This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/29b3be62-3597-4fe8-a795-fc9ba1202344/0/3130332e32302e3231392e302f32342d3234203d3e20313439393638.roa File: 3130332e32302e3231392e302f32342d3234203d3e20313439393638.roa (raw, json) Hash identifier: Qxhmm+FrOJl9N2gO3uMNdKcckPxH2c3YLUPCuEz7Xsg= Subject key identifier: 96:CB:BD:02:E9:9D:B5:07:DC:00:CA:BF:4B:07:A2:B8:67:77:DD:60 Certificate issuer: /CN=B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0 Certificate serial: 7636BB1FED91CFDDB75E4FF0E2A1F626CFEAB84A Authority key identifier: B4:38:1C:63:67:4B:5D:9A:9B:8C:44:C1:3C:F1:9E:7D:D3:21:F7:C0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/29b3be62-3597-4fe8-a795-fc9ba1202344/0/3130332e32302e3231392e302f32342d3234203d3e20313439393638.roa Signing time: Wed 03 Dec 2025 04:00:43 +0000 ROA not before: Wed 03 Dec 2025 03:55:43 +0000 ROA not after: Wed 02 Dec 2026 04:00:43 +0000 asID: 149968 IP address blocks: 103.20.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/29b3be62-3597-4fe8-a795-fc9ba1202344/0/B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0.crl rsync://repo-rpki.idnic.net/repo/29b3be62-3597-4fe8-a795-fc9ba1202344/0/B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 14:43:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:36:bb:1f:ed:91:cf:dd:b7:5e:4f:f0:e2:a1:f6:26:cf:ea:b8:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0 Validity Not Before: Dec 3 03:55:43 2025 GMT Not After : Dec 2 04:00:43 2026 GMT Subject: CN=96CBBD02E99DB507DC00CABF4B07A2B86777DD60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c0:81:fa:8d:a5:51:45:25:ec:80:85:b8:5d: 0f:5a:6c:a7:f7:40:fe:74:8e:5c:05:be:85:af:3e: d2:e9:e9:cc:37:c3:8e:06:cc:f0:0a:76:15:e3:9e: 88:bc:4e:2d:1f:04:a1:69:90:ce:f9:99:4c:c2:0e: d4:de:1f:0e:66:f1:38:18:b4:1d:b7:74:1a:24:95: 21:2c:63:3b:6e:1d:13:ce:7d:09:2a:e1:2e:83:fc: b0:2d:0d:2d:7f:57:80:58:c6:60:40:2d:70:c4:f7: ad:30:b2:f3:02:34:8f:48:19:8b:95:38:57:9f:af: cb:6f:08:ca:cd:b6:fc:b2:a6:e8:70:86:0f:6c:d4: 51:d0:79:8f:80:e3:fd:8c:21:0d:fd:36:12:87:b8: 21:38:1b:a5:62:0b:32:02:e1:cd:00:58:d6:18:78: c0:9c:96:a8:bb:19:4a:b3:48:14:1a:f7:75:6d:01: be:2e:a2:a1:a6:12:87:f6:0f:86:c1:5c:ff:b5:e2: 8d:bb:87:98:be:13:c4:28:56:cf:f6:91:86:5a:fe: 08:bf:2d:38:c5:29:f1:2b:4d:3d:a0:7c:13:6d:12: c6:0b:28:40:dd:28:5a:85:0e:23:e6:c8:b3:c7:00: 6a:08:e0:e7:88:85:b9:de:ea:2c:9a:f7:8f:1e:aa: 6e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:CB:BD:02:E9:9D:B5:07:DC:00:CA:BF:4B:07:A2:B8:67:77:DD:60 X509v3 Authority Key Identifier: keyid:B4:38:1C:63:67:4B:5D:9A:9B:8C:44:C1:3C:F1:9E:7D:D3:21:F7:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/29b3be62-3597-4fe8-a795-fc9ba1202344/0/B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B4381C63674B5D9A9B8C44C13CF19E7DD321F7C0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/29b3be62-3597-4fe8-a795-fc9ba1202344/0/3130332e32302e3231392e302f32342d3234203d3e20313439393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.219.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:be:f3:c2:e7:73:ab:62:a8:7e:99:ab:ee:90:98:3e:2d:82: c3:5d:18:73:0f:13:d7:3e:24:55:00:73:3c:60:ad:ee:1a:d4: 04:15:19:c6:ad:20:8b:c0:c9:de:fc:75:f3:69:26:d6:3b:40: 71:4a:9c:e0:cd:05:45:ce:fc:f0:06:90:43:22:83:62:1f:cd: a4:8b:33:28:c1:cf:ae:fc:eb:d6:f3:31:bc:4c:ff:29:2f:74: f6:0a:29:ea:a9:c8:d9:bf:43:d4:e3:8c:c7:e0:b6:80:44:30: 6c:c5:3d:d8:01:c4:fd:83:03:71:88:7d:0e:38:9e:fc:dc:55: f3:3f:38:a1:39:ae:66:f1:d0:00:9b:2b:f5:74:20:5a:94:f2: a2:26:bd:92:09:aa:6f:5a:37:7e:68:06:83:db:38:11:f1:01: 13:37:92:51:6c:28:ef:13:d0:c7:8e:bf:69:bd:80:78:12:29: 9b:85:c2:95:b2:4e:a7:ed:5d:d1:f9:64:01:bb:40:e3:5b:bc: d4:26:c6:fe:8c:dc:22:15:eb:50:ed:e2:35:0c:1f:f1:1e:06: d4:f3:8c:0a:fd:46:f5:7a:20:a1:3d:65:c0:f5:f1:e9:d7:c4: c9:4e:3d:86:56:c2:e0:a1:c3:a9:91:86:13:75:fb:3b:f5:8f: 68:02:93:6f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdja7H+2Rz923Xk/w4qH2Js/quEowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjQzODFDNjM2NzRCNUQ5QTlCOEM0NEMxM0NGMTlFN0RE MzIxRjdDMDAeFw0yNTEyMDMwMzU1NDNaFw0yNjEyMDIwNDAwNDNaMDMxMTAvBgNV BAMTKDk2Q0JCRDAyRTk5REI1MDdEQzAwQ0FCRjRCMDdBMkI4Njc3N0RENjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTwIH6jaVRRSXsgIW4XQ9abKf3 QP50jlwFvoWvPtLp6cw3w44GzPAKdhXjnoi8Ti0fBKFpkM75mUzCDtTeHw5m8TgY tB23dBoklSEsYztuHRPOfQkq4S6D/LAtDS1/V4BYxmBALXDE960wsvMCNI9IGYuV OFefr8tvCMrNtvyypuhwhg9s1FHQeY+A4/2MIQ39NhKHuCE4G6ViCzIC4c0AWNYY eMCclqi7GUqzSBQa93VtAb4uoqGmEof2D4bBXP+14o27h5i+E8QoVs/2kYZa/gi/ LTjFKfErTT2gfBNtEsYLKEDdKFqFDiPmyLPHAGoI4OeIhbne6iya948eqm7PAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlsu9AumdtQfcAMq/SweiuGd33WAwHwYDVR0j BBgwFoAUtDgcY2dLXZqbjETBPPGefdMh98AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OWIzYmU2Mi0zNTk3LTRmZTgtYTc5NS1mYzliYTEyMDIzNDQvMC9CNDM4MUM2MzY3 NEI1RDlBOUI4QzQ0QzEzQ0YxOUU3REQzMjFGN0MwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjQzODFDNjM2NzRCNUQ5QTlCOEM0NEMxM0NGMTlFN0REMzIx RjdDMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5YjNiZTYyLTM1OTctNGZlOC1h Nzk1LWZjOWJhMTIwMjM0NC8wLzMxMzAzMzJlMzIzMDJlMzIzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzkzNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxTbMA0GCSqG SIb3DQEBCwUAA4IBAQCfvvPC53OrYqh+mavukJg+LYLDXRhzDxPXPiRVAHM8YK3u GtQEFRnGrSCLwMne/HXzaSbWO0BxSpzgzQVFzvzwBpBDIoNiH82kizMowc+u/OvW 8zG8TP8pL3T2CinqqcjZv0PU44zH4LaARDBsxT3YAcT9gwNxiH0OOJ783FXzPzih Oa5m8dAAmyv1dCBalPKiJr2SCapvWjd+aAaD2zgR8QETN5JRbCjvE9DHjr9pvYB4 EimbhcKVsk6n7V3R+WQBu0DjW7zUJsb+jNwiFetQ7eI1DB/xHgbU84wK/Ub1eiCh PWXA9fHp18TJTj2GVsLgocOpkYYTdfs79Y9oApNv -----END CERTIFICATE-----Generated at Wed Dec 3 15:32:21 2025 by rpki-client