This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/3130332e3132322e332e302f32342d3234203d3e20313430333839.roa File: 3130332e3132322e332e302f32342d3234203d3e20313430333839.roa (raw, json) Hash identifier: XpsrFjei0l+09ODvvmQABrLd5RCt8xbB9sqvgbDFDtE= Subject key identifier: 69:72:21:F7:C0:F8:EA:49:25:21:78:13:02:37:05:40:C5:48:45:B8 Certificate issuer: /CN=AEB84984B4021FC01344F3D02190FDED8607E7FA Certificate serial: 081DB14892AA4E38AF929D3409AD902ED4B46863 Authority key identifier: AE:B8:49:84:B4:02:1F:C0:13:44:F3:D0:21:90:FD:ED:86:07:E7:FA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB84984B4021FC01344F3D02190FDED8607E7FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/3130332e3132322e332e302f32342d3234203d3e20313430333839.roa Signing time: Fri 02 Jan 2026 07:03:13 +0000 ROA not before: Fri 02 Jan 2026 06:58:13 +0000 ROA not after: Fri 01 Jan 2027 07:03:13 +0000 asID: 140389 IP address blocks: 103.122.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/AEB84984B4021FC01344F3D02190FDED8607E7FA.crl rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/AEB84984B4021FC01344F3D02190FDED8607E7FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB84984B4021FC01344F3D02190FDED8607E7FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Feb 2026 17:10:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:1d:b1:48:92:aa:4e:38:af:92:9d:34:09:ad:90:2e:d4:b4:68:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEB84984B4021FC01344F3D02190FDED8607E7FA Validity Not Before: Jan 2 06:58:13 2026 GMT Not After : Jan 1 07:03:13 2027 GMT Subject: CN=697221F7C0F8EA492521781302370540C54845B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:8e:6a:bb:73:0a:2c:66:76:5c:99:a7:30:fb: d7:06:cb:92:dc:ad:cd:75:53:f2:ab:29:3d:41:fe: 3d:a7:f7:90:ac:87:96:0b:86:00:6a:50:18:4c:76: 0a:b2:ce:62:3d:4b:67:b9:71:cb:ae:9e:d5:94:25: af:a5:4d:4a:37:46:db:19:cc:b4:18:5b:04:b7:cb: 12:ab:84:a1:50:c8:42:45:a3:52:bd:6f:94:e1:b3: 32:31:f7:06:cd:87:b2:85:3a:d6:19:d4:de:63:3b: c0:28:66:17:c6:b1:0f:0a:c4:b7:ae:f9:64:0a:7b: d2:d5:48:06:2c:fd:13:9b:06:c4:4d:bb:79:43:61: a1:c6:4b:ae:f6:04:c7:25:41:bb:bc:31:06:d6:1e: 79:45:b3:a4:0c:98:0c:fa:6a:3f:43:31:97:f1:c7: 79:0e:ac:4f:ad:a8:9f:ba:96:21:15:a2:4f:db:92: 38:97:ff:f6:df:98:74:3d:d2:80:51:7f:e1:b9:34: bd:4d:c5:21:16:78:5c:5e:40:0d:41:18:7b:29:63: 11:05:d2:15:68:a3:b1:74:08:f9:9d:14:cf:22:0a: 9e:1d:64:22:33:57:ab:e2:ce:ca:42:48:ef:d4:59: 2a:b9:49:d3:4a:21:4c:9d:8f:29:4a:18:e1:3e:b0: 3a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:72:21:F7:C0:F8:EA:49:25:21:78:13:02:37:05:40:C5:48:45:B8 X509v3 Authority Key Identifier: keyid:AE:B8:49:84:B4:02:1F:C0:13:44:F3:D0:21:90:FD:ED:86:07:E7:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/AEB84984B4021FC01344F3D02190FDED8607E7FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB84984B4021FC01344F3D02190FDED8607E7FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/3130332e3132322e332e302f32342d3234203d3e20313430333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.3.0/24 Signature Algorithm: sha256WithRSAEncryption 06:f5:0f:7c:db:99:03:bc:69:fd:03:c9:35:3a:1e:e7:63:48: 79:16:89:9b:0c:f1:e5:86:ff:44:19:91:29:e1:8d:63:e4:a1: 8e:bc:b8:c7:9d:1a:18:ae:08:d1:7e:9f:88:f8:4c:de:ec:c1: 2a:e8:15:58:aa:31:fe:d2:32:90:d4:a4:be:42:ed:fd:9a:a7: 28:c4:d9:1f:47:5b:19:af:18:af:f8:dd:13:5f:d9:17:83:ad: c2:c3:39:df:ed:64:56:92:33:37:06:f4:5f:fb:d4:22:ed:30: 4a:ea:e8:d8:d1:c6:2f:2c:fd:d2:cf:64:6f:8e:92:cb:3a:07: bb:7f:36:dc:e1:0a:a1:0c:99:2d:8e:6d:c9:8e:b2:bb:14:6b: c8:69:dd:92:1b:17:b9:d8:d1:b1:59:87:5d:20:d8:58:45:31: be:34:bf:fa:ee:d9:af:d2:d6:57:43:05:08:25:1e:75:c8:d1: bc:94:6e:7e:b7:f0:3d:4c:75:e7:9f:bc:ef:7a:13:ad:38:dd: bb:b4:3a:da:80:98:76:d0:cc:ce:2c:e7:27:86:41:b2:ee:c3: 59:17:2c:ea:8b:26:d7:32:2a:da:d9:b7:0e:94:d4:cb:66:11: 64:0e:b2:8f:55:38:90:15:f6:ab:18:1d:30:f4:c3:4a:9d:41: 4e:e9:7a:19 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCB2xSJKqTjivkp00Ca2QLtS0aGMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVCODQ5ODRCNDAyMUZDMDEzNDRGM0QwMjE5MEZERUQ4 NjA3RTdGQTAeFw0yNjAxMDIwNjU4MTNaFw0yNzAxMDEwNzAzMTNaMDMxMTAvBgNV BAMTKDY5NzIyMUY3QzBGOEVBNDkyNTIxNzgxMzAyMzcwNTQwQzU0ODQ1QjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhjmq7cwosZnZcmacw+9cGy5Lc rc11U/KrKT1B/j2n95Csh5YLhgBqUBhMdgqyzmI9S2e5ccuuntWUJa+lTUo3RtsZ zLQYWwS3yxKrhKFQyEJFo1K9b5ThszIx9wbNh7KFOtYZ1N5jO8AoZhfGsQ8KxLeu +WQKe9LVSAYs/RObBsRNu3lDYaHGS672BMclQbu8MQbWHnlFs6QMmAz6aj9DMZfx x3kOrE+tqJ+6liEVok/bkjiX//bfmHQ90oBRf+G5NL1NxSEWeFxeQA1BGHspYxEF 0hVoo7F0CPmdFM8iCp4dZCIzV6vizspCSO/UWSq5SdNKIUydjylKGOE+sDoTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUaXIh98D46kklIXgTAjcFQMVIRbgwHwYDVR0j BBgwFoAUrrhJhLQCH8ATRPPQIZD97YYH5/owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjE5NTVmMC00YjQwLTRjM2ItOWZmZi05ZjkyNThjMzk3NWEvMC9BRUI4NDk4NEI0 MDIxRkMwMTM0NEYzRDAyMTkwRkRFRDg2MDdFN0ZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUVCODQ5ODRCNDAyMUZDMDEzNDRGM0QwMjE5MEZERUQ4NjA3 RTdGQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyMTk1NWYwLTRiNDAtNGMzYi05 ZmZmLTlmOTI1OGMzOTc1YS8wLzMxMzAzMzJlMzEzMjMyMmUzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDMzMzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGd6AzANBgkqhkiG 9w0BAQsFAAOCAQEABvUPfNuZA7xp/QPJNToe52NIeRaJmwzx5Yb/RBmRKeGNY+Sh jry4x50aGK4I0X6fiPhM3uzBKugVWKox/tIykNSkvkLt/ZqnKMTZH0dbGa8Yr/jd E1/ZF4OtwsM53+1kVpIzNwb0X/vUIu0wSuro2NHGLyz90s9kb46SyzoHu3823OEK oQyZLY5tyY6yuxRryGndkhsXudjRsVmHXSDYWEUxvjS/+u7Zr9LWV0MFCCUedcjR vJRufrfwPUx155+873oTrTjdu7Q62oCYdtDMziznJ4ZBsu7DWRcs6osm1zIq2tm3 DpTUy2YRZA6yj1U4kBX2qxgdMPTDSp1BTul6GQ== -----END CERTIFICATE-----Generated at Mon Feb 2 12:52:41 2026 by rpki-client