This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/347b0264-9a0a-4ce4-93cb-2cdd840b8534/0/3130332e37362e3130342e302f32342d3234203d3e20313531353839.roa File: 3130332e37362e3130342e302f32342d3234203d3e20313531353839.roa (raw, json) Hash identifier: y5O1Ppu2ytn4g8GvvxC2f7T0LX+os0fh9M12M0RIzb8= Subject key identifier: CA:42:4B:6C:D1:5A:EB:EF:86:B4:6E:51:5E:50:22:CA:F1:B8:F6:F0 Certificate issuer: /CN=1F4C46E18F21AFBE4D8AC9846090B63AA98782BB Certificate serial: 073D5AFFA45640B8B17A1AADE69956E097E6719D Authority key identifier: 1F:4C:46:E1:8F:21:AF:BE:4D:8A:C9:84:60:90:B6:3A:A9:87:82:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F4C46E18F21AFBE4D8AC9846090B63AA98782BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/347b0264-9a0a-4ce4-93cb-2cdd840b8534/0/3130332e37362e3130342e302f32342d3234203d3e20313531353839.roa Signing time: Sat 22 Nov 2025 14:00:00 +0000 ROA not before: Sat 22 Nov 2025 13:55:00 +0000 ROA not after: Sat 21 Nov 2026 14:00:00 +0000 asID: 151589 IP address blocks: 103.76.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/347b0264-9a0a-4ce4-93cb-2cdd840b8534/0/1F4C46E18F21AFBE4D8AC9846090B63AA98782BB.crl rsync://repo-rpki.idnic.net/repo/347b0264-9a0a-4ce4-93cb-2cdd840b8534/0/1F4C46E18F21AFBE4D8AC9846090B63AA98782BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F4C46E18F21AFBE4D8AC9846090B63AA98782BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 20:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:3d:5a:ff:a4:56:40:b8:b1:7a:1a:ad:e6:99:56:e0:97:e6:71:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F4C46E18F21AFBE4D8AC9846090B63AA98782BB Validity Not Before: Nov 22 13:55:00 2025 GMT Not After : Nov 21 14:00:00 2026 GMT Subject: CN=CA424B6CD15AEBEF86B46E515E5022CAF1B8F6F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:8c:ee:c3:36:2e:49:36:5b:60:b9:c6:ad:11: f1:da:3e:32:17:8e:15:53:1c:50:e3:00:6f:ac:c8: fd:7d:fb:13:9e:58:77:d1:51:01:a2:d7:b9:0b:35: 11:d7:fa:16:b7:82:c4:32:34:20:c3:8c:32:32:71: c0:ee:4b:b2:8a:e1:06:ac:93:fd:dc:e8:cc:d0:43: bf:0d:b0:d0:5d:45:f2:89:23:2f:e9:69:69:83:bc: 32:70:55:70:11:df:aa:77:e2:6d:80:45:d8:51:6e: de:07:71:4e:1c:91:aa:75:40:39:f4:90:00:05:7a: 42:e0:04:8d:26:dc:43:82:2a:36:c8:36:d4:f0:04: 49:84:c6:de:ef:4b:9d:6e:57:48:f0:79:1a:e5:53: 8a:2a:56:c1:96:5f:f0:d3:81:8a:32:19:60:87:29: 0e:b9:42:48:f9:91:14:d3:b7:5f:c1:b5:4f:61:f8: cf:91:06:39:a2:b7:32:8e:01:66:73:95:da:51:6c: 7d:51:96:57:c9:e9:ce:4b:22:d4:d8:ef:a5:8d:1f: 30:08:30:25:f9:a2:30:57:fd:80:6b:f4:03:bd:2f: 5a:ab:8a:80:18:70:c1:9a:99:8f:2b:9a:d2:4a:28: 3a:9c:23:6f:fd:cb:38:ca:bb:ef:c1:88:46:3a:d9: 6a:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:42:4B:6C:D1:5A:EB:EF:86:B4:6E:51:5E:50:22:CA:F1:B8:F6:F0 X509v3 Authority Key Identifier: keyid:1F:4C:46:E1:8F:21:AF:BE:4D:8A:C9:84:60:90:B6:3A:A9:87:82:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/347b0264-9a0a-4ce4-93cb-2cdd840b8534/0/1F4C46E18F21AFBE4D8AC9846090B63AA98782BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F4C46E18F21AFBE4D8AC9846090B63AA98782BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/347b0264-9a0a-4ce4-93cb-2cdd840b8534/0/3130332e37362e3130342e302f32342d3234203d3e20313531353839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.76.104.0/24 Signature Algorithm: sha256WithRSAEncryption af:d4:b1:b5:25:73:fe:18:90:8d:dc:71:71:ac:0b:36:42:be: 32:2b:4d:b7:5f:76:61:0b:c2:8e:4b:24:3a:ba:6c:9f:2e:35: 39:8a:8e:8f:b8:0c:dd:ab:c2:7c:3b:9f:e6:14:42:4c:7b:6a: d7:b2:a8:98:14:24:36:ee:21:e6:37:44:7a:1d:08:45:e0:4f: ea:11:58:ac:5f:14:58:5c:40:8e:33:2b:95:0b:4c:5a:fa:1c: 16:80:84:4a:b5:4f:74:05:14:20:a1:0e:f0:08:f8:aa:a3:01: 2c:c9:12:1e:57:c6:96:c3:bd:41:f4:d1:ab:fc:0d:79:71:dc: 0d:87:a6:df:60:ec:90:ea:6d:3a:c6:58:78:66:05:3d:b3:c0: c7:a8:c6:20:50:04:ff:d9:70:68:ab:f3:99:0c:fd:bf:98:ee: 2a:81:0f:44:92:76:d7:82:4f:e8:b5:c1:95:fe:43:85:e7:a4: 14:c5:8a:d0:df:f4:9a:a0:2e:06:e1:48:4b:42:10:58:1b:67: f4:50:bb:bc:70:ae:ce:ec:65:69:fb:cf:09:eb:7c:51:14:1d: d5:73:90:37:31:2d:69:ff:ca:ee:bd:cd:62:85:71:08:f2:77: ec:1b:e6:95:5f:aa:9c:9a:e1:e0:30:8b:83:93:63:04:31:60: bd:3a:d1:f0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBz1a/6RWQLixehqt5plW4JfmcZ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY0QzQ2RTE4RjIxQUZCRTREOEFDOTg0NjA5MEI2M0FB OTg3ODJCQjAeFw0yNTExMjIxMzU1MDBaFw0yNjExMjExNDAwMDBaMDMxMTAvBgNV BAMTKENBNDI0QjZDRDE1QUVCRUY4NkI0NkU1MTVFNTAyMkNBRjFCOEY2RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhjO7DNi5JNltgucatEfHaPjIX jhVTHFDjAG+syP19+xOeWHfRUQGi17kLNRHX+ha3gsQyNCDDjDIyccDuS7KK4Qas k/3c6MzQQ78NsNBdRfKJIy/paWmDvDJwVXAR36p34m2ARdhRbt4HcU4ckap1QDn0 kAAFekLgBI0m3EOCKjbINtTwBEmExt7vS51uV0jweRrlU4oqVsGWX/DTgYoyGWCH KQ65Qkj5kRTTt1/BtU9h+M+RBjmitzKOAWZzldpRbH1RllfJ6c5LItTY76WNHzAI MCX5ojBX/YBr9AO9L1qrioAYcMGamY8rmtJKKDqcI2/9yzjKu+/BiEY62WqpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUykJLbNFa6++GtG5RXlAiyvG49vAwHwYDVR0j BBgwFoAUH0xG4Y8hr75NismEYJC2OqmHgrswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NDdiMDI2NC05YTBhLTRjZTQtOTNjYi0yY2RkODQwYjg1MzQvMC8xRjRDNDZFMThG MjFBRkJFNEQ4QUM5ODQ2MDkwQjYzQUE5ODc4MkJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUY0QzQ2RTE4RjIxQUZCRTREOEFDOTg0NjA5MEI2M0FBOTg3 ODJCQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0N2IwMjY0LTlhMGEtNGNlNC05 M2NiLTJjZGQ4NDBiODUzNC8wLzMxMzAzMzJlMzczNjJlMzEzMDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0xoMA0GCSqG SIb3DQEBCwUAA4IBAQCv1LG1JXP+GJCN3HFxrAs2Qr4yK023X3ZhC8KOSyQ6umyf LjU5io6PuAzdq8J8O5/mFEJMe2rXsqiYFCQ27iHmN0R6HQhF4E/qEVisXxRYXECO MyuVC0xa+hwWgIRKtU90BRQgoQ7wCPiqowEsyRIeV8aWw71B9NGr/A15cdwNh6bf YOyQ6m06xlh4ZgU9s8DHqMYgUAT/2XBoq/OZDP2/mO4qgQ9EknbXgk/otcGV/kOF 56QUxYrQ3/SaoC4G4UhLQhBYG2f0ULu8cK7O7GVp+88J63xRFB3Vc5A3MS1p/8ru vc1ihXEI8nfsG+aVX6qcmuHgMIuDk2MEMWC9OtHw -----END CERTIFICATE-----Generated at Wed Dec 3 14:58:33 2025 by rpki-client