This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/3130332e382e35362e302f32322d3234203d3e203435373037.roa File: 3130332e382e35362e302f32322d3234203d3e203435373037.roa (raw, json) Hash identifier: C5Tq331HOxIpoDyCifcP3xL7Rqpg2//FSSaLWr+UtUo= Subject key identifier: A4:9D:67:F2:9C:B5:C8:E8:85:AF:C3:4B:12:54:CB:98:32:93:89:03 Certificate issuer: /CN=754BC04892430632A8C965AF4C5B71C59B2A3CCB Certificate serial: 72CB2D9F33263D42521D7D045773263EFCDC7FA7 Authority key identifier: 75:4B:C0:48:92:43:06:32:A8:C9:65:AF:4C:5B:71:C5:9B:2A:3C:CB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/754BC04892430632A8C965AF4C5B71C59B2A3CCB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/3130332e382e35362e302f32322d3234203d3e203435373037.roa Signing time: Fri 28 Nov 2025 08:02:30 +0000 ROA not before: Fri 28 Nov 2025 07:57:30 +0000 ROA not after: Fri 27 Nov 2026 08:02:30 +0000 asID: 45707 IP address blocks: 103.8.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/754BC04892430632A8C965AF4C5B71C59B2A3CCB.crl rsync://repo-rpki.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/754BC04892430632A8C965AF4C5B71C59B2A3CCB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/754BC04892430632A8C965AF4C5B71C59B2A3CCB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 00:13:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:cb:2d:9f:33:26:3d:42:52:1d:7d:04:57:73:26:3e:fc:dc:7f:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=754BC04892430632A8C965AF4C5B71C59B2A3CCB Validity Not Before: Nov 28 07:57:30 2025 GMT Not After : Nov 27 08:02:30 2026 GMT Subject: CN=A49D67F29CB5C8E885AFC34B1254CB9832938903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b6:98:bd:87:3a:c7:f0:de:10:d8:b6:f7:87: 2a:00:ce:c1:55:be:14:3e:c6:61:02:56:58:bc:2e: 84:cf:12:d6:97:26:86:77:3e:5c:38:9b:65:b8:7f: db:4d:94:43:95:7b:d8:f6:77:b0:ca:d5:a2:48:ef: 88:39:2c:7e:57:97:9b:de:f7:eb:56:43:89:cf:d5: 59:9c:ec:49:dc:3a:17:80:81:2b:93:9f:c0:a2:5e: 9d:ff:bb:0f:f7:18:be:00:ab:2c:d5:db:60:ae:5a: 96:2d:ea:25:a7:32:b1:03:05:64:cc:9b:04:c4:b3: c8:f4:ec:16:b7:a4:de:56:20:ca:c1:8e:a5:eb:87: d0:5d:b9:d2:36:1e:36:15:74:52:77:07:16:08:72: 17:8e:2d:f7:36:65:9f:2c:a6:05:93:98:f3:50:b3: 80:3c:45:9e:d4:be:5e:68:e1:07:04:10:ef:92:8d: bd:7e:a8:d0:ff:50:ad:e9:68:e2:91:76:d4:7b:8f: ef:77:9f:a8:e2:a0:9f:6e:1b:7a:53:3a:d4:ac:15: 5c:45:a3:4e:2e:ff:e6:83:2c:e5:f8:b7:1d:22:c9: cd:1c:f4:72:b4:6b:e0:4a:bf:f9:0f:23:07:92:08: 04:06:8e:23:84:1f:88:1b:f7:f1:c7:14:7d:2c:46: 3e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:9D:67:F2:9C:B5:C8:E8:85:AF:C3:4B:12:54:CB:98:32:93:89:03 X509v3 Authority Key Identifier: keyid:75:4B:C0:48:92:43:06:32:A8:C9:65:AF:4C:5B:71:C5:9B:2A:3C:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/754BC04892430632A8C965AF4C5B71C59B2A3CCB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/754BC04892430632A8C965AF4C5B71C59B2A3CCB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/3130332e382e35362e302f32322d3234203d3e203435373037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.8.56.0/22 Signature Algorithm: sha256WithRSAEncryption 61:d4:f7:2b:2c:2a:11:eb:47:02:62:bd:6b:83:07:32:c1:31: aa:fb:e4:5a:81:db:0d:c3:e7:95:29:c6:b8:af:bb:a0:5a:9d: f7:24:1d:00:42:2a:72:95:a8:d4:c8:0a:96:2a:4a:e4:c3:9c: fe:e2:26:cb:61:b3:a7:a7:43:d0:06:d9:2e:eb:c0:a1:18:0e: a7:55:e4:ff:12:57:77:63:4e:db:df:6c:58:78:8d:db:d4:f9: e7:5e:ee:ed:39:72:70:f1:d8:91:80:1d:8e:c7:de:1d:3d:95: 11:28:9f:d8:52:be:a8:96:1f:0e:7c:9d:15:30:0d:5d:4d:02: a7:22:12:77:1a:97:d2:cf:e4:14:10:d5:9c:f1:77:3d:ef:12: 31:91:15:80:8b:67:59:10:4e:f7:91:13:f6:48:10:9f:29:65: 41:52:7d:4d:6d:ed:cd:20:13:df:06:85:56:b4:96:c6:5a:71: 77:c8:56:69:c6:25:84:f2:b6:8f:1e:d5:28:01:1d:17:c6:a8: e7:34:32:ab:d5:d0:8d:5a:9e:92:9b:b7:5c:bc:c3:dd:3c:d7: 56:06:9f:fa:2c:78:c9:6c:cd:9c:32:ba:e5:7f:c9:88:83:ee: c7:98:65:95:32:3e:47:d6:09:84:ee:8b:f4:95:a9:58:4c:6e: 2d:48:c9:f1 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUcsstnzMmPUJSHX0EV3MmPvzcf6cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzU0QkMwNDg5MjQzMDYzMkE4Qzk2NUFGNEM1QjcxQzU5 QjJBM0NDQjAeFw0yNTExMjgwNzU3MzBaFw0yNjExMjcwODAyMzBaMDMxMTAvBgNV BAMTKEE0OUQ2N0YyOUNCNUM4RTg4NUFGQzM0QjEyNTRDQjk4MzI5Mzg5MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUtpi9hzrH8N4Q2Lb3hyoAzsFV vhQ+xmECVli8LoTPEtaXJoZ3Plw4m2W4f9tNlEOVe9j2d7DK1aJI74g5LH5Xl5ve 9+tWQ4nP1Vmc7EncOheAgSuTn8CiXp3/uw/3GL4AqyzV22CuWpYt6iWnMrEDBWTM mwTEs8j07Ba3pN5WIMrBjqXrh9BdudI2HjYVdFJ3BxYIcheOLfc2ZZ8spgWTmPNQ s4A8RZ7Uvl5o4QcEEO+Sjb1+qND/UK3paOKRdtR7j+93n6jioJ9uG3pTOtSsFVxF o04u/+aDLOX4tx0iyc0c9HK0a+BKv/kPIweSCAQGjiOEH4gb9/HHFH0sRj73AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUpJ1n8py1yOiFr8NLElTLmDKTiQMwHwYDVR0j BBgwFoAUdUvASJJDBjKoyWWvTFtxxZsqPMswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGQyYmRlNC0wNTZiLTQ1YzYtODBiZi1mNWQ0ZDI3NzMzNmIvMC83NTRCQzA0ODky NDMwNjMyQThDOTY1QUY0QzVCNzFDNTlCMkEzQ0NCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzU0QkMwNDg5MjQzMDYzMkE4Qzk2NUFGNEM1QjcxQzU5QjJB M0NDQi5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjBkMmJkZTQtMDU2Yi00NWM2LTgw YmYtZjVkNGQyNzczMzZiLzAvMzEzMDMzMmUzODJlMzUzNjJlMzAyZjMyMzIyZDMy MzQyMDNkM2UyMDM0MzUzNzMwMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnCDgwDQYJKoZIhvcNAQEL BQADggEBAGHU9yssKhHrRwJivWuDBzLBMar75FqB2w3D55Upxrivu6BanfckHQBC KnKVqNTICpYqSuTDnP7iJsths6enQ9AG2S7rwKEYDqdV5P8SV3djTtvfbFh4jdvU +ede7u05cnDx2JGAHY7H3h09lREon9hSvqiWHw58nRUwDV1NAqciEncal9LP5BQQ 1Zzxdz3vEjGRFYCLZ1kQTveRE/ZIEJ8pZUFSfU1t7c0gE98GhVa0lsZacXfIVmnG JYTyto8e1SgBHRfGqOc0MqvV0I1anpKbt1y8w90811YGn/oseMlszZwyuuV/yYiD 7seYZZUyPkfWCYTui/SVqVhMbi1IyfE= -----END CERTIFICATE-----Generated at Wed Dec 3 14:45:49 2025 by rpki-client