This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/3130332e3138312e3235322e302f32332d3234203d3e20313439333838.roa File: 3130332e3138312e3235322e302f32332d3234203d3e20313439333838.roa (raw, json) Hash identifier: +6hr9I24K4H44FcYhHYBXgx5KKaUgX1+M7GrBEyUPNA= Subject key identifier: 70:65:3A:52:CA:84:D1:19:13:0B:A3:DB:3D:88:14:53:80:7B:85:16 Certificate issuer: /CN=D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14 Certificate serial: 3FDD4BA7D654E9B1FABAEF19B5087598CC9186FE Authority key identifier: D2:9E:D5:B5:FC:4D:BF:FE:44:7D:DD:02:2C:0D:01:EB:00:BA:8F:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/3130332e3138312e3235322e302f32332d3234203d3e20313439333838.roa Signing time: Thu 06 Nov 2025 09:02:50 +0000 ROA not before: Thu 06 Nov 2025 08:57:50 +0000 ROA not after: Thu 05 Nov 2026 09:02:50 +0000 asID: 149388 IP address blocks: 103.181.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.crl rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 15:30:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:dd:4b:a7:d6:54:e9:b1:fa:ba:ef:19:b5:08:75:98:cc:91:86:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14 Validity Not Before: Nov 6 08:57:50 2025 GMT Not After : Nov 5 09:02:50 2026 GMT Subject: CN=70653A52CA84D119130BA3DB3D881453807B8516 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:73:87:cd:07:e8:8b:9d:45:87:a9:8e:4c:54: 24:c0:9d:ce:71:e8:a4:6e:46:cf:fd:42:07:6b:fd: d8:fb:21:88:5b:d3:04:35:bf:50:7e:d9:74:e3:34: 85:13:5c:f6:17:0d:22:a4:8d:6c:91:f2:43:c7:01: 42:09:99:26:2a:ce:88:41:ac:93:dc:4f:6b:b2:03: d7:a2:12:29:89:f6:02:2e:38:46:c5:3e:f4:79:f4: cb:e9:89:be:b5:a8:85:07:7b:45:b3:2e:3c:bd:1f: c6:6f:7c:27:38:f3:f7:2f:34:84:33:19:df:b7:3c: 6e:94:33:44:6d:b4:e9:65:4b:df:6f:50:18:aa:33: 7b:17:9e:24:20:ca:a7:a5:7c:71:51:4d:20:60:9d: 92:41:d1:7e:a2:80:71:f9:83:ac:dd:55:8f:c2:8b: 9c:73:ad:ee:b6:f0:c0:d5:e6:73:ca:b1:c3:c9:59: 51:23:9f:11:f7:16:6e:2f:e1:f3:8d:2d:e0:c1:50: f6:0d:4f:44:c9:e0:c0:32:1f:75:93:35:fc:7c:69: 9e:b4:f7:87:e1:0c:12:ca:58:c5:3d:80:55:d9:72: dd:d8:4c:21:57:90:dc:6d:1d:aa:d7:8c:46:fa:06: 42:7a:39:e3:6d:f0:9c:5d:9e:63:8a:db:5a:7a:c4: 47:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:65:3A:52:CA:84:D1:19:13:0B:A3:DB:3D:88:14:53:80:7B:85:16 X509v3 Authority Key Identifier: keyid:D2:9E:D5:B5:FC:4D:BF:FE:44:7D:DD:02:2C:0D:01:EB:00:BA:8F:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/3130332e3138312e3235322e302f32332d3234203d3e20313439333838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.181.252.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:63:5c:c8:6e:bd:68:15:83:32:f7:89:7a:44:e1:b3:4a:84: 71:32:cf:e1:90:72:81:95:ed:4e:bd:3b:e9:6b:8f:77:3e:4b: 80:5b:88:e6:ed:b3:5a:8b:05:e0:88:a4:1f:ed:40:f4:29:4b: 12:b7:89:4a:7e:e2:98:e2:b9:4a:55:47:be:7b:6a:f8:a2:59: 02:fc:30:e8:d6:85:4b:db:6b:9b:7f:bc:95:aa:3e:32:f3:64: 44:89:b4:fc:82:ea:4d:4f:86:b4:5c:a1:52:b9:d8:a6:68:46: df:04:66:06:5d:a7:99:c3:65:4f:3e:b4:23:dd:d2:20:77:80: 1a:63:e1:b7:04:6b:25:81:35:63:63:0a:f5:09:6f:49:2b:fd: aa:42:5e:4f:ee:c2:1b:94:14:50:19:cc:6a:44:89:64:a9:98: c0:f5:b4:7e:55:47:9b:89:9b:c5:6d:63:14:3d:62:a3:4b:86: c5:d9:25:5d:41:ca:f7:91:01:92:11:e7:22:15:64:fd:6e:e0: 43:86:74:e1:ae:ab:2e:13:73:8a:2c:c0:60:94:c5:6d:ca:2f: f3:ca:db:f7:41:6d:05:d8:6d:b6:e2:3c:a6:46:64:e8:a5:b1: aa:85:22:d7:e6:db:1d:7c:fa:d0:4e:f1:c4:a8:2c:59:c2:e0: 2e:10:5f:46 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUP91Lp9ZU6bH6uu8ZtQh1mMyRhv4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI5RUQ1QjVGQzREQkZGRTQ0N0RERDAyMkMwRDAxRUIw MEJBOEYxNDAeFw0yNTExMDYwODU3NTBaFw0yNjExMDUwOTAyNTBaMDMxMTAvBgNV BAMTKDcwNjUzQTUyQ0E4NEQxMTkxMzBCQTNEQjNEODgxNDUzODA3Qjg1MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBc4fNB+iLnUWHqY5MVCTAnc5x 6KRuRs/9Qgdr/dj7IYhb0wQ1v1B+2XTjNIUTXPYXDSKkjWyR8kPHAUIJmSYqzohB rJPcT2uyA9eiEimJ9gIuOEbFPvR59Mvpib61qIUHe0WzLjy9H8ZvfCc48/cvNIQz Gd+3PG6UM0RttOllS99vUBiqM3sXniQgyqelfHFRTSBgnZJB0X6igHH5g6zdVY/C i5xzre628MDV5nPKscPJWVEjnxH3Fm4v4fONLeDBUPYNT0TJ4MAyH3WTNfx8aZ60 94fhDBLKWMU9gFXZct3YTCFXkNxtHarXjEb6BkJ6OeNt8JxdnmOK21p6xEclAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUcGU6UsqE0RkTC6PbPYgUU4B7hRYwHwYDVR0j BBgwFoAU0p7VtfxNv/5Efd0CLA0B6wC6jxQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODUyNDNlNS1jNjYwLTQxMTItYmRjMy01OTQ0MTJkZWRjNGQvMC9EMjlFRDVCNUZD NERCRkZFNDQ3REREMDIyQzBEMDFFQjAwQkE4RjE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI5RUQ1QjVGQzREQkZGRTQ0N0RERDAyMkMwRDAxRUIwMEJB OEYxNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI4NTI0M2U1LWM2NjAtNDExMi1i ZGMzLTU5NDQxMmRlZGM0ZC8wLzMxMzAzMzJlMzEzODMxMmUzMjM1MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzkzMzM4Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFntfwwDQYJ KoZIhvcNAQELBQADggEBACpjXMhuvWgVgzL3iXpE4bNKhHEyz+GQcoGV7U69O+lr j3c+S4BbiObts1qLBeCIpB/tQPQpSxK3iUp+4pjiuUpVR757aviiWQL8MOjWhUvb a5t/vJWqPjLzZESJtPyC6k1PhrRcoVK52KZoRt8EZgZdp5nDZU8+tCPd0iB3gBpj 4bcEayWBNWNjCvUJb0kr/apCXk/uwhuUFFAZzGpEiWSpmMD1tH5VR5uJm8VtYxQ9 YqNLhsXZJV1ByveRAZIR5yIVZP1u4EOGdOGuqy4Tc4oswGCUxW3KL/PK2/dBbQXY bbbiPKZGZOilsaqFItfm2x18+tBO8cSoLFnC4C4QX0Y= -----END CERTIFICATE-----Generated at Wed Dec 3 16:13:55 2025 by rpki-client