This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/3130332e3137392e3234392e302f32342d3234203d3e2039333431.roa File: 3130332e3137392e3234392e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: +ZStO4qmRvdLYRUifxrnZ6iCCxDWhq1QC8uZT5sFhJk= Subject key identifier: BE:8B:7A:02:AA:4A:80:B5:FB:69:D7:6D:27:AD:99:50:12:86:30:38 Certificate issuer: /CN=70FE5658A7C2993DC505F75545A128384472227E Certificate serial: 1C9A4948D2BB9229BE02C38DBFB7BE7E42FDAA7A Authority key identifier: 70:FE:56:58:A7:C2:99:3D:C5:05:F7:55:45:A1:28:38:44:72:22:7E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/3130332e3137392e3234392e302f32342d3234203d3e2039333431.roa Signing time: Sun 14 Dec 2025 09:00:02 +0000 ROA not before: Sun 14 Dec 2025 08:55:02 +0000 ROA not after: Sun 13 Dec 2026 09:00:02 +0000 asID: 9341 IP address blocks: 103.179.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.crl rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 08:45:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:9a:49:48:d2:bb:92:29:be:02:c3:8d:bf:b7:be:7e:42:fd:aa:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70FE5658A7C2993DC505F75545A128384472227E Validity Not Before: Dec 14 08:55:02 2025 GMT Not After : Dec 13 09:00:02 2026 GMT Subject: CN=BE8B7A02AA4A80B5FB69D76D27AD995012863038 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:53:7a:10:7b:7e:38:5b:cc:88:1a:ad:76:5e: 22:23:ea:1e:d4:62:b3:98:ff:27:bc:8e:c5:7d:8e: c3:63:39:f5:64:0e:ea:2c:52:c4:af:3b:0d:ec:e7: 72:87:23:93:eb:0e:ae:34:b9:33:07:7a:07:41:e4: fc:06:79:15:40:85:07:ea:5c:83:ba:2b:ff:5c:cf: cb:3b:96:65:a2:a8:16:e6:eb:a9:7c:d6:f7:2c:17: f6:ff:c0:9f:45:76:7b:2d:9e:c3:7b:6f:4b:cb:db: ba:65:a9:d2:94:50:6f:46:a2:56:41:ac:2c:1c:17: be:fa:18:24:b5:a9:73:0c:19:34:9b:70:f1:51:c1: 7d:9a:9d:78:97:2f:a6:bc:2f:e6:7c:e4:6d:53:3b: c0:89:73:e3:e6:79:d0:dd:49:49:3a:d9:87:8f:4c: a9:64:a8:cc:25:35:30:fc:10:df:74:ca:f2:99:35: 7f:2a:16:13:15:6c:84:8d:b0:97:61:9f:2f:a1:ff: 20:d4:8b:5e:3c:28:d5:18:c7:6d:48:c8:db:12:61: f4:63:9f:6d:33:dc:69:48:d9:15:b5:d7:04:91:dd: fd:ef:03:62:15:27:87:7d:48:d0:3a:a6:90:7f:c2: c6:a1:a8:47:5c:df:13:82:88:b4:8f:80:7b:52:e4: 4a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:8B:7A:02:AA:4A:80:B5:FB:69:D7:6D:27:AD:99:50:12:86:30:38 X509v3 Authority Key Identifier: keyid:70:FE:56:58:A7:C2:99:3D:C5:05:F7:55:45:A1:28:38:44:72:22:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/3130332e3137392e3234392e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.249.0/24 Signature Algorithm: sha256WithRSAEncryption 92:55:89:f5:da:13:45:be:a4:a0:49:02:1e:13:c7:91:b1:f5: fa:59:3c:eb:65:a7:36:d2:4f:d6:69:0c:47:a0:a0:e5:84:c4: 1b:06:85:63:18:0d:fd:f1:86:51:13:f5:4c:52:ed:cd:dc:5e: f9:a1:ba:bc:fa:21:62:8f:a2:0b:20:9f:97:b5:79:d6:a7:a2: 44:c9:dc:46:dd:13:8a:32:d6:a6:42:e7:6e:20:2d:29:64:4b: 0a:3e:a8:80:7e:0a:1b:bb:74:46:f6:bc:04:7d:8d:ce:e6:f4: d3:06:4e:bb:c4:32:2f:5d:68:2d:a0:bd:2f:b9:8a:56:b0:78: a9:db:7a:5c:e1:da:17:3a:ba:6f:58:21:62:fa:8f:7c:d3:cf: ce:e9:44:1b:8f:2f:fe:aa:eb:bc:17:d5:99:73:51:b0:06:58: fa:65:b5:25:71:40:e1:92:76:29:8d:08:51:5a:7a:d3:59:5e: fa:da:c5:dc:12:13:77:28:60:1b:fb:ae:bf:5e:02:7f:c1:cc: 25:9a:0f:63:dd:15:d4:9a:cc:eb:36:b2:81:a8:14:df:6d:1c: 61:ae:0d:b6:a2:87:70:65:3f:57:9e:6d:ca:9a:7a:c2:80:8c: 51:c8:fa:c9:a0:2d:44:a2:99:7d:ee:1a:9b:f8:45:20:16:11: e0:88:55:1e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHJpJSNK7kim+AsONv7e+fkL9qnowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4Mzg0 NDcyMjI3RTAeFw0yNTEyMTQwODU1MDJaFw0yNjEyMTMwOTAwMDJaMDMxMTAvBgNV BAMTKEJFOEI3QTAyQUE0QTgwQjVGQjY5RDc2RDI3QUQ5OTUwMTI4NjMwMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6U3oQe344W8yIGq12XiIj6h7U YrOY/ye8jsV9jsNjOfVkDuosUsSvOw3s53KHI5PrDq40uTMHegdB5PwGeRVAhQfq XIO6K/9cz8s7lmWiqBbm66l81vcsF/b/wJ9FdnstnsN7b0vL27plqdKUUG9GolZB rCwcF776GCS1qXMMGTSbcPFRwX2anXiXL6a8L+Z85G1TO8CJc+PmedDdSUk62YeP TKlkqMwlNTD8EN90yvKZNX8qFhMVbISNsJdhny+h/yDUi148KNUYx21IyNsSYfRj n20z3GlI2RW11wSR3f3vA2IVJ4d9SNA6ppB/wsahqEdc3xOCiLSPgHtS5ErpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvot6AqpKgLX7addtJ62ZUBKGMDgwHwYDVR0j BBgwFoAUcP5WWKfCmT3FBfdVRaEoOERyIn4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTU5MDFjYy0xYjhlLTRmM2YtYTNkMC0zMjY5ZjBlMTZjNDEvMC83MEZFNTY1OEE3 QzI5OTNEQzUwNUY3NTU0NUExMjgzODQ0NzIyMjdFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4Mzg0NDcy MjI3RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E5NTkwMWNjLTFiOGUtNGYzZi1h M2QwLTMyNjlmMGUxNmM0MS8wLzMxMzAzMzJlMzEzNzM5MmUzMjM0MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGez+TANBgkqhkiG 9w0BAQsFAAOCAQEAklWJ9doTRb6koEkCHhPHkbH1+lk862WnNtJP1mkMR6Cg5YTE GwaFYxgN/fGGURP1TFLtzdxe+aG6vPohYo+iCyCfl7V51qeiRMncRt0TijLWpkLn biAtKWRLCj6ogH4KG7t0Rva8BH2Nzub00wZOu8QyL11oLaC9L7mKVrB4qdt6XOHa Fzq6b1ghYvqPfNPPzulEG48v/qrrvBfVmXNRsAZY+mW1JXFA4ZJ2KY0IUVp601le +trF3BITdyhgG/uuv14Cf8HMJZoPY90V1JrM6zaygagU320cYa4NtqKHcGU/V55t ypp6woCMUcj6yaAtRKKZfe4am/hFIBYR4IhVHg== -----END CERTIFICATE-----Generated at Sun Dec 14 22:21:07 2025 by rpki-client