This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139372e302f32342d3234203d3e20313430343730.roa File: 3130332e3135392e3139372e302f32342d3234203d3e20313430343730.roa (raw, json) Hash identifier: BgFgmH5jU+LRrTrgwlopaW2g0oi0zIzrx7nTuzaPyLk= Subject key identifier: BA:11:ED:6E:63:E9:20:23:18:83:A2:A8:E6:A0:F9:22:6F:C3:69:A0 Certificate issuer: /CN=F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D Certificate serial: 3664E4C5626AD1F60EE88553C795C33564F40AF3 Authority key identifier: F7:A5:C0:89:7A:1A:B3:1B:FD:31:BE:0A:F2:1D:82:5C:5A:A6:97:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139372e302f32342d3234203d3e20313430343730.roa Signing time: Thu 15 Jan 2026 10:00:02 +0000 ROA not before: Thu 15 Jan 2026 09:55:02 +0000 ROA not after: Thu 14 Jan 2027 10:00:02 +0000 asID: 140470 IP address blocks: 103.159.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.crl rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 Jan 2026 06:41:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:64:e4:c5:62:6a:d1:f6:0e:e8:85:53:c7:95:c3:35:64:f4:0a:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D Validity Not Before: Jan 15 09:55:02 2026 GMT Not After : Jan 14 10:00:02 2027 GMT Subject: CN=BA11ED6E63E920231883A2A8E6A0F9226FC369A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e6:9b:2c:bb:00:a8:cb:bb:f7:d5:47:75:27: b8:ec:c3:12:38:ea:1b:94:02:8e:10:b0:bc:7b:80: bf:3c:3b:4c:61:e8:81:e6:b9:fd:aa:5c:ed:0a:3c: a3:a2:c2:04:7e:e8:25:53:b1:c7:31:3d:41:4d:65: b1:9d:77:a5:32:d8:b9:3d:13:5c:58:6c:0c:2b:0d: 7b:7d:de:cc:c1:32:f9:87:f7:47:c7:0f:a0:25:7e: 8b:17:f8:4f:18:b3:a1:4d:1e:6e:ea:36:fe:c2:ae: 3f:d4:38:d7:30:40:6a:07:e2:da:be:12:78:bb:24: dc:ea:68:ae:ab:f7:1d:32:1f:7b:21:bc:ff:05:b7: 18:f2:fe:0d:0c:7c:a5:6d:6c:5c:1f:3c:0e:03:c7: ce:5f:4a:ba:b3:2e:cf:a6:e2:60:b3:1e:53:3d:2e: 60:a8:7d:38:1b:0d:9e:58:16:79:4f:da:78:f7:de: 9d:2d:b6:9b:a1:fa:05:cb:bb:46:be:a0:ef:ab:1d: a3:71:89:11:7d:18:09:25:a3:ea:e3:35:7e:69:28: d5:59:bf:c1:34:d2:ab:11:ac:ca:d4:9e:74:54:3f: 1c:b4:47:f1:13:27:22:6a:fb:e5:ab:11:08:e4:fb: 24:99:a4:13:33:72:43:28:77:ec:49:73:3a:86:fd: c7:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:11:ED:6E:63:E9:20:23:18:83:A2:A8:E6:A0:F9:22:6F:C3:69:A0 X509v3 Authority Key Identifier: keyid:F7:A5:C0:89:7A:1A:B3:1B:FD:31:BE:0A:F2:1D:82:5C:5A:A6:97:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139372e302f32342d3234203d3e20313430343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.197.0/24 Signature Algorithm: sha256WithRSAEncryption 02:c5:8b:62:67:1f:7f:b8:82:f8:e2:13:b1:5e:01:76:97:51: eb:63:c8:6a:10:76:ca:6b:bf:a9:6a:49:d9:be:37:89:40:62: a5:a5:43:2d:97:b3:29:8b:ab:76:b4:b7:55:c1:2b:f2:2d:10: f6:20:5d:bb:3e:65:d2:4f:8e:1e:13:70:4c:35:b8:81:a2:6b: af:a2:72:4a:8b:a6:80:13:db:f9:4b:59:9a:9b:90:06:60:56: b6:f7:cb:34:27:91:7f:14:e0:97:03:2c:30:d3:45:ba:ac:fe: ec:9b:d6:3f:05:0b:57:33:2a:cb:74:07:80:2a:a2:53:27:95: 90:03:6e:e6:96:04:64:dc:ba:86:5c:36:19:5d:99:4c:ef:cc: cf:f7:30:71:1d:e9:97:73:32:a3:e2:a0:ea:a1:94:52:d7:ec: d6:c3:ee:12:cb:00:cb:5a:81:15:de:8f:84:dc:b2:27:d9:73: 95:de:64:c8:5a:ed:22:d0:eb:a5:b8:49:c6:03:23:89:89:f0: 19:c7:94:77:1c:36:7f:34:e7:1b:cc:cb:56:d3:fb:eb:e8:f0: c3:19:51:b5:af:32:13:fd:76:cb:0f:d4:e6:33:de:06:cc:db: 76:fb:67:55:7b:30:3a:e8:0a:d1:a3:63:89:58:9e:bb:bf:fb: 47:fd:99:12 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNmTkxWJq0fYO6IVTx5XDNWT0CvMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjdBNUMwODk3QTFBQjMxQkZEMzFCRTBBRjIxRDgyNUM1 QUE2OTcyRDAeFw0yNjAxMTUwOTU1MDJaFw0yNzAxMTQxMDAwMDJaMDMxMTAvBgNV BAMTKEJBMTFFRDZFNjNFOTIwMjMxODgzQTJBOEU2QTBGOTIyNkZDMzY5QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA5pssuwCoy7v31Ud1J7jswxI4 6huUAo4QsLx7gL88O0xh6IHmuf2qXO0KPKOiwgR+6CVTsccxPUFNZbGdd6Uy2Lk9 E1xYbAwrDXt93szBMvmH90fHD6AlfosX+E8Ys6FNHm7qNv7Crj/UONcwQGoH4tq+ Eni7JNzqaK6r9x0yH3shvP8Ftxjy/g0MfKVtbFwfPA4Dx85fSrqzLs+m4mCzHlM9 LmCofTgbDZ5YFnlP2nj33p0ttpuh+gXLu0a+oO+rHaNxiRF9GAklo+rjNX5pKNVZ v8E00qsRrMrUnnRUPxy0R/ETJyJq++WrEQjk+ySZpBMzckMod+xJczqG/cejAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUuhHtbmPpICMYg6Ko5qD5Im/DaaAwHwYDVR0j BBgwFoAU96XAiXoasxv9Mb4K8h2CXFqmly0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Y2RkNTc3NC0zMGRkLTRhMDAtYjFhOS05YjEyODI2OTMwYzIvMC9GN0E1QzA4OTdB MUFCMzFCRkQzMUJFMEFGMjFEODI1QzVBQTY5NzJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjdBNUMwODk3QTFBQjMxQkZEMzFCRTBBRjIxRDgyNUM1QUE2 OTcyRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjZGQ1Nzc0LTMwZGQtNGEwMC1i MWE5LTliMTI4MjY5MzBjMi8wLzMxMzAzMzJlMzEzNTM5MmUzMTM5MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnn8UwDQYJ KoZIhvcNAQELBQADggEBAALFi2JnH3+4gvjiE7FeAXaXUetjyGoQdsprv6lqSdm+ N4lAYqWlQy2XsymLq3a0t1XBK/ItEPYgXbs+ZdJPjh4TcEw1uIGia6+ickqLpoAT 2/lLWZqbkAZgVrb3yzQnkX8U4JcDLDDTRbqs/uyb1j8FC1czKst0B4AqolMnlZAD buaWBGTcuoZcNhldmUzvzM/3MHEd6ZdzMqPioOqhlFLX7NbD7hLLAMtagRXej4Tc sifZc5XeZMha7SLQ66W4ScYDI4mJ8BnHlHccNn805xvMy1bT++vo8MMZUbWvMhP9 dssP1OYz3gbM23b7Z1V7MDroCtGjY4lYnru/+0f9mRI= -----END CERTIFICATE-----Generated at Wed Jan 21 16:20:17 2026 by rpki-client