This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/3130332e3130312e39362e302f32342d3234203d3e20313530393430.roa File: 3130332e3130312e39362e302f32342d3234203d3e20313530393430.roa (raw, json) Hash identifier: ct+DOZjTg6HlumxD8dP014jWapOHq8Dy/EadsYOLkOI= Subject key identifier: 5B:A4:5D:62:CA:D8:B7:A4:FF:92:43:2A:FC:DB:5C:E1:44:27:5C:09 Certificate issuer: /CN=8D7AD1F796C88BCD49E1BEC42851AFA58BD78588 Certificate serial: 6AD4B9B90344C8E5C317246FA13054F6B92B3C2C Authority key identifier: 8D:7A:D1:F7:96:C8:8B:CD:49:E1:BE:C4:28:51:AF:A5:8B:D7:85:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/3130332e3130312e39362e302f32342d3234203d3e20313530393430.roa Signing time: Sun 04 Jan 2026 05:00:01 +0000 ROA not before: Sun 04 Jan 2026 04:55:01 +0000 ROA not after: Sun 03 Jan 2027 05:00:01 +0000 asID: 150940 IP address blocks: 103.101.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.crl rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 05:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:d4:b9:b9:03:44:c8:e5:c3:17:24:6f:a1:30:54:f6:b9:2b:3c:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D7AD1F796C88BCD49E1BEC42851AFA58BD78588 Validity Not Before: Jan 4 04:55:01 2026 GMT Not After : Jan 3 05:00:01 2027 GMT Subject: CN=5BA45D62CAD8B7A4FF92432AFCDB5CE144275C09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e1:9d:76:6f:f8:be:80:52:01:7b:80:38:96: 63:57:53:46:55:61:19:f7:90:dc:ef:3d:83:ab:6e: 4c:1c:81:a2:f4:7f:40:a3:9f:e7:41:54:05:2c:30: 0c:07:3c:cb:41:4f:69:01:8f:e2:7c:d4:3c:ca:4b: 0f:9a:17:c5:23:b8:43:39:ed:76:06:bd:62:68:57: 12:6a:da:00:26:4d:fa:8d:c8:26:7a:01:bb:8c:09: a9:65:56:d5:5b:d7:c2:9b:dd:ca:26:10:3b:02:42: 55:8e:27:58:b1:0b:ad:55:3c:e3:64:81:ba:b2:4e: b9:ff:21:21:e3:8d:23:bb:16:eb:d0:00:98:f9:47: 02:40:84:68:80:5d:2b:cf:64:42:e7:6d:59:75:ca: ba:8d:24:64:80:28:f5:43:cd:81:f4:02:34:f5:30: 2b:af:b3:87:b0:78:f6:32:67:96:7a:52:c7:b8:56: 81:89:13:2c:5b:dd:18:57:aa:9f:27:66:c5:d0:fa: 48:cc:20:8a:92:ff:b6:9c:26:ee:7b:41:3c:8f:d4: 69:f0:b1:ce:85:6c:6e:1a:e8:39:bc:62:dc:62:ba: 50:2a:ba:70:e7:72:92:1d:8c:5c:9e:c2:0b:9a:57: f7:ac:7f:a4:8a:fc:e0:dd:16:a0:66:13:c4:17:7d: 3c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:A4:5D:62:CA:D8:B7:A4:FF:92:43:2A:FC:DB:5C:E1:44:27:5C:09 X509v3 Authority Key Identifier: keyid:8D:7A:D1:F7:96:C8:8B:CD:49:E1:BE:C4:28:51:AF:A5:8B:D7:85:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/3130332e3130312e39362e302f32342d3234203d3e20313530393430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.96.0/24 Signature Algorithm: sha256WithRSAEncryption 72:99:f8:e8:a9:fb:b2:5f:0a:08:a1:1a:11:76:ae:ad:ba:77: 98:1c:45:4c:8f:5d:fa:a6:cc:98:ab:80:bb:16:03:2b:58:f9: 92:15:3f:ae:0a:ae:67:5b:03:7a:79:71:84:3b:a3:87:40:36: 2c:47:27:4c:91:45:34:ba:c6:ac:f3:ad:16:a7:03:f5:9d:37: d7:7f:7a:80:94:07:e9:7e:91:97:ee:c8:62:98:cb:58:f0:b5: 21:bd:fb:77:b1:09:88:a3:54:7b:60:08:7e:5f:2b:df:27:4a: bf:fd:b4:5d:69:00:a0:e7:af:c9:19:75:7f:fc:4d:6e:4d:fc: 7a:23:69:5b:60:33:4d:7c:b4:a3:df:c2:e9:f7:85:bb:b6:96: ab:19:c9:0d:1f:99:10:ac:83:ca:7e:5f:73:2a:9e:b2:82:b3: 93:eb:68:2a:68:85:09:23:43:39:6d:bd:df:4e:71:3b:df:8f: e5:ca:7e:e6:88:c0:7b:d5:1e:6d:0d:5f:d0:48:94:24:10:23: f7:ec:6d:02:6c:cd:d4:4d:1a:a0:07:df:a0:32:e9:b8:d1:43: a2:30:72:3e:b6:9a:87:aa:46:24:a6:0e:66:28:87:ee:ec:e2: 8a:13:c5:a5:ac:c2:c6:e1:c4:ab:a7:b6:7b:c5:d6:cc:54:e4: bb:df:05:81 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUatS5uQNEyOXDFyRvoTBU9rkrPCwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQ3QUQxRjc5NkM4OEJDRDQ5RTFCRUM0Mjg1MUFGQTU4 QkQ3ODU4ODAeFw0yNjAxMDQwNDU1MDFaFw0yNzAxMDMwNTAwMDFaMDMxMTAvBgNV BAMTKDVCQTQ1RDYyQ0FEOEI3QTRGRjkyNDMyQUZDREI1Q0UxNDQyNzVDMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG4Z12b/i+gFIBe4A4lmNXU0ZV YRn3kNzvPYOrbkwcgaL0f0Cjn+dBVAUsMAwHPMtBT2kBj+J81DzKSw+aF8UjuEM5 7XYGvWJoVxJq2gAmTfqNyCZ6AbuMCallVtVb18Kb3comEDsCQlWOJ1ixC61VPONk gbqyTrn/ISHjjSO7FuvQAJj5RwJAhGiAXSvPZELnbVl1yrqNJGSAKPVDzYH0AjT1 MCuvs4ewePYyZ5Z6Use4VoGJEyxb3RhXqp8nZsXQ+kjMIIqS/7acJu57QTyP1Gnw sc6FbG4a6Dm8YtxiulAqunDncpIdjFyewguaV/esf6SK/ODdFqBmE8QXfTyBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUW6RdYsrYt6T/kkMq/Ntc4UQnXAkwHwYDVR0j BBgwFoAUjXrR95bIi81J4b7EKFGvpYvXhYgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MTU3YzlhYy01MmRiLTRkYmEtYWM3Ny04NDVlMmRkZDg4NzkvMC84RDdBRDFGNzk2 Qzg4QkNENDlFMUJFQzQyODUxQUZBNThCRDc4NTg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEQ3QUQxRjc5NkM4OEJDRDQ5RTFCRUM0Mjg1MUFGQTU4QkQ3 ODU4OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQxNTdjOWFjLTUyZGItNGRiYS1h Yzc3LTg0NWUyZGRkODg3OS8wLzMxMzAzMzJlMzEzMDMxMmUzOTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2VgMA0GCSqG SIb3DQEBCwUAA4IBAQBymfjoqfuyXwoIoRoRdq6tuneYHEVMj136psyYq4C7FgMr WPmSFT+uCq5nWwN6eXGEO6OHQDYsRydMkUU0usas860WpwP1nTfXf3qAlAfpfpGX 7shimMtY8LUhvft3sQmIo1R7YAh+XyvfJ0q//bRdaQCg56/JGXV//E1uTfx6I2lb YDNNfLSj38Lp94W7tparGckNH5kQrIPKfl9zKp6ygrOT62gqaIUJI0M5bb3fTnE7 34/lyn7miMB71R5tDV/QSJQkECP37G0CbM3UTRqgB9+gMum40UOiMHI+tpqHqkYk pg5mKIfu7OKKE8WlrMLG4cSrp7Z7xdbMVOS73wWB -----END CERTIFICATE-----Generated at Mon Feb 2 13:01:09 2026 by rpki-client