This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/3130332e3130312e39362e302f32332d3233203d3e20313530393430.roa File: 3130332e3130312e39362e302f32332d3233203d3e20313530393430.roa (raw, json) Hash identifier: 2+rMUTRr6geT36w1LGs/+72amdtzbZ4S57uwVaFP0y0= Subject key identifier: 42:F7:44:96:D9:93:94:1D:7F:FD:94:29:DE:A6:13:18:23:28:B0:29 Certificate issuer: /CN=8D7AD1F796C88BCD49E1BEC42851AFA58BD78588 Certificate serial: 4C247E98D545E9AB2CE5120E03A89C4EB7BDD48E Authority key identifier: 8D:7A:D1:F7:96:C8:8B:CD:49:E1:BE:C4:28:51:AF:A5:8B:D7:85:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/3130332e3130312e39362e302f32332d3233203d3e20313530393430.roa Signing time: Sun 04 Jan 2026 05:00:02 +0000 ROA not before: Sun 04 Jan 2026 04:55:02 +0000 ROA not after: Sun 03 Jan 2027 05:00:02 +0000 asID: 150940 IP address blocks: 103.101.96.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.crl rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 05:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:24:7e:98:d5:45:e9:ab:2c:e5:12:0e:03:a8:9c:4e:b7:bd:d4:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D7AD1F796C88BCD49E1BEC42851AFA58BD78588 Validity Not Before: Jan 4 04:55:02 2026 GMT Not After : Jan 3 05:00:02 2027 GMT Subject: CN=42F74496D993941D7FFD9429DEA613182328B029 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:28:fd:48:39:f3:cf:d9:e6:40:97:6e:ac:71: 5b:4f:cd:35:ee:9e:18:0c:17:88:38:62:92:69:a5: 55:43:44:ac:f6:d6:68:b2:0f:7e:a0:87:2a:79:00: 2d:bd:da:df:78:95:af:52:8e:b4:a3:91:6b:e7:9c: 40:1c:ec:e4:b4:b6:a0:6b:73:59:08:7d:2c:37:c7: 01:a9:42:9a:bd:4f:d1:da:79:01:7c:28:f4:62:7e: 54:4a:94:c5:3e:c3:a5:fc:e3:b9:03:7b:ba:05:82: 0c:e0:9a:25:d2:e5:44:81:8a:3c:a9:de:4f:9b:41: 10:b4:89:ae:30:fe:3a:6c:36:b8:b1:76:ef:4d:66: f3:55:a9:a4:60:f6:f8:cf:78:04:93:97:89:64:00: 77:83:5c:ea:9a:2b:77:51:79:b6:16:3c:71:84:0f: 1d:d5:f7:d1:24:0c:90:85:a4:7e:27:a6:78:7d:ca: a4:46:12:c3:2a:2c:7f:d3:b7:7a:d3:f5:7e:72:e5: ef:fb:75:33:e3:08:bd:99:55:7c:53:4e:49:dd:36: 75:9f:21:cd:01:15:82:0f:95:1e:bb:ea:68:49:65: fc:ac:0d:c3:59:1c:74:90:82:a9:08:7f:ce:4f:94: 83:23:52:3e:cb:35:b4:4c:49:c2:e1:0c:49:5d:f2: d8:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:F7:44:96:D9:93:94:1D:7F:FD:94:29:DE:A6:13:18:23:28:B0:29 X509v3 Authority Key Identifier: keyid:8D:7A:D1:F7:96:C8:8B:CD:49:E1:BE:C4:28:51:AF:A5:8B:D7:85:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/3130332e3130312e39362e302f32332d3233203d3e20313530393430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.96.0/23 Signature Algorithm: sha256WithRSAEncryption c2:f9:6c:80:52:9a:34:ac:ca:27:4d:3a:33:09:8f:94:bf:f1: b7:71:3a:dc:18:c7:40:7d:4e:14:3a:9d:47:4a:6d:f5:2c:3a: 8f:d8:54:ef:48:2a:38:6c:23:3d:32:0a:bb:e2:c5:0b:a5:f7: 4b:b1:34:23:3e:c5:8d:da:fc:3d:8f:0c:63:c3:db:10:0d:79: 52:fc:4e:b5:47:af:f1:a6:27:d3:d2:2b:4a:57:66:d5:8e:37: ef:39:95:8a:de:98:12:69:cd:20:7c:95:98:f7:21:5b:7b:b7: b2:e0:0c:01:f6:2b:58:b9:95:15:23:69:05:b4:20:4c:4e:38: 04:88:f6:c6:6e:fd:13:66:e8:05:38:88:c4:b9:e2:65:da:f5: e6:96:03:c8:54:1e:de:8f:49:66:20:70:98:76:2e:6e:d9:e5: 11:7f:47:0b:1c:b3:78:b2:16:4a:70:14:07:59:8e:64:e8:ee: 39:dc:c3:ea:de:e2:a8:81:84:ac:79:f6:b9:55:e5:13:5a:13: e0:16:ba:12:c3:7d:72:27:73:56:20:98:56:2d:65:8b:d0:cc: 06:1a:c7:cf:55:19:f3:18:55:3a:1e:de:04:d9:d8:e5:c7:c2: e8:e5:fe:47:a1:a8:ee:42:68:2d:8c:f2:e4:bb:14:93:75:3b: 67:56:4a:6a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTCR+mNVF6ass5RIOA6icTre91I4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQ3QUQxRjc5NkM4OEJDRDQ5RTFCRUM0Mjg1MUFGQTU4 QkQ3ODU4ODAeFw0yNjAxMDQwNDU1MDJaFw0yNzAxMDMwNTAwMDJaMDMxMTAvBgNV BAMTKDQyRjc0NDk2RDk5Mzk0MUQ3RkZEOTQyOURFQTYxMzE4MjMyOEIwMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4KP1IOfPP2eZAl26scVtPzTXu nhgMF4g4YpJppVVDRKz21miyD36ghyp5AC292t94la9SjrSjkWvnnEAc7OS0tqBr c1kIfSw3xwGpQpq9T9HaeQF8KPRiflRKlMU+w6X847kDe7oFggzgmiXS5USBijyp 3k+bQRC0ia4w/jpsNrixdu9NZvNVqaRg9vjPeASTl4lkAHeDXOqaK3dRebYWPHGE Dx3V99EkDJCFpH4npnh9yqRGEsMqLH/Tt3rT9X5y5e/7dTPjCL2ZVXxTTkndNnWf Ic0BFYIPlR676mhJZfysDcNZHHSQgqkIf85PlIMjUj7LNbRMScLhDEld8thfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQvdEltmTlB1//ZQp3qYTGCMosCkwHwYDVR0j BBgwFoAUjXrR95bIi81J4b7EKFGvpYvXhYgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MTU3YzlhYy01MmRiLTRkYmEtYWM3Ny04NDVlMmRkZDg4NzkvMC84RDdBRDFGNzk2 Qzg4QkNENDlFMUJFQzQyODUxQUZBNThCRDc4NTg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEQ3QUQxRjc5NkM4OEJDRDQ5RTFCRUM0Mjg1MUFGQTU4QkQ3 ODU4OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQxNTdjOWFjLTUyZGItNGRiYS1h Yzc3LTg0NWUyZGRkODg3OS8wLzMxMzAzMzJlMzEzMDMxMmUzOTM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMwMzkzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2VgMA0GCSqG SIb3DQEBCwUAA4IBAQDC+WyAUpo0rMonTTozCY+Uv/G3cTrcGMdAfU4UOp1HSm31 LDqP2FTvSCo4bCM9Mgq74sULpfdLsTQjPsWN2vw9jwxjw9sQDXlS/E61R6/xpifT 0itKV2bVjjfvOZWK3pgSac0gfJWY9yFbe7ey4AwB9itYuZUVI2kFtCBMTjgEiPbG bv0TZugFOIjEueJl2vXmlgPIVB7ej0lmIHCYdi5u2eURf0cLHLN4shZKcBQHWY5k 6O453MPq3uKogYSsefa5VeUTWhPgFroSw31yJ3NWIJhWLWWL0MwGGsfPVRnzGFU6 Ht4E2djlx8Lo5f5HoajuQmgtjPLkuxSTdTtnVkpq -----END CERTIFICATE-----Generated at Mon Feb 2 14:44:36 2026 by rpki-client