This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/3130332e32392e3231322e302f32322d3234203d3e203538333737.roa File: 3130332e32392e3231322e302f32322d3234203d3e203538333737.roa (raw, json) Hash identifier: YYshjWJChQ7GjjLm5x5OoEwBOuUfUWvc0tdshb8NzOU= Subject key identifier: EF:0F:8D:3D:8E:B0:E1:DE:2F:C1:BC:34:18:F6:47:0F:D0:2E:B6:89 Certificate issuer: /CN=43A0899A11D5A51202F1304338672AF19B201A74 Certificate serial: 1142F217F606E2369316B33B5996BE53DE11D2EB Authority key identifier: 43:A0:89:9A:11:D5:A5:12:02:F1:30:43:38:67:2A:F1:9B:20:1A:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/3130332e32392e3231322e302f32322d3234203d3e203538333737.roa Signing time: Wed 24 Dec 2025 07:00:02 +0000 ROA not before: Wed 24 Dec 2025 06:55:02 +0000 ROA not after: Wed 23 Dec 2026 07:00:02 +0000 asID: 58377 IP address blocks: 103.29.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.crl rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 22:08:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:42:f2:17:f6:06:e2:36:93:16:b3:3b:59:96:be:53:de:11:d2:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43A0899A11D5A51202F1304338672AF19B201A74 Validity Not Before: Dec 24 06:55:02 2025 GMT Not After : Dec 23 07:00:02 2026 GMT Subject: CN=EF0F8D3D8EB0E1DE2FC1BC3418F6470FD02EB689 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:95:c1:6d:c6:a9:05:d1:16:aa:d1:0e:3d:3b: e7:89:30:f3:c4:2d:b8:51:66:aa:8d:34:17:cd:32: ff:f7:64:71:ea:5a:84:dd:ab:da:54:29:83:82:4f: f1:6a:cf:0e:2d:d1:a0:fd:2d:ea:46:25:e6:6a:09: 8c:8e:d5:06:7b:18:06:0f:5c:a2:73:9e:9d:23:57: 24:6c:ba:77:11:4d:df:b7:a2:ab:d8:27:68:75:c5: da:d4:9b:6c:35:df:0c:a1:40:f4:bc:6a:43:8b:4c: 20:72:ff:63:0d:7e:78:6a:72:d5:71:66:41:c0:e0: 95:af:ee:4c:58:5d:41:2b:76:cc:bb:d2:21:1e:5f: 08:53:62:8a:5b:6c:77:b3:54:d6:22:a1:f6:e9:6c: 1f:68:a1:df:26:fa:c1:71:10:a4:90:f4:08:5c:e1: 7a:22:83:6f:f3:0c:ec:07:a4:17:a5:92:77:2d:bb: c4:39:9f:00:a8:73:67:e4:61:86:75:a0:13:ad:21: b8:86:53:cc:44:c2:b4:1f:6a:42:cb:fb:d5:75:2f: 7f:87:61:4d:59:03:96:74:8b:0e:24:a0:de:d0:9f: ce:6d:58:bb:25:36:06:9b:5c:97:b7:61:1d:9f:b7: d2:dc:20:1a:25:78:fb:07:03:f1:fd:31:8b:37:28: 20:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:0F:8D:3D:8E:B0:E1:DE:2F:C1:BC:34:18:F6:47:0F:D0:2E:B6:89 X509v3 Authority Key Identifier: keyid:43:A0:89:9A:11:D5:A5:12:02:F1:30:43:38:67:2A:F1:9B:20:1A:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/3130332e32392e3231322e302f32322d3234203d3e203538333737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.29.212.0/22 Signature Algorithm: sha256WithRSAEncryption 0b:f1:4b:d3:92:91:a9:d7:f7:16:15:d6:62:c3:f2:27:d2:de: c2:1f:fa:0f:45:03:95:74:80:40:24:73:42:c3:c6:5e:be:92: 5a:01:43:b0:3b:3c:aa:79:3d:c9:05:5d:99:0d:dc:69:e1:c8: f7:14:73:cb:ac:e9:b5:be:e8:71:b3:5a:fe:9a:21:30:84:19: 06:c0:a5:ec:41:b6:0c:b4:89:60:00:92:6b:c8:fa:ac:c9:c0: e8:08:bc:58:d6:bd:06:cf:4b:40:20:40:8f:f1:ca:db:6b:c7: 9a:50:4b:15:11:1b:80:f5:4d:5d:f1:4e:66:52:f6:37:06:63: 42:8b:a3:3f:cf:ea:27:b5:bb:fc:29:57:21:e6:0f:83:bf:25: f8:93:e2:5b:0a:32:7f:c5:c6:49:96:2c:3b:ad:3c:0b:2d:c1: 4b:6f:0f:38:53:81:03:fb:3f:e0:91:b0:06:ab:c6:39:ab:27: c7:bd:ab:99:16:d7:0b:e1:e4:bf:03:df:cc:0f:58:7e:b8:1d: 65:75:3e:42:8d:64:b0:dd:c1:82:9b:c1:b7:fa:3b:12:0a:f2: cd:99:c2:be:19:a6:82:4e:3d:69:34:1e:33:47:3f:6e:30:e1: 60:26:c3:8e:9a:5b:2a:e7:19:9b:ed:dd:a8:e9:0f:fc:26:67: b9:4d:f2:e9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEULyF/YG4jaTFrM7WZa+U94R0uswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNBMDg5OUExMUQ1QTUxMjAyRjEzMDQzMzg2NzJBRjE5 QjIwMUE3NDAeFw0yNTEyMjQwNjU1MDJaFw0yNjEyMjMwNzAwMDJaMDMxMTAvBgNV BAMTKEVGMEY4RDNEOEVCMEUxREUyRkMxQkMzNDE4RjY0NzBGRDAyRUI2ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPlcFtxqkF0Raq0Q49O+eJMPPE LbhRZqqNNBfNMv/3ZHHqWoTdq9pUKYOCT/Fqzw4t0aD9LepGJeZqCYyO1QZ7GAYP XKJznp0jVyRsuncRTd+3oqvYJ2h1xdrUm2w13wyhQPS8akOLTCBy/2MNfnhqctVx ZkHA4JWv7kxYXUErdsy70iEeXwhTYopbbHezVNYiofbpbB9ood8m+sFxEKSQ9Ahc 4Xoig2/zDOwHpBelknctu8Q5nwCoc2fkYYZ1oBOtIbiGU8xEwrQfakLL+9V1L3+H YU1ZA5Z0iw4koN7Qn85tWLslNgabXJe3YR2ft9LcIBolePsHA/H9MYs3KCAnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU7w+NPY6w4d4vwbw0GPZHD9AutokwHwYDVR0j BBgwFoAUQ6CJmhHVpRIC8TBDOGcq8ZsgGnQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDAxYjJkMS0wMWNhLTQwZTgtYmY3Ny05ODYxNTk4NjdhMDQvMC80M0EwODk5QTEx RDVBNTEyMDJGMTMwNDMzODY3MkFGMTlCMjAxQTc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDNBMDg5OUExMUQ1QTUxMjAyRjEzMDQzMzg2NzJBRjE5QjIw MUE3NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0MDFiMmQxLTAxY2EtNDBlOC1i Zjc3LTk4NjE1OTg2N2EwNC8wLzMxMzAzMzJlMzIzOTJlMzIzMTMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzODMzMzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcd1DANBgkqhkiG 9w0BAQsFAAOCAQEAC/FL05KRqdf3FhXWYsPyJ9Lewh/6D0UDlXSAQCRzQsPGXr6S WgFDsDs8qnk9yQVdmQ3caeHI9xRzy6zptb7ocbNa/pohMIQZBsCl7EG2DLSJYACS a8j6rMnA6Ai8WNa9Bs9LQCBAj/HK22vHmlBLFREbgPVNXfFOZlL2NwZjQoujP8/q J7W7/ClXIeYPg78l+JPiWwoyf8XGSZYsO608Cy3BS28POFOBA/s/4JGwBqvGOasn x72rmRbXC+HkvwPfzA9YfrgdZXU+Qo1ksN3BgpvBt/o7EgryzZnCvhmmgk49aTQe M0c/bjDhYCbDjppbKucZm+3dqOkP/CZnuU3y6Q== -----END CERTIFICATE-----Generated at Sun Jan 25 21:52:30 2026 by rpki-client