This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/3130332e3131382e3132342e302f32322d3234203d3e20313337333736.roa File: 3130332e3131382e3132342e302f32322d3234203d3e20313337333736.roa (raw, json) Hash identifier: shtmTa57+pxWxFUP615U/s617hiWKy/m/Dpc5lxTH4w= Subject key identifier: 51:B5:CA:23:86:AC:F0:25:BA:AF:C5:28:9F:93:05:12:C4:46:EE:B9 Certificate issuer: /CN=8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57 Certificate serial: 34107DAD83394EA02FC76190B5BF555E0F094C0C Authority key identifier: 8C:5F:A2:EB:D7:AF:40:39:38:83:FB:08:E7:1B:DF:41:AA:E2:0F:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/3130332e3131382e3132342e302f32322d3234203d3e20313337333736.roa Signing time: Fri 24 Oct 2025 19:01:02 +0000 ROA not before: Fri 24 Oct 2025 18:56:02 +0000 ROA not after: Fri 23 Oct 2026 19:01:02 +0000 asID: 137376 IP address blocks: 103.118.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.crl rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 10:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:10:7d:ad:83:39:4e:a0:2f:c7:61:90:b5:bf:55:5e:0f:09:4c:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57 Validity Not Before: Oct 24 18:56:02 2025 GMT Not After : Oct 23 19:01:02 2026 GMT Subject: CN=51B5CA2386ACF025BAAFC5289F930512C446EEB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:33:a9:8d:84:66:06:93:87:4c:a2:d7:58:90: c8:a3:c6:70:42:08:49:97:5c:00:76:fc:69:7a:6b: 9d:31:a2:43:e2:0f:25:f5:12:73:26:a0:68:1c:a8: 7e:83:ce:b6:93:db:ac:5e:85:8f:84:f3:dd:2b:68: a4:1f:a3:06:14:70:6b:80:d7:b3:4b:87:56:4a:d3: 2a:6a:97:06:20:ed:4a:11:dd:e0:4c:28:d1:98:3e: b2:1c:dd:22:9a:d2:d3:6b:df:13:90:c6:dd:aa:24: 5c:21:7a:df:83:3d:5d:1d:49:5f:35:04:65:49:63: 37:62:2f:91:2c:24:3f:c3:8e:aa:6f:7a:d7:8e:a1: b3:b9:3f:5e:44:81:04:2c:71:9d:53:87:ab:e2:97: 63:69:27:c3:87:a9:4a:6d:9f:60:4e:ea:b2:5a:51: 82:6c:0a:04:f4:9f:65:8f:fe:14:ec:be:dc:8c:95: 0d:f1:19:24:7e:09:f8:40:59:11:91:dc:25:98:d3: c9:71:d8:2f:4c:5c:af:45:05:3d:09:c5:a6:3d:12: 2c:d1:5e:e6:89:d3:36:54:c8:33:8c:f2:e8:d4:ce: 5a:56:56:1b:c3:9b:b2:7b:8b:f2:e4:e4:2c:50:2d: 42:cf:7d:d3:a9:2f:5e:d7:d5:a3:50:a9:b9:7b:5c: 2a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:B5:CA:23:86:AC:F0:25:BA:AF:C5:28:9F:93:05:12:C4:46:EE:B9 X509v3 Authority Key Identifier: keyid:8C:5F:A2:EB:D7:AF:40:39:38:83:FB:08:E7:1B:DF:41:AA:E2:0F:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/3130332e3131382e3132342e302f32322d3234203d3e20313337333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.118.124.0/22 Signature Algorithm: sha256WithRSAEncryption cb:ba:6a:36:25:63:e5:2b:1a:44:9a:16:1b:ee:66:2a:42:d7: 4f:24:3d:b6:09:1d:4a:4a:91:57:18:86:1b:7e:45:b3:1c:c3: 01:37:c1:86:4d:23:8e:21:22:4f:b9:c5:63:37:49:29:c1:a5: ab:68:b0:4e:4f:62:a5:7f:a5:e6:0a:55:e3:30:d8:f8:84:9b: bf:45:7d:48:54:9f:c3:f5:d1:ac:17:16:ad:91:5b:3f:f9:27: 4a:9a:cd:ec:84:e9:bc:87:bb:26:e6:18:e3:be:b5:2f:85:74: 65:ef:2e:5c:39:1e:02:bd:11:98:54:ce:d0:07:17:17:28:69: 2b:44:e2:45:6c:8c:ad:c6:0b:09:7b:b1:ab:22:62:66:13:89: 56:99:d6:6d:de:75:07:73:7c:25:e2:2e:9f:4b:df:c3:01:e8: 25:fc:5c:6d:1d:0d:0c:ac:a5:ae:78:ba:17:fc:8d:de:bf:da: 3c:db:61:06:99:2e:05:a7:f3:fa:ba:9d:d1:00:93:a7:55:64: 6e:c9:08:fc:2e:1e:58:8b:ed:c9:32:9f:04:ba:f3:89:4c:47: 24:ce:b2:c2:03:9c:be:c1:5f:84:e9:2b:26:4d:99:62:88:b8: 56:0c:d3:4b:76:f5:73:68:e0:c5:96:81:61:bb:ba:39:45:44: 35:da:ca:1d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNBB9rYM5TqAvx2GQtb9VXg8JTAwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEM1RkEyRUJEN0FGNDAzOTM4ODNGQjA4RTcxQkRGNDFB QUUyMEY1NzAeFw0yNTEwMjQxODU2MDJaFw0yNjEwMjMxOTAxMDJaMDMxMTAvBgNV BAMTKDUxQjVDQTIzODZBQ0YwMjVCQUFGQzUyODlGOTMwNTEyQzQ0NkVFQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuM6mNhGYGk4dMotdYkMijxnBC CEmXXAB2/Gl6a50xokPiDyX1EnMmoGgcqH6DzraT26xehY+E890raKQfowYUcGuA 17NLh1ZK0ypqlwYg7UoR3eBMKNGYPrIc3SKa0tNr3xOQxt2qJFwhet+DPV0dSV81 BGVJYzdiL5EsJD/DjqpveteOobO5P15EgQQscZ1Th6vil2NpJ8OHqUptn2BO6rJa UYJsCgT0n2WP/hTsvtyMlQ3xGSR+CfhAWRGR3CWY08lx2C9MXK9FBT0JxaY9EizR XuaJ0zZUyDOM8ujUzlpWVhvDm7J7i/Lk5CxQLULPfdOpL17X1aNQqbl7XCrNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUUbXKI4as8CW6r8Uon5MFEsRG7rkwHwYDVR0j BBgwFoAUjF+i69evQDk4g/sI5xvfQariD1cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDJhNWI1MS1iYzAwLTRkNmItODc2MS1jN2QwZDNmNmRlMTIvMC84QzVGQTJFQkQ3 QUY0MDM5Mzg4M0ZCMDhFNzFCREY0MUFBRTIwRjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEM1RkEyRUJEN0FGNDAzOTM4ODNGQjA4RTcxQkRGNDFBQUUy MEY1Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkMmE1YjUxLWJjMDAtNGQ2Yi04 NzYxLWM3ZDBkM2Y2ZGUxMi8wLzMxMzAzMzJlMzEzMTM4MmUzMTMyMzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzczMzM3MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJndnwwDQYJ KoZIhvcNAQELBQADggEBAMu6ajYlY+UrGkSaFhvuZipC108kPbYJHUpKkVcYhht+ RbMcwwE3wYZNI44hIk+5xWM3SSnBpatosE5PYqV/peYKVeMw2PiEm79FfUhUn8P1 0awXFq2RWz/5J0qazeyE6byHuybmGOO+tS+FdGXvLlw5HgK9EZhUztAHFxcoaStE 4kVsjK3GCwl7sasiYmYTiVaZ1m3edQdzfCXiLp9L38MB6CX8XG0dDQyspa54uhf8 jd6/2jzbYQaZLgWn8/q6ndEAk6dVZG7JCPwuHliL7ckynwS684lMRyTOssIDnL7B X4TpKyZNmWKIuFYM00t29XNo4MWWgWG7ujlFRDXayh0= -----END CERTIFICATE-----Generated at Wed Dec 3 15:27:14 2025 by rpki-client