This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3137302e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3137302e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: hCEj/QyElaSlXw7fH2Elzk01Ogcjojp5yTlkppcV3sU= Subject key identifier: 8F:80:EC:18:22:4A:FC:20:E4:F4:E2:12:05:54:CE:3A:B1:14:53:3A Certificate issuer: /CN=87C7B4B7933266A0A09E2290B0934622DD072C9B Certificate serial: 5C84241DDFD23B0AE15C353A782402F9B7D52FE0 Authority key identifier: 87:C7:B4:B7:93:32:66:A0:A0:9E:22:90:B0:93:46:22:DD:07:2C:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87C7B4B7933266A0A09E2290B0934622DD072C9B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3137302e302f32332d3234203d3e20313335343738.roa Signing time: Wed 05 Nov 2025 10:03:01 +0000 ROA not before: Wed 05 Nov 2025 09:58:01 +0000 ROA not after: Wed 04 Nov 2026 10:03:01 +0000 asID: 135478 IP address blocks: 103.121.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/87C7B4B7933266A0A09E2290B0934622DD072C9B.crl rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/87C7B4B7933266A0A09E2290B0934622DD072C9B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87C7B4B7933266A0A09E2290B0934622DD072C9B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 20:44:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:84:24:1d:df:d2:3b:0a:e1:5c:35:3a:78:24:02:f9:b7:d5:2f:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87C7B4B7933266A0A09E2290B0934622DD072C9B Validity Not Before: Nov 5 09:58:01 2025 GMT Not After : Nov 4 10:03:01 2026 GMT Subject: CN=8F80EC18224AFC20E4F4E2120554CE3AB114533A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:07:b1:8d:14:70:fb:e4:47:c6:5b:92:ea:bb: f9:02:af:72:e2:34:5c:e8:88:aa:7f:6b:57:af:c6: 7a:53:c9:c5:22:e2:b8:2b:57:0c:f4:e5:44:23:e4: 25:0d:e6:2b:09:5d:27:96:86:f1:a2:97:cc:ae:19: e4:34:20:06:64:30:7b:61:21:3c:ec:72:33:44:29: fe:a3:6c:20:f8:24:37:92:39:2a:a8:aa:49:4d:c5: 47:77:72:3d:63:75:67:89:5a:00:d3:12:0c:e4:a9: be:7a:01:f5:84:29:2a:10:a7:de:12:c8:13:44:60: 8a:da:bb:c7:66:ea:dd:00:56:d0:31:ab:ca:ea:2f: 6b:42:dc:85:49:d2:ac:33:2a:98:0a:14:41:a6:7b: e0:fa:c0:46:2e:d1:46:61:98:b5:90:b6:6d:35:72: c5:58:3b:65:9d:81:3c:e8:7e:d8:51:1e:a8:2e:56: bf:0d:d2:bb:7c:87:7c:36:4d:6c:0d:c0:c6:5c:7b: 3a:c9:9e:8a:74:2e:74:62:37:2e:ec:cd:ad:6d:3e: 65:a9:ab:35:ba:ae:c4:a6:c1:d8:07:54:9d:77:ae: 0a:20:f1:c5:ba:b6:80:d4:56:84:f7:dc:97:20:d8: 87:a8:14:8c:92:ff:27:e8:07:4a:4b:03:67:16:cd: bf:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:80:EC:18:22:4A:FC:20:E4:F4:E2:12:05:54:CE:3A:B1:14:53:3A X509v3 Authority Key Identifier: keyid:87:C7:B4:B7:93:32:66:A0:A0:9E:22:90:B0:93:46:22:DD:07:2C:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/87C7B4B7933266A0A09E2290B0934622DD072C9B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87C7B4B7933266A0A09E2290B0934622DD072C9B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3137302e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.170.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:dc:4f:33:78:bc:b6:3c:2f:f3:90:5d:05:e8:af:ef:c7:25: 84:37:09:77:6d:53:de:be:85:f1:5e:78:61:37:2d:91:68:d7: 47:f7:f7:6d:de:5c:91:6a:78:7d:c8:45:f6:93:94:e2:93:b7: cd:da:e1:e0:2b:fb:f5:12:95:f2:68:4a:1a:19:d8:b5:a7:88: 48:9c:77:8f:70:e1:2b:a4:73:2b:80:a4:88:5c:d3:c5:e1:25: cc:13:f6:0b:b1:b8:e7:97:1e:c4:3c:6e:3a:d8:e4:bf:03:ae: 0f:54:41:5f:42:d9:10:95:d5:ae:02:2d:04:b8:91:be:3b:32: d2:e9:63:7c:63:62:b1:65:ad:e3:da:05:31:7c:c6:e1:2e:fc: cf:c8:df:b0:3a:03:cd:a1:88:64:dc:af:f3:3d:c4:9d:22:9d: 55:f3:ca:0e:a9:ab:22:8a:90:85:d1:cb:13:19:e1:3e:cd:f0: 80:be:d7:81:95:f1:97:86:88:e3:86:51:73:f3:e0:7a:ee:43: d7:dd:5b:4e:66:ea:29:dc:97:1b:3f:69:97:ce:05:7c:08:dd: ca:73:6d:ec:c4:34:14:97:b6:dd:0e:94:0d:4d:e3:2d:47:41: c5:f7:11:c8:cf:c2:19:38:18:a2:c8:78:56:d7:07:46:8e:e0: 73:a8:f3:44 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXIQkHd/SOwrhXDU6eCQC+bfVL+AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdDN0I0Qjc5MzMyNjZBMEEwOUUyMjkwQjA5MzQ2MjJE RDA3MkM5QjAeFw0yNTExMDUwOTU4MDFaFw0yNjExMDQxMDAzMDFaMDMxMTAvBgNV BAMTKDhGODBFQzE4MjI0QUZDMjBFNEY0RTIxMjA1NTRDRTNBQjExNDUzM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcB7GNFHD75EfGW5Lqu/kCr3Li NFzoiKp/a1evxnpTycUi4rgrVwz05UQj5CUN5isJXSeWhvGil8yuGeQ0IAZkMHth ITzscjNEKf6jbCD4JDeSOSqoqklNxUd3cj1jdWeJWgDTEgzkqb56AfWEKSoQp94S yBNEYIrau8dm6t0AVtAxq8rqL2tC3IVJ0qwzKpgKFEGme+D6wEYu0UZhmLWQtm01 csVYO2WdgTzofthRHqguVr8N0rt8h3w2TWwNwMZcezrJnop0LnRiNy7sza1tPmWp qzW6rsSmwdgHVJ13rgog8cW6toDUVoT33Jcg2IeoFIyS/yfoB0pLA2cWzb/5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUj4DsGCJK/CDk9OISBVTOOrEUUzowHwYDVR0j BBgwFoAUh8e0t5MyZqCgniKQsJNGIt0HLJswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTU4YWYyNC00NjNiLTQ0ZDgtYjZmMC0zOWI4MmI0NThmNzUvMC84N0M3QjRCNzkz MzI2NkEwQTA5RTIyOTBCMDkzNDYyMkREMDcyQzlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODdDN0I0Qjc5MzMyNjZBMEEwOUUyMjkwQjA5MzQ2MjJERDA3 MkM5Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhNThhZjI0LTQ2M2ItNDRkOC1i NmYwLTM5YjgyYjQ1OGY3NS8wLzMxMzAzMzJlMzEzMjMxMmUzMTM3MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneaowDQYJ KoZIhvcNAQELBQADggEBAE7cTzN4vLY8L/OQXQXor+/HJYQ3CXdtU96+hfFeeGE3 LZFo10f3923eXJFqeH3IRfaTlOKTt83a4eAr+/USlfJoShoZ2LWniEicd49w4Suk cyuApIhc08XhJcwT9guxuOeXHsQ8bjrY5L8Drg9UQV9C2RCV1a4CLQS4kb47MtLp Y3xjYrFlrePaBTF8xuEu/M/I37A6A82hiGTcr/M9xJ0inVXzyg6pqyKKkIXRyxMZ 4T7N8IC+14GV8ZeGiOOGUXPz4HruQ9fdW05m6inclxs/aZfOBXwI3cpzbezENBSX tt0OlA1N4y1HQcX3EcjPwhk4GKLIeFbXB0aO4HOo80Q= -----END CERTIFICATE-----Generated at Wed Dec 3 11:48:29 2025 by rpki-client