This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e392e302f32342d3234203d3e20313335343838.roa File: 3130332e39352e392e302f32342d3234203d3e20313335343838.roa (raw, json) Hash identifier: qH4fRHR0W4MFKh1E1105QryHXU3lSEp8fpTQZ+gmPmA= Subject key identifier: D2:FD:3F:BF:A9:79:86:67:06:39:36:DE:D8:86:4E:B6:53:45:67:12 Certificate issuer: /CN=415543D423E0BD035D612DEA9BF060290E5552D2 Certificate serial: 12BC70EC61C3FF4D56EF46A095119EC95FF79977 Authority key identifier: 41:55:43:D4:23:E0:BD:03:5D:61:2D:EA:9B:F0:60:29:0E:55:52:D2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e392e302f32342d3234203d3e20313335343838.roa Signing time: Mon 26 Jan 2026 04:03:08 +0000 ROA not before: Mon 26 Jan 2026 03:58:08 +0000 ROA not after: Mon 25 Jan 2027 04:03:08 +0000 asID: 135488 IP address blocks: 103.95.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/415543D423E0BD035D612DEA9BF060290E5552D2.crl rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/415543D423E0BD035D612DEA9BF060290E5552D2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Feb 2026 23:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:bc:70:ec:61:c3:ff:4d:56:ef:46:a0:95:11:9e:c9:5f:f7:99:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=415543D423E0BD035D612DEA9BF060290E5552D2 Validity Not Before: Jan 26 03:58:08 2026 GMT Not After : Jan 25 04:03:08 2027 GMT Subject: CN=D2FD3FBFA9798667063936DED8864EB653456712 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:8e:09:00:f8:a9:94:b7:d3:f0:48:1c:0b:f5: 2e:be:66:c9:72:a6:dc:81:59:9f:a2:d5:13:0f:29: 2d:ed:b7:8c:74:8d:7b:b4:58:ed:8e:5a:f7:e3:c7: 1f:89:5c:de:f3:7a:4e:a8:d8:fe:7e:fb:a8:be:db: 10:a1:b0:d5:4b:af:29:9b:3e:e8:b3:17:01:9b:dc: db:9c:6d:12:24:81:de:b5:5b:c4:d2:c4:19:f9:37: 25:2c:ed:bc:6b:86:e6:db:93:e6:b7:c6:54:e9:ca: fe:76:ff:34:7a:4b:a1:f8:03:eb:ad:42:85:af:25: 84:b5:4a:71:df:19:7d:a1:6e:92:44:5f:13:ff:aa: 20:52:cc:92:86:f2:34:47:41:03:6e:e0:40:29:d9: 86:7d:d1:e3:6f:1d:d4:b7:a6:c5:1b:22:8a:bf:c8: 0f:e6:11:8f:77:a9:e1:ec:f4:e1:0e:9e:64:fd:f2: 28:fd:82:9f:87:16:74:98:ae:da:37:7f:0c:31:26: 6f:3e:70:5b:30:a2:e1:b9:27:19:d1:ef:0b:1e:50: 4c:ad:43:76:83:e7:df:41:4e:2d:c4:43:c4:c2:10: 17:c1:9b:1e:45:3c:5d:11:29:44:c4:0e:f2:e1:5c: 4d:3f:9d:e7:8d:f2:fc:b7:b8:74:e6:aa:98:d2:ce: 30:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:FD:3F:BF:A9:79:86:67:06:39:36:DE:D8:86:4E:B6:53:45:67:12 X509v3 Authority Key Identifier: keyid:41:55:43:D4:23:E0:BD:03:5D:61:2D:EA:9B:F0:60:29:0E:55:52:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/415543D423E0BD035D612DEA9BF060290E5552D2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e392e302f32342d3234203d3e20313335343838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.95.9.0/24 Signature Algorithm: sha256WithRSAEncryption 45:03:24:4b:f2:8a:35:42:9d:3a:d4:9c:3e:d5:5f:97:fe:1d: 5a:6f:5f:12:55:38:53:79:d8:63:83:83:d5:d7:2a:f9:46:a7: d2:24:35:fc:19:13:50:9b:af:ed:04:23:98:32:5c:ab:96:19: 61:84:c9:af:b3:ef:b5:c1:ba:71:eb:f5:ec:d1:3d:06:ae:f1: 55:f9:dd:a8:42:63:84:c0:0c:4b:66:25:b5:43:67:99:55:cb: de:72:04:2f:fa:7a:2c:8e:48:72:3a:9a:64:29:87:ef:29:aa: 59:26:3a:c6:01:0c:0a:25:1e:85:4f:56:5b:d6:bb:f3:03:50: c9:7b:30:9f:72:42:82:ce:0c:11:a6:f7:d0:c5:16:0c:ed:f9: 5d:24:98:0c:98:b7:db:57:f5:e8:45:10:6d:ec:6d:62:2a:b4: b7:f4:2f:59:13:b1:6d:e3:eb:5d:ca:f0:94:c5:91:bc:70:4c: be:f2:62:51:b3:10:4c:b5:6c:4e:52:67:9f:ff:af:15:39:6d: 61:a1:ea:b1:68:1d:f3:df:0b:a3:f2:4b:64:a6:5c:89:0b:8d: 08:6a:5b:76:b3:43:0c:e8:05:ef:9d:47:ad:2d:63:a8:c1:58: 0c:df:f3:ca:4a:41:58:50:27:74:95:da:87:fc:8b:95:be:57: f4:f3:98:f8 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUErxw7GHD/01W70aglRGeyV/3mXcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDE1NTQzRDQyM0UwQkQwMzVENjEyREVBOUJGMDYwMjkw RTU1NTJEMjAeFw0yNjAxMjYwMzU4MDhaFw0yNzAxMjUwNDAzMDhaMDMxMTAvBgNV BAMTKEQyRkQzRkJGQTk3OTg2NjcwNjM5MzZERUQ4ODY0RUI2NTM0NTY3MTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLjgkA+KmUt9PwSBwL9S6+Zsly ptyBWZ+i1RMPKS3tt4x0jXu0WO2OWvfjxx+JXN7zek6o2P5++6i+2xChsNVLrymb PuizFwGb3NucbRIkgd61W8TSxBn5NyUs7bxrhubbk+a3xlTpyv52/zR6S6H4A+ut QoWvJYS1SnHfGX2hbpJEXxP/qiBSzJKG8jRHQQNu4EAp2YZ90eNvHdS3psUbIoq/ yA/mEY93qeHs9OEOnmT98ij9gp+HFnSYrto3fwwxJm8+cFswouG5JxnR7wseUEyt Q3aD599BTi3EQ8TCEBfBmx5FPF0RKUTEDvLhXE0/neeN8vy3uHTmqpjSzjDtAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU0v0/v6l5hmcGOTbe2IZOtlNFZxIwHwYDVR0j BBgwFoAUQVVD1CPgvQNdYS3qm/BgKQ5VUtIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MzY0NjVlYy05MTYwLTQ1OWItOGQxMS05NDhmYzI2ZGExYzAvMC80MTU1NDNENDIz RTBCRDAzNUQ2MTJERUE5QkYwNjAyOTBFNTU1MkQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDE1NTQzRDQyM0UwQkQwMzVENjEyREVBOUJGMDYwMjkwRTU1 NTJEMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNjQ2NWVjLTkxNjAtNDU5Yi04 ZDExLTk0OGZjMjZkYTFjMC8wLzMxMzAzMzJlMzkzNTJlMzkyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTMzMzUzNDM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnXwkwDQYJKoZIhvcN AQELBQADggEBAEUDJEvyijVCnTrUnD7VX5f+HVpvXxJVOFN52GODg9XXKvlGp9Ik NfwZE1Cbr+0EI5gyXKuWGWGEya+z77XBunHr9ezRPQau8VX53ahCY4TADEtmJbVD Z5lVy95yBC/6eiyOSHI6mmQph+8pqlkmOsYBDAolHoVPVlvWu/MDUMl7MJ9yQoLO DBGm99DFFgzt+V0kmAyYt9tX9ehFEG3sbWIqtLf0L1kTsW3j613K8JTFkbxwTL7y YlGzEEy1bE5SZ5//rxU5bWGh6rFoHfPfC6PyS2SmXIkLjQhqW3azQwzoBe+dR60t Y6jBWAzf88pKQVhQJ3SV2of8i5W+V/TzmPg= -----END CERTIFICATE-----Generated at Mon Feb 2 13:02:22 2026 by rpki-client