This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/3130332e3137322e3234332e302f32342d3234203d3e20313437303836.roa File: 3130332e3137322e3234332e302f32342d3234203d3e20313437303836.roa (raw, json) Hash identifier: PNsGrsunNYvLcLEfdpgZYxKAz1Ra4qJ7YYKHTqQZiJg= Subject key identifier: 8F:EC:0F:11:1A:70:8C:21:B7:D3:8E:1C:31:05:E8:D8:53:DB:22:E3 Certificate issuer: /CN=E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F Certificate serial: 1D5CB1442F47CBC1F2001D4E8B74B46F321746BB Authority key identifier: E2:AE:EC:7D:F8:97:A9:D6:E4:F0:D1:D1:C4:31:2A:03:FA:F5:75:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/3130332e3137322e3234332e302f32342d3234203d3e20313437303836.roa Signing time: Sat 22 Nov 2025 16:00:02 +0000 ROA not before: Sat 22 Nov 2025 15:55:02 +0000 ROA not after: Sat 21 Nov 2026 16:00:02 +0000 asID: 147086 IP address blocks: 103.172.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F.crl rsync://repo-rpki.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 18:01:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:5c:b1:44:2f:47:cb:c1:f2:00:1d:4e:8b:74:b4:6f:32:17:46:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F Validity Not Before: Nov 22 15:55:02 2025 GMT Not After : Nov 21 16:00:02 2026 GMT Subject: CN=8FEC0F111A708C21B7D38E1C3105E8D853DB22E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d2:70:8d:f3:98:a7:2a:56:54:65:70:1e:6f: c1:c0:61:10:95:4c:f5:8c:c3:67:f6:d1:9e:12:35: df:66:3d:96:7e:5c:40:c0:93:d2:00:e7:f6:69:3c: 3d:19:68:8f:96:65:02:13:0d:7c:a4:c3:4a:24:62: eb:b7:f0:9d:25:33:09:b9:8c:7b:de:c4:a4:39:84: 6d:fc:8b:ee:00:8a:2e:d5:ca:d1:db:e1:3d:8f:1c: 60:5e:a7:9b:ef:bd:57:a8:66:ea:f9:f9:7f:2b:0a: d3:e9:78:a5:ab:05:2d:25:86:5f:89:53:ed:04:b5: 11:29:c5:08:08:fb:00:ba:c8:c0:1c:90:c6:8b:c2: d8:7d:a7:f1:4b:95:8e:f3:32:c1:c9:8e:75:1a:8e: c8:22:64:c0:1e:e5:42:4c:6a:ed:bb:82:55:ad:4e: 01:6f:a9:8e:bc:50:7a:a8:2e:95:16:2f:1a:a8:79: 37:aa:eb:50:32:98:81:24:c8:78:53:cb:3a:a6:1b: 34:07:98:84:3e:69:c0:75:01:e4:18:29:33:ed:01: 73:e5:91:45:e2:a2:c1:e7:b3:77:cf:0c:ee:e2:4b: 6a:e2:46:72:a6:4b:f4:20:76:c6:b1:35:35:30:a3: 7d:b2:f5:b3:71:c5:4b:9a:fa:9f:83:43:7b:97:7c: 96:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:EC:0F:11:1A:70:8C:21:B7:D3:8E:1C:31:05:E8:D8:53:DB:22:E3 X509v3 Authority Key Identifier: keyid:E2:AE:EC:7D:F8:97:A9:D6:E4:F0:D1:D1:C4:31:2A:03:FA:F5:75:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2AEEC7DF897A9D6E4F0D1D1C4312A03FAF5756F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b6d8f97-c806-4799-85e0-8ccf18dbbb31/0/3130332e3137322e3234332e302f32342d3234203d3e20313437303836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.243.0/24 Signature Algorithm: sha256WithRSAEncryption 45:0b:4c:3b:5b:59:d4:98:a4:bb:6c:0a:4c:c1:42:09:88:77: f6:bb:1d:d5:86:63:5b:f7:93:b5:44:7c:64:22:ec:e2:a7:c3: ca:bb:4f:c0:c6:b4:ea:3d:e4:22:a9:95:63:72:cb:c4:9b:61: 27:ff:4f:f3:a7:76:66:f1:b8:71:ea:73:cc:93:7a:58:78:d5: 17:85:0d:49:31:79:36:4d:fb:47:4d:4b:a6:41:c1:75:35:a6: 6a:5f:c1:01:f5:ee:8f:92:81:c5:4a:50:7d:f5:7f:a6:e9:42: 4b:50:ed:5d:72:b6:31:3b:08:20:7e:d7:65:59:0b:3c:53:80: b2:ca:30:65:99:ca:09:9b:62:96:0d:e2:bb:25:8d:8a:e4:98: d8:f0:67:dd:4a:a0:78:af:b6:3e:b8:41:14:7d:7f:22:7e:92: 09:51:90:98:b2:8d:ec:0f:6d:50:eb:7d:2e:d9:ed:14:b7:de: 7c:87:3f:65:d4:77:c1:94:04:d7:09:6c:11:b1:7e:7b:af:25: da:b9:55:13:18:3b:13:10:9e:81:63:d2:57:e9:bc:92:3d:4e: 5c:f8:af:ad:bf:44:8d:6b:be:ef:ee:69:65:c2:38:f7:3d:7e: 18:04:eb:cd:11:ae:3d:18:97:06:82:28:1a:c2:32:3e:d6:fc: 30:3d:83:e5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHVyxRC9Hy8HyAB1Oi3S0bzIXRrswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTJBRUVDN0RGODk3QTlENkU0RjBEMUQxQzQzMTJBMDNG QUY1NzU2RjAeFw0yNTExMjIxNTU1MDJaFw0yNjExMjExNjAwMDJaMDMxMTAvBgNV BAMTKDhGRUMwRjExMUE3MDhDMjFCN0QzOEUxQzMxMDVFOEQ4NTNEQjIyRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy0nCN85inKlZUZXAeb8HAYRCV TPWMw2f20Z4SNd9mPZZ+XEDAk9IA5/ZpPD0ZaI+WZQITDXykw0okYuu38J0lMwm5 jHvexKQ5hG38i+4Aii7VytHb4T2PHGBep5vvvVeoZur5+X8rCtPpeKWrBS0lhl+J U+0EtREpxQgI+wC6yMAckMaLwth9p/FLlY7zMsHJjnUajsgiZMAe5UJMau27glWt TgFvqY68UHqoLpUWLxqoeTeq61AymIEkyHhTyzqmGzQHmIQ+acB1AeQYKTPtAXPl kUXiosHns3fPDO7iS2riRnKmS/QgdsaxNTUwo32y9bNxxUua+p+DQ3uXfJbbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUj+wPERpwjCG3044cMQXo2FPbIuMwHwYDVR0j BBgwFoAU4q7sffiXqdbk8NHRxDEqA/r1dW8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YjZkOGY5Ny1jODA2LTQ3OTktODVlMC04Y2NmMThkYmJiMzEvMC9FMkFFRUM3REY4 OTdBOUQ2RTRGMEQxRDFDNDMxMkEwM0ZBRjU3NTZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTJBRUVDN0RGODk3QTlENkU0RjBEMUQxQzQzMTJBMDNGQUY1 NzU2Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiNmQ4Zjk3LWM4MDYtNDc5OS04 NWUwLThjY2YxOGRiYmIzMS8wLzMxMzAzMzJlMzEzNzMyMmUzMjM0MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrPMwDQYJ KoZIhvcNAQELBQADggEBAEULTDtbWdSYpLtsCkzBQgmId/a7HdWGY1v3k7VEfGQi 7OKnw8q7T8DGtOo95CKplWNyy8SbYSf/T/OndmbxuHHqc8yTelh41ReFDUkxeTZN +0dNS6ZBwXU1pmpfwQH17o+SgcVKUH31f6bpQktQ7V1ytjE7CCB+12VZCzxTgLLK MGWZygmbYpYN4rsljYrkmNjwZ91KoHivtj64QRR9fyJ+kglRkJiyjewPbVDrfS7Z 7RS33nyHP2XUd8GUBNcJbBGxfnuvJdq5VRMYOxMQnoFj0lfpvJI9Tlz4r62/RI1r vu/uaWXCOPc9fhgE680Rrj0YlwaCKBrCMj7W/DA9g+U= -----END CERTIFICATE-----Generated at Wed Dec 3 16:21:53 2025 by rpki-client