This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/fae8bcc9-43a1-4bab-b6d8-1a97d0d3c21d/0/3130332e31362e3131362e302f32332d3234203d3e203535363838.roa File: 3130332e31362e3131362e302f32332d3234203d3e203535363838.roa (raw, json) Hash identifier: HSJwEbuYdmswA8IoW9wUF9tpsYQbZVSX70vEOoOrwhM= Subject key identifier: DF:6A:97:7D:61:74:FB:0C:AE:63:22:7B:BD:6D:A5:68:C0:07:16:6A Certificate issuer: /CN=19960F4C3FEEC60D5A59281148061FB21094449A Certificate serial: 04C0357DBF1201619F4CCB9800A5CB7B20EF99C3 Authority key identifier: 19:96:0F:4C:3F:EE:C6:0D:5A:59:28:11:48:06:1F:B2:10:94:44:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19960F4C3FEEC60D5A59281148061FB21094449A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fae8bcc9-43a1-4bab-b6d8-1a97d0d3c21d/0/3130332e31362e3131362e302f32332d3234203d3e203535363838.roa Signing time: Fri 11 Jul 2025 05:02:23 +0000 ROA not before: Fri 11 Jul 2025 04:57:23 +0000 ROA not after: Fri 10 Jul 2026 05:02:23 +0000 asID: 55688 IP address blocks: 103.16.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fae8bcc9-43a1-4bab-b6d8-1a97d0d3c21d/0/19960F4C3FEEC60D5A59281148061FB21094449A.crl rsync://repo-rpki.idnic.net/repo/fae8bcc9-43a1-4bab-b6d8-1a97d0d3c21d/0/19960F4C3FEEC60D5A59281148061FB21094449A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19960F4C3FEEC60D5A59281148061FB21094449A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 10:22:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:c0:35:7d:bf:12:01:61:9f:4c:cb:98:00:a5:cb:7b:20:ef:99:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19960F4C3FEEC60D5A59281148061FB21094449A Validity Not Before: Jul 11 04:57:23 2025 GMT Not After : Jul 10 05:02:23 2026 GMT Subject: CN=DF6A977D6174FB0CAE63227BBD6DA568C007166A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:01:b5:c3:bd:24:da:48:8c:59:65:cb:67:0e: d1:54:52:83:e7:b3:08:64:99:53:1f:e6:c7:ca:98: 59:47:17:e6:04:51:13:fc:ad:03:5c:38:f0:b9:7c: 9b:8a:0d:ce:6b:ea:5b:c4:99:66:88:65:29:e6:46: 14:28:70:7c:45:e7:62:a7:b8:d0:b7:a2:ee:c3:92: 1f:42:a5:99:84:db:48:24:5d:93:12:04:c3:0f:b7: a8:14:a7:6f:eb:11:bf:4a:ff:e5:13:f2:02:b7:e1: e4:44:3f:64:67:88:61:d4:63:52:14:96:0a:f7:93: 98:b6:94:9f:ba:e6:ea:ef:d4:62:c1:d4:82:2b:d4: 9e:c2:06:ae:92:93:05:91:34:39:7f:cf:63:6a:af: 1b:f4:96:d5:51:86:3d:87:65:b3:4d:1f:d2:81:3d: a7:de:08:5a:0c:f2:eb:2b:56:ce:f3:7e:b8:80:ba: 7e:75:18:29:76:d4:ff:be:a1:d8:c2:ec:3c:b7:51: 1d:0c:d3:16:1c:24:f9:f0:2d:5c:52:96:1f:34:1b: 07:e0:a3:79:1f:96:24:1a:62:f4:dc:d6:69:a4:0a: b2:28:df:4a:20:08:b5:d4:5d:31:d2:27:ac:b4:98: 48:0f:91:af:7a:5a:79:8f:87:81:83:90:2d:66:92: 78:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:6A:97:7D:61:74:FB:0C:AE:63:22:7B:BD:6D:A5:68:C0:07:16:6A X509v3 Authority Key Identifier: keyid:19:96:0F:4C:3F:EE:C6:0D:5A:59:28:11:48:06:1F:B2:10:94:44:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fae8bcc9-43a1-4bab-b6d8-1a97d0d3c21d/0/19960F4C3FEEC60D5A59281148061FB21094449A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19960F4C3FEEC60D5A59281148061FB21094449A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fae8bcc9-43a1-4bab-b6d8-1a97d0d3c21d/0/3130332e31362e3131362e302f32332d3234203d3e203535363838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.16.116.0/23 Signature Algorithm: sha256WithRSAEncryption a2:d9:d4:3f:0d:3d:09:a0:01:23:88:d3:0d:ba:c8:fd:35:4e: eb:c6:a0:dd:36:2a:76:6d:b2:8d:73:60:37:a5:43:73:36:7d: 3c:9e:4c:8c:e3:0e:a4:5d:ef:51:e9:71:92:3b:b4:df:ad:63: 06:e1:18:72:90:fa:12:e4:7e:54:c1:1d:2d:70:5b:8d:b2:51: c2:3e:0b:84:13:67:3a:d0:87:40:f7:ba:1e:c8:5a:26:bc:cc: 66:ef:99:59:72:f4:65:d4:15:e8:55:ad:af:9e:ea:66:22:79: 71:88:b6:9a:3b:25:09:55:e6:7d:4f:67:b6:68:01:56:8b:fd: 55:4a:3b:3a:13:28:e6:9a:26:74:52:fd:40:4a:34:0e:a4:93: aa:18:ea:09:45:6e:9b:43:7e:65:2f:fa:ab:d3:8e:dd:72:a2: aa:43:63:b7:a0:7c:d1:b6:ea:21:e5:2c:0d:29:8f:26:c9:bc: d0:3a:f4:36:f6:24:80:a1:03:79:9f:2e:db:24:be:c5:95:73: 40:7f:47:1b:54:71:19:9a:82:24:2a:db:cd:9e:cb:21:99:1d: b5:24:52:ff:7e:5e:23:7d:04:2d:ca:ca:d0:c8:94:e1:6d:9c: 28:d2:d0:59:52:18:41:e6:1a:f5:cd:ab:74:a9:51:57:71:6e: ca:4b:df:1d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBMA1fb8SAWGfTMuYAKXLeyDvmcMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk5NjBGNEMzRkVFQzYwRDVBNTkyODExNDgwNjFGQjIx MDk0NDQ5QTAeFw0yNTA3MTEwNDU3MjNaFw0yNjA3MTAwNTAyMjNaMDMxMTAvBgNV BAMTKERGNkE5NzdENjE3NEZCMENBRTYzMjI3QkJENkRBNTY4QzAwNzE2NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClAbXDvSTaSIxZZctnDtFUUoPn swhkmVMf5sfKmFlHF+YEURP8rQNcOPC5fJuKDc5r6lvEmWaIZSnmRhQocHxF52Kn uNC3ou7Dkh9CpZmE20gkXZMSBMMPt6gUp2/rEb9K/+UT8gK34eREP2RniGHUY1IU lgr3k5i2lJ+65urv1GLB1IIr1J7CBq6SkwWRNDl/z2Nqrxv0ltVRhj2HZbNNH9KB PafeCFoM8usrVs7zfriAun51GCl21P++odjC7Dy3UR0M0xYcJPnwLVxSlh80Gwfg o3kfliQaYvTc1mmkCrIo30ogCLXUXTHSJ6y0mEgPka96WnmPh4GDkC1mkngtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU32qXfWF0+wyuYyJ7vW2laMAHFmowHwYDVR0j BBgwFoAUGZYPTD/uxg1aWSgRSAYfshCURJowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YWU4YmNjOS00M2ExLTRiYWItYjZkOC0xYTk3ZDBkM2MyMWQvMC8xOTk2MEY0QzNG RUVDNjBENUE1OTI4MTE0ODA2MUZCMjEwOTQ0NDlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk5NjBGNEMzRkVFQzYwRDVBNTkyODExNDgwNjFGQjIxMDk0 NDQ5QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZhZThiY2M5LTQzYTEtNGJhYi1i NmQ4LTFhOTdkMGQzYzIxZC8wLzMxMzAzMzJlMzEzNjJlMzEzMTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzNTM2MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcQdDANBgkqhkiG 9w0BAQsFAAOCAQEAotnUPw09CaABI4jTDbrI/TVO68ag3TYqdm2yjXNgN6VDczZ9 PJ5MjOMOpF3vUelxkju0361jBuEYcpD6EuR+VMEdLXBbjbJRwj4LhBNnOtCHQPe6 HshaJrzMZu+ZWXL0ZdQV6FWtr57qZiJ5cYi2mjslCVXmfU9ntmgBVov9VUo7OhMo 5pomdFL9QEo0DqSTqhjqCUVum0N+ZS/6q9OO3XKiqkNjt6B80bbqIeUsDSmPJsm8 0Dr0NvYkgKEDeZ8u2yS+xZVzQH9HG1RxGZqCJCrbzZ7LIZkdtSRS/35eI30ELcrK 0MiU4W2cKNLQWVIYQeYa9c2rdKlRV3FuykvfHQ== -----END CERTIFICATE-----Generated at Wed Dec 3 14:58:07 2025 by rpki-client