This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0/3130332e32322e39382e302f32342d3234203d3e20313530323433.roa File: 3130332e32322e39382e302f32342d3234203d3e20313530323433.roa (raw, json) Hash identifier: r4lFs0TNiF7PlJS0PWYOEttBGGT47VYExK2RXJ6gyEo= Subject key identifier: EB:9E:27:B8:3E:2E:80:34:E0:BF:38:04:0A:AD:5F:D9:C4:AE:FB:CA Certificate issuer: /CN=5DFC46925E2D4B3FB044F284111222A8B4C78392 Certificate serial: 51A1F616D2372CC35FA16A81B163A2FC1C91324F Authority key identifier: 5D:FC:46:92:5E:2D:4B:3F:B0:44:F2:84:11:12:22:A8:B4:C7:83:92 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DFC46925E2D4B3FB044F284111222A8B4C78392.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0/3130332e32322e39382e302f32342d3234203d3e20313530323433.roa Signing time: Tue 02 Dec 2025 08:00:47 +0000 ROA not before: Tue 02 Dec 2025 07:55:47 +0000 ROA not after: Tue 01 Dec 2026 08:00:47 +0000 asID: 150243 IP address blocks: 103.22.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0/5DFC46925E2D4B3FB044F284111222A8B4C78392.crl rsync://repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0/5DFC46925E2D4B3FB044F284111222A8B4C78392.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DFC46925E2D4B3FB044F284111222A8B4C78392.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 11:59:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:a1:f6:16:d2:37:2c:c3:5f:a1:6a:81:b1:63:a2:fc:1c:91:32:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DFC46925E2D4B3FB044F284111222A8B4C78392 Validity Not Before: Dec 2 07:55:47 2025 GMT Not After : Dec 1 08:00:47 2026 GMT Subject: CN=EB9E27B83E2E8034E0BF38040AAD5FD9C4AEFBCA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1e:1e:c1:d8:75:d1:20:ec:6c:8b:fd:6a:b7: 68:ac:3e:60:af:77:6c:20:c8:c2:5f:04:18:28:1d: 1f:59:2d:9e:cc:2b:e5:a6:5c:4d:ed:51:15:16:fc: 0e:5c:3e:11:89:4d:d2:ad:9a:bb:ac:30:1a:f2:87: a2:20:1f:f2:f4:30:ca:9f:66:a0:03:14:e8:f9:77: de:18:84:ed:f7:69:a3:23:20:61:3f:ef:74:1d:d7: 18:5d:66:71:26:cc:69:ec:ac:cf:72:b7:aa:0b:b0: f6:21:3d:43:47:22:2e:ee:c2:4f:dc:03:f9:81:b8: 56:f4:74:3a:97:59:f4:c6:e8:25:87:51:31:5f:c8: fa:6a:8b:3d:b4:45:d1:fb:f3:7b:67:11:6b:d3:f2: 26:72:ac:00:33:3f:0a:a0:6f:dd:e7:d6:10:42:44: 75:fd:57:28:82:4c:9e:0b:b1:3d:da:10:51:a8:74: 3a:e2:79:34:a9:25:a7:0f:95:b3:82:d5:85:4a:b5: 76:26:99:87:1d:e5:83:3a:e8:e1:91:12:e2:50:59: db:ab:4a:94:54:e3:b4:a2:4d:8f:31:84:20:da:f9: 47:3c:f3:09:4d:c9:aa:cd:5c:4f:e3:d2:57:47:b5: 32:5c:11:13:ec:5b:78:4f:ed:79:68:07:a5:32:49: 05:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:9E:27:B8:3E:2E:80:34:E0:BF:38:04:0A:AD:5F:D9:C4:AE:FB:CA X509v3 Authority Key Identifier: keyid:5D:FC:46:92:5E:2D:4B:3F:B0:44:F2:84:11:12:22:A8:B4:C7:83:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0/5DFC46925E2D4B3FB044F284111222A8B4C78392.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DFC46925E2D4B3FB044F284111222A8B4C78392.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0/3130332e32322e39382e302f32342d3234203d3e20313530323433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.22.98.0/24 Signature Algorithm: sha256WithRSAEncryption ad:bc:a4:be:19:64:f3:69:8e:ed:f9:07:0d:bc:7b:6a:cc:6b: f4:a7:ac:78:a2:a4:0b:d7:84:a9:3b:43:24:ba:6b:e3:51:4f: 10:9b:be:c0:12:56:e2:5c:d4:f2:5d:c9:0b:29:64:4c:07:27: dd:72:a2:ce:1b:58:2e:c3:b3:a2:34:08:67:ed:80:43:4b:ef: 75:48:63:a5:85:46:be:cc:66:79:a3:32:f7:76:5e:39:6a:eb: ff:6b:50:4c:1f:4b:5b:00:43:7a:8b:90:b4:26:ef:61:9b:bc: 0b:1e:2b:58:ff:c8:5b:b1:47:6e:5a:70:38:0c:a6:a1:48:e9: 48:7b:28:e9:9b:68:28:1e:bf:2c:64:65:f1:cc:35:36:f9:6d: 7c:4d:05:ec:14:32:b7:b3:9b:dc:72:7d:84:95:52:14:90:77: 81:fc:21:96:e1:7c:87:6a:e8:9a:fe:d5:7b:60:67:77:f2:ae: b0:d8:3f:ec:54:f3:bb:b5:4a:10:ca:41:c5:69:27:55:07:18: 84:ef:4b:25:25:94:ff:04:54:a5:1f:d9:d2:50:ef:62:4f:ee: ef:cb:10:70:0d:9e:83:dc:3f:5b:5d:20:d3:3c:f0:53:25:a3: 5d:2b:e9:2c:38:d7:1f:9d:85:2b:f6:3b:90:4e:e1:9e:d7:3b: 3f:07:88:6d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUaH2FtI3LMNfoWqBsWOi/ByRMk8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGQzQ2OTI1RTJENEIzRkIwNDRGMjg0MTExMjIyQThC NEM3ODM5MjAeFw0yNTEyMDIwNzU1NDdaFw0yNjEyMDEwODAwNDdaMDMxMTAvBgNV BAMTKEVCOUUyN0I4M0UyRTgwMzRFMEJGMzgwNDBBQUQ1RkQ5QzRBRUZCQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxHh7B2HXRIOxsi/1qt2isPmCv d2wgyMJfBBgoHR9ZLZ7MK+WmXE3tURUW/A5cPhGJTdKtmrusMBryh6IgH/L0MMqf ZqADFOj5d94YhO33aaMjIGE/73Qd1xhdZnEmzGnsrM9yt6oLsPYhPUNHIi7uwk/c A/mBuFb0dDqXWfTG6CWHUTFfyPpqiz20RdH783tnEWvT8iZyrAAzPwqgb93n1hBC RHX9VyiCTJ4LsT3aEFGodDrieTSpJacPlbOC1YVKtXYmmYcd5YM66OGREuJQWdur SpRU47SiTY8xhCDa+Uc88wlNyarNXE/j0ldHtTJcERPsW3hP7XloB6UySQVHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU654nuD4ugDTgvzgECq1f2cSu+8owHwYDVR0j BBgwFoAUXfxGkl4tSz+wRPKEERIiqLTHg5IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NzAxYjI3Ny1jODBjLTQ1ZDUtODA4OS1hOWVmYTM0MDU0MmEvMC81REZDNDY5MjVF MkQ0QjNGQjA0NEYyODQxMTEyMjJBOEI0Qzc4MzkyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNURGQzQ2OTI1RTJENEIzRkIwNDRGMjg0MTExMjIyQThCNEM3 ODM5Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3MDFiMjc3LWM4MGMtNDVkNS04 MDg5LWE5ZWZhMzQwNTQyYS8wLzMxMzAzMzJlMzIzMjJlMzkzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcWYjANBgkqhkiG 9w0BAQsFAAOCAQEArbykvhlk82mO7fkHDbx7asxr9KeseKKkC9eEqTtDJLpr41FP EJu+wBJW4lzU8l3JCylkTAcn3XKizhtYLsOzojQIZ+2AQ0vvdUhjpYVGvsxmeaMy 93ZeOWrr/2tQTB9LWwBDeouQtCbvYZu8Cx4rWP/IW7FHblpwOAymoUjpSHso6Zto KB6/LGRl8cw1NvltfE0F7BQyt7Ob3HJ9hJVSFJB3gfwhluF8h2romv7Ve2Bnd/Ku sNg/7FTzu7VKEMpBxWknVQcYhO9LJSWU/wRUpR/Z0lDvYk/u78sQcA2eg9w/W10g 0zzwUyWjXSvpLDjXH52FK/Y7kE7hntc7PweIbQ== -----END CERTIFICATE-----Generated at Wed Dec 3 16:07:30 2025 by rpki-client