This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233352e302f32342d3234203d3e20313531303033.roa File: 3130332e3231332e3233352e302f32342d3234203d3e20313531303033.roa (raw, json) Hash identifier: 56KSPI3eKTwUn2nOF0K2M/sGf9VTXreg4ZHR0spJPwI= Subject key identifier: 1B:00:CD:F0:18:CC:BA:57:37:4E:07:A2:F1:43:2A:49:7B:FD:20:D3 Certificate issuer: /CN=846D8A4B978C6F595D44EACDB8259295CD43C499 Certificate serial: 3B0A302171379E19C16E1B9A1E9E368EBD35B3FA Authority key identifier: 84:6D:8A:4B:97:8C:6F:59:5D:44:EA:CD:B8:25:92:95:CD:43:C4:99 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233352e302f32342d3234203d3e20313531303033.roa Signing time: Mon 01 Dec 2025 15:00:02 +0000 ROA not before: Mon 01 Dec 2025 14:55:02 +0000 ROA not after: Mon 30 Nov 2026 15:00:02 +0000 asID: 151003 IP address blocks: 103.213.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.crl rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 15:58:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:0a:30:21:71:37:9e:19:c1:6e:1b:9a:1e:9e:36:8e:bd:35:b3:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=846D8A4B978C6F595D44EACDB8259295CD43C499 Validity Not Before: Dec 1 14:55:02 2025 GMT Not After : Nov 30 15:00:02 2026 GMT Subject: CN=1B00CDF018CCBA57374E07A2F1432A497BFD20D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e1:a1:7c:ff:3e:b9:5d:1b:4f:26:30:52:c5: ef:52:b3:7c:93:fc:8b:c2:f7:5b:4c:72:75:d4:ef: e1:0c:76:b8:b7:87:30:80:c0:57:e3:bf:d0:3d:9b: 66:12:21:ba:35:c8:05:b1:9e:e8:83:77:33:f6:26: 0e:e8:d5:b1:4d:f4:43:ed:f7:89:e7:3d:e7:4e:a9: 1a:d8:6d:74:5c:8b:e9:62:4d:90:1c:6a:15:22:45: 58:55:ab:f8:a6:b3:f5:e6:a7:62:60:84:ca:51:05: 38:59:d6:4d:e1:99:43:7d:57:95:ae:45:f0:dd:3d: 65:71:f7:15:a6:af:46:9e:81:ee:94:26:43:b4:37: 94:f2:f3:0f:80:ae:4f:37:45:fe:66:a7:7e:78:53: 13:a5:3b:55:a2:9e:0b:98:37:2b:de:73:8c:8c:88: 0c:93:c5:3b:ea:1b:e0:48:d9:30:fa:ac:c6:0c:d7: 27:76:1c:9d:8a:ae:48:a6:4a:6c:ee:65:ae:7f:70: b8:bc:54:0d:b3:72:40:0e:00:d3:25:12:ac:bf:88: 54:1a:37:7b:91:7e:a2:7e:79:7c:e6:71:14:49:22: ee:9b:ca:05:6c:ec:65:41:d3:a4:d0:0f:45:c7:19: 52:97:8c:8d:6c:9c:22:99:85:12:e3:80:10:04:52: fd:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:00:CD:F0:18:CC:BA:57:37:4E:07:A2:F1:43:2A:49:7B:FD:20:D3 X509v3 Authority Key Identifier: keyid:84:6D:8A:4B:97:8C:6F:59:5D:44:EA:CD:B8:25:92:95:CD:43:C4:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233352e302f32342d3234203d3e20313531303033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.213.235.0/24 Signature Algorithm: sha256WithRSAEncryption 30:01:52:d2:f6:7d:cb:c8:78:68:6f:da:f5:56:4e:73:a9:4c: 02:25:5e:91:64:a9:a4:08:61:64:be:4f:65:ed:7a:35:ac:a3: 8d:bb:2b:8e:76:60:41:8d:0e:91:a3:4f:ce:fa:74:35:36:62: b7:ec:cc:ad:39:7b:ca:07:64:79:60:9e:73:64:74:f4:b2:4d: 7d:ae:21:1e:0b:36:b4:4c:c4:e9:b8:83:52:a8:60:83:9c:54: 97:76:57:b8:29:1c:41:12:2d:5f:7d:a0:aa:e8:b3:51:44:05: 2f:d5:0b:00:c9:de:70:64:81:ec:3f:ff:44:10:b5:e6:95:ed: ea:38:d6:81:61:e0:ab:3b:e7:9a:4e:12:e9:f9:ae:c2:f0:89: 32:4e:6c:65:6a:02:53:a9:9d:8f:cb:b1:36:dc:48:42:0a:ba: 16:04:bc:47:67:17:fb:2e:76:b2:98:06:2f:6e:ee:dc:c0:32: c5:98:36:97:d6:04:15:99:b8:4d:a7:46:6e:2b:9b:f2:7b:38: 61:f5:99:40:11:eb:89:ab:b3:ed:8f:ef:d9:75:f9:79:fe:ea: 34:88:7e:3f:a3:2d:32:b8:5e:2c:b3:7a:35:d0:ad:16:2c:df: bd:2f:30:ae:e5:3f:16:da:0e:fd:56:ca:26:2f:13:06:e9:ee: fc:38:e2:94 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOwowIXE3nhnBbhuaHp42jr01s/owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2RDhBNEI5NzhDNkY1OTVENDRFQUNEQjgyNTkyOTVD RDQzQzQ5OTAeFw0yNTEyMDExNDU1MDJaFw0yNjExMzAxNTAwMDJaMDMxMTAvBgNV BAMTKDFCMDBDREYwMThDQ0JBNTczNzRFMDdBMkYxNDMyQTQ5N0JGRDIwRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz4aF8/z65XRtPJjBSxe9Ss3yT /IvC91tMcnXU7+EMdri3hzCAwFfjv9A9m2YSIbo1yAWxnuiDdzP2Jg7o1bFN9EPt 94nnPedOqRrYbXRci+liTZAcahUiRVhVq/ims/Xmp2JghMpRBThZ1k3hmUN9V5Wu RfDdPWVx9xWmr0aege6UJkO0N5Ty8w+Ark83Rf5mp354UxOlO1WinguYNyvec4yM iAyTxTvqG+BI2TD6rMYM1yd2HJ2KrkimSmzuZa5/cLi8VA2zckAOANMlEqy/iFQa N3uRfqJ+eXzmcRRJIu6bygVs7GVB06TQD0XHGVKXjI1snCKZhRLjgBAEUv3tAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGwDN8BjMulc3Tgei8UMqSXv9INMwHwYDVR0j BBgwFoAUhG2KS5eMb1ldROrNuCWSlc1DxJkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDdmYTIxMC01ZjI1LTRmMGItODlhNS03ZDAwYTM1NGE5MDcvMC84NDZEOEE0Qjk3 OEM2RjU5NUQ0NEVBQ0RCODI1OTI5NUNENDNDNDk5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2RDhBNEI5NzhDNkY1OTVENDRFQUNEQjgyNTkyOTVDRDQz QzQ5OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkN2ZhMjEwLTVmMjUtNGYwYi04 OWE1LTdkMDBhMzU0YTkwNy8wLzMxMzAzMzJlMzIzMTMzMmUzMjMzMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzMDMwMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn1eswDQYJ KoZIhvcNAQELBQADggEBADABUtL2fcvIeGhv2vVWTnOpTAIlXpFkqaQIYWS+T2Xt ejWso427K452YEGNDpGjT876dDU2YrfszK05e8oHZHlgnnNkdPSyTX2uIR4LNrRM xOm4g1KoYIOcVJd2V7gpHEESLV99oKros1FEBS/VCwDJ3nBkgew//0QQteaV7eo4 1oFh4Ks755pOEun5rsLwiTJObGVqAlOpnY/LsTbcSEIKuhYEvEdnF/sudrKYBi9u 7tzAMsWYNpfWBBWZuE2nRm4rm/J7OGH1mUAR64mrs+2P79l1+Xn+6jSIfj+jLTK4 XiyzejXQrRYs370vMK7lPxbaDv1WyiYvEwbp7vw44pQ= -----END CERTIFICATE-----Generated at Wed Dec 3 14:58:36 2025 by rpki-client