This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/3130332e3137362e39362e302f32342d3234203d3e20313437313331.roa File: 3130332e3137362e39362e302f32342d3234203d3e20313437313331.roa (raw, json) Hash identifier: wEdCO3YyXLUpfkiKLdOWDdPh+9yeo9Z0D5c9ufB6gOc= Subject key identifier: 54:20:21:B6:FE:19:A4:30:AF:14:2F:F7:63:C2:27:00:44:D7:E3:8D Certificate issuer: /CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Certificate serial: 7DD914D7601B0FC099D0E6996D2E7C3DF28414FA Authority key identifier: 43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/3130332e3137362e39362e302f32342d3234203d3e20313437313331.roa Signing time: Mon 22 Dec 2025 17:00:02 +0000 ROA not before: Mon 22 Dec 2025 16:55:02 +0000 ROA not after: Mon 21 Dec 2026 17:00:02 +0000 asID: 147131 IP address blocks: 103.176.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:d9:14:d7:60:1b:0f:c0:99:d0:e6:99:6d:2e:7c:3d:f2:84:14:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Validity Not Before: Dec 22 16:55:02 2025 GMT Not After : Dec 21 17:00:02 2026 GMT Subject: CN=542021B6FE19A430AF142FF763C2270044D7E38D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:94:a3:65:94:00:56:14:11:13:f6:39:1b:b4: 48:7e:82:a6:7e:18:41:e3:fd:f1:7b:ac:db:8a:c0: 53:19:ec:5f:3f:5f:1b:ae:a0:44:48:94:ee:3f:a4: 83:23:da:4e:4e:61:e5:41:58:29:2d:e7:45:19:9c: 65:2a:92:28:58:11:c9:4d:47:ca:0b:9c:18:72:a2: bb:85:84:03:49:5b:e4:11:92:a1:3c:0e:15:28:ed: 6f:45:8b:81:69:13:45:af:66:62:d9:e6:24:21:77: c7:60:0b:93:35:70:9b:60:fa:13:57:f1:77:35:fb: e2:8a:e3:a0:ae:48:ff:cd:e0:b2:18:49:98:89:19: d0:05:97:25:90:c8:6b:4b:05:37:09:6d:6f:9c:fa: 01:5f:05:a9:7f:74:9d:84:94:dc:8c:f2:55:27:0b: da:90:7f:ba:cc:5f:06:55:88:56:b3:7e:52:37:83: 15:8f:c6:9c:f8:18:16:42:80:bc:3d:66:48:45:d2: 0e:74:af:0d:61:44:a3:d5:2c:8b:cd:69:ec:9a:4a: d6:9e:dd:fd:cf:d4:5d:e3:d7:e7:0f:0e:55:47:2f: c9:24:29:4f:ea:a3:79:1c:b2:a5:08:b7:6e:6a:55: 7b:d9:7c:b0:3e:19:f6:5b:18:59:d0:b3:c1:ce:dd: 97:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:20:21:B6:FE:19:A4:30:AF:14:2F:F7:63:C2:27:00:44:D7:E3:8D X509v3 Authority Key Identifier: keyid:43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/3130332e3137362e39362e302f32342d3234203d3e20313437313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.96.0/24 Signature Algorithm: sha256WithRSAEncryption 54:0e:c6:81:41:d8:23:eb:0f:04:73:d6:f1:50:46:ba:72:47: 22:78:ea:16:53:f3:85:51:71:c6:fd:68:8b:86:37:8d:43:fc: 9c:3e:69:9f:66:33:9d:ad:99:29:5d:d2:8d:8a:bb:e7:f6:71: 71:38:ab:02:f3:89:21:82:48:14:97:af:40:32:ca:ae:63:73: 5c:64:b6:1e:26:a3:78:bb:9d:8a:45:fa:4d:ac:f9:19:eb:7d: 38:e2:ac:ad:1f:a2:a2:80:3f:b9:a2:1d:6a:d2:cb:33:79:c8: eb:9b:4b:3f:f3:e0:12:e2:d2:4e:d5:22:d0:15:a7:27:e5:0a: 64:a8:b0:15:2d:b0:f9:1f:53:5d:76:16:95:33:3b:51:8f:b5: e3:46:21:46:aa:cb:84:b5:4c:ee:93:7e:8c:2c:38:84:b7:1f: 6b:29:af:08:6a:c9:23:bc:f6:d0:4a:58:72:99:7e:7d:78:05: 2b:f0:8b:ca:46:d9:72:29:74:6d:e4:c0:76:de:3f:45:5b:6d: 1d:a0:a1:50:2c:b0:e1:13:66:29:3e:0e:16:c2:f5:8d:f5:f1: b4:cd:52:e1:a7:3e:f5:6a:c7:d0:83:ae:a4:c7:5d:ac:ad:a8: 29:ad:8d:cf:5b:b0:57:2d:45:bb:77:ce:ad:85:9b:20:ac:ce: f1:ca:78:60 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfdkU12AbD8CZ0OaZbS58PfKEFPowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVF MzdCQjY1NzAeFw0yNTEyMjIxNjU1MDJaFw0yNjEyMjExNzAwMDJaMDMxMTAvBgNV BAMTKDU0MjAyMUI2RkUxOUE0MzBBRjE0MkZGNzYzQzIyNzAwNDREN0UzOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4lKNllABWFBET9jkbtEh+gqZ+ GEHj/fF7rNuKwFMZ7F8/XxuuoERIlO4/pIMj2k5OYeVBWCkt50UZnGUqkihYEclN R8oLnBhyoruFhANJW+QRkqE8DhUo7W9Fi4FpE0WvZmLZ5iQhd8dgC5M1cJtg+hNX 8Xc1++KK46CuSP/N4LIYSZiJGdAFlyWQyGtLBTcJbW+c+gFfBal/dJ2ElNyM8lUn C9qQf7rMXwZViFazflI3gxWPxpz4GBZCgLw9ZkhF0g50rw1hRKPVLIvNaeyaStae 3f3P1F3j1+cPDlVHL8kkKU/qo3kcsqUIt25qVXvZfLA+GfZbGFnQs8HO3ZdbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVCAhtv4ZpDCvFC/3Y8InAETX440wHwYDVR0j BBgwFoAUQzfp/5Ggy2XOHrj662EI9eN7tlcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzM0ZGMzZi0zMDhmLTRkZTEtYTM2NS03MDFiZDljZjEwMDQvMC80MzM3RTlGRjkx QTBDQjY1Q0UxRUI4RkFFQjYxMDhGNUUzN0JCNjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVFMzdC QjY1Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMzRkYzNmLTMwOGYtNGRlMS1h MzY1LTcwMWJkOWNmMTAwNC8wLzMxMzAzMzJlMzEzNzM2MmUzOTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzEzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7BgMA0GCSqG SIb3DQEBCwUAA4IBAQBUDsaBQdgj6w8Ec9bxUEa6ckcieOoWU/OFUXHG/WiLhjeN Q/ycPmmfZjOdrZkpXdKNirvn9nFxOKsC84khgkgUl69AMsquY3NcZLYeJqN4u52K RfpNrPkZ63044qytH6KigD+5oh1q0sszecjrm0s/8+AS4tJO1SLQFacn5QpkqLAV LbD5H1NddhaVMztRj7XjRiFGqsuEtUzuk36MLDiEtx9rKa8IaskjvPbQSlhymX59 eAUr8IvKRtlyKXRt5MB23j9FW20doKFQLLDhE2YpPg4WwvWN9fG0zVLhpz71asfQ g66kx12sragprY3PW7BXLUW7d86thZsgrM7xynhg -----END CERTIFICATE-----Generated at Wed Jan 21 13:24:28 2026 by rpki-client