This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/358c8f9f-4213-4a2a-85c3-b24b0d0b5107/0/3130332e3136322e3232302e302f32342d3234203d3e20313339393532.roa File: 3130332e3136322e3232302e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: iSdhQ66zYnSDoW2oYiFhzo66rGvZpv/6O91EPJd3VUo= Subject key identifier: C7:F9:96:CA:A7:52:79:C6:6A:DB:D0:5F:15:49:F8:26:3B:54:20:DC Certificate issuer: /CN=030BE557286D3A4FE6E9AA70636EC79D178ACE1F Certificate serial: 3D3F44F48E9D94F3027758F12146CCD9F35EF4AB Authority key identifier: 03:0B:E5:57:28:6D:3A:4F:E6:E9:AA:70:63:6E:C7:9D:17:8A:CE:1F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/030BE557286D3A4FE6E9AA70636EC79D178ACE1F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/358c8f9f-4213-4a2a-85c3-b24b0d0b5107/0/3130332e3136322e3232302e302f32342d3234203d3e20313339393532.roa Signing time: Sun 21 Dec 2025 17:00:01 +0000 ROA not before: Sun 21 Dec 2025 16:55:01 +0000 ROA not after: Sun 20 Dec 2026 17:00:01 +0000 asID: 139952 IP address blocks: 103.162.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/358c8f9f-4213-4a2a-85c3-b24b0d0b5107/0/030BE557286D3A4FE6E9AA70636EC79D178ACE1F.crl rsync://repo-rpki.idnic.net/repo/358c8f9f-4213-4a2a-85c3-b24b0d0b5107/0/030BE557286D3A4FE6E9AA70636EC79D178ACE1F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/030BE557286D3A4FE6E9AA70636EC79D178ACE1F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 Jan 2026 19:18:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:3f:44:f4:8e:9d:94:f3:02:77:58:f1:21:46:cc:d9:f3:5e:f4:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=030BE557286D3A4FE6E9AA70636EC79D178ACE1F Validity Not Before: Dec 21 16:55:01 2025 GMT Not After : Dec 20 17:00:01 2026 GMT Subject: CN=C7F996CAA75279C66ADBD05F1549F8263B5420DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7c:08:e0:59:26:39:17:b7:5f:e1:34:8a:db: 28:b3:90:b2:98:ec:d3:60:69:eb:92:6e:84:86:bf: 8c:21:3f:51:c0:d3:e2:91:98:38:5a:96:17:0c:fc: 08:23:a9:85:da:6b:de:c6:76:78:f8:84:03:fc:58: ac:b6:b2:94:a4:5f:a6:4f:b5:ba:8f:26:07:c7:c8: 28:b2:c5:ce:11:f6:ba:ed:5c:82:91:83:37:f3:2e: cf:cc:16:8e:ab:04:36:af:41:49:bd:9c:3b:c6:6e: 60:7d:33:4c:63:3a:dc:83:23:11:a2:e6:93:ca:7f: 93:72:96:de:26:d4:a9:ea:36:0f:95:d5:05:d9:1a: b7:75:8e:ad:7a:49:6c:df:83:9a:ed:ee:11:b5:06: 6e:55:e4:61:2d:a4:15:2c:10:3b:bb:ce:b6:f7:17: 5e:0c:e2:e0:eb:c6:59:c3:03:0f:0a:1f:9f:0d:e6: 6e:c7:25:3c:83:df:8a:f5:b8:1e:4d:26:f4:58:6c: 8e:fc:87:30:90:fa:b7:d8:93:84:41:95:c7:23:96: 4b:a2:4e:c7:4a:3e:32:68:84:38:5a:1c:77:b1:8a: 53:e9:9b:84:35:69:95:bb:e2:17:42:5b:4a:1e:53: a9:6a:ef:34:6c:85:9c:55:c2:7b:e2:0c:9e:84:a4: 52:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:F9:96:CA:A7:52:79:C6:6A:DB:D0:5F:15:49:F8:26:3B:54:20:DC X509v3 Authority Key Identifier: keyid:03:0B:E5:57:28:6D:3A:4F:E6:E9:AA:70:63:6E:C7:9D:17:8A:CE:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/358c8f9f-4213-4a2a-85c3-b24b0d0b5107/0/030BE557286D3A4FE6E9AA70636EC79D178ACE1F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/030BE557286D3A4FE6E9AA70636EC79D178ACE1F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/358c8f9f-4213-4a2a-85c3-b24b0d0b5107/0/3130332e3136322e3232302e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.220.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:9c:14:13:f9:0f:db:75:fd:d3:a3:11:d4:c6:f6:40:86:6d: 19:c4:fe:aa:88:f7:8a:a3:57:a5:39:45:61:af:67:54:ce:37: 98:eb:ba:4f:5b:a6:fc:be:45:a7:76:02:da:43:12:fa:3f:1a: 17:5a:5f:a5:b6:f7:37:05:fc:e3:04:26:ec:11:ba:13:cd:b9: 96:80:5a:cf:48:00:d3:ff:c2:10:bc:14:5b:7a:e1:22:ba:d9: 2d:ed:3f:59:58:56:7f:63:3a:7e:28:74:79:e3:95:b7:fd:96: ef:b1:e7:18:6a:98:3f:88:53:7e:ab:e4:f0:0f:18:5e:d1:ea: e7:04:1c:f5:cf:5b:e9:c4:90:57:42:8f:63:33:26:07:ae:8b: cc:51:ff:b0:6c:51:60:02:a6:6e:7b:a1:3f:f4:05:37:58:d2: 71:28:8c:4c:17:e6:f5:86:ea:60:73:5d:63:1f:af:46:ec:73: aa:82:ef:dd:75:3f:42:78:d7:e0:26:81:24:cb:33:4f:97:cd: 72:e3:ca:2a:43:6a:b9:0e:39:4e:5e:f7:10:20:8c:4a:a0:16: d1:37:22:2b:bd:20:7d:ca:4c:b4:6d:b1:10:19:ab:c2:89:63: d7:33:6e:62:b7:08:bc:13:72:73:e5:ab:f1:db:b0:35:21:35: 7c:44:79:47 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPT9E9I6dlPMCd1jxIUbM2fNe9KswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMwQkU1NTcyODZEM0E0RkU2RTlBQTcwNjM2RUM3OUQx NzhBQ0UxRjAeFw0yNTEyMjExNjU1MDFaFw0yNjEyMjAxNzAwMDFaMDMxMTAvBgNV BAMTKEM3Rjk5NkNBQTc1Mjc5QzY2QURCRDA1RjE1NDlGODI2M0I1NDIwREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKfAjgWSY5F7df4TSK2yizkLKY 7NNgaeuSboSGv4whP1HA0+KRmDhalhcM/AgjqYXaa97Gdnj4hAP8WKy2spSkX6ZP tbqPJgfHyCiyxc4R9rrtXIKRgzfzLs/MFo6rBDavQUm9nDvGbmB9M0xjOtyDIxGi 5pPKf5Nylt4m1KnqNg+V1QXZGrd1jq16SWzfg5rt7hG1Bm5V5GEtpBUsEDu7zrb3 F14M4uDrxlnDAw8KH58N5m7HJTyD34r1uB5NJvRYbI78hzCQ+rfYk4RBlccjlkui TsdKPjJohDhaHHexilPpm4Q1aZW74hdCW0oeU6lq7zRshZxVwnviDJ6EpFKfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUx/mWyqdSecZq29BfFUn4JjtUINwwHwYDVR0j BBgwFoAUAwvlVyhtOk/m6apwY27HnReKzh8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NThjOGY5Zi00MjEzLTRhMmEtODVjMy1iMjRiMGQwYjUxMDcvMC8wMzBCRTU1NzI4 NkQzQTRGRTZFOUFBNzA2MzZFQzc5RDE3OEFDRTFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMwQkU1NTcyODZEM0E0RkU2RTlBQTcwNjM2RUM3OUQxNzhB Q0UxRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1OGM4ZjlmLTQyMTMtNGEyYS04 NWMzLWIyNGIwZDBiNTEwNy8wLzMxMzAzMzJlMzEzNjMyMmUzMjMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnotwwDQYJ KoZIhvcNAQELBQADggEBAGucFBP5D9t1/dOjEdTG9kCGbRnE/qqI94qjV6U5RWGv Z1TON5jruk9bpvy+Rad2AtpDEvo/GhdaX6W29zcF/OMEJuwRuhPNuZaAWs9IANP/ whC8FFt64SK62S3tP1lYVn9jOn4odHnjlbf9lu+x5xhqmD+IU36r5PAPGF7R6ucE HPXPW+nEkFdCj2MzJgeui8xR/7BsUWACpm57oT/0BTdY0nEojEwX5vWG6mBzXWMf r0bsc6qC7911P0J41+AmgSTLM0+XzXLjyipDarkOOU5e9xAgjEqgFtE3Iiu9IH3K TLRtsRAZq8KJY9czbmK3CLwTcnPlq/HbsDUhNXxEeUc= -----END CERTIFICATE-----Generated at Wed Jan 21 13:27:37 2026 by rpki-client