This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131362e302f32322d3234203d3e203539323831.roa File: 3130332e3232382e3131362e302f32322d3234203d3e203539323831.roa (raw, json) Hash identifier: x2j2pkxj/5qJxIyLhEm0SjulNd461dE11VB/8v7mZzA= Subject key identifier: 19:8A:E5:DF:FF:70:55:15:CF:C8:F5:FC:F7:AC:17:F0:B5:2B:1B:48 Certificate issuer: /CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Certificate serial: 2B89145529A5B735214C9310FEBDC0A027AAC4B3 Authority key identifier: 84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131362e302f32322d3234203d3e203539323831.roa Signing time: Fri 28 Nov 2025 10:00:00 +0000 ROA not before: Fri 28 Nov 2025 09:55:00 +0000 ROA not after: Fri 27 Nov 2026 10:00:00 +0000 asID: 59281 IP address blocks: 103.228.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 13:03:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:89:14:55:29:a5:b7:35:21:4c:93:10:fe:bd:c0:a0:27:aa:c4:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Validity Not Before: Nov 28 09:55:00 2025 GMT Not After : Nov 27 10:00:00 2026 GMT Subject: CN=198AE5DFFF705515CFC8F5FCF7AC17F0B52B1B48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e7:c3:14:a1:30:39:16:ac:5e:ff:e4:b7:97: 26:fc:59:cf:50:b3:a9:33:a6:94:41:14:e2:1b:f4: 1f:aa:89:86:75:92:a7:8f:f9:a0:2a:6c:95:02:a8: 31:c8:ed:fa:60:7c:eb:ed:a9:1a:c4:41:0d:8a:61: d5:6b:d6:5d:9c:e9:5a:aa:80:11:0a:34:12:1b:3a: 61:d8:a5:1a:7a:cc:84:fd:ba:5d:95:3b:46:2c:c6: 4c:34:14:d3:c0:04:dd:4f:bd:76:a7:ec:1c:c2:3d: dc:c2:b7:e8:62:9b:dc:0e:4d:11:58:a6:03:bd:c2: 1f:93:63:52:85:90:8f:04:88:43:29:a3:8b:db:55: ef:71:3d:e6:c3:3b:e4:f6:5b:93:30:d5:b2:2c:ed: 9d:2f:ca:9e:02:4f:61:27:69:04:1f:e9:d8:43:dc: 8f:6d:f1:af:bd:e2:c3:d6:47:d1:fe:19:4b:cf:5d: 6c:6d:c2:33:1d:cf:c5:df:20:17:14:34:c0:36:85: 98:f0:99:89:f2:7e:d8:a6:d6:33:64:4a:c4:61:e6: e1:3c:97:43:6b:8a:65:ed:02:28:64:a3:01:b8:f9: 18:38:38:2e:51:6a:ad:f0:62:52:19:01:c5:d5:2b: 4a:b3:f0:7e:b4:ad:8e:aa:67:70:80:36:09:12:14: f8:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:8A:E5:DF:FF:70:55:15:CF:C8:F5:FC:F7:AC:17:F0:B5:2B:1B:48 X509v3 Authority Key Identifier: keyid:84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3130332e3232382e3131362e302f32322d3234203d3e203539323831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.228.116.0/22 Signature Algorithm: sha256WithRSAEncryption 66:e7:b3:a1:81:72:5b:6d:90:51:64:7e:d3:59:e3:1f:97:89: 89:df:6d:8c:b5:b7:71:f0:3a:b7:94:e6:04:2d:0d:2b:0f:86: e3:e7:2e:93:24:c3:b1:4d:47:b5:3e:9b:06:86:2e:08:f8:e1: 28:8c:f1:b2:57:9e:06:8a:2e:72:3d:8b:26:ef:84:78:7e:a9: 3b:1f:84:c5:68:c5:bd:50:d7:41:95:9e:5a:7c:e4:16:19:ac: 9a:cd:74:3e:44:db:e5:0c:a3:ec:f5:a4:93:bd:e1:c1:90:59: d6:df:4e:12:42:53:c8:75:d9:5a:14:dc:d7:4c:61:cb:32:b2: a8:b9:ea:bf:a6:a8:02:91:19:74:2b:88:15:e7:6d:32:09:a2: b5:63:43:00:99:d0:b7:68:2f:52:6f:0b:cb:19:ec:69:0d:36: 68:20:e9:61:53:f3:c5:93:74:d5:74:46:97:2e:a4:95:9e:ad: ee:d6:43:66:c2:56:b2:63:8b:10:31:3c:af:62:33:ca:e5:14: 76:87:53:a5:3c:1f:33:26:81:94:e6:0a:f6:b8:c2:f1:06:36: 05:39:74:ca:91:e6:d1:23:fc:75:d8:a4:2e:d7:72:d6:fd:a0: d0:39:99:3d:40:6b:78:38:31:33:c6:d6:96:97:92:bd:4f:bd: 07:c2:0e:97 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUK4kUVSmltzUhTJMQ/r3AoCeqxLMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0 ODUzMEU5RTAeFw0yNTExMjgwOTU1MDBaFw0yNjExMjcxMDAwMDBaMDMxMTAvBgNV BAMTKDE5OEFFNURGRkY3MDU1MTVDRkM4RjVGQ0Y3QUMxN0YwQjUyQjFCNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV58MUoTA5Fqxe/+S3lyb8Wc9Q s6kzppRBFOIb9B+qiYZ1kqeP+aAqbJUCqDHI7fpgfOvtqRrEQQ2KYdVr1l2c6Vqq gBEKNBIbOmHYpRp6zIT9ul2VO0Ysxkw0FNPABN1PvXan7BzCPdzCt+him9wOTRFY pgO9wh+TY1KFkI8EiEMpo4vbVe9xPebDO+T2W5Mw1bIs7Z0vyp4CT2EnaQQf6dhD 3I9t8a+94sPWR9H+GUvPXWxtwjMdz8XfIBcUNMA2hZjwmYnyftim1jNkSsRh5uE8 l0NrimXtAihkowG4+Rg4OC5Raq3wYlIZAcXVK0qz8H60rY6qZ3CANgkSFPjjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGYrl3/9wVRXPyPX896wX8LUrG0gwHwYDVR0j BBgwFoAUhGmHSuJo4s1OmhN+3VWZx0hTDp4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2EyZDI1Yi1jYjE4LTQ1YmUtOWZhMS0xNTRjYTE1NzkyMjMvMC84NDY5ODc0QUUy NjhFMkNENEU5QTEzN0VERDU1OTlDNzQ4NTMwRTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0ODUz MEU5RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3YTJkMjViLWNiMTgtNDViZS05 ZmExLTE1NGNhMTU3OTIyMy8wLzMxMzAzMzJlMzIzMjM4MmUzMTMxMzYyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM5MzIzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+R0MA0GCSqG SIb3DQEBCwUAA4IBAQBm57OhgXJbbZBRZH7TWeMfl4mJ322Mtbdx8Dq3lOYELQ0r D4bj5y6TJMOxTUe1PpsGhi4I+OEojPGyV54Gii5yPYsm74R4fqk7H4TFaMW9UNdB lZ5afOQWGayazXQ+RNvlDKPs9aSTveHBkFnW304SQlPIddlaFNzXTGHLMrKoueq/ pqgCkRl0K4gV520yCaK1Y0MAmdC3aC9SbwvLGexpDTZoIOlhU/PFk3TVdEaXLqSV nq3u1kNmwlayY4sQMTyvYjPK5RR2h1OlPB8zJoGU5gr2uMLxBjYFOXTKkebRI/x1 2KQu13LW/aDQOZk9QGt4ODEzxtaWl5K9T70Hwg6X -----END CERTIFICATE-----Generated at Wed Dec 3 16:40:54 2025 by rpki-client