This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/6b4c70a1-5036-450b-b936-5084f78f81ef/0/3130332e3137352e3233362e302f32332d3234203d3e20313437313231.roa File: 3130332e3137352e3233362e302f32332d3234203d3e20313437313231.roa (raw, json) Hash identifier: aCDG0lrlh4WtnIcxV8xhMFOvj5nqiDG0NeV95EvZchY= Subject key identifier: 87:3F:32:3D:BA:AF:FF:22:EC:91:5F:D0:F2:61:24:8F:5B:19:7B:ED Certificate issuer: /CN=E9FC7AF3FFBA009863D104EDE1B45DA0592535E6 Certificate serial: 5668B3F054726E7DC8FA0AC27FDED48A4D22700F Authority key identifier: E9:FC:7A:F3:FF:BA:00:98:63:D1:04:ED:E1:B4:5D:A0:59:25:35:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9FC7AF3FFBA009863D104EDE1B45DA0592535E6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6b4c70a1-5036-450b-b936-5084f78f81ef/0/3130332e3137352e3233362e302f32332d3234203d3e20313437313231.roa Signing time: Sat 20 Dec 2025 11:00:01 +0000 ROA not before: Sat 20 Dec 2025 10:55:01 +0000 ROA not after: Sat 19 Dec 2026 11:00:01 +0000 asID: 147121 IP address blocks: 103.175.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6b4c70a1-5036-450b-b936-5084f78f81ef/0/E9FC7AF3FFBA009863D104EDE1B45DA0592535E6.crl rsync://repo-rpki.idnic.net/repo/6b4c70a1-5036-450b-b936-5084f78f81ef/0/E9FC7AF3FFBA009863D104EDE1B45DA0592535E6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9FC7AF3FFBA009863D104EDE1B45DA0592535E6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Feb 2026 21:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:68:b3:f0:54:72:6e:7d:c8:fa:0a:c2:7f:de:d4:8a:4d:22:70:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E9FC7AF3FFBA009863D104EDE1B45DA0592535E6 Validity Not Before: Dec 20 10:55:01 2025 GMT Not After : Dec 19 11:00:01 2026 GMT Subject: CN=873F323DBAAFFF22EC915FD0F261248F5B197BED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b9:b8:20:02:98:f3:9a:ad:76:46:6b:39:d8: 94:f0:50:bc:b3:1e:6d:d5:71:c8:54:c0:e0:43:9e: 46:dc:11:ce:a6:7f:ac:c8:9a:5a:d0:b9:e0:86:a8: 96:48:47:4e:92:e2:40:3a:2a:53:5b:22:af:d0:5a: 80:b4:8c:55:be:57:19:51:30:c2:7c:fd:33:01:c2: 22:8d:ec:3d:94:98:b9:c1:d3:0e:a8:eb:f4:4d:cc: 79:a3:ae:ab:b0:f5:a9:40:c4:44:75:41:9d:c5:c4: f5:d6:04:88:f4:ca:4e:50:15:83:00:08:d9:4e:0e: a7:0a:ef:f1:a4:43:99:69:d4:28:4e:75:1d:2f:df: 3f:83:74:2d:ea:39:90:10:b3:b3:c0:fe:60:cd:28: 67:96:98:6b:3b:c1:92:f6:d0:3f:96:a0:6a:38:7b: ee:23:ed:7a:8e:ff:e3:f5:68:d0:be:96:56:f0:07: 26:6e:79:58:f1:8e:59:6e:20:cb:39:74:d5:8d:b8: 0b:7b:7b:b6:94:63:8e:1a:1e:ac:b4:25:f4:cb:b3: 58:ae:c6:db:08:8e:09:e1:c1:22:96:51:fb:8a:22: 4d:0a:a7:4a:56:19:bb:0b:0b:92:85:00:48:d5:bd: f3:eb:39:66:3f:37:4e:b9:62:9e:88:a3:0a:6d:ca: c3:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:3F:32:3D:BA:AF:FF:22:EC:91:5F:D0:F2:61:24:8F:5B:19:7B:ED X509v3 Authority Key Identifier: keyid:E9:FC:7A:F3:FF:BA:00:98:63:D1:04:ED:E1:B4:5D:A0:59:25:35:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6b4c70a1-5036-450b-b936-5084f78f81ef/0/E9FC7AF3FFBA009863D104EDE1B45DA0592535E6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9FC7AF3FFBA009863D104EDE1B45DA0592535E6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6b4c70a1-5036-450b-b936-5084f78f81ef/0/3130332e3137352e3233362e302f32332d3234203d3e20313437313231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.236.0/23 Signature Algorithm: sha256WithRSAEncryption 52:6e:11:9e:cf:7c:f4:cd:72:94:cf:3c:38:64:57:c3:89:90: a4:07:16:7e:8c:ab:25:ce:5c:f1:05:46:05:ef:bd:d8:25:68: b7:cc:40:c4:5b:af:1b:37:23:91:88:77:5f:f0:eb:60:bb:eb: cd:17:dd:84:9b:da:ac:30:e5:b8:16:d8:b5:05:03:05:f6:a9: ac:69:9f:bf:12:58:56:71:7e:10:d3:d4:8f:4c:fa:2a:dc:71: a0:c1:98:0b:79:e5:62:ba:30:6b:cb:60:a6:4f:8b:6a:cb:9e: de:1b:21:cf:34:77:39:1f:53:2b:08:6b:3f:a7:43:76:93:09: 88:1d:f3:9b:2e:6a:33:58:d5:40:04:2f:e1:6a:5a:29:5e:cf: 91:2c:44:40:05:e4:87:7b:14:75:1c:2e:d2:7b:e0:5f:0a:ee: e8:6a:cc:3f:ed:b9:9a:cf:33:fe:a9:fb:71:f5:73:21:aa:ae: bd:3b:0f:3e:3b:4e:bf:a6:3e:01:c1:6c:93:14:f4:ad:51:bf: b5:76:e7:42:27:54:7c:3b:63:7b:37:65:85:3d:da:2f:b6:02: 50:c5:2c:87:a9:a8:3a:50:fd:12:9e:18:79:f8:0e:09:0c:01: f2:a8:7f:4e:fa:b1:e7:43:2f:22:38:43:35:45:19:d5:33:bc: c7:d8:04:73 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVmiz8FRybn3I+grCf97Uik0icA8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTlGQzdBRjNGRkJBMDA5ODYzRDEwNEVERTFCNDVEQTA1 OTI1MzVFNjAeFw0yNTEyMjAxMDU1MDFaFw0yNjEyMTkxMTAwMDFaMDMxMTAvBgNV BAMTKDg3M0YzMjNEQkFBRkZGMjJFQzkxNUZEMEYyNjEyNDhGNUIxOTdCRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdubggApjzmq12Rms52JTwULyz Hm3VcchUwOBDnkbcEc6mf6zImlrQueCGqJZIR06S4kA6KlNbIq/QWoC0jFW+VxlR MMJ8/TMBwiKN7D2UmLnB0w6o6/RNzHmjrquw9alAxER1QZ3FxPXWBIj0yk5QFYMA CNlODqcK7/GkQ5lp1ChOdR0v3z+DdC3qOZAQs7PA/mDNKGeWmGs7wZL20D+WoGo4 e+4j7XqO/+P1aNC+llbwByZueVjxjlluIMs5dNWNuAt7e7aUY44aHqy0JfTLs1iu xtsIjgnhwSKWUfuKIk0Kp0pWGbsLC5KFAEjVvfPrOWY/N065Yp6IowptysMXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhz8yPbqv/yLskV/Q8mEkj1sZe+0wHwYDVR0j BBgwFoAU6fx68/+6AJhj0QTt4bRdoFklNeYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YjRjNzBhMS01MDM2LTQ1MGItYjkzNi01MDg0Zjc4ZjgxZWYvMC9FOUZDN0FGM0ZG QkEwMDk4NjNEMTA0RURFMUI0NURBMDU5MjUzNUU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTlGQzdBRjNGRkJBMDA5ODYzRDEwNEVERTFCNDVEQTA1OTI1 MzVFNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZiNGM3MGExLTUwMzYtNDUwYi1i OTM2LTUwODRmNzhmODFlZi8wLzMxMzAzMzJlMzEzNzM1MmUzMjMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzczMTMyMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnr+wwDQYJ KoZIhvcNAQELBQADggEBAFJuEZ7PfPTNcpTPPDhkV8OJkKQHFn6MqyXOXPEFRgXv vdglaLfMQMRbrxs3I5GId1/w62C7680X3YSb2qww5bgW2LUFAwX2qaxpn78SWFZx fhDT1I9M+irccaDBmAt55WK6MGvLYKZPi2rLnt4bIc80dzkfUysIaz+nQ3aTCYgd 85suajNY1UAEL+FqWilez5EsREAF5Id7FHUcLtJ74F8K7uhqzD/tuZrPM/6p+3H1 cyGqrr07Dz47Tr+mPgHBbJMU9K1Rv7V250InVHw7Y3s3ZYU92i+2AlDFLIepqDpQ /RKeGHn4DgkMAfKof076sedDLyI4QzVFGdUzvMfYBHM= -----END CERTIFICATE-----Generated at Mon Feb 2 12:56:41 2026 by rpki-client