This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/3130332e31342e3233312e302f32342d3234203d3e20313439393435.roa File: 3130332e31342e3233312e302f32342d3234203d3e20313439393435.roa (raw, json) Hash identifier: hy+/jpVeqW5ZdBPpsEQxih0c4zQVAJjPaRw4KAPp/Ro= Subject key identifier: 8B:63:AF:B1:70:B0:8E:93:EF:84:64:72:BA:D0:2C:56:E3:DC:2E:30 Certificate issuer: /CN=40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D Certificate serial: 4F42F936940C128D8715604C5F636A9E8335EC22 Authority key identifier: 40:70:6A:5C:CF:A8:96:C8:EE:0C:1F:9A:5B:6D:CD:A1:91:5A:C7:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/3130332e31342e3233312e302f32342d3234203d3e20313439393435.roa Signing time: Mon 12 May 2025 05:00:01 +0000 ROA not before: Mon 12 May 2025 04:55:01 +0000 ROA not after: Mon 11 May 2026 05:00:01 +0000 asID: 149945 IP address blocks: 103.14.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.crl rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:42:f9:36:94:0c:12:8d:87:15:60:4c:5f:63:6a:9e:83:35:ec:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D Validity Not Before: May 12 04:55:01 2025 GMT Not After : May 11 05:00:01 2026 GMT Subject: CN=8B63AFB170B08E93EF846472BAD02C56E3DC2E30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:cb:08:e3:3e:37:78:4f:a7:90:35:ce:9b:ae: a2:0d:e6:05:0e:b9:48:5d:a8:cb:fd:41:4f:59:63: 0e:eb:56:ee:56:d3:96:c6:22:91:cc:c3:28:14:fb: 1b:d1:2c:b4:91:85:60:c1:78:f7:12:45:d8:61:c4: 2f:b6:f7:79:68:ce:3a:94:00:27:d6:3a:a3:89:1f: 89:a4:fc:dc:2e:4c:56:58:f1:0d:c4:ee:64:c1:4f: 52:83:b3:fb:8a:de:ca:c0:92:5a:17:9b:ff:48:5c: 18:b7:5a:af:b7:3c:1c:41:2c:44:cd:27:f7:c4:30: 35:66:b5:ab:91:32:59:a5:5c:77:7e:14:e7:1a:d8: ae:a2:9b:d7:a4:11:29:11:85:4c:7a:62:16:e8:79: c2:8b:c4:7c:38:7a:b8:f0:ee:22:41:a8:0b:4b:c7: c4:0b:f1:93:c4:b7:27:c9:63:9a:92:81:a8:43:11: 45:fa:37:0f:b3:28:e5:f4:a9:8c:4b:7d:96:3f:6d: e1:de:bb:40:1c:23:4b:0b:f2:c3:c9:2b:5f:1e:e0: 44:41:e8:65:96:6e:25:6c:c1:83:bf:42:a1:1d:06: 85:9d:9c:ed:07:a6:63:b8:48:05:52:1c:70:bc:ea: af:61:fa:3c:29:94:04:9e:69:2a:2d:39:66:5d:1d: 81:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:63:AF:B1:70:B0:8E:93:EF:84:64:72:BA:D0:2C:56:E3:DC:2E:30 X509v3 Authority Key Identifier: keyid:40:70:6A:5C:CF:A8:96:C8:EE:0C:1F:9A:5B:6D:CD:A1:91:5A:C7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/3130332e31342e3233312e302f32342d3234203d3e20313439393435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.14.231.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:1c:96:91:01:51:e2:60:ac:df:29:14:88:09:03:f5:d6:2e: 9b:bb:8c:ca:17:06:ca:39:a7:51:f0:ab:30:0c:a8:31:21:75: 61:b5:81:07:43:a4:5e:eb:8b:ec:3b:62:68:c0:c9:26:c3:3f: 29:ee:35:be:b5:a1:7b:6e:f8:9e:ca:25:75:10:a9:c9:d5:5e: c1:94:c6:21:97:56:54:db:c5:49:4e:90:2f:e9:48:6d:b1:14: ec:9f:03:7f:da:df:b0:18:74:83:e2:e0:41:0b:30:f9:99:39: e4:e6:29:84:30:4e:26:3a:4b:fe:f3:da:dd:33:89:3b:c8:0a: 24:02:25:3d:8d:5d:2c:43:b6:69:e8:3c:1f:e3:ef:2d:2b:20: b3:3c:9f:05:2d:28:89:c8:a1:10:b2:09:23:d7:6b:6a:ed:59: 93:09:a2:57:f1:51:8f:5f:dc:96:b8:48:3a:cd:27:fc:88:ad: 7c:82:02:59:14:57:1d:6a:f0:91:1a:6f:b5:b8:f4:f3:0d:da: 28:ad:09:56:0f:7a:72:3d:07:2b:5b:46:94:c9:f2:5a:70:e3: 79:71:1c:73:e1:4a:ac:a9:ae:51:3f:64:cb:61:a6:67:4f:6f: 8e:58:e1:cf:a5:48:90:57:50:28:b7:47:81:9a:a5:a3:45:dd: 15:72:2d:81 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUT0L5NpQMEo2HFWBMX2NqnoM17CIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA3MDZBNUNDRkE4OTZDOEVFMEMxRjlBNUI2RENEQTE5 MTVBQzc2RDAeFw0yNTA1MTIwNDU1MDFaFw0yNjA1MTEwNTAwMDFaMDMxMTAvBgNV BAMTKDhCNjNBRkIxNzBCMDhFOTNFRjg0NjQ3MkJBRDAyQzU2RTNEQzJFMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjywjjPjd4T6eQNc6brqIN5gUO uUhdqMv9QU9ZYw7rVu5W05bGIpHMwygU+xvRLLSRhWDBePcSRdhhxC+293lozjqU ACfWOqOJH4mk/NwuTFZY8Q3E7mTBT1KDs/uK3srAkloXm/9IXBi3Wq+3PBxBLETN J/fEMDVmtauRMlmlXHd+FOca2K6im9ekESkRhUx6YhboecKLxHw4erjw7iJBqAtL x8QL8ZPEtyfJY5qSgahDEUX6Nw+zKOX0qYxLfZY/beHeu0AcI0sL8sPJK18e4ERB 6GWWbiVswYO/QqEdBoWdnO0HpmO4SAVSHHC86q9h+jwplASeaSotOWZdHYHJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUi2OvsXCwjpPvhGRyutAsVuPcLjAwHwYDVR0j BBgwFoAUQHBqXM+olsjuDB+aW23NoZFax20wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZGY0Mjk2Zi0xY2E5LTQ1ZmMtYmIwOC04NDEzNWViMDBmYTcvMC80MDcwNkE1Q0NG QTg5NkM4RUUwQzFGOUE1QjZEQ0RBMTkxNUFDNzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDA3MDZBNUNDRkE4OTZDOEVFMEMxRjlBNUI2RENEQTE5MTVB Qzc2RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkZjQyOTZmLTFjYTktNDVmYy1i YjA4LTg0MTM1ZWIwMGZhNy8wLzMxMzAzMzJlMzEzNDJlMzIzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzkzNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZw7nMA0GCSqG SIb3DQEBCwUAA4IBAQBNHJaRAVHiYKzfKRSICQP11i6bu4zKFwbKOadR8KswDKgx IXVhtYEHQ6Re64vsO2JowMkmwz8p7jW+taF7bvieyiV1EKnJ1V7BlMYhl1ZU28VJ TpAv6UhtsRTsnwN/2t+wGHSD4uBBCzD5mTnk5imEME4mOkv+89rdM4k7yAokAiU9 jV0sQ7Zp6Dwf4+8tKyCzPJ8FLSiJyKEQsgkj12tq7VmTCaJX8VGPX9yWuEg6zSf8 iK18ggJZFFcdavCRGm+1uPTzDdoorQlWD3pyPQcrW0aUyfJacON5cRxz4Uqsqa5R P2TLYaZnT2+OWOHPpUiQV1Aot0eBmqWjRd0Vci2B -----END CERTIFICATE-----Generated at Wed Dec 3 14:55:56 2025 by rpki-client