This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/3130332e3134382e38352e302f32342d3234203d3e20313339393836.roa File: 3130332e3134382e38352e302f32342d3234203d3e20313339393836.roa (raw, json) Hash identifier: rC6h62i9FYTYXRJwY0Brz86k4I7okoBa0s60XGjIzcU= Subject key identifier: FB:83:56:07:99:3C:E2:90:B0:28:54:61:2B:8C:41:A0:F2:D8:D5:19 Certificate issuer: /CN=95C3BA7F23B6351721F77DA8020731F9DA46B3C8 Certificate serial: 66AD385636461ED1F53E7A78494AA3CDEDD68433 Authority key identifier: 95:C3:BA:7F:23:B6:35:17:21:F7:7D:A8:02:07:31:F9:DA:46:B3:C8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/3130332e3134382e38352e302f32342d3234203d3e20313339393836.roa Signing time: Wed 10 Dec 2025 10:00:02 +0000 ROA not before: Wed 10 Dec 2025 09:55:02 +0000 ROA not after: Wed 09 Dec 2026 10:00:02 +0000 asID: 139986 IP address blocks: 103.148.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.crl rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 03:08:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:ad:38:56:36:46:1e:d1:f5:3e:7a:78:49:4a:a3:cd:ed:d6:84:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95C3BA7F23B6351721F77DA8020731F9DA46B3C8 Validity Not Before: Dec 10 09:55:02 2025 GMT Not After : Dec 9 10:00:02 2026 GMT Subject: CN=FB835607993CE290B02854612B8C41A0F2D8D519 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:51:18:0d:12:7a:17:04:99:0f:b9:fa:51:81: f5:98:a4:82:d6:11:39:ba:b4:0a:14:76:ea:a3:56: 30:c5:15:6e:1c:4b:fc:45:e9:cf:80:16:b4:d6:e1: c7:f3:9c:4f:e9:2e:43:97:0b:4a:26:cd:94:e2:28: 11:24:09:f5:7e:87:fc:f3:8f:f2:94:25:74:a5:2f: e3:90:a7:4f:da:14:99:6d:58:20:06:19:70:c0:4b: aa:f2:de:0e:b9:59:08:46:be:c5:66:bf:9e:2b:94: fa:2a:c9:7a:81:f7:9d:b8:b3:ad:d8:d9:8f:79:c6: 4d:57:3b:81:95:dc:4e:83:31:a5:be:7e:ce:cf:b0: 66:68:00:44:9c:83:45:e9:02:a6:c5:45:2f:c7:da: 74:8d:72:cb:7b:5e:f4:d8:a0:47:50:ab:66:52:00: 03:af:d4:7e:a6:d0:9f:51:03:38:ad:4a:e3:08:49: d0:68:78:67:1f:c1:78:e1:c1:90:08:15:5d:78:c7: 6d:7c:0a:40:14:8b:3c:f2:80:8b:4e:fb:e2:f0:b5: 8a:9f:d9:bd:15:fc:c8:76:6f:94:b1:97:ba:82:52: 7e:7f:4b:e7:1b:75:60:89:d0:a5:e1:a3:93:48:82: 54:f3:bd:a5:6f:45:f6:f4:67:3a:ab:96:06:60:20: 59:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:83:56:07:99:3C:E2:90:B0:28:54:61:2B:8C:41:A0:F2:D8:D5:19 X509v3 Authority Key Identifier: keyid:95:C3:BA:7F:23:B6:35:17:21:F7:7D:A8:02:07:31:F9:DA:46:B3:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/3130332e3134382e38352e302f32342d3234203d3e20313339393836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.85.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:9d:ff:a9:69:7e:f6:e7:ae:48:9e:70:8a:22:5c:36:6b:96: 24:db:cc:b3:9a:cb:99:c1:f6:ac:7c:e9:31:3e:66:13:6d:51: 0e:5a:3f:e0:44:44:74:84:a4:1b:55:64:21:8a:74:ea:31:ce: 19:93:62:2e:b9:4b:19:99:bf:65:74:c8:b2:2d:b5:bb:96:6b: ef:f7:f0:bb:27:1f:1d:bf:34:50:88:82:ea:27:ba:01:e0:2d: 67:33:93:2a:0f:50:30:d8:e5:96:76:5f:76:49:95:a6:ea:ff: ca:4a:0b:91:b6:f4:83:19:b2:28:e6:df:7e:76:17:09:22:80: 7e:66:34:8c:4b:34:4f:c2:28:71:dc:53:55:fd:ec:d6:b2:70: 5d:2b:27:67:72:99:d8:75:0c:55:58:3b:19:ce:ac:d3:2a:a9: 42:44:7c:2f:4a:8c:e4:0c:f7:e0:de:94:66:44:49:2a:26:04: 50:b4:b0:95:73:6b:f6:4f:1a:17:93:a6:4e:9d:29:be:55:af: d1:a9:72:34:32:ad:68:ee:81:cb:f9:cf:0b:4a:bb:6c:ea:66: 50:4e:6c:30:aa:c6:e3:3b:7e:6e:cb:7c:5a:2a:3e:9e:62:44: 55:a0:fb:02:ec:e7:33:c5:7c:1c:dd:ff:b3:9b:39:ea:aa:c3: cb:ba:7d:23 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZq04VjZGHtH1Pnp4SUqjze3WhDMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVDM0JBN0YyM0I2MzUxNzIxRjc3REE4MDIwNzMxRjlE QTQ2QjNDODAeFw0yNTEyMTAwOTU1MDJaFw0yNjEyMDkxMDAwMDJaMDMxMTAvBgNV BAMTKEZCODM1NjA3OTkzQ0UyOTBCMDI4NTQ2MTJCOEM0MUEwRjJEOEQ1MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoURgNEnoXBJkPufpRgfWYpILW ETm6tAoUduqjVjDFFW4cS/xF6c+AFrTW4cfznE/pLkOXC0omzZTiKBEkCfV+h/zz j/KUJXSlL+OQp0/aFJltWCAGGXDAS6ry3g65WQhGvsVmv54rlPoqyXqB9524s63Y 2Y95xk1XO4GV3E6DMaW+fs7PsGZoAEScg0XpAqbFRS/H2nSNcst7XvTYoEdQq2ZS AAOv1H6m0J9RAzitSuMISdBoeGcfwXjhwZAIFV14x218CkAUizzygItO++LwtYqf 2b0V/Mh2b5Sxl7qCUn5/S+cbdWCJ0KXho5NIglTzvaVvRfb0ZzqrlgZgIFlfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+4NWB5k84pCwKFRhK4xBoPLY1RkwHwYDVR0j BBgwFoAUlcO6fyO2NRch932oAgcx+dpGs8gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDBlOWM5Zi1kNjA3LTQ0OTctYWYyOC00ZDJiOTA5MmQ1YTYvMC85NUMzQkE3RjIz QjYzNTE3MjFGNzdEQTgwMjA3MzFGOURBNDZCM0M4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVDM0JBN0YyM0I2MzUxNzIxRjc3REE4MDIwNzMxRjlEQTQ2 QjNDOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0MGU5YzlmLWQ2MDctNDQ5Ny1h ZjI4LTRkMmI5MDkyZDVhNi8wLzMxMzAzMzJlMzEzNDM4MmUzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5RVMA0GCSqG SIb3DQEBCwUAA4IBAQA/nf+paX72565InnCKIlw2a5Yk28yzmsuZwfasfOkxPmYT bVEOWj/gRER0hKQbVWQhinTqMc4Zk2IuuUsZmb9ldMiyLbW7lmvv9/C7Jx8dvzRQ iILqJ7oB4C1nM5MqD1Aw2OWWdl92SZWm6v/KSguRtvSDGbIo5t9+dhcJIoB+ZjSM SzRPwihx3FNV/ezWsnBdKydncpnYdQxVWDsZzqzTKqlCRHwvSozkDPfg3pRmREkq JgRQtLCVc2v2TxoXk6ZOnSm+Va/RqXI0Mq1o7oHL+c8LSrts6mZQTmwwqsbjO35u y3xaKj6eYkRVoPsC7OczxXwc3f+zmznqqsPLun0j -----END CERTIFICATE-----Generated at Fri Dec 19 12:09:02 2025 by rpki-client