This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3235352e3234322e302f32342d3234203d3e20313439373436.roa File: 3130332e3235352e3234322e302f32342d3234203d3e20313439373436.roa (raw, json) Hash identifier: XOiKBhMpiojDMkAtgGNcSAtmHT5v9rhfXApeFJZLH2w= Subject key identifier: 4A:F0:FF:F2:70:F1:7A:FD:DA:41:66:14:E6:1D:AA:9D:9B:56:A0:EA Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 7C853086F9E555514128FE2A45B7AA02D0636D22 Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3235352e3234322e302f32342d3234203d3e20313439373436.roa Signing time: Sat 22 Nov 2025 18:01:09 +0000 ROA not before: Sat 22 Nov 2025 17:56:09 +0000 ROA not after: Sat 21 Nov 2026 18:01:09 +0000 asID: 149746 IP address blocks: 103.255.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 16:38:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:85:30:86:f9:e5:55:51:41:28:fe:2a:45:b7:aa:02:d0:63:6d:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Nov 22 17:56:09 2025 GMT Not After : Nov 21 18:01:09 2026 GMT Subject: CN=4AF0FFF270F17AFDDA416614E61DAA9D9B56A0EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:bb:fb:3d:88:76:25:78:b6:11:95:5c:87:d6: fa:61:84:c8:38:23:46:ee:1e:68:98:1f:69:a7:67: f4:39:26:12:a2:3b:d7:36:79:a9:f7:5b:79:f4:b4: a5:2d:af:d4:e1:6f:9b:9b:d6:2b:4b:e0:7a:4f:34: c9:20:41:73:e7:16:d0:88:53:8a:c7:eb:c9:49:0e: 46:ed:69:41:92:6f:4e:2d:9d:b0:d1:ac:84:0a:dd: 33:84:95:1f:df:b4:f0:98:68:00:f0:cd:ae:32:39: e3:80:7f:51:f7:83:17:a6:3a:98:b6:6d:15:f5:ef: 68:0f:66:7a:06:70:7d:6a:7e:41:76:f3:0a:36:d5: 0e:74:2a:95:da:41:21:4b:16:f1:df:89:ca:47:18: 52:34:d1:40:89:83:f4:d7:74:7a:27:72:bc:45:5c: 3a:5b:25:3e:20:66:a1:99:02:78:68:6f:f0:7a:05: f1:5a:5d:5a:fc:a5:01:9e:4d:96:e1:09:44:1c:c3: d5:f9:bd:79:7d:f1:15:cd:1b:dd:f1:1d:56:c6:8d: 21:59:04:48:6f:cb:0f:3b:23:c5:21:58:47:41:90: 6a:65:84:01:17:f3:44:02:96:6e:c0:b0:d4:60:76: 23:b5:4b:2d:ff:20:41:29:15:3f:6e:45:47:1a:1c: 1f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:F0:FF:F2:70:F1:7A:FD:DA:41:66:14:E6:1D:AA:9D:9B:56:A0:EA X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3235352e3234322e302f32342d3234203d3e20313439373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.242.0/24 Signature Algorithm: sha256WithRSAEncryption 88:9b:e2:cd:7c:a2:18:35:96:2b:a0:6a:41:5b:dd:51:a6:c0: c9:6d:a6:63:32:0c:e4:26:d2:41:c6:bb:5f:d2:2a:8f:ef:e1: b3:87:3e:44:36:36:97:2a:3d:55:c1:c0:7c:7b:15:b1:d2:f2: f5:7b:d7:1c:c7:a0:89:da:aa:a9:18:84:3b:c6:a4:08:c0:80: a8:44:9d:fa:15:19:8f:64:60:43:8c:c0:93:65:b8:92:7d:49: e4:a2:b0:ab:c8:aa:8c:ce:6f:5a:e2:ee:12:f4:be:b9:45:16: 67:cc:b1:f4:cb:f3:9b:7c:16:8a:1c:c7:77:d2:7c:45:66:6e: 24:9b:41:f3:3b:d7:8c:02:8a:bd:7c:0b:1a:3e:bd:af:fe:21: 12:51:a7:61:ef:9e:84:d7:d5:e1:19:83:27:e2:f0:ac:f9:4e: 21:e8:fa:17:87:16:f8:84:17:e9:e8:1f:12:a3:15:97:3a:89: 43:cd:de:2f:35:85:c1:dc:f3:5b:68:b1:de:0c:9f:14:73:65: a7:ca:44:d7:60:9e:62:2e:26:93:9a:82:28:33:0a:1e:35:a4: 4a:e8:9c:6f:65:69:f5:f9:14:94:3f:95:62:24:84:7e:c4:e6: c1:69:0c:42:1c:9d:ad:2a:60:99:09:4f:42:9c:b9:36:7f:ac: c8:20:50:71 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfIUwhvnlVVFBKP4qRbeqAtBjbSIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNTExMjIxNzU2MDlaFw0yNjExMjExODAxMDlaMDMxMTAvBgNV BAMTKDRBRjBGRkYyNzBGMTdBRkREQTQxNjYxNEU2MURBQTlEOUI1NkEwRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBu/s9iHYleLYRlVyH1vphhMg4 I0buHmiYH2mnZ/Q5JhKiO9c2ean3W3n0tKUtr9Thb5ub1itL4HpPNMkgQXPnFtCI U4rH68lJDkbtaUGSb04tnbDRrIQK3TOElR/ftPCYaADwza4yOeOAf1H3gxemOpi2 bRX172gPZnoGcH1qfkF28wo21Q50KpXaQSFLFvHficpHGFI00UCJg/TXdHoncrxF XDpbJT4gZqGZAnhob/B6BfFaXVr8pQGeTZbhCUQcw9X5vXl98RXNG93xHVbGjSFZ BEhvyw87I8UhWEdBkGplhAEX80QClm7AsNRgdiO1Sy3/IEEpFT9uRUcaHB/5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUSvD/8nDxev3aQWYU5h2qnZtWoOowHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzAzMzJlMzIzNTM1MmUzMjM0MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn//IwDQYJ KoZIhvcNAQELBQADggEBAIib4s18ohg1liugakFb3VGmwMltpmMyDOQm0kHGu1/S Ko/v4bOHPkQ2NpcqPVXBwHx7FbHS8vV71xzHoInaqqkYhDvGpAjAgKhEnfoVGY9k YEOMwJNluJJ9SeSisKvIqozOb1ri7hL0vrlFFmfMsfTL85t8Foocx3fSfEVmbiSb QfM714wCir18Cxo+va/+IRJRp2HvnoTX1eEZgyfi8Kz5TiHo+heHFviEF+noHxKj FZc6iUPN3i81hcHc81tosd4MnxRzZafKRNdgnmIuJpOagigzCh41pEronG9lafX5 FJQ/lWIkhH7E5sFpDEIcna0qYJkJT0KcuTZ/rMggUHE= -----END CERTIFICATE-----Generated at Wed Dec 3 16:51:36 2025 by rpki-client