This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233352e302f32342d3234203d3e20313531303033.roa File: 3130332e3231332e3233352e302f32342d3234203d3e20313531303033.roa (raw, json) Hash identifier: jkC15twdSo2VVxRSy9px5K0BC1HIC59h8vBYUT6CWkg= Subject key identifier: 9B:73:6E:1B:46:81:C7:58:9A:04:1D:F4:40:56:E3:0C:8A:46:A0:6A Certificate issuer: /CN=846D8A4B978C6F595D44EACDB8259295CD43C499 Certificate serial: 4AF1E55942F1A31EC13AB69889ACB61F5818EDBC Authority key identifier: 84:6D:8A:4B:97:8C:6F:59:5D:44:EA:CD:B8:25:92:95:CD:43:C4:99 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233352e302f32342d3234203d3e20313531303033.roa Signing time: Sat 31 Jan 2026 02:35:50 +0000 ROA not before: Sat 31 Jan 2026 02:30:50 +0000 ROA not after: Sat 30 Jan 2027 02:35:50 +0000 asID: 151003 IP address blocks: 103.213.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.crl rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 05:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:f1:e5:59:42:f1:a3:1e:c1:3a:b6:98:89:ac:b6:1f:58:18:ed:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=846D8A4B978C6F595D44EACDB8259295CD43C499 Validity Not Before: Jan 31 02:30:50 2026 GMT Not After : Jan 30 02:35:50 2027 GMT Subject: CN=9B736E1B4681C7589A041DF44056E30C8A46A06A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:ea:3c:01:7b:df:f3:7f:09:19:13:09:8c:b5: 2b:35:bc:c2:6a:b1:26:83:8b:af:91:31:65:37:02: 37:c4:e6:0b:c8:83:1d:a8:ae:54:04:7f:a0:f8:45: 8d:90:60:d1:3b:44:ca:12:2d:13:0d:2f:d5:f5:3f: 51:7d:29:14:ab:93:25:c9:02:7f:f5:5a:30:de:e5: 10:c5:34:6b:6a:61:99:5b:b2:7c:8e:18:31:02:c7: 62:37:1e:10:c7:2c:cd:c2:77:78:e6:a5:33:6f:37: ed:a0:1b:68:91:79:22:89:cc:97:f0:55:94:4f:7a: cf:5d:ee:4d:19:78:0f:32:6a:6a:24:74:5f:e4:ca: 6f:04:89:42:69:71:56:9b:a9:e1:33:e8:67:ce:88: 8b:b8:b1:20:0a:da:25:31:10:76:78:5c:d6:47:e5: bd:2b:0f:a3:4d:4e:82:43:fe:6d:56:5e:5d:47:65: b0:18:fe:f6:7a:c5:e3:f6:3d:60:7b:9e:d7:ad:6f: 37:7f:fe:de:96:2c:c9:67:11:1a:ab:23:f1:71:cb: f3:7b:7a:16:26:1c:f0:33:05:bf:fa:fa:33:a2:e2: b0:75:f5:85:c2:d6:a6:a4:3c:8d:46:45:fc:e7:53: c3:b5:47:f3:0d:6d:56:ff:15:2e:e0:62:3f:78:6c: 6d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:73:6E:1B:46:81:C7:58:9A:04:1D:F4:40:56:E3:0C:8A:46:A0:6A X509v3 Authority Key Identifier: keyid:84:6D:8A:4B:97:8C:6F:59:5D:44:EA:CD:B8:25:92:95:CD:43:C4:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233352e302f32342d3234203d3e20313531303033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.213.235.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:1b:0f:88:1e:b1:07:6c:75:8a:1e:af:c5:cd:96:29:50:06: 45:e2:7f:1a:21:7e:73:00:08:8a:4e:bd:2d:98:61:a9:f2:0d: c3:25:74:ab:89:5f:1e:8b:ee:8f:7f:09:26:96:33:d0:2e:bf: b2:56:65:d6:66:56:f4:ec:6a:41:66:6d:6f:41:01:81:9b:06: a6:fd:2e:95:7a:f6:af:72:af:a0:45:89:a9:d2:7c:37:82:cf: 59:f8:a9:2d:b4:d8:e7:a3:48:71:2b:9f:40:8d:65:c4:be:ee: 04:29:17:c6:83:22:49:57:4c:33:eb:3c:93:a2:ab:62:0d:c2: 0d:5e:f2:ef:c1:80:12:7b:9d:13:12:60:d0:bf:9d:23:74:23: ba:ee:6c:f2:04:30:07:95:73:01:6a:2e:0d:ae:77:5c:6c:19: 3d:41:a1:fd:5e:68:ee:6d:23:fa:47:bf:6a:c2:00:b7:41:e6: 17:f3:91:f5:80:76:9c:f7:07:57:c8:40:1a:a1:38:2a:56:96: 53:06:48:13:12:dc:db:54:4c:8b:35:b4:aa:24:8b:ba:3d:49: 60:95:3a:a2:82:71:e1:d4:9a:04:27:5a:38:0e:d4:90:d6:98: 46:14:99:2d:d1:ed:e0:bb:d6:c1:a8:9b:b2:e2:cb:00:98:35: 29:89:3e:0c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSvHlWULxox7BOraYiay2H1gY7bwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2RDhBNEI5NzhDNkY1OTVENDRFQUNEQjgyNTkyOTVD RDQzQzQ5OTAeFw0yNjAxMzEwMjMwNTBaFw0yNzAxMzAwMjM1NTBaMDMxMTAvBgNV BAMTKDlCNzM2RTFCNDY4MUM3NTg5QTA0MURGNDQwNTZFMzBDOEE0NkEwNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD36jwBe9/zfwkZEwmMtSs1vMJq sSaDi6+RMWU3AjfE5gvIgx2orlQEf6D4RY2QYNE7RMoSLRMNL9X1P1F9KRSrkyXJ An/1WjDe5RDFNGtqYZlbsnyOGDECx2I3HhDHLM3Cd3jmpTNvN+2gG2iReSKJzJfw VZRPes9d7k0ZeA8yamokdF/kym8EiUJpcVabqeEz6GfOiIu4sSAK2iUxEHZ4XNZH 5b0rD6NNToJD/m1WXl1HZbAY/vZ6xeP2PWB7ntetbzd//t6WLMlnERqrI/Fxy/N7 ehYmHPAzBb/6+jOi4rB19YXC1qakPI1GRfznU8O1R/MNbVb/FS7gYj94bG3XAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUm3NuG0aBx1iaBB30QFbjDIpGoGowHwYDVR0j BBgwFoAUhG2KS5eMb1ldROrNuCWSlc1DxJkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDdmYTIxMC01ZjI1LTRmMGItODlhNS03ZDAwYTM1NGE5MDcvMC84NDZEOEE0Qjk3 OEM2RjU5NUQ0NEVBQ0RCODI1OTI5NUNENDNDNDk5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2RDhBNEI5NzhDNkY1OTVENDRFQUNEQjgyNTkyOTVDRDQz QzQ5OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkN2ZhMjEwLTVmMjUtNGYwYi04 OWE1LTdkMDBhMzU0YTkwNy8wLzMxMzAzMzJlMzIzMTMzMmUzMjMzMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzMDMwMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn1eswDQYJ KoZIhvcNAQELBQADggEBAD4bD4gesQdsdYoer8XNlilQBkXifxohfnMACIpOvS2Y YanyDcMldKuJXx6L7o9/CSaWM9Auv7JWZdZmVvTsakFmbW9BAYGbBqb9LpV69q9y r6BFianSfDeCz1n4qS202OejSHErn0CNZcS+7gQpF8aDIklXTDPrPJOiq2INwg1e 8u/BgBJ7nRMSYNC/nSN0I7rubPIEMAeVcwFqLg2ud1xsGT1Bof1eaO5tI/pHv2rC ALdB5hfzkfWAdpz3B1fIQBqhOCpWllMGSBMS3NtUTIs1tKoki7o9SWCVOqKCceHU mgQnWjgO1JDWmEYUmS3R7eC71sGom7LiywCYNSmJPgw= -----END CERTIFICATE-----Generated at Mon Feb 2 11:15:47 2026 by rpki-client