This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3130332e3234382e35382e302f32332d3233203d3e203538383136.roa File: 3130332e3234382e35382e302f32332d3233203d3e203538383136.roa (raw, json) Hash identifier: zc4ykLGcjnNqveO2/L+gaoTsTtypUdw4BR4ukEt5D9o= Subject key identifier: 33:CE:53:72:77:05:71:C2:9C:CA:65:C1:E0:C3:AE:21:70:23:46:50 Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 34CFBC8DB5626708BA23A14A4E5D1C2811159896 Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3130332e3234382e35382e302f32332d3233203d3e203538383136.roa Signing time: Tue 23 Dec 2025 06:00:00 +0000 ROA not before: Tue 23 Dec 2025 05:55:00 +0000 ROA not after: Tue 22 Dec 2026 06:00:00 +0000 asID: 58816 IP address blocks: 103.248.58.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 06:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:cf:bc:8d:b5:62:67:08:ba:23:a1:4a:4e:5d:1c:28:11:15:98:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Dec 23 05:55:00 2025 GMT Not After : Dec 22 06:00:00 2026 GMT Subject: CN=33CE5372770571C29CCA65C1E0C3AE2170234650 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5c:47:cf:16:e8:af:e6:61:33:a4:ea:b3:f3: 74:71:b3:58:70:68:78:4d:4b:52:6a:25:35:e0:1f: e9:7b:6d:92:92:6d:97:e5:ff:94:d7:8a:1d:ac:e3: 4a:c6:27:99:b5:d6:f6:f9:e8:94:81:8c:48:6e:e7: 25:37:59:ff:05:34:2f:1b:a0:55:9d:60:69:2c:3e: 6a:78:89:cf:26:93:07:4c:30:d6:6d:6c:21:8f:3a: 90:d0:6f:34:6a:56:20:55:84:49:dc:8c:a5:73:2d: 80:05:8d:47:df:b9:55:b5:35:15:18:15:61:35:22: b0:cf:88:2d:ff:49:b7:df:7d:03:fc:a8:71:e7:6b: b4:36:47:d0:62:08:00:03:08:22:68:8d:2b:92:1b: e8:38:6b:2f:98:f7:4c:fc:c7:e3:2a:b5:b5:01:29: 4d:56:0d:52:3a:16:67:77:a0:e9:9f:d4:1b:97:78: 2e:b2:b1:4c:28:27:a0:d6:81:6c:bf:d7:17:c2:17: 66:d7:d7:ef:6c:68:45:5c:b1:52:67:c1:c2:9f:4e: da:de:06:19:62:e7:65:b1:f9:ca:46:26:da:6a:71: ae:fa:2d:a5:3c:91:49:85:36:65:6c:18:98:dd:33: f4:c0:50:60:00:12:d2:df:20:82:d7:b2:9f:fd:c2: 40:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:CE:53:72:77:05:71:C2:9C:CA:65:C1:E0:C3:AE:21:70:23:46:50 X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3130332e3234382e35382e302f32332d3233203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.248.58.0/23 Signature Algorithm: sha256WithRSAEncryption 26:19:8b:8d:70:d6:c0:bb:a5:62:e8:c5:31:6c:d9:2e:9d:5e: dc:92:03:76:93:5f:07:7e:fd:aa:c0:70:71:08:f6:7c:f8:27: b7:9d:df:bf:41:46:19:c8:29:d8:62:77:8f:0b:92:84:5f:26: c6:5c:4c:96:2d:4c:63:b4:75:0c:fa:5d:89:67:aa:65:9e:24: a0:80:e4:bd:58:88:6e:44:81:90:b7:06:d3:ae:b6:76:32:45: e1:f0:fd:1d:ec:47:63:b9:aa:7e:9e:66:88:a2:78:8f:a1:d7: 39:ac:b6:4e:40:49:0c:fa:42:5d:2f:cd:a5:3a:45:6b:52:e4: 9e:43:36:de:63:f1:96:f6:f5:b8:9e:ba:38:60:86:1f:50:73: 32:65:f9:7c:f5:e0:b3:bf:75:d6:73:4f:78:44:fc:28:61:cd: 9f:50:ba:69:a3:d8:41:e2:34:0d:34:e2:60:9d:77:65:cc:b1: 09:47:d0:c2:90:3d:6f:a0:2f:0d:75:ce:a5:6e:ad:83:93:f5: 4f:6b:80:28:5e:4e:b8:35:d5:ff:fd:06:07:38:72:c3:92:ec: 80:02:c4:9f:cc:e6:65:74:ff:f2:4d:bf:13:ed:71:16:52:fd: e6:f4:41:ed:e9:53:48:6a:07:dc:35:53:89:06:5c:10:0d:64: 30:47:77:21 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNM+8jbViZwi6I6FKTl0cKBEVmJYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNTEyMjMwNTU1MDBaFw0yNjEyMjIwNjAwMDBaMDMxMTAvBgNV BAMTKDMzQ0U1MzcyNzcwNTcxQzI5Q0NBNjVDMUUwQzNBRTIxNzAyMzQ2NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQXEfPFuiv5mEzpOqz83Rxs1hw aHhNS1JqJTXgH+l7bZKSbZfl/5TXih2s40rGJ5m11vb56JSBjEhu5yU3Wf8FNC8b oFWdYGksPmp4ic8mkwdMMNZtbCGPOpDQbzRqViBVhEncjKVzLYAFjUffuVW1NRUY FWE1IrDPiC3/SbfffQP8qHHna7Q2R9BiCAADCCJojSuSG+g4ay+Y90z8x+MqtbUB KU1WDVI6Fmd3oOmf1BuXeC6ysUwoJ6DWgWy/1xfCF2bX1+9saEVcsVJnwcKfTtre Bhli52Wx+cpGJtpqca76LaU8kUmFNmVsGJjdM/TAUGAAEtLfIILXsp/9wkBfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUM85TcncFccKcymXB4MOuIXAjRlAwHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzMxMzAzMzJlMzIzNDM4MmUzNTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzUzODM4MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWf4OjANBgkqhkiG 9w0BAQsFAAOCAQEAJhmLjXDWwLulYujFMWzZLp1e3JIDdpNfB379qsBwcQj2fPgn t53fv0FGGcgp2GJ3jwuShF8mxlxMli1MY7R1DPpdiWeqZZ4koIDkvViIbkSBkLcG 0662djJF4fD9HexHY7mqfp5miKJ4j6HXOay2TkBJDPpCXS/NpTpFa1LknkM23mPx lvb1uJ66OGCGH1BzMmX5fPXgs7911nNPeET8KGHNn1C6aaPYQeI0DTTiYJ13Zcyx CUfQwpA9b6AvDXXOpW6tg5P1T2uAKF5OuDXV//0GBzhyw5LsgALEn8zmZXT/8k2/ E+1xFlL95vRB7elTSGoH3DVTiQZcEA1kMEd3IQ== -----END CERTIFICATE-----Generated at Sun Jan 25 23:35:54 2026 by rpki-client