This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/3130332e3137342e3137342e302f32332d3233203d3e20313437313031.roa File: 3130332e3137342e3137342e302f32332d3233203d3e20313437313031.roa (raw, json) Hash identifier: BfsAgoNFUiqFAYIJnz9JQe9r0R6DPZvGvCy1pkgPogw= Subject key identifier: 8A:1D:E5:76:04:7D:B8:9D:8B:C1:67:FC:36:C0:5B:07:27:E9:A8:39 Certificate issuer: /CN=7767CF49D7661AFAB45870341D88D2F3D9A86CE4 Certificate serial: 2B93E5E48ACD63883E8043E78198436326A6BB2E Authority key identifier: 77:67:CF:49:D7:66:1A:FA:B4:58:70:34:1D:88:D2:F3:D9:A8:6C:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/3130332e3137342e3137342e302f32332d3233203d3e20313437313031.roa Signing time: Thu 22 Jan 2026 10:00:01 +0000 ROA not before: Thu 22 Jan 2026 09:55:01 +0000 ROA not after: Thu 21 Jan 2027 10:00:01 +0000 asID: 147101 IP address blocks: 103.174.174.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.crl rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Feb 2026 12:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:93:e5:e4:8a:cd:63:88:3e:80:43:e7:81:98:43:63:26:a6:bb:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7767CF49D7661AFAB45870341D88D2F3D9A86CE4 Validity Not Before: Jan 22 09:55:01 2026 GMT Not After : Jan 21 10:00:01 2027 GMT Subject: CN=8A1DE576047DB89D8BC167FC36C05B0727E9A839 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:35:cd:e4:13:37:e9:6e:db:b8:91:a7:7c:6b: 04:10:03:cc:e6:ad:81:d8:68:24:71:79:67:e8:59: 3d:7a:c6:4a:d1:25:da:37:d1:11:eb:74:1b:ce:3f: af:01:fa:27:8d:5f:ff:cf:8e:94:55:66:4b:b0:73: d2:fe:81:ad:87:b4:79:72:c3:09:00:51:2e:8b:05: 40:31:4e:48:7a:47:e7:8d:44:9e:2f:54:dd:03:97: c5:53:7a:e8:93:53:75:d1:eb:cd:8d:14:33:87:64: ee:4c:c7:45:a6:50:be:6b:0e:9c:ca:b7:4e:8f:8d: 8e:ab:b3:90:9d:b9:e7:54:a8:15:67:55:d2:68:c3: cc:98:22:2a:ff:2b:b7:62:d0:98:36:66:f1:a6:3c: bc:c5:08:e6:ee:bd:52:8f:e4:3b:f2:bc:ca:cb:75: 0d:fe:4d:a2:f1:1f:ef:03:73:aa:39:0a:ba:f8:8d: 77:c1:ac:84:83:2a:1b:db:21:67:59:a9:af:3a:f1: 4a:86:c3:f2:f1:16:48:4d:fc:87:7d:f3:e1:92:fa: 72:8d:98:bb:8c:b1:e5:62:9e:94:e9:8d:cc:e7:22: 6b:9c:8e:55:9d:b3:86:55:24:6e:92:7f:af:ba:ee: d1:c2:9e:ad:a2:17:72:c2:a3:57:aa:d0:6e:c1:0b: d9:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:1D:E5:76:04:7D:B8:9D:8B:C1:67:FC:36:C0:5B:07:27:E9:A8:39 X509v3 Authority Key Identifier: keyid:77:67:CF:49:D7:66:1A:FA:B4:58:70:34:1D:88:D2:F3:D9:A8:6C:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/3130332e3137342e3137342e302f32332d3233203d3e20313437313031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.174.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:34:bd:89:ac:55:1c:2c:43:c0:25:a1:f5:d1:cf:14:af:88: a4:0b:50:8a:6f:8f:75:34:70:f6:ae:c8:4d:08:a7:26:c5:d6: 14:46:2e:a2:fd:ce:37:e5:d4:47:37:9e:21:98:64:2c:46:45: 84:ef:50:6f:2b:e6:b5:48:f1:74:c8:9a:d4:06:32:df:dd:a3: 63:27:00:21:0d:db:08:63:a4:3d:c1:84:60:f8:90:50:9b:24: 0d:26:5c:cf:33:95:2a:76:17:a5:ed:ee:59:6e:65:b4:6d:c0: d8:13:16:7e:86:7f:40:26:60:7e:9d:29:73:f7:26:1d:3a:17: ba:1d:77:f4:47:be:1a:b7:17:44:09:f5:49:e9:c0:d6:e3:5a: 27:dc:e9:1d:31:7c:a5:39:c2:8d:ac:69:00:72:0f:6e:4a:98: d6:65:7e:24:cf:8f:9a:e1:7c:9c:24:b2:aa:cb:3c:e4:22:75: 57:9b:34:5e:17:6b:ee:b5:79:69:40:b2:ca:56:eb:d0:a7:9c: 07:ad:7a:fe:3d:17:75:87:e3:17:41:51:aa:0c:9a:fa:eb:cb: ae:37:d0:2b:aa:cf:32:74:92:f4:e5:91:a0:ff:8c:81:40:f5: 5a:6d:86:4a:7e:02:fe:a4:a1:57:80:d0:83:e1:f1:80:38:55: ec:55:12:03 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUK5Pl5IrNY4g+gEPngZhDYyamuy4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzc2N0NGNDlENzY2MUFGQUI0NTg3MDM0MUQ4OEQyRjNE OUE4NkNFNDAeFw0yNjAxMjIwOTU1MDFaFw0yNzAxMjExMDAwMDFaMDMxMTAvBgNV BAMTKDhBMURFNTc2MDQ3REI4OUQ4QkMxNjdGQzM2QzA1QjA3MjdFOUE4MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsNc3kEzfpbtu4kad8awQQA8zm rYHYaCRxeWfoWT16xkrRJdo30RHrdBvOP68B+ieNX//PjpRVZkuwc9L+ga2HtHly wwkAUS6LBUAxTkh6R+eNRJ4vVN0Dl8VTeuiTU3XR682NFDOHZO5Mx0WmUL5rDpzK t06PjY6rs5CduedUqBVnVdJow8yYIir/K7di0Jg2ZvGmPLzFCObuvVKP5DvyvMrL dQ3+TaLxH+8Dc6o5Crr4jXfBrISDKhvbIWdZqa868UqGw/LxFkhN/Id98+GS+nKN mLuMseVinpTpjcznImucjlWds4ZVJG6Sf6+67tHCnq2iF3LCo1eq0G7BC9lJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUih3ldgR9uJ2LwWf8NsBbByfpqDkwHwYDVR0j BBgwFoAUd2fPSddmGvq0WHA0HYjS89mobOQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTcwZDQ0ZS0wZjcwLTQ1YTMtYWYwNC04MWY0MjlkYjNhNWQvMC83NzY3Q0Y0OUQ3 NjYxQUZBQjQ1ODcwMzQxRDg4RDJGM0Q5QTg2Q0U0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzc2N0NGNDlENzY2MUFGQUI0NTg3MDM0MUQ4OEQyRjNEOUE4 NkNFNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhNzBkNDRlLTBmNzAtNDVhMy1h ZjA0LTgxZjQyOWRiM2E1ZC8wLzMxMzAzMzJlMzEzNzM0MmUzMTM3MzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzczMTMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrq4wDQYJ KoZIhvcNAQELBQADggEBACs0vYmsVRwsQ8AlofXRzxSviKQLUIpvj3U0cPauyE0I pybF1hRGLqL9zjfl1Ec3niGYZCxGRYTvUG8r5rVI8XTImtQGMt/do2MnACEN2whj pD3BhGD4kFCbJA0mXM8zlSp2F6Xt7lluZbRtwNgTFn6Gf0AmYH6dKXP3Jh06F7od d/RHvhq3F0QJ9UnpwNbjWifc6R0xfKU5wo2saQByD25KmNZlfiTPj5rhfJwksqrL POQidVebNF4Xa+61eWlAsspW69CnnAetev49F3WH4xdBUaoMmvrry6430CuqzzJ0 kvTlkaD/jIFA9Vpthkp+Av6koVeA0IPh8YA4VexVEgM= -----END CERTIFICATE-----Generated at Mon Feb 2 13:18:17 2026 by rpki-client