This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/3130332e32342e3134382e302f32322d3234203d3e203233393439.roa File: 3130332e32342e3134382e302f32322d3234203d3e203233393439.roa (raw, json) Hash identifier: ZdZBTzxEvF0Eo40CSK2hJ56qvhPrglPp9cbPLo54JU8= Subject key identifier: B6:BA:F7:FB:43:5F:C0:9C:5D:CC:A7:74:93:40:AE:7E:47:26:CA:4C Certificate issuer: /CN=8FB177AE83526D713C1240D5CEFAF73844F7F4E5 Certificate serial: 7BD286C609B4BE7A17378094964587CC3595E303 Authority key identifier: 8F:B1:77:AE:83:52:6D:71:3C:12:40:D5:CE:FA:F7:38:44:F7:F4:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/3130332e32342e3134382e302f32322d3234203d3e203233393439.roa Signing time: Mon 02 Jun 2025 01:02:59 +0000 ROA not before: Mon 02 Jun 2025 00:57:59 +0000 ROA not after: Mon 01 Jun 2026 01:02:59 +0000 asID: 23949 IP address blocks: 103.24.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.crl rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 09:07:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:d2:86:c6:09:b4:be:7a:17:37:80:94:96:45:87:cc:35:95:e3:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FB177AE83526D713C1240D5CEFAF73844F7F4E5 Validity Not Before: Jun 2 00:57:59 2025 GMT Not After : Jun 1 01:02:59 2026 GMT Subject: CN=B6BAF7FB435FC09C5DCCA7749340AE7E4726CA4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a6:7d:af:b7:2f:31:b0:de:90:44:e9:c9:16: 5a:da:8f:2a:aa:d2:92:d0:72:0b:b1:fc:4a:aa:38: 7a:c2:d3:d3:88:ed:a5:99:e8:21:08:37:dd:c9:73: 90:07:df:e8:72:0c:51:44:00:b5:7e:f7:67:66:df: a4:9b:3a:62:86:88:b9:8f:df:a8:45:fd:7a:78:75: e6:fe:23:51:5e:03:32:6e:a7:89:1d:b8:9c:73:83: 22:cc:bd:fa:60:4c:b9:e7:7a:fd:f4:f9:36:4f:4b: b0:ca:df:07:54:82:08:a4:4b:ab:8c:9f:d7:40:33: 3c:bf:ce:93:31:15:c1:5c:e2:e2:b3:2c:83:1f:ad: e6:9c:54:32:77:f9:6a:b4:e8:9d:e5:e2:b4:f7:ea: 3b:00:b8:35:18:04:0e:5a:99:5e:86:fe:7a:95:69: 9a:fe:58:14:59:50:c4:67:2e:9e:7f:0b:ea:ed:43: 7e:18:c4:7c:53:46:1d:fd:8e:09:40:78:c4:9f:52: 6d:ae:4c:3a:0a:aa:be:90:ca:b7:43:8f:d2:ee:a3: 61:0c:c0:a9:28:bf:1b:0e:04:87:d9:97:94:f0:4d: 1d:2a:6d:69:a4:58:32:21:af:52:6a:48:7d:44:3b: f6:af:49:7c:76:75:8f:01:4e:41:7f:20:9e:9e:97: 12:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:BA:F7:FB:43:5F:C0:9C:5D:CC:A7:74:93:40:AE:7E:47:26:CA:4C X509v3 Authority Key Identifier: keyid:8F:B1:77:AE:83:52:6D:71:3C:12:40:D5:CE:FA:F7:38:44:F7:F4:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/3130332e32342e3134382e302f32322d3234203d3e203233393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.148.0/22 Signature Algorithm: sha256WithRSAEncryption f1:2b:6d:24:66:e8:64:fe:0e:c6:d5:8d:70:3c:1f:58:2c:9c: 73:56:f3:cf:0f:65:81:ab:e9:04:2a:10:98:66:94:b9:42:45: 65:94:aa:01:bd:6d:63:3c:9f:92:97:11:c1:e3:f1:61:11:1f: 5e:d9:e9:fd:d3:83:54:58:b8:d6:14:0a:ed:b4:85:c9:40:2e: 28:0d:44:bf:d4:13:5e:6d:ff:29:1f:9d:11:f6:c5:f4:15:58: f8:db:0f:d6:b4:4e:8f:18:3e:35:96:8f:6a:93:88:47:ac:68: ca:b2:e4:16:15:24:7b:c6:bc:12:90:d8:2f:0f:7f:0a:e0:27: a4:d1:d4:10:0e:ea:bc:5c:e6:00:45:eb:13:16:cb:5c:32:ae: a4:30:5b:bb:41:dd:98:dd:d1:fa:94:e3:d3:65:c1:73:20:0d: a0:45:9c:ff:c7:21:39:5b:ca:22:27:1d:ca:b1:25:54:93:e7: ea:45:fb:b1:78:22:d4:e3:66:68:c2:92:67:83:20:d2:10:68: d9:c0:9a:aa:e5:9d:15:38:7c:f4:c1:5e:a4:1a:63:f4:b8:b4: d5:1c:f0:10:91:33:1f:cc:c2:41:67:c4:95:2b:46:cf:93:8c: 67:de:e5:f7:11:37:fa:32:3f:f4:ac:15:da:57:0b:21:0d:31: a5:87:b0:83 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUe9KGxgm0vnoXN4CUlkWHzDWV4wMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZCMTc3QUU4MzUyNkQ3MTNDMTI0MEQ1Q0VGQUY3Mzg0 NEY3RjRFNTAeFw0yNTA2MDIwMDU3NTlaFw0yNjA2MDEwMTAyNTlaMDMxMTAvBgNV BAMTKEI2QkFGN0ZCNDM1RkMwOUM1RENDQTc3NDkzNDBBRTdFNDcyNkNBNEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSpn2vty8xsN6QROnJFlrajyqq 0pLQcgux/EqqOHrC09OI7aWZ6CEIN93Jc5AH3+hyDFFEALV+92dm36SbOmKGiLmP 36hF/Xp4deb+I1FeAzJup4kduJxzgyLMvfpgTLnnev30+TZPS7DK3wdUggikS6uM n9dAMzy/zpMxFcFc4uKzLIMfreacVDJ3+Wq06J3l4rT36jsAuDUYBA5amV6G/nqV aZr+WBRZUMRnLp5/C+rtQ34YxHxTRh39jglAeMSfUm2uTDoKqr6QyrdDj9Luo2EM wKkovxsOBIfZl5TwTR0qbWmkWDIhr1JqSH1EO/avSXx2dY8BTkF/IJ6elxIvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUtrr3+0NfwJxdzKd0k0CufkcmykwwHwYDVR0j BBgwFoAUj7F3roNSbXE8EkDVzvr3OET39OUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YjY5ODIyYy0yZTIyLTQ4YmUtOGJhMi02MzRmNTgyYzJlY2IvMC84RkIxNzdBRTgz NTI2RDcxM0MxMjQwRDVDRUZBRjczODQ0RjdGNEU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEZCMTc3QUU4MzUyNkQ3MTNDMTI0MEQ1Q0VGQUY3Mzg0NEY3 RjRFNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJiNjk4MjJjLTJlMjItNDhiZS04 YmEyLTYzNGY1ODJjMmVjYi8wLzMxMzAzMzJlMzIzNDJlMzEzNDM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzIzMzM5MzQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcYlDANBgkqhkiG 9w0BAQsFAAOCAQEA8SttJGboZP4OxtWNcDwfWCycc1bzzw9lgavpBCoQmGaUuUJF ZZSqAb1tYzyfkpcRwePxYREfXtnp/dODVFi41hQK7bSFyUAuKA1Ev9QTXm3/KR+d EfbF9BVY+NsP1rROjxg+NZaPapOIR6xoyrLkFhUke8a8EpDYLw9/CuAnpNHUEA7q vFzmAEXrExbLXDKupDBbu0HdmN3R+pTj02XBcyANoEWc/8chOVvKIicdyrElVJPn 6kX7sXgi1ONmaMKSZ4Mg0hBo2cCaquWdFTh89MFepBpj9Li01RzwEJEzH8zCQWfE lStGz5OMZ97l9xE3+jI/9KwV2lcLIQ0xpYewgw== -----END CERTIFICATE-----Generated at Thu Dec 18 16:17:05 2025 by rpki-client