This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/AS38496.roa File: AS38496.roa (raw, json) Hash identifier: /3jwPUeHZHeKbNPRAhNW3g9EUNPkE+tEwzoJ3uFU9Sk= Subject key identifier: C2:40:ED:4D:EE:FD:E0:BA:26:BB:B0:A7:4A:60:4F:B2:2C:A0:50:19 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 7F6A5C7750EA0440EF15CED1114A00346D8C0F76 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/AS38496.roa Signing time: Wed 26 Nov 2025 03:46:00 +0000 ROA not before: Wed 26 Nov 2025 03:41:00 +0000 ROA not after: Wed 25 Nov 2026 03:46:00 +0000 asID: 38496 IP address blocks: 103.31.156.0/22 maxlen: 24 112.78.96.0/21 maxlen: 24 114.31.240.0/24 maxlen: 24 114.31.241.0/24 maxlen: 24 114.31.242.0/24 maxlen: 24 114.31.243.0/24 maxlen: 24 114.31.244.0/24 maxlen: 24 114.31.245.0/24 maxlen: 24 114.31.246.0/24 maxlen: 24 114.31.247.0/24 maxlen: 24 114.110.40.0/21 maxlen: 24 114.134.72.0/21 maxlen: 24 115.178.120.0/24 maxlen: 24 115.178.121.0/24 maxlen: 24 115.178.122.0/24 maxlen: 24 116.66.200.0/21 maxlen: 21 116.66.200.0/23 maxlen: 23 116.66.200.0/24 maxlen: 24 116.66.201.0/24 maxlen: 24 116.66.202.0/23 maxlen: 24 116.66.202.0/24 maxlen: 24 116.66.203.0/24 maxlen: 24 116.66.204.0/24 maxlen: 24 116.66.206.0/23 maxlen: 23 116.66.206.0/24 maxlen: 24 116.66.207.0/24 maxlen: 24 116.254.120.0/21 maxlen: 24 117.103.8.0/24 maxlen: 24 117.103.9.0/24 maxlen: 24 117.103.10.0/24 maxlen: 24 117.103.11.0/24 maxlen: 24 117.103.12.0/24 maxlen: 24 117.103.13.0/24 maxlen: 24 117.103.14.0/24 maxlen: 24 117.103.15.0/24 maxlen: 24 182.23.160.0/24 maxlen: 24 182.23.161.0/24 maxlen: 24 182.23.163.0/24 maxlen: 24 182.23.164.0/24 maxlen: 24 182.23.165.0/24 maxlen: 24 182.23.166.0/24 maxlen: 24 182.23.167.0/24 maxlen: 24 182.23.168.0/24 maxlen: 24 182.23.169.0/24 maxlen: 24 182.23.172.0/24 maxlen: 24 182.23.173.0/24 maxlen: 24 182.23.174.0/24 maxlen: 24 202.87.176.0/24 maxlen: 24 202.87.184.0/24 maxlen: 24 202.87.188.0/24 maxlen: 24 203.191.40.0/24 maxlen: 24 203.191.41.0/24 maxlen: 24 203.191.42.0/24 maxlen: 24 203.191.43.0/24 maxlen: 24 203.191.47.0/24 maxlen: 24 223.27.144.0/24 maxlen: 24 223.27.145.0/24 maxlen: 24 223.27.146.0/24 maxlen: 24 223.27.148.0/24 maxlen: 24 223.27.149.0/24 maxlen: 24 223.27.150.0/23 maxlen: 24 223.27.150.0/24 maxlen: 24 223.27.151.0/24 maxlen: 24 223.27.152.0/24 maxlen: 24 223.27.153.0/24 maxlen: 24 223.27.154.0/23 maxlen: 24 223.27.154.0/24 maxlen: 24 223.27.156.0/24 maxlen: 24 223.27.157.0/24 maxlen: 24 223.27.158.0/24 maxlen: 24 223.27.159.0/24 maxlen: 24 2401:2400::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 04:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:6a:5c:77:50:ea:04:40:ef:15:ce:d1:11:4a:00:34:6d:8c:0f:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Nov 26 03:41:00 2025 GMT Not After : Nov 25 03:46:00 2026 GMT Subject: CN=C240ED4DEEFDE0BA26BBB0A74A604FB22CA05019 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ea:7c:2c:70:04:a9:93:24:38:b8:e8:5f:47: 4c:e2:dd:90:3a:c5:10:a0:81:d3:cc:b1:59:d5:04: 79:94:e3:a1:33:56:0b:f6:8d:e1:05:e7:49:af:a6: 49:7c:27:9a:97:2e:c4:47:28:2b:2b:16:9b:cf:78: dc:39:cc:d1:8f:b4:7f:d5:7f:d6:f7:f9:b2:53:2b: 68:34:98:d3:4c:c0:74:60:9b:bc:bb:46:88:1a:4a: a6:15:4b:df:cd:5b:13:85:6d:cf:0f:c5:44:f0:29: 8a:69:5e:24:9d:93:71:ba:2b:4d:cd:9f:65:19:16: 33:d2:93:ff:82:f3:07:0f:3c:3f:14:14:32:29:a6: c7:6a:e9:ff:20:ca:15:87:08:3d:49:c4:04:8b:f9: 30:3b:7b:84:40:84:70:5f:3b:06:8f:39:1e:6f:90: 20:3c:93:66:ef:97:72:75:6d:82:f9:68:a7:37:2f: aa:ba:58:60:97:ba:08:df:b5:b9:63:97:45:4d:1f: 34:d0:a3:22:89:dd:17:fb:31:0e:0e:28:00:ed:4b: 34:2e:c4:f8:54:c2:17:5a:72:fb:6a:90:28:b6:b6: 38:54:c4:e7:95:dd:d1:33:f4:0d:3e:0e:6f:7e:0b: 58:0f:9d:f8:23:d5:98:65:06:55:5d:6e:2a:30:fa: b5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:40:ED:4D:EE:FD:E0:BA:26:BB:B0:A7:4A:60:4F:B2:2C:A0:50:19 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/AS38496.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.156.0/22 112.78.96.0/21 114.31.240.0/21 114.110.40.0/21 114.134.72.0/21 115.178.120.0-115.178.122.255 116.66.200.0/21 116.254.120.0/21 117.103.8.0/21 182.23.160.0/23 182.23.163.0-182.23.169.255 182.23.172.0-182.23.174.255 202.87.176.0/24 202.87.184.0/24 202.87.188.0/24 203.191.40.0/22 203.191.47.0/24 223.27.144.0-223.27.146.255 223.27.148.0-223.27.159.255 IPv6: 2401:2400::/32 Signature Algorithm: sha256WithRSAEncryption 4b:4d:fd:5a:6d:cc:bd:fe:3e:46:34:17:c6:05:a7:41:aa:33: 8c:14:17:61:3b:ec:c9:47:cd:15:ce:67:88:1a:1f:d7:94:55: f6:80:30:bc:66:7f:7b:31:75:48:c4:8c:e4:e1:5a:39:e6:bd: 46:02:03:24:c3:1e:81:ae:f2:d0:a0:4b:5c:5c:5e:08:ae:19: 65:76:00:0a:3e:03:fe:c8:66:23:ca:db:03:e4:02:41:75:2f: 2d:d0:74:22:2d:24:12:9e:9a:12:47:54:5d:0e:ca:a5:bc:45: f5:e6:bf:c9:61:30:12:f8:87:56:b0:86:70:41:f5:af:98:37: d6:d9:3f:51:b0:d3:90:93:d1:f1:97:5e:5a:28:fb:81:b1:36: a4:5a:f6:1b:80:bc:bc:e5:70:06:b9:e1:b8:b4:51:94:dd:1a: b7:e9:4f:61:5b:94:e1:7d:45:37:a6:61:92:73:99:01:66:11: 06:0d:7b:a5:11:68:42:ef:bd:39:70:59:ac:88:c9:2f:8b:c3: 32:54:10:60:10:a8:8f:dc:0a:8a:95:89:41:7d:8e:13:3d:0d: a2:22:ed:00:65:e6:30:6d:dc:54:f3:0d:03:81:81:7d:89:aa: 5f:b0:bd:6e:7b:fd:71:7b:c2:be:c6:94:94:ee:7a:a5:83:96: 67:0b:b9:eb -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUf2pcd1DqBEDvFc7REUoANG2MD3YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNTExMjYwMzQxMDBaFw0yNjExMjUwMzQ2MDBaMDMxMTAvBgNV BAMTKEMyNDBFRDRERUVGREUwQkEyNkJCQjBBNzRBNjA0RkIyMkNBMDUwMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC16nwscASpkyQ4uOhfR0zi3ZA6 xRCggdPMsVnVBHmU46EzVgv2jeEF50mvpkl8J5qXLsRHKCsrFpvPeNw5zNGPtH/V f9b3+bJTK2g0mNNMwHRgm7y7RogaSqYVS9/NWxOFbc8PxUTwKYppXiSdk3G6K03N n2UZFjPSk/+C8wcPPD8UFDIppsdq6f8gyhWHCD1JxASL+TA7e4RAhHBfOwaPOR5v kCA8k2bvl3J1bYL5aKc3L6q6WGCXugjftbljl0VNHzTQoyKJ3Rf7MQ4OKADtSzQu xPhUwhdacvtqkCi2tjhUxOeV3dEz9A0+Dm9+C1gPnfgj1ZhlBlVdbiow+rWJAgMB AAGjggKmMIICojAdBgNVHQ4EFgQUwkDtTe794Lomu7CnSmBPsiygUBkwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNyc3luYzovL3Jl cG8tcnBraS5pZG5pYy5uZXQvcmVwby9lODczNDlmYi00NjVlLTRlOGItYTk3NC05 MGU5MzliY2IwZmIvMC9BUzM4NDk2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMIHGBggrBgEFBQcBBwEB/wSBtjCBszCBoQQCAAEwgZoDBAJnH5wDBANwTmAD BANyH/ADBANybigDBANyhkgwDAMEA3OyeAMEAHOyegMEA3RCyAMEA3T+eAMEA3Vn CAMEAbYXoDAMAwQAthejAwQBtheoMAwDBAK2F6wDBAC2F64DBADKV7ADBADKV7gD BADKV7wDBALLvygDBADLvy8wDAMEBN8bkAMEAN8bkjAMAwQC3xuUAwQF3xuAMA0E AgACMAcDBQAkASQAMA0GCSqGSIb3DQEBCwUAA4IBAQBLTf1abcy9/j5GNBfGBadB qjOMFBdhO+zJR80VzmeIGh/XlFX2gDC8Zn97MXVIxIzk4Vo55r1GAgMkwx6BrvLQ oEtcXF4IrhlldgAKPgP+yGYjytsD5AJBdS8t0HQiLSQSnpoSR1RdDsqlvEX15r/J YTAS+IdWsIZwQfWvmDfW2T9RsNOQk9Hxl15aKPuBsTakWvYbgLy85XAGueG4tFGU 3Rq36U9hW5ThfUU3pmGSc5kBZhEGDXulEWhC7705cFmsiMkvi8MyVBBgEKiP3AqK lYlBfY4TPQ2iIu0AZeYwbdxU8w0DgYF9iapfsL1ue/1xe8K+xpSU7nqlg5ZnC7nr -----END CERTIFICATE-----Generated at Sun Dec 7 03:06:38 2025 by rpki-client