ohySth6M4J7Z8/IWwvAzunHNh0iDEonqn7vXc6+Ca rfWCEUP8huXLHh0VFMykiRR/QCxKM+z3yfeRiO0x5w+vZ2spAkA6EvUkSr269iKe PCpHYbQ2QRAz58G/9BAv8mr1sc1XsH+XJTQnV02TuvTYvY0nt7d6i6Xk9Szhh8FX LaOJtwHb/10xpA644D4GEMUkEgamYpPVrRxGGOwmYBSf/UKbkWJUfoqAiV7bGQjg NHsLlLTNxbTmcBPCpbKxi5AJeU6LuMkQdZ28xCUKVvNRmCK4NBpQlJvvExbQA+xt 5Z45/HCmZ/b1Rn793rtOUMTgj+Gl8teSUYFbPQ== -----END CERTIFICATE-----Generated at Wed Dec 3 16:40:17 2025 by rpki-client