This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/3130332e3137312e3138342e302f32342d3234203d3e20313432333734.roa File: 3130332e3137312e3138342e302f32342d3234203d3e20313432333734.roa (raw, json) Hash identifier: 6aMZ4xs6I3z2wIHDjzXkkCFtdMcUice/aLHdynSzMx8= Subject key identifier: F0:F2:01:29:73:4A:CA:9A:B9:66:30:BB:CF:18:E8:0A:C0:B8:3E:D0 Certificate issuer: /CN=DFAE11418F2175A57D01D8F80A61497CC1F5306C Certificate serial: 73EDBCECBC8B3397BF73A4C4673FC09E26D95691 Authority key identifier: DF:AE:11:41:8F:21:75:A5:7D:01:D8:F8:0A:61:49:7C:C1:F5:30:6C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DFAE11418F2175A57D01D8F80A61497CC1F5306C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/3130332e3137312e3138342e302f32342d3234203d3e20313432333734.roa Signing time: Tue 29 Apr 2025 09:00:01 +0000 ROA not before: Tue 29 Apr 2025 08:55:01 +0000 ROA not after: Tue 28 Apr 2026 09:00:01 +0000 asID: 142374 IP address blocks: 103.171.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/DFAE11418F2175A57D01D8F80A61497CC1F5306C.crl rsync://repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/DFAE11418F2175A57D01D8F80A61497CC1F5306C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DFAE11418F2175A57D01D8F80A61497CC1F5306C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 14:11:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:ed:bc:ec:bc:8b:33:97:bf:73:a4:c4:67:3f:c0:9e:26:d9:56:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFAE11418F2175A57D01D8F80A61497CC1F5306C Validity Not Before: Apr 29 08:55:01 2025 GMT Not After : Apr 28 09:00:01 2026 GMT Subject: CN=F0F20129734ACA9AB96630BBCF18E80AC0B83ED0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:73:1b:95:12:dc:e5:e7:0e:b7:d1:7a:5a:26: 78:9f:80:c8:64:38:1d:c8:d0:6a:b2:6d:59:b3:ce: cf:19:a5:25:b9:6e:3a:8e:d1:4f:cf:01:f0:4f:e9: fe:6b:e0:f9:e0:3e:48:d0:5c:5a:7c:e2:5c:6a:25: 0c:c7:59:79:50:e6:20:39:b1:24:c4:47:ca:ae:18: d1:cd:9e:16:78:e7:60:95:5b:c2:9d:31:f8:34:f9: b6:25:4f:50:62:51:c3:17:7e:5c:42:2d:ef:90:c1: 61:7d:4a:77:9b:19:9a:d3:e7:49:19:0c:7f:bf:55: 58:33:3e:ee:fc:c8:68:e8:e8:75:bd:f2:42:95:94: 36:f0:b7:b7:b0:d3:0b:14:cf:67:8d:76:b0:4a:f2: 19:8f:b0:ff:9c:73:ea:9f:29:fd:02:ba:56:6a:fe: 6c:c2:4b:3d:ee:16:fb:a5:19:63:46:f0:5e:39:d7: 15:d1:6d:3d:bb:05:41:9d:75:c6:c9:f3:07:e2:b3: 87:67:9c:05:3a:04:ca:f2:d2:0b:f3:64:c5:b5:aa: 97:bf:01:93:1e:5e:f9:9d:54:60:6c:39:65:3a:44: b3:39:38:c8:4e:4f:c4:ed:3e:ff:81:2d:02:24:a7: a8:6d:06:dd:b6:71:04:89:dd:7c:0d:c5:7b:b4:29: a2:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:F2:01:29:73:4A:CA:9A:B9:66:30:BB:CF:18:E8:0A:C0:B8:3E:D0 X509v3 Authority Key Identifier: keyid:DF:AE:11:41:8F:21:75:A5:7D:01:D8:F8:0A:61:49:7C:C1:F5:30:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/DFAE11418F2175A57D01D8F80A61497CC1F5306C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DFAE11418F2175A57D01D8F80A61497CC1F5306C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b855f450-eb7f-4a26-a6c4-f9827ee0a5b8/0/3130332e3137312e3138342e302f32342d3234203d3e20313432333734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.184.0/24 Signature Algorithm: sha256WithRSAEncryption 44:c4:9c:06:b6:a1:57:d4:bc:6b:00:5d:a6:20:9c:45:a5:57: 8a:b8:e2:66:1f:81:7c:bc:9a:a9:fd:cd:26:ad:96:07:7e:e2: b0:1e:fe:db:a7:71:61:6d:d7:b8:3e:74:af:42:4a:95:b0:82: 31:8b:fd:06:ad:c0:d2:ab:24:a7:86:71:2c:be:5d:b8:cb:a7: 71:11:c6:8a:6a:e0:de:01:0f:73:72:74:2b:f1:ec:40:93:9f: 54:00:3c:31:6a:dd:7f:71:62:b4:48:c8:e2:2e:5e:66:20:cd: fa:b1:c4:36:49:38:b2:17:ed:52:b1:6f:c9:68:aa:fc:37:3a: 4e:ca:78:2f:fe:75:86:8c:03:c4:fe:3e:82:52:5d:01:c7:79: a1:5d:e2:be:28:c8:4d:1d:41:6c:6d:6a:4a:55:dd:b0:57:e7: d9:cb:ee:5b:b6:18:41:f3:54:2c:0c:34:b4:ea:9b:56:2a:31: a9:99:45:b0:36:1f:94:eb:5d:19:1e:11:1c:8c:fd:e7:d2:14: 65:69:8c:fe:f7:89:e5:03:7d:31:49:ee:7e:2e:27:18:bf:f2: b2:3c:e8:60:5c:2f:5d:fe:13:87:56:47:8e:c1:dd:1f:c5:b9: 24:d5:97:88:4c:fd:d2:26:b9:88:c3:c9:7a:2a:ae:e0:ae:1d: 49:78:34:b2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUc+287LyLM5e/c6TEZz/AnibZVpEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREZBRTExNDE4RjIxNzVBNTdEMDFEOEY4MEE2MTQ5N0ND MUY1MzA2QzAeFw0yNTA0MjkwODU1MDFaFw0yNjA0MjgwOTAwMDFaMDMxMTAvBgNV BAMTKEYwRjIwMTI5NzM0QUNBOUFCOTY2MzBCQkNGMThFODBBQzBCODNFRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDecxuVEtzl5w630XpaJnifgMhk OB3I0GqybVmzzs8ZpSW5bjqO0U/PAfBP6f5r4PngPkjQXFp84lxqJQzHWXlQ5iA5 sSTER8quGNHNnhZ452CVW8KdMfg0+bYlT1BiUcMXflxCLe+QwWF9SnebGZrT50kZ DH+/VVgzPu78yGjo6HW98kKVlDbwt7ew0wsUz2eNdrBK8hmPsP+cc+qfKf0CulZq /mzCSz3uFvulGWNG8F451xXRbT27BUGddcbJ8wfis4dnnAU6BMry0gvzZMW1qpe/ AZMeXvmdVGBsOWU6RLM5OMhOT8TtPv+BLQIkp6htBt22cQSJ3XwNxXu0KaK3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU8PIBKXNKypq5ZjC7zxjoCsC4PtAwHwYDVR0j BBgwFoAU364RQY8hdaV9Adj4CmFJfMH1MGwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODU1ZjQ1MC1lYjdmLTRhMjYtYTZjNC1mOTgyN2VlMGE1YjgvMC9ERkFFMTE0MThG MjE3NUE1N0QwMUQ4RjgwQTYxNDk3Q0MxRjUzMDZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREZBRTExNDE4RjIxNzVBNTdEMDFEOEY4MEE2MTQ5N0NDMUY1 MzA2Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4NTVmNDUwLWViN2YtNGEyNi1h NmM0LWY5ODI3ZWUwYTViOC8wLzMxMzAzMzJlMzEzNzMxMmUzMTM4MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM3MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnq7gwDQYJ KoZIhvcNAQELBQADggEBAETEnAa2oVfUvGsAXaYgnEWlV4q44mYfgXy8mqn9zSat lgd+4rAe/tuncWFt17g+dK9CSpWwgjGL/QatwNKrJKeGcSy+XbjLp3ERxopq4N4B D3NydCvx7ECTn1QAPDFq3X9xYrRIyOIuXmYgzfqxxDZJOLIX7VKxb8loqvw3Ok7K eC/+dYaMA8T+PoJSXQHHeaFd4r4oyE0dQWxtakpV3bBX59nL7lu2GEHzVCwMNLTq m1YqMamZRbA2H5TrXRkeERyM/efSFGVpjP73ieUDfTFJ7n4uJxi/8rI86GBcL13+ E4dWR47B3R/FuSTVl4hM/dImuYjDyXoqruCuHUl4NLI= -----END CERTIFICATE-----Generated at Wed Dec 3 14:47:36 2025 by rpki-client