This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/23ba024b-87f2-4edd-89ff-a4fca7008c36/0/3130332e3136322e33352e302f32342d3234203d3e20313431363535.roa File: 3130332e3136322e33352e302f32342d3234203d3e20313431363535.roa (raw, json) Hash identifier: I28r4i4lWDSRmz98gxENOln+97MGeec1Z1eAP51TwjI= Subject key identifier: C8:7A:A3:F1:1D:4E:F8:70:A9:AA:AB:E8:22:B7:E3:A9:6D:0C:65:9B Certificate issuer: /CN=3194DFD66457359AF7BF3BF09EA766ADEF1329B5 Certificate serial: 4E19FF090CDF01CDB849DA3F7C705E9C3B26B6BA Authority key identifier: 31:94:DF:D6:64:57:35:9A:F7:BF:3B:F0:9E:A7:66:AD:EF:13:29:B5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3194DFD66457359AF7BF3BF09EA766ADEF1329B5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/23ba024b-87f2-4edd-89ff-a4fca7008c36/0/3130332e3136322e33352e302f32342d3234203d3e20313431363535.roa Signing time: Tue 02 Dec 2025 04:00:01 +0000 ROA not before: Tue 02 Dec 2025 03:55:01 +0000 ROA not after: Tue 01 Dec 2026 04:00:01 +0000 asID: 141655 IP address blocks: 103.162.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/23ba024b-87f2-4edd-89ff-a4fca7008c36/0/3194DFD66457359AF7BF3BF09EA766ADEF1329B5.crl rsync://repo-rpki.idnic.net/repo/23ba024b-87f2-4edd-89ff-a4fca7008c36/0/3194DFD66457359AF7BF3BF09EA766ADEF1329B5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3194DFD66457359AF7BF3BF09EA766ADEF1329B5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 07:44:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:19:ff:09:0c:df:01:cd:b8:49:da:3f:7c:70:5e:9c:3b:26:b6:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3194DFD66457359AF7BF3BF09EA766ADEF1329B5 Validity Not Before: Dec 2 03:55:01 2025 GMT Not After : Dec 1 04:00:01 2026 GMT Subject: CN=C87AA3F11D4EF870A9AAABE822B7E3A96D0C659B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:14:01:9e:90:c2:d9:9e:23:c5:c1:6b:cb:1c: 7d:03:83:01:f8:a2:7e:73:fa:c0:c9:8e:20:9f:47: 35:1c:34:68:29:4b:48:fd:74:f1:de:f3:ee:d0:11: ec:59:52:7e:5d:1b:13:06:02:14:7e:58:92:92:15: b9:8e:df:5a:2e:33:c1:1e:9c:f7:64:ef:33:98:3a: 5f:d4:fb:4f:d4:c9:77:cc:47:da:e8:de:79:b7:3f: 25:8f:a9:f5:78:a6:85:ac:cc:d1:a5:de:b3:2c:61: 8a:cc:5a:e2:21:50:a0:b1:ad:1a:d7:02:1d:7a:49: cc:90:3f:4a:97:7d:16:47:78:2f:ea:62:93:ca:e3: 2b:f2:dc:9e:cb:49:e6:3e:ea:0c:a6:07:3f:88:c7: 04:12:0a:ab:01:bc:f2:82:b4:cf:13:ce:8b:3c:67: 2f:7d:d1:87:9b:0d:f2:0e:31:3b:64:61:d5:29:39: 45:35:2b:9c:b9:7b:a2:0d:0e:bc:dd:77:53:9e:9e: 0e:15:4a:63:e8:0c:a4:fe:a0:7d:bc:69:c4:09:75: f6:5f:8e:2e:33:e3:3a:50:ba:25:de:89:50:21:bb: 2c:f2:69:4c:ee:12:59:a3:a1:db:52:c3:79:83:4f: 69:b5:80:4f:06:e4:1c:67:c5:d8:6f:8b:aa:6c:c0: 74:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:7A:A3:F1:1D:4E:F8:70:A9:AA:AB:E8:22:B7:E3:A9:6D:0C:65:9B X509v3 Authority Key Identifier: keyid:31:94:DF:D6:64:57:35:9A:F7:BF:3B:F0:9E:A7:66:AD:EF:13:29:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/23ba024b-87f2-4edd-89ff-a4fca7008c36/0/3194DFD66457359AF7BF3BF09EA766ADEF1329B5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3194DFD66457359AF7BF3BF09EA766ADEF1329B5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/23ba024b-87f2-4edd-89ff-a4fca7008c36/0/3130332e3136322e33352e302f32342d3234203d3e20313431363535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.35.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:d8:e9:a3:35:f2:c7:29:d6:14:e0:44:c6:e1:c8:6d:02:8d: 33:a4:98:25:6e:5a:7e:cd:66:a0:41:77:e1:36:98:01:82:6f: e1:07:42:85:96:76:e7:d8:61:83:6b:f1:73:56:fa:da:e8:cc: 68:ac:d2:02:8d:87:bc:0b:db:e1:0e:87:c9:0d:c0:44:22:9b: a0:76:3b:9f:fc:8b:70:7d:41:d8:11:ff:c0:35:a8:93:ab:a8: 22:74:5b:f0:c2:02:b2:71:28:da:ce:6e:49:bb:ed:a0:56:c8: 79:2f:e6:5d:a0:6d:b5:a9:00:65:48:59:ab:ad:04:25:d7:70: a4:08:3b:4b:de:a8:d8:91:a1:d7:56:c2:e1:03:7f:13:08:0e: 43:ab:ce:67:7b:8b:46:cb:ae:0f:47:c3:5a:9b:51:b2:17:d6: 3a:57:b4:87:e8:c5:ab:b7:b8:73:60:5f:f1:ab:94:8a:74:d6: e4:39:ef:7f:eb:05:29:0e:02:09:8b:c2:a7:4c:b2:65:2b:83: 05:1a:88:dd:4f:df:4f:be:2f:30:6e:c7:26:c5:03:d8:d0:ab: 45:d4:34:4c:63:20:79:70:76:ab:91:2e:93:15:8d:12:36:09: 30:04:f9:99:46:dc:25:6d:49:cd:66:f2:17:5a:f0:d8:5e:cb: ea:5d:f8:24 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUThn/CQzfAc24Sdo/fHBenDsmtrowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzE5NERGRDY2NDU3MzU5QUY3QkYzQkYwOUVBNzY2QURF RjEzMjlCNTAeFw0yNTEyMDIwMzU1MDFaFw0yNjEyMDEwNDAwMDFaMDMxMTAvBgNV BAMTKEM4N0FBM0YxMUQ0RUY4NzBBOUFBQUJFODIyQjdFM0E5NkQwQzY1OUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeFAGekMLZniPFwWvLHH0DgwH4 on5z+sDJjiCfRzUcNGgpS0j9dPHe8+7QEexZUn5dGxMGAhR+WJKSFbmO31ouM8Ee nPdk7zOYOl/U+0/UyXfMR9ro3nm3PyWPqfV4poWszNGl3rMsYYrMWuIhUKCxrRrX Ah16ScyQP0qXfRZHeC/qYpPK4yvy3J7LSeY+6gymBz+IxwQSCqsBvPKCtM8Tzos8 Zy990YebDfIOMTtkYdUpOUU1K5y5e6INDrzdd1Oeng4VSmPoDKT+oH28acQJdfZf ji4z4zpQuiXeiVAhuyzyaUzuElmjodtSw3mDT2m1gE8G5Bxnxdhvi6pswHRfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyHqj8R1O+HCpqqvoIrfjqW0MZZswHwYDVR0j BBgwFoAUMZTf1mRXNZr3vzvwnqdmre8TKbUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y M2JhMDI0Yi04N2YyLTRlZGQtODlmZi1hNGZjYTcwMDhjMzYvMC8zMTk0REZENjY0 NTczNTlBRjdCRjNCRjA5RUE3NjZBREVGMTMyOUI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzE5NERGRDY2NDU3MzU5QUY3QkYzQkYwOUVBNzY2QURFRjEz MjlCNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIzYmEwMjRiLTg3ZjItNGVkZC04 OWZmLWE0ZmNhNzAwOGMzNi8wLzMxMzAzMzJlMzEzNjMyMmUzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6IjMA0GCSqG SIb3DQEBCwUAA4IBAQBe2OmjNfLHKdYU4ETG4chtAo0zpJglblp+zWagQXfhNpgB gm/hB0KFlnbn2GGDa/FzVvra6MxorNICjYe8C9vhDofJDcBEIpugdjuf/ItwfUHY Ef/ANaiTq6gidFvwwgKycSjazm5Ju+2gVsh5L+ZdoG21qQBlSFmrrQQl13CkCDtL 3qjYkaHXVsLhA38TCA5Dq85ne4tGy64PR8Nam1GyF9Y6V7SH6MWrt7hzYF/xq5SK dNbkOe9/6wUpDgIJi8KnTLJlK4MFGojdT99Pvi8wbscmxQPY0KtF1DRMYyB5cHar kS6TFY0SNgkwBPmZRtwlbUnNZvIXWvDYXsvqXfgk -----END CERTIFICATE-----Generated at Wed Dec 3 16:09:15 2025 by rpki-client