This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/3130332e34302e3132302e302f32322d3234203d3e203633353038.roa File: 3130332e34302e3132302e302f32322d3234203d3e203633353038.roa (raw, json) Hash identifier: xmE/JEyhXthuYU++MAzsO/GoVJLu7FXPu8oedNkxkIE= Subject key identifier: D9:89:EE:49:94:C8:BD:CA:B6:5A:87:E8:76:EF:82:97:A0:CE:CB:3D Certificate issuer: /CN=35526D55C5F4431129EA7CE9304705CE395693D9 Certificate serial: 06BE33DA9663864B919221B5588F97D6852DF48B Authority key identifier: 35:52:6D:55:C5:F4:43:11:29:EA:7C:E9:30:47:05:CE:39:56:93:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35526D55C5F4431129EA7CE9304705CE395693D9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/3130332e34302e3132302e302f32322d3234203d3e203633353038.roa Signing time: Tue 23 Dec 2025 15:00:01 +0000 ROA not before: Tue 23 Dec 2025 14:55:01 +0000 ROA not after: Tue 22 Dec 2026 15:00:01 +0000 asID: 63508 IP address blocks: 103.40.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/35526D55C5F4431129EA7CE9304705CE395693D9.crl rsync://repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/35526D55C5F4431129EA7CE9304705CE395693D9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35526D55C5F4431129EA7CE9304705CE395693D9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 17:51:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:be:33:da:96:63:86:4b:91:92:21:b5:58:8f:97:d6:85:2d:f4:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35526D55C5F4431129EA7CE9304705CE395693D9 Validity Not Before: Dec 23 14:55:01 2025 GMT Not After : Dec 22 15:00:01 2026 GMT Subject: CN=D989EE4994C8BDCAB65A87E876EF8297A0CECB3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:2a:c2:aa:c3:16:5c:c0:4f:26:f0:21:ef:5a: f1:ce:6e:df:60:98:40:12:66:13:bd:1e:7e:56:1c: 3b:d4:ea:4b:72:6c:2a:9e:89:e6:b6:89:13:18:5a: 05:c5:c7:33:42:a5:1a:79:6b:ff:4e:97:66:fa:ff: d2:17:9b:2e:83:a6:0c:76:0a:db:5e:14:b0:9a:83: 82:63:56:b9:1d:93:bb:25:a3:1c:64:9b:02:b5:f4: 70:6a:64:eb:37:d7:12:d2:e3:cf:0c:2f:ce:bc:4f: 41:e7:7b:bd:7b:db:01:13:c1:a0:71:7d:e6:2a:14: ba:e5:0a:7c:c0:b0:8b:da:0a:c5:0c:12:50:49:da: 55:26:2c:1a:c3:48:78:d0:fe:02:8d:d4:1d:36:0c: c6:c9:6f:bc:c1:ee:f5:f8:ef:a6:c4:2c:90:3c:f0: 96:d0:3c:d4:a9:5c:84:0e:3a:30:34:e2:f8:b4:a1: af:75:20:17:b3:f9:dc:c8:b1:c0:2d:76:ae:88:0d: 3b:78:85:64:e6:eb:80:a1:ad:7d:07:3f:04:69:76: 77:9e:78:f4:92:36:d2:3a:30:7f:50:ee:9b:11:4b: c1:0d:e6:55:46:12:46:e3:24:eb:69:44:aa:20:82: 00:5d:1d:e1:9c:6b:ef:a4:1d:22:44:41:b0:cd:53: 2b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:89:EE:49:94:C8:BD:CA:B6:5A:87:E8:76:EF:82:97:A0:CE:CB:3D X509v3 Authority Key Identifier: keyid:35:52:6D:55:C5:F4:43:11:29:EA:7C:E9:30:47:05:CE:39:56:93:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/35526D55C5F4431129EA7CE9304705CE395693D9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35526D55C5F4431129EA7CE9304705CE395693D9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b4b0bf5b-456d-4e62-9f48-6192149d52c2/0/3130332e34302e3132302e302f32322d3234203d3e203633353038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.40.120.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:27:c3:6e:fa:b9:89:75:cb:05:a7:f0:cb:c6:40:67:20:4a: b5:92:a3:68:bd:bb:80:78:be:7c:9a:a0:05:f5:c9:7a:e2:e5: b7:31:9c:36:22:54:a1:d2:29:b2:95:a3:cd:c4:e5:49:11:de: be:57:cd:d9:3d:52:f5:de:bf:20:1c:c1:92:01:35:01:74:02: b0:4f:f9:87:dd:35:2a:a0:40:d9:dc:01:6c:0d:55:9a:1e:bc: 83:99:6b:6f:4d:96:fb:d4:15:0a:12:b0:01:15:09:28:2a:f7: fa:4c:12:de:13:c5:05:88:6e:25:34:42:31:e1:60:b0:50:74: aa:06:73:af:67:1e:e5:10:fa:21:26:d6:c3:70:2f:47:5c:9c: 4c:cd:7e:bf:0e:01:a0:03:66:eb:30:83:57:be:17:52:3e:a7: 70:7a:eb:13:48:f3:fd:fc:33:f9:ee:77:b3:d3:d7:b9:3e:de: 24:dd:55:f7:e1:a9:9f:74:14:17:60:df:95:2e:f8:18:02:c4: ee:15:d8:61:0e:10:e9:db:90:b5:1e:a9:c0:7a:c3:2d:8c:a5: 24:5f:b1:92:21:4b:77:8b:42:c3:a3:51:10:51:0b:f3:ef:f0: 7b:5b:f7:d3:4b:90:a1:30:08:89:bb:8e:e8:97:80:90:d2:ce: b4:bf:3e:4d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBr4z2pZjhkuRkiG1WI+X1oUt9IswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU1MjZENTVDNUY0NDMxMTI5RUE3Q0U5MzA0NzA1Q0Uz OTU2OTNEOTAeFw0yNTEyMjMxNDU1MDFaFw0yNjEyMjIxNTAwMDFaMDMxMTAvBgNV BAMTKEQ5ODlFRTQ5OTRDOEJEQ0FCNjVBODdFODc2RUY4Mjk3QTBDRUNCM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgKsKqwxZcwE8m8CHvWvHObt9g mEASZhO9Hn5WHDvU6ktybCqeiea2iRMYWgXFxzNCpRp5a/9Ol2b6/9IXmy6Dpgx2 CtteFLCag4JjVrkdk7sloxxkmwK19HBqZOs31xLS488ML868T0Hne7172wETwaBx feYqFLrlCnzAsIvaCsUMElBJ2lUmLBrDSHjQ/gKN1B02DMbJb7zB7vX476bELJA8 8JbQPNSpXIQOOjA04vi0oa91IBez+dzIscAtdq6IDTt4hWTm64ChrX0HPwRpdnee ePSSNtI6MH9Q7psRS8EN5lVGEkbjJOtpRKogggBdHeGca++kHSJEQbDNUyuZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2YnuSZTIvcq2Wofodu+Cl6DOyz0wHwYDVR0j BBgwFoAUNVJtVcX0QxEp6nzpMEcFzjlWk9kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NGIwYmY1Yi00NTZkLTRlNjItOWY0OC02MTkyMTQ5ZDUyYzIvMC8zNTUyNkQ1NUM1 RjQ0MzExMjlFQTdDRTkzMDQ3MDVDRTM5NTY5M0Q5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU1MjZENTVDNUY0NDMxMTI5RUE3Q0U5MzA0NzA1Q0UzOTU2 OTNEOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I0YjBiZjViLTQ1NmQtNGU2Mi05 ZjQ4LTYxOTIxNDlkNTJjMi8wLzMxMzAzMzJlMzQzMDJlMzEzMjMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzYzMzM1MzAzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcoeDANBgkqhkiG 9w0BAQsFAAOCAQEAmifDbvq5iXXLBafwy8ZAZyBKtZKjaL27gHi+fJqgBfXJeuLl tzGcNiJUodIpspWjzcTlSRHevlfN2T1S9d6/IBzBkgE1AXQCsE/5h901KqBA2dwB bA1Vmh68g5lrb02W+9QVChKwARUJKCr3+kwS3hPFBYhuJTRCMeFgsFB0qgZzr2ce 5RD6ISbWw3AvR1ycTM1+vw4BoANm6zCDV74XUj6ncHrrE0jz/fwz+e53s9PXuT7e JN1V9+Gpn3QUF2DflS74GALE7hXYYQ4Q6duQtR6pwHrDLYylJF+xkiFLd4tCw6NR EFEL8+/we1v300uQoTAIibuO6JeAkNLOtL8+TQ== -----END CERTIFICATE-----Generated at Mon Feb 2 15:58:52 2026 by rpki-client