This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234352e302f32342d3234203d3e20313439373436.roa File: 3130332e31372e3234352e302f32342d3234203d3e20313439373436.roa (raw, json) Hash identifier: jv40inOqkP45tTFU+4fmcadEbXbs4EIc7qcUlk8q2LU= Subject key identifier: 9E:A8:AC:49:4B:33:F8:6A:1D:79:E7:F3:6D:47:FC:E7:02:25:50:D2 Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 098C6C4EC7BE5B9E5F32001F3B23FAF6FFDC55C9 Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234352e302f32342d3234203d3e20313439373436.roa Signing time: Sat 22 Nov 2025 18:01:10 +0000 ROA not before: Sat 22 Nov 2025 17:56:10 +0000 ROA not after: Sat 21 Nov 2026 18:01:10 +0000 asID: 149746 IP address blocks: 103.17.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 16:38:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:8c:6c:4e:c7:be:5b:9e:5f:32:00:1f:3b:23:fa:f6:ff:dc:55:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Nov 22 17:56:10 2025 GMT Not After : Nov 21 18:01:10 2026 GMT Subject: CN=9EA8AC494B33F86A1D79E7F36D47FCE7022550D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d4:d0:5a:77:17:8e:fb:44:d9:8e:6c:18:ce: 52:c9:1a:cc:ad:50:42:4b:87:e6:ff:c8:e7:d7:2c: ed:63:8d:cf:63:15:3a:fd:5d:ca:3e:b9:01:ab:cf: 1d:c1:e8:16:06:dc:9e:11:a8:09:27:8e:42:5d:07: 3b:de:a2:47:a6:3b:4f:e5:d0:f2:88:b4:bf:b7:af: d7:d5:58:ba:a0:d1:bf:d5:66:dc:2c:31:21:dc:0c: 5c:82:b3:00:97:d0:4e:72:7e:d7:71:13:95:43:cf: e5:53:18:7b:67:c8:01:98:e9:d5:91:0e:d1:e6:2a: fd:73:07:98:33:bd:5f:7c:c1:eb:87:02:58:98:02: 9e:fe:9a:21:56:0b:da:84:6b:c7:4f:10:c1:fd:4b: ec:3a:6a:95:05:88:4a:e7:75:62:e8:d6:ba:9d:2b: 73:36:5f:87:35:3b:43:4d:e6:1b:46:1d:e9:57:b2: a2:a9:a4:5e:29:c5:b0:8f:29:2a:af:0c:fd:bc:b1: 55:8d:69:1c:00:1b:ac:22:d0:31:fc:55:6b:0f:05: 38:db:12:95:ed:6c:a3:5b:8e:d3:40:f6:f9:b3:5c: ce:b0:ae:82:d4:8c:7e:ea:10:37:fa:52:b4:30:78: f2:45:09:6c:f6:44:f4:1e:78:71:93:75:d0:50:fd: e7:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:A8:AC:49:4B:33:F8:6A:1D:79:E7:F3:6D:47:FC:E7:02:25:50:D2 X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234352e302f32342d3234203d3e20313439373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.17.245.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:a1:77:c2:11:1b:32:3a:93:eb:79:77:c3:ef:61:91:05:fd: ad:ec:d7:8e:58:13:e7:3c:79:08:3c:7f:bd:70:cc:79:99:80: 14:3e:3e:0e:c3:de:79:55:fa:ee:c5:2f:57:b3:89:36:52:f3: 05:97:45:57:fc:9c:06:ba:93:3f:ac:c9:66:29:26:e3:c9:f1: c8:a8:f5:80:c2:a1:c7:54:33:0c:bf:6a:78:fd:55:cc:3e:00: 19:26:5d:d7:68:56:28:ef:4e:61:af:5c:50:8f:b5:0e:5e:ee: b8:05:b2:cb:12:76:c4:3a:a3:c5:4d:0e:d6:5a:b7:30:83:0c: 9e:f4:20:b3:1e:f2:eb:83:b9:27:c2:a7:89:32:3f:de:fd:30: 61:49:0d:c8:90:50:49:0a:86:c4:38:a7:45:e0:00:f6:8b:20: ec:5e:66:87:27:4e:4c:07:0f:44:49:5d:a7:aa:eb:a4:78:fe: 9f:41:ac:d3:0c:16:aa:62:5d:c7:11:d2:2a:de:a7:83:1a:67: 86:53:cd:ab:56:3f:83:3e:0a:f9:43:82:7e:3e:9c:c4:88:9d: d3:be:89:05:4d:c9:af:02:6a:f2:a5:68:ae:84:02:8a:87:84: 7d:3c:7e:dd:17:ec:2c:f7:60:0d:eb:76:fb:42:18:e7:9b:f1: 23:1c:af:34 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCYxsTse+W55fMgAfOyP69v/cVckwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNTExMjIxNzU2MTBaFw0yNjExMjExODAxMTBaMDMxMTAvBgNV BAMTKDlFQThBQzQ5NEIzM0Y4NkExRDc5RTdGMzZENDdGQ0U3MDIyNTUwRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD1NBadxeO+0TZjmwYzlLJGsyt UEJLh+b/yOfXLO1jjc9jFTr9Xco+uQGrzx3B6BYG3J4RqAknjkJdBzveokemO0/l 0PKItL+3r9fVWLqg0b/VZtwsMSHcDFyCswCX0E5yftdxE5VDz+VTGHtnyAGY6dWR DtHmKv1zB5gzvV98weuHAliYAp7+miFWC9qEa8dPEMH9S+w6apUFiErndWLo1rqd K3M2X4c1O0NN5htGHelXsqKppF4pxbCPKSqvDP28sVWNaRwAG6wi0DH8VWsPBTjb EpXtbKNbjtNA9vmzXM6wroLUjH7qEDf6UrQwePJFCWz2RPQeeHGTddBQ/efNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnqisSUsz+GodeefzbUf85wIlUNIwHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzAzMzJlMzEzNzJlMzIzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxH1MA0GCSqG SIb3DQEBCwUAA4IBAQAqoXfCERsyOpPreXfD72GRBf2t7NeOWBPnPHkIPH+9cMx5 mYAUPj4Ow955VfruxS9Xs4k2UvMFl0VX/JwGupM/rMlmKSbjyfHIqPWAwqHHVDMM v2p4/VXMPgAZJl3XaFYo705hr1xQj7UOXu64BbLLEnbEOqPFTQ7WWrcwgwye9CCz HvLrg7knwqeJMj/e/TBhSQ3IkFBJCobEOKdF4AD2iyDsXmaHJ05MBw9ESV2nquuk eP6fQazTDBaqYl3HEdIq3qeDGmeGU82rVj+DPgr5Q4J+PpzEiJ3TvokFTcmvAmry pWiuhAKKh4R9PH7dF+ws92AN63b7Qhjnm/EjHK80 -----END CERTIFICATE-----Generated at Wed Dec 3 16:51:12 2025 by rpki-client