This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3136382e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3136382e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: KZVD7OAboXTBhMUu53su70M8avlrOY8wZiIl8TEQgso= Subject key identifier: 82:46:40:E4:67:AA:44:DC:CA:62:F1:9F:92:63:49:C6:57:AD:BF:5A Certificate issuer: /CN=87C7B4B7933266A0A09E2290B0934622DD072C9B Certificate serial: 0FC42062F8594C95DC850CB138DECD56CC2DE2F9 Authority key identifier: 87:C7:B4:B7:93:32:66:A0:A0:9E:22:90:B0:93:46:22:DD:07:2C:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87C7B4B7933266A0A09E2290B0934622DD072C9B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3136382e302f32332d3234203d3e20313335343738.roa Signing time: Wed 05 Nov 2025 10:03:01 +0000 ROA not before: Wed 05 Nov 2025 09:58:01 +0000 ROA not after: Wed 04 Nov 2026 10:03:01 +0000 asID: 135478 IP address blocks: 103.121.168.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/87C7B4B7933266A0A09E2290B0934622DD072C9B.crl rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/87C7B4B7933266A0A09E2290B0934622DD072C9B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87C7B4B7933266A0A09E2290B0934622DD072C9B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 20:44:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:c4:20:62:f8:59:4c:95:dc:85:0c:b1:38:de:cd:56:cc:2d:e2:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87C7B4B7933266A0A09E2290B0934622DD072C9B Validity Not Before: Nov 5 09:58:01 2025 GMT Not After : Nov 4 10:03:01 2026 GMT Subject: CN=824640E467AA44DCCA62F19F926349C657ADBF5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b7:11:60:df:fa:73:b3:d1:c9:70:6f:b4:af: 79:16:d9:14:08:84:1a:06:a1:cb:f5:15:e8:f1:d6: 28:4a:10:5d:75:95:bb:d3:31:a6:e3:e6:0a:04:7d: 9e:bd:96:41:e5:07:c5:d9:2b:4b:47:5b:7f:d3:84: 75:f3:ee:74:9c:11:db:11:3e:a7:cd:a5:6c:05:62: f2:de:6f:d4:2b:1c:78:fd:6d:ac:6a:a8:4d:3e:11: bd:91:d1:1d:e7:da:db:89:83:f3:71:e2:10:d9:21: 77:18:fb:5f:02:bd:99:08:b0:b2:66:bd:2c:e0:20: e2:56:97:b2:ce:23:5c:06:bc:31:90:15:b8:b4:eb: 75:5c:91:63:27:e7:16:04:ab:18:bb:a7:8a:53:c0: 43:81:4a:68:73:0d:7d:26:d7:12:a7:b6:fc:a7:db: 24:56:f0:5e:96:87:5d:24:d8:7f:3b:ef:2e:b1:3a: b6:7a:2b:56:f3:89:8a:eb:84:01:3f:22:16:ac:a2: f2:2e:dc:e5:51:f8:a8:41:7a:b1:cf:b8:12:d6:63: 72:0d:18:c9:9b:19:a7:0f:b2:ef:7d:e5:1b:83:13: 1a:30:ca:83:6b:a4:a1:97:4e:62:ff:fd:00:78:60: 8d:80:72:a7:04:12:18:18:97:72:68:0a:7c:68:ea: 8b:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:46:40:E4:67:AA:44:DC:CA:62:F1:9F:92:63:49:C6:57:AD:BF:5A X509v3 Authority Key Identifier: keyid:87:C7:B4:B7:93:32:66:A0:A0:9E:22:90:B0:93:46:22:DD:07:2C:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/87C7B4B7933266A0A09E2290B0934622DD072C9B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87C7B4B7933266A0A09E2290B0934622DD072C9B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3136382e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.168.0/23 Signature Algorithm: sha256WithRSAEncryption 90:ae:39:62:82:e1:bc:41:f2:de:43:23:53:bc:d1:7e:3b:c2: e7:fe:41:5b:7b:1d:d4:4e:48:6e:29:c0:44:de:95:b2:ea:17: 28:30:83:2a:d6:85:10:57:8e:84:5e:aa:b2:ef:72:45:14:12: 49:5f:e8:3c:a6:48:e2:2d:89:73:90:b3:76:2e:64:bb:4e:a3: ad:3c:e7:ef:77:42:82:9e:ef:88:ca:76:85:1b:b1:16:f6:88: 85:6d:39:95:57:e7:e1:53:b2:e0:3f:d3:07:70:81:54:be:6b: 83:79:ac:7e:a5:c0:81:d7:08:aa:86:44:5c:8d:a4:20:10:9c: c4:eb:13:05:49:2a:bd:96:a3:87:dc:c3:ef:03:c7:68:70:02: 61:27:e9:5c:ae:24:ec:f2:14:dd:bd:b2:19:92:a7:ed:02:07: 15:ee:8d:75:6f:47:91:78:c8:cb:86:b9:3b:8e:14:11:67:c2: 8a:41:6f:ba:9d:e7:2f:08:e7:b3:04:3d:78:c5:3d:f4:2d:a1: 19:d2:97:4b:da:df:7d:62:60:6c:ea:28:13:8b:b7:bf:ca:b0: 23:2d:e1:c0:6e:7a:b5:98:25:fe:07:ce:cd:4a:c8:b8:d4:4a: 26:fe:b8:74:a8:60:46:ea:5f:ae:de:70:7e:fd:ea:6c:c8:00: 78:07:2f:21 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUD8QgYvhZTJXchQyxON7NVswt4vkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdDN0I0Qjc5MzMyNjZBMEEwOUUyMjkwQjA5MzQ2MjJE RDA3MkM5QjAeFw0yNTExMDUwOTU4MDFaFw0yNjExMDQxMDAzMDFaMDMxMTAvBgNV BAMTKDgyNDY0MEU0NjdBQTQ0RENDQTYyRjE5RjkyNjM0OUM2NTdBREJGNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWtxFg3/pzs9HJcG+0r3kW2RQI hBoGocv1Fejx1ihKEF11lbvTMabj5goEfZ69lkHlB8XZK0tHW3/ThHXz7nScEdsR PqfNpWwFYvLeb9QrHHj9baxqqE0+Eb2R0R3n2tuJg/Nx4hDZIXcY+18CvZkIsLJm vSzgIOJWl7LOI1wGvDGQFbi063VckWMn5xYEqxi7p4pTwEOBSmhzDX0m1xKntvyn 2yRW8F6Wh10k2H877y6xOrZ6K1bziYrrhAE/IhasovIu3OVR+KhBerHPuBLWY3IN GMmbGacPsu995RuDExowyoNrpKGXTmL//QB4YI2AcqcEEhgYl3JoCnxo6otJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUgkZA5GeqRNzKYvGfkmNJxletv1owHwYDVR0j BBgwFoAUh8e0t5MyZqCgniKQsJNGIt0HLJswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTU4YWYyNC00NjNiLTQ0ZDgtYjZmMC0zOWI4MmI0NThmNzUvMC84N0M3QjRCNzkz MzI2NkEwQTA5RTIyOTBCMDkzNDYyMkREMDcyQzlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODdDN0I0Qjc5MzMyNjZBMEEwOUUyMjkwQjA5MzQ2MjJERDA3 MkM5Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhNThhZjI0LTQ2M2ItNDRkOC1i NmYwLTM5YjgyYjQ1OGY3NS8wLzMxMzAzMzJlMzEzMjMxMmUzMTM2MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneagwDQYJ KoZIhvcNAQELBQADggEBAJCuOWKC4bxB8t5DI1O80X47wuf+QVt7HdROSG4pwETe lbLqFygwgyrWhRBXjoReqrLvckUUEklf6DymSOItiXOQs3YuZLtOo6085+93QoKe 74jKdoUbsRb2iIVtOZVX5+FTsuA/0wdwgVS+a4N5rH6lwIHXCKqGRFyNpCAQnMTr EwVJKr2Wo4fcw+8Dx2hwAmEn6VyuJOzyFN29shmSp+0CBxXujXVvR5F4yMuGuTuO FBFnwopBb7qd5y8I57MEPXjFPfQtoRnSl0va331iYGzqKBOLt7/KsCMt4cBuerWY Jf4Hzs1KyLjUSib+uHSoYEbqX67ecH796mzIAHgHLyE= -----END CERTIFICATE-----Generated at Wed Dec 3 11:48:36 2025 by rpki-client