This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/3130332e3137342e3137352e302f32342d3234203d3e20313437313031.roa File: 3130332e3137342e3137352e302f32342d3234203d3e20313437313031.roa (raw, json) Hash identifier: +ON5LEiY5jvswqQrAcEU3n/WXVvA1dtTTrBEQRpJyGk= Subject key identifier: 06:48:65:CC:AD:6C:92:B0:35:25:53:4F:E1:9F:48:B0:8F:C3:A2:B0 Certificate issuer: /CN=7767CF49D7661AFAB45870341D88D2F3D9A86CE4 Certificate serial: 355A793353FAE1F0816B972EBC11E71002559C71 Authority key identifier: 77:67:CF:49:D7:66:1A:FA:B4:58:70:34:1D:88:D2:F3:D9:A8:6C:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/3130332e3137342e3137352e302f32342d3234203d3e20313437313031.roa Signing time: Thu 22 Jan 2026 11:00:01 +0000 ROA not before: Thu 22 Jan 2026 10:55:01 +0000 ROA not after: Thu 21 Jan 2027 11:00:01 +0000 asID: 147101 IP address blocks: 103.174.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.crl rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Feb 2026 12:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:5a:79:33:53:fa:e1:f0:81:6b:97:2e:bc:11:e7:10:02:55:9c:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7767CF49D7661AFAB45870341D88D2F3D9A86CE4 Validity Not Before: Jan 22 10:55:01 2026 GMT Not After : Jan 21 11:00:01 2027 GMT Subject: CN=064865CCAD6C92B03525534FE19F48B08FC3A2B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f9:a6:b6:20:b9:2d:4b:a4:ff:41:c9:0a:dc: 8c:5e:f7:af:da:a2:2c:9c:ac:8b:4a:3c:4a:b1:b3: e8:89:11:83:fe:a1:c9:c3:31:a8:ef:23:b1:d2:02: 60:b5:75:d7:aa:c4:9c:3c:d7:13:63:ca:a3:8a:c2: 45:f5:9b:36:1e:ca:43:b1:d4:fe:71:15:ae:4a:ae: 94:31:d6:4d:66:4a:83:b5:ed:39:0e:00:dc:21:2f: 8b:6c:a7:68:24:35:42:58:ea:75:ee:1c:0a:78:04: d5:b5:04:e3:d2:28:49:87:17:18:2f:33:36:b1:ba: 37:57:5c:b9:f6:1e:98:89:d5:e3:5c:0c:41:01:3c: 08:c3:aa:04:e4:e4:c0:97:68:1c:60:bc:59:a2:59: 20:df:35:3d:7f:f5:90:f6:89:5e:15:28:8a:d6:d3: ab:37:11:67:a9:19:62:5c:72:96:ab:ed:40:18:3f: e3:2f:d3:43:54:7e:e8:cf:bd:3f:7c:be:27:66:56: d7:e7:38:c0:2e:11:05:2e:6c:59:55:b1:7e:7e:5c: 9f:c0:9d:3b:c4:06:15:45:5c:b5:ef:7e:c9:35:de: 16:b3:0c:e7:3b:62:3c:25:f8:38:48:e1:ff:eb:fd: 9a:6c:3a:37:b9:6d:5d:52:e0:79:9e:a7:66:7d:55: 9a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:48:65:CC:AD:6C:92:B0:35:25:53:4F:E1:9F:48:B0:8F:C3:A2:B0 X509v3 Authority Key Identifier: keyid:77:67:CF:49:D7:66:1A:FA:B4:58:70:34:1D:88:D2:F3:D9:A8:6C:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7767CF49D7661AFAB45870341D88D2F3D9A86CE4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a70d44e-0f70-45a3-af04-81f429db3a5d/0/3130332e3137342e3137352e302f32342d3234203d3e20313437313031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.175.0/24 Signature Algorithm: sha256WithRSAEncryption 62:06:8c:19:0f:7c:2b:90:f9:20:4d:41:0a:2d:42:05:56:c9: f1:2e:5d:48:7b:86:cd:b9:7e:cc:9a:f0:43:07:a1:ac:38:04: 84:73:45:38:2b:39:d8:74:b5:cc:6a:aa:5c:a3:1b:f3:cf:52: 73:cb:f2:e5:df:91:7b:15:e3:9a:8c:2b:c1:11:b5:6f:b9:6f: 1d:21:68:79:7e:ef:d4:74:69:ea:be:78:d8:95:d5:bb:c0:b5: 6e:ae:10:36:48:85:4e:83:51:8c:4f:d0:d7:a8:8f:ae:9b:d2: c9:fb:b8:71:9f:e7:ff:80:ea:f4:88:67:21:3a:61:0e:36:f3: 66:9e:89:a3:78:08:8e:52:76:f7:7a:1b:85:f6:a7:2f:96:e8: 7c:36:45:b6:1b:77:ca:a4:58:d7:56:32:08:14:15:9f:f9:29: eb:5a:fa:ef:19:e9:41:6e:4f:24:7f:8a:36:7a:f4:01:03:4c: c3:0b:20:c9:fa:55:af:2a:8e:0b:c4:e7:c0:96:da:38:b7:0c: fe:e5:e5:09:da:04:cd:63:a4:b5:02:9d:56:28:13:7c:7c:a4: b5:88:aa:40:8f:d4:ec:55:8e:a6:e2:26:3c:49:52:16:9a:1b: 2a:5a:30:56:b9:55:16:9c:21:ca:0b:e9:18:eb:c1:d4:ed:99: 7c:60:20:1d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNVp5M1P64fCBa5cuvBHnEAJVnHEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzc2N0NGNDlENzY2MUFGQUI0NTg3MDM0MUQ4OEQyRjNE OUE4NkNFNDAeFw0yNjAxMjIxMDU1MDFaFw0yNzAxMjExMTAwMDFaMDMxMTAvBgNV BAMTKDA2NDg2NUNDQUQ2QzkyQjAzNTI1NTM0RkUxOUY0OEIwOEZDM0EyQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4+aa2ILktS6T/QckK3Ixe96/a oiycrItKPEqxs+iJEYP+ocnDMajvI7HSAmC1ddeqxJw81xNjyqOKwkX1mzYeykOx 1P5xFa5KrpQx1k1mSoO17TkOANwhL4tsp2gkNUJY6nXuHAp4BNW1BOPSKEmHFxgv MzaxujdXXLn2HpiJ1eNcDEEBPAjDqgTk5MCXaBxgvFmiWSDfNT1/9ZD2iV4VKIrW 06s3EWepGWJccpar7UAYP+Mv00NUfujPvT98vidmVtfnOMAuEQUubFlVsX5+XJ/A nTvEBhVFXLXvfsk13hazDOc7Yjwl+DhI4f/r/ZpsOje5bV1S4Hmep2Z9VZpxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBkhlzK1skrA1JVNP4Z9IsI/DorAwHwYDVR0j BBgwFoAUd2fPSddmGvq0WHA0HYjS89mobOQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTcwZDQ0ZS0wZjcwLTQ1YTMtYWYwNC04MWY0MjlkYjNhNWQvMC83NzY3Q0Y0OUQ3 NjYxQUZBQjQ1ODcwMzQxRDg4RDJGM0Q5QTg2Q0U0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzc2N0NGNDlENzY2MUFGQUI0NTg3MDM0MUQ4OEQyRjNEOUE4 NkNFNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhNzBkNDRlLTBmNzAtNDVhMy1h ZjA0LTgxZjQyOWRiM2E1ZC8wLzMxMzAzMzJlMzEzNzM0MmUzMTM3MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMTMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrq8wDQYJ KoZIhvcNAQELBQADggEBAGIGjBkPfCuQ+SBNQQotQgVWyfEuXUh7hs25fsya8EMH oaw4BIRzRTgrOdh0tcxqqlyjG/PPUnPL8uXfkXsV45qMK8ERtW+5bx0haHl+79R0 aeq+eNiV1bvAtW6uEDZIhU6DUYxP0Neoj66b0sn7uHGf5/+A6vSIZyE6YQ4282ae iaN4CI5Sdvd6G4X2py+W6Hw2RbYbd8qkWNdWMggUFZ/5Keta+u8Z6UFuTyR/ijZ6 9AEDTMMLIMn6Va8qjgvE58CW2ji3DP7l5QnaBM1jpLUCnVYoE3x8pLWIqkCP1OxV jqbiJjxJUhaaGypaMFa5VRacIcoL6RjrwdTtmXxgIB0= -----END CERTIFICATE-----Generated at Mon Feb 2 13:19:26 2026 by rpki-client