This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/9fde1f0e-231f-44ce-90c3-32acdf9d26c0/0/3130332e3137342e31332e302f32342d3234203d3e20313437313730.roa File: 3130332e3137342e31332e302f32342d3234203d3e20313437313730.roa (raw, json) Hash identifier: EANS/BbBSV3D2lqyFzIlb0gYJ6M3G6ZH8tGtZE5xhF4= Subject key identifier: 64:18:9D:7A:D4:F9:3D:9E:73:A8:08:30:C7:A2:4B:F6:91:9B:D1:3F Certificate issuer: /CN=C784C8EE6F7CE3C847FCBD1CCDF2327200EF5C70 Certificate serial: 479F606247B85D5265FCE34BA1E832CCB8781008 Authority key identifier: C7:84:C8:EE:6F:7C:E3:C8:47:FC:BD:1C:CD:F2:32:72:00:EF:5C:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C784C8EE6F7CE3C847FCBD1CCDF2327200EF5C70.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9fde1f0e-231f-44ce-90c3-32acdf9d26c0/0/3130332e3137342e31332e302f32342d3234203d3e20313437313730.roa Signing time: Mon 17 Nov 2025 22:00:01 +0000 ROA not before: Mon 17 Nov 2025 21:55:01 +0000 ROA not after: Mon 16 Nov 2026 22:00:01 +0000 asID: 147170 IP address blocks: 103.174.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9fde1f0e-231f-44ce-90c3-32acdf9d26c0/0/C784C8EE6F7CE3C847FCBD1CCDF2327200EF5C70.crl rsync://repo-rpki.idnic.net/repo/9fde1f0e-231f-44ce-90c3-32acdf9d26c0/0/C784C8EE6F7CE3C847FCBD1CCDF2327200EF5C70.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C784C8EE6F7CE3C847FCBD1CCDF2327200EF5C70.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 19:35:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:9f:60:62:47:b8:5d:52:65:fc:e3:4b:a1:e8:32:cc:b8:78:10:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C784C8EE6F7CE3C847FCBD1CCDF2327200EF5C70 Validity Not Before: Nov 17 21:55:01 2025 GMT Not After : Nov 16 22:00:01 2026 GMT Subject: CN=64189D7AD4F93D9E73A80830C7A24BF6919BD13F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:a3:3c:dd:fb:3a:a4:b3:3a:a4:3d:e0:40:fb: b7:c7:d0:14:a7:49:33:7e:c7:4e:35:0f:71:40:f9: b3:3f:f9:f9:9b:6e:ec:36:91:bf:e0:78:9e:f3:47: fb:33:f7:2e:59:20:f0:14:16:78:b1:08:9b:1d:f2: a1:a3:d8:f8:31:db:86:a5:e6:a5:fd:9b:f7:39:ef: 8c:f7:f5:c1:54:c9:91:37:7e:18:95:61:b1:1a:53: b9:bc:94:db:42:95:68:d3:7b:01:cf:fa:a3:d9:4e: 25:7f:eb:88:e3:c1:64:2d:89:3a:57:c0:f6:f0:3e: cc:ca:3e:f8:4d:24:c0:4c:4e:c8:19:02:2b:bf:db: d2:20:df:96:52:f3:ca:5a:57:4e:63:39:6f:b2:72: 31:be:41:a4:23:f6:fb:39:9b:47:9f:e3:7f:4f:a9: fa:55:e4:cc:12:d0:5a:21:1a:c9:e8:6b:35:0d:82: 80:01:9e:f8:83:b7:32:44:33:54:f5:49:3a:35:d9: 0c:66:2f:3b:3f:c1:a9:18:20:6b:c1:62:d0:85:1b: 42:85:eb:5c:ac:1c:bd:7b:73:e4:b8:5d:e6:b7:85: 26:42:26:98:11:80:71:c0:01:9e:81:92:97:16:e8: 16:b2:a6:0e:1a:73:e3:19:b7:c6:95:5f:04:39:22: f9:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:18:9D:7A:D4:F9:3D:9E:73:A8:08:30:C7:A2:4B:F6:91:9B:D1:3F X509v3 Authority Key Identifier: keyid:C7:84:C8:EE:6F:7C:E3:C8:47:FC:BD:1C:CD:F2:32:72:00:EF:5C:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9fde1f0e-231f-44ce-90c3-32acdf9d26c0/0/C784C8EE6F7CE3C847FCBD1CCDF2327200EF5C70.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C784C8EE6F7CE3C847FCBD1CCDF2327200EF5C70.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9fde1f0e-231f-44ce-90c3-32acdf9d26c0/0/3130332e3137342e31332e302f32342d3234203d3e20313437313730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.13.0/24 Signature Algorithm: sha256WithRSAEncryption 03:b6:6b:80:d8:9e:56:35:75:a0:05:05:d9:4f:71:52:d0:dc: b9:71:1d:08:8d:58:85:3c:63:42:c4:ba:46:09:5d:60:33:d2: 67:5c:d0:db:8e:71:f9:dd:07:2c:33:96:7b:73:7a:c3:90:86: 90:73:83:29:ae:fa:f5:7c:69:6d:d4:be:a4:39:0d:7d:40:46: ad:1d:b6:f8:a1:03:40:83:95:02:db:44:c8:8f:1e:3f:c9:de: 75:87:fa:fb:17:1b:0f:f7:38:07:65:ac:d3:cf:f8:83:25:7a: 0e:28:4c:e4:22:c2:99:e9:61:a4:e6:da:09:85:3e:a1:c4:41: ac:a9:c9:15:fe:9b:d8:c5:b8:0a:90:ba:5f:e2:9e:dc:df:1e: ad:61:61:f7:f8:aa:3c:19:0c:f5:e2:00:17:3b:66:37:6b:94: de:06:89:7d:00:90:31:e6:d1:23:ce:9e:8b:30:f2:e2:2d:e9: cb:91:f3:57:58:13:03:46:37:52:79:d7:4d:a2:f4:1e:61:68: 74:88:14:0e:74:ac:3b:d3:f3:c1:34:c5:99:8b:14:30:b7:7b: 9b:60:44:3d:82:e6:b1:9f:f0:6a:fb:6b:ff:ae:2a:40:a7:07: 7b:22:de:fd:4b:91:70:2c:cd:10:c6:10:e9:5f:69:76:8e:ca: ab:4b:3a:b3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUR59gYke4XVJl/ONLoegyzLh4EAgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzc4NEM4RUU2RjdDRTNDODQ3RkNCRDFDQ0RGMjMyNzIw MEVGNUM3MDAeFw0yNTExMTcyMTU1MDFaFw0yNjExMTYyMjAwMDFaMDMxMTAvBgNV BAMTKDY0MTg5RDdBRDRGOTNEOUU3M0E4MDgzMEM3QTI0QkY2OTE5QkQxM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnozzd+zqkszqkPeBA+7fH0BSn STN+x041D3FA+bM/+fmbbuw2kb/geJ7zR/sz9y5ZIPAUFnixCJsd8qGj2Pgx24al 5qX9m/c574z39cFUyZE3fhiVYbEaU7m8lNtClWjTewHP+qPZTiV/64jjwWQtiTpX wPbwPszKPvhNJMBMTsgZAiu/29Ig35ZS88paV05jOW+ycjG+QaQj9vs5m0ef439P qfpV5MwS0FohGsnoazUNgoABnviDtzJEM1T1STo12QxmLzs/wakYIGvBYtCFG0KF 61ysHL17c+S4Xea3hSZCJpgRgHHAAZ6BkpcW6Baypg4ac+MZt8aVXwQ5IvljAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZBidetT5PZ5zqAgwx6JL9pGb0T8wHwYDVR0j BBgwFoAUx4TI7m9848hH/L0czfIycgDvXHAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZmRlMWYwZS0yMzFmLTQ0Y2UtOTBjMy0zMmFjZGY5ZDI2YzAvMC9DNzg0QzhFRTZG N0NFM0M4NDdGQ0JEMUNDREYyMzI3MjAwRUY1QzcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzc4NEM4RUU2RjdDRTNDODQ3RkNCRDFDQ0RGMjMyNzIwMEVG NUM3MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlmZGUxZjBlLTIzMWYtNDRjZS05 MGMzLTMyYWNkZjlkMjZjMC8wLzMxMzAzMzJlMzEzNzM0MmUzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzEzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ64NMA0GCSqG SIb3DQEBCwUAA4IBAQADtmuA2J5WNXWgBQXZT3FS0Ny5cR0IjViFPGNCxLpGCV1g M9JnXNDbjnH53QcsM5Z7c3rDkIaQc4Mprvr1fGlt1L6kOQ19QEatHbb4oQNAg5UC 20TIjx4/yd51h/r7FxsP9zgHZazTz/iDJXoOKEzkIsKZ6WGk5toJhT6hxEGsqckV /pvYxbgKkLpf4p7c3x6tYWH3+Ko8GQz14gAXO2Y3a5TeBol9AJAx5tEjzp6LMPLi LenLkfNXWBMDRjdSeddNovQeYWh0iBQOdKw70/PBNMWZixQwt3ubYEQ9guaxn/Bq +2v/ripApwd7It79S5FwLM0QxhDpX2l2jsqrSzqz -----END CERTIFICATE-----Generated at Wed Dec 3 15:28:47 2025 by rpki-client