This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/3130332e3137322e3234322e302f32342d3234203d3e20313437303836.roa File: 3130332e3137322e3234322e302f32342d3234203d3e20313437303836.roa (raw, json) Hash identifier: 3lqgIQzyR6/7cSCmR5iJslHIsmApf6ImpEqOGdjCApk= Subject key identifier: 86:AB:6D:B1:F2:5B:36:D2:9A:6B:D9:95:12:FF:C1:9C:02:B6:56:83 Certificate issuer: /CN=E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F Certificate serial: 45613C3870AB4EB90F850A1F26EFA65FCDF5A664 Authority key identifier: E2:AE:EC:7D:F8:97:A9:D6:E4:F0:D1:D1:C4:31:2A:03:FA:F5:75:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/3130332e3137322e3234322e302f32342d3234203d3e20313437303836.roa Signing time: Sat 22 Nov 2025 16:00:02 +0000 ROA not before: Sat 22 Nov 2025 15:55:02 +0000 ROA not after: Sat 21 Nov 2026 16:00:02 +0000 asID: 147086 IP address blocks: 103.172.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F.crl rsync://repo-rpki.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 18:01:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:61:3c:38:70:ab:4e:b9:0f:85:0a:1f:26:ef:a6:5f:cd:f5:a6:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F Validity Not Before: Nov 22 15:55:02 2025 GMT Not After : Nov 21 16:00:02 2026 GMT Subject: CN=86AB6DB1F25B36D29A6BD99512FFC19C02B65683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:bb:b0:ec:18:97:54:76:89:ce:73:97:e6:1d: cd:ec:e0:7a:ef:ca:87:2d:73:5f:d0:0e:a7:59:a1: 2f:29:99:71:9a:dc:4a:b0:bb:e3:e0:af:15:9e:b6: b2:ff:a9:c5:9d:a0:26:f4:06:bc:58:6a:b8:c7:8a: 5c:21:89:1f:79:49:5f:ad:3d:4a:b8:f5:ff:d8:59: 50:ff:83:62:f3:15:a4:82:ee:a3:c6:41:2b:fa:40: e3:87:67:ee:c1:67:0d:a8:82:fe:d7:84:1b:29:06: c7:67:26:8b:84:66:f2:a9:0c:4b:e1:d1:06:b8:d5: 1e:24:50:ff:f5:02:0e:bc:bf:0a:70:6d:b9:e8:67: 92:37:8b:16:75:d6:f8:e4:73:92:4e:f4:24:00:8f: f2:8f:a0:9f:3f:b5:b5:43:f0:6a:71:fa:30:76:c6: 78:36:a1:ad:30:7d:36:69:b4:66:90:61:86:5c:bf: e6:21:ed:e9:ce:b3:44:5d:c7:a2:59:cf:f2:a4:56: fe:07:ce:16:b9:fe:bc:f0:ad:1d:45:8f:23:b2:f2: fa:5b:e6:ee:de:78:4c:af:77:a5:ec:e0:a9:23:fd: de:88:47:9e:99:85:e5:01:d6:db:ef:b1:90:2e:dd: e0:3b:bd:54:35:13:79:30:69:d8:3d:17:2d:b9:61: 7e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:AB:6D:B1:F2:5B:36:D2:9A:6B:D9:95:12:FF:C1:9C:02:B6:56:83 X509v3 Authority Key Identifier: keyid:E2:AE:EC:7D:F8:97:A9:D6:E4:F0:D1:D1:C4:31:2A:03:FA:F5:75:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/3130332e3137322e3234322e302f32342d3234203d3e20313437303836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.242.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:68:21:54:85:df:b0:ef:47:04:29:c4:d1:32:42:79:1e:db: 31:0a:c6:71:f5:3a:1e:59:3c:23:60:48:4c:16:4d:41:b4:38: 30:54:b1:17:bf:d2:50:dd:3f:55:6a:47:af:16:64:6d:57:78: 5b:47:3f:e0:88:70:be:53:fb:35:1f:95:78:d7:90:aa:78:c2: fe:99:19:3f:4c:88:de:72:86:e2:d8:fd:fc:ed:46:eb:f0:4a: fc:de:7d:9a:a1:1e:4b:32:c4:38:0b:9c:09:60:f4:32:66:11: 7a:1b:df:7b:26:71:2d:ad:bb:aa:4a:94:7b:27:e3:5a:73:1d: c1:87:a8:24:5a:fd:61:62:23:dc:34:d9:c3:dc:47:e2:f2:50: 9d:85:c8:02:9f:ff:8c:fd:94:f8:d9:14:75:ea:89:2c:63:89: 8a:cf:24:30:38:ba:0a:0c:31:19:8b:bf:a2:72:da:ec:2a:28: 8b:d2:bf:d6:bd:fa:84:3c:c3:5c:ae:20:21:81:46:82:74:61: e4:73:8c:fe:5d:1e:29:81:f0:f1:65:5a:e1:43:37:a7:6f:49: 3a:a8:3b:89:a2:a0:6e:53:e4:8b:4a:70:23:17:25:88:b3:df: 96:e1:c9:5e:b3:e1:f8:0b:b2:21:68:4d:36:73:e3:54:ce:fd: 86:fa:55:1a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURWE8OHCrTrkPhQofJu+mX831pmQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTJBRUVDN0RGODk3QTlENkU0RjBEMUQxQzQzMTJBMDNG QUY1NzU2RjAeFw0yNTExMjIxNTU1MDJaFw0yNjExMjExNjAwMDJaMDMxMTAvBgNV BAMTKDg2QUI2REIxRjI1QjM2RDI5QTZCRDk5NTEyRkZDMTlDMDJCNjU2ODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDru7DsGJdUdonOc5fmHc3s4Hrv yoctc1/QDqdZoS8pmXGa3Eqwu+PgrxWetrL/qcWdoCb0BrxYarjHilwhiR95SV+t PUq49f/YWVD/g2LzFaSC7qPGQSv6QOOHZ+7BZw2ogv7XhBspBsdnJouEZvKpDEvh 0Qa41R4kUP/1Ag68vwpwbbnoZ5I3ixZ11vjkc5JO9CQAj/KPoJ8/tbVD8Gpx+jB2 xng2oa0wfTZptGaQYYZcv+Yh7enOs0Rdx6JZz/KkVv4Hzha5/rzwrR1FjyOy8vpb 5u7eeEyvd6Xs4Kkj/d6IR56ZheUB1tvvsZAu3eA7vVQ1E3kwadg9Fy25YX4/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhqttsfJbNtKaa9mVEv/BnAK2VoMwHwYDVR0j BBgwFoAU4q7sffiXqdbk8NHRxDEqA/r1dW8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YjZkOGY5Ny1jODA2LTQ3OTktODVlMC04Y2NmMThkYmJiMzEvMC9FMkFFRUM3REY4 OTdBOUQ2RTRGMEQxRDFDNDMxMkEwM0ZBRjU3NTZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTJBRUVDN0RGODk3QTlENkU0RjBEMUQxQzQzMTJBMDNGQUY1 NzU2Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiNmQ4Zjk3LWM4MDYtNDc5OS04 NWUwLThjY2YxOGRiYmIzMS8wLzMxMzAzMzJlMzEzNzMyMmUzMjM0MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrPIwDQYJ KoZIhvcNAQELBQADggEBAHpoIVSF37DvRwQpxNEyQnke2zEKxnH1Oh5ZPCNgSEwW TUG0ODBUsRe/0lDdP1VqR68WZG1XeFtHP+CIcL5T+zUflXjXkKp4wv6ZGT9MiN5y huLY/fztRuvwSvzefZqhHksyxDgLnAlg9DJmEXob33smcS2tu6pKlHsn41pzHcGH qCRa/WFiI9w02cPcR+LyUJ2FyAKf/4z9lPjZFHXqiSxjiYrPJDA4ugoMMRmLv6Jy 2uwqKIvSv9a9+oQ8w1yuICGBRoJ0YeRzjP5dHimB8PFlWuFDN6dvSTqoO4mioG5T 5ItKcCMXJYiz35bhyV6z4fgLsiFoTTZz41TO/Yb6VRo= -----END CERTIFICATE-----Generated at Wed Dec 3 15:31:46 2025 by rpki-client