This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/3130332e33302e3232322e302f32342d3234203d3e203338313438.roa File: 3130332e33302e3232322e302f32342d3234203d3e203338313438.roa (raw, json) Hash identifier: +SJaFJQyqBdRsoSnVqf1c6YDNbR+iItpuCQMYo/GJwM= Subject key identifier: 09:26:1E:4A:40:A4:55:4E:B1:58:37:1B:9A:A7:87:D7:4D:92:A9:B9 Certificate issuer: /CN=B921DAABB84949DDC2500D4F0A6D93FA0EB384E1 Certificate serial: 57CFE2F971493C70900D7E2A3BB8544F1AB9CF10 Authority key identifier: B9:21:DA:AB:B8:49:49:DD:C2:50:0D:4F:0A:6D:93:FA:0E:B3:84:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/3130332e33302e3232322e302f32342d3234203d3e203338313438.roa Signing time: Wed 17 Sep 2025 05:00:01 +0000 ROA not before: Wed 17 Sep 2025 04:55:01 +0000 ROA not after: Wed 16 Sep 2026 05:00:01 +0000 asID: 38148 IP address blocks: 103.30.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 17:22:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:cf:e2:f9:71:49:3c:70:90:0d:7e:2a:3b:b8:54:4f:1a:b9:cf:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B921DAABB84949DDC2500D4F0A6D93FA0EB384E1 Validity Not Before: Sep 17 04:55:01 2025 GMT Not After : Sep 16 05:00:01 2026 GMT Subject: CN=09261E4A40A4554EB158371B9AA787D74D92A9B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:2a:83:45:e3:7c:4b:dd:1f:16:ad:b7:58:27: cf:bf:ac:09:f2:40:c7:d3:0b:81:15:1d:fb:e9:35: a8:3c:81:de:60:60:0b:f4:ec:56:15:72:fd:f0:f2: 68:0d:8d:31:bb:bb:3a:79:e9:bb:d7:77:7d:6e:e4: 3a:41:34:40:cb:66:7a:14:4d:08:3f:df:97:8b:ba: df:a7:18:94:3b:4f:52:8e:3d:61:eb:8f:40:3c:13: 75:f1:5d:e0:8c:59:3a:f7:e2:e7:ae:e6:4b:1d:2a: 99:9c:11:ff:a3:81:65:b1:6c:1b:88:ba:97:a3:dd: ea:4d:7b:79:40:38:e6:c7:c9:a4:df:08:32:dc:d8: 58:fc:f2:3b:a8:3f:e0:49:72:2e:3d:94:3d:46:c7: fa:f2:be:4d:7b:88:7f:ac:04:d0:f4:18:bf:bf:42: 26:7e:2c:42:48:57:51:96:8a:f5:17:88:7e:92:2f: 7d:cf:77:a5:33:c4:a0:ae:d5:c8:4d:29:2a:98:4a: 47:7a:a3:33:4b:e8:49:b7:49:8e:6d:07:00:c8:5f: 19:e0:11:21:65:80:9e:20:e5:7e:b0:4d:ff:55:76: 2e:98:2d:d5:e9:7f:e9:76:a1:fe:82:ac:cd:c4:f5: 0d:73:c3:06:d1:0b:2c:eb:94:7d:a5:e7:b4:a0:90: 7f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:26:1E:4A:40:A4:55:4E:B1:58:37:1B:9A:A7:87:D7:4D:92:A9:B9 X509v3 Authority Key Identifier: keyid:B9:21:DA:AB:B8:49:49:DD:C2:50:0D:4F:0A:6D:93:FA:0E:B3:84:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B921DAABB84949DDC2500D4F0A6D93FA0EB384E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1592c274-11db-4127-babb-aeae99284b00/0/3130332e33302e3232322e302f32342d3234203d3e203338313438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.30.222.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:22:fc:11:47:7c:11:c5:9a:79:da:df:db:bf:b9:0f:a4:3a: c2:7b:8d:40:90:91:25:14:be:66:64:25:8e:61:e1:3f:65:f8: ce:5f:14:61:e4:73:2d:24:4b:71:e6:d4:c3:92:54:a5:e2:22: a3:44:f2:1f:53:5f:a1:a5:c0:c2:61:5a:c0:c4:cc:84:bb:ae: 22:00:12:30:89:d5:31:d1:63:1b:36:2c:58:79:e7:9d:06:6f: 08:21:3d:28:ca:36:7f:17:c3:cb:25:ed:23:49:92:7b:76:cd: 73:da:b1:d3:6f:ad:8a:85:d7:b9:a9:41:e5:d3:f0:84:bd:c1: 68:7c:fc:cc:ea:d4:7d:da:06:f5:9b:fd:fc:d6:94:f5:46:d1: b8:d3:3b:9d:1a:47:74:17:72:b8:ae:2d:47:6f:3d:19:8f:c6: d3:fd:97:23:64:13:3d:04:85:93:59:3c:77:58:10:fb:0f:9f: 79:b6:61:87:0c:8f:2f:f8:44:6e:dc:25:20:f1:8d:ec:2b:50: 61:94:a1:9e:8c:6e:52:e9:c6:ec:3f:24:4f:ba:1c:f6:06:1c: 4e:64:e3:01:a9:74:f0:51:fa:5d:f3:91:e0:f0:69:a6:20:17: 0b:c8:6e:e5:e0:7f:b0:e9:48:e7:52:ce:11:d0:cc:f7:fd:67: bf:45:1f:a4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUV8/i+XFJPHCQDX4qO7hUTxq5zxAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjkyMURBQUJCODQ5NDlEREMyNTAwRDRGMEE2RDkzRkEw RUIzODRFMTAeFw0yNTA5MTcwNDU1MDFaFw0yNjA5MTYwNTAwMDFaMDMxMTAvBgNV BAMTKDA5MjYxRTRBNDBBNDU1NEVCMTU4MzcxQjlBQTc4N0Q3NEQ5MkE5QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4KoNF43xL3R8WrbdYJ8+/rAny QMfTC4EVHfvpNag8gd5gYAv07FYVcv3w8mgNjTG7uzp56bvXd31u5DpBNEDLZnoU TQg/35eLut+nGJQ7T1KOPWHrj0A8E3XxXeCMWTr34ueu5ksdKpmcEf+jgWWxbBuI upej3epNe3lAOObHyaTfCDLc2Fj88juoP+BJci49lD1Gx/ryvk17iH+sBND0GL+/ QiZ+LEJIV1GWivUXiH6SL33Pd6UzxKCu1chNKSqYSkd6ozNL6Em3SY5tBwDIXxng ESFlgJ4g5X6wTf9Vdi6YLdXpf+l2of6CrM3E9Q1zwwbRCyzrlH2l57SgkH8XAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCSYeSkCkVU6xWDcbmqeH102SqbkwHwYDVR0j BBgwFoAUuSHaq7hJSd3CUA1PCm2T+g6zhOEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NTkyYzI3NC0xMWRiLTQxMjctYmFiYi1hZWFlOTkyODRiMDAvMC9COTIxREFBQkI4 NDk0OUREQzI1MDBENEYwQTZEOTNGQTBFQjM4NEUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjkyMURBQUJCODQ5NDlEREMyNTAwRDRGMEE2RDkzRkEwRUIz ODRFMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE1OTJjMjc0LTExZGItNDEyNy1i YWJiLWFlYWU5OTI4NGIwMC8wLzMxMzAzMzJlMzMzMDJlMzIzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGce3jANBgkqhkiG 9w0BAQsFAAOCAQEALCL8EUd8EcWaedrf27+5D6Q6wnuNQJCRJRS+ZmQljmHhP2X4 zl8UYeRzLSRLcebUw5JUpeIio0TyH1NfoaXAwmFawMTMhLuuIgASMInVMdFjGzYs WHnnnQZvCCE9KMo2fxfDyyXtI0mSe3bNc9qx02+tioXXualB5dPwhL3BaHz8zOrU fdoG9Zv9/NaU9UbRuNM7nRpHdBdyuK4tR289GY/G0/2XI2QTPQSFk1k8d1gQ+w+f ebZhhwyPL/hEbtwlIPGN7CtQYZShnoxuUunG7D8kT7oc9gYcTmTjAal08FH6XfOR 4PBppiAXC8hu5eB/sOlI51LOEdDM9/1nv0UfpA== -----END CERTIFICATE-----Generated at Wed Dec 3 16:40:26 2025 by rpki-client