This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/3130332e3135332e3132362e302f32342d3234203d3e20313430343632.roa File: 3130332e3135332e3132362e302f32342d3234203d3e20313430343632.roa (raw, json) Hash identifier: T6Hicz2H8CuNDpKjhaA17WaIW/oy1qNlEePPsSxqMqI= Subject key identifier: 71:30:DC:0E:E6:E7:00:13:68:7F:6E:0B:9B:22:F6:E7:C1:69:C3:B7 Certificate issuer: /CN=EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C Certificate serial: 58E00E9195A4456721E0C15CC02793A2A066EE48 Authority key identifier: EF:C0:FE:32:8F:7B:86:F9:C6:82:F4:FE:37:36:0C:4E:3A:D9:94:2C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/3130332e3135332e3132362e302f32342d3234203d3e20313430343632.roa Signing time: Tue 09 Dec 2025 13:00:01 +0000 ROA not before: Tue 09 Dec 2025 12:55:01 +0000 ROA not after: Tue 08 Dec 2026 13:00:01 +0000 asID: 140462 IP address blocks: 103.153.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.crl rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 21:21:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:e0:0e:91:95:a4:45:67:21:e0:c1:5c:c0:27:93:a2:a0:66:ee:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C Validity Not Before: Dec 9 12:55:01 2025 GMT Not After : Dec 8 13:00:01 2026 GMT Subject: CN=7130DC0EE6E70013687F6E0B9B22F6E7C169C3B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6a:2f:45:95:10:4e:f1:43:e4:98:c2:77:dd: 1c:b7:c9:3b:91:24:24:bf:f5:c2:22:18:4b:a4:ae: 79:03:8e:90:95:a2:a1:f8:19:41:42:f8:d8:97:03: de:0b:08:9b:00:57:a8:0c:74:98:50:e9:9a:5b:d9: b0:c0:b3:49:b1:69:a6:9c:f2:66:f6:ce:a7:72:df: d7:91:ac:e0:4c:7c:29:fc:c7:c1:a5:d7:a5:a5:8c: d6:9f:dc:c7:fc:c4:e0:c0:4d:10:4a:1f:28:94:5f: e9:4b:00:f6:04:95:22:48:47:ab:b4:9a:dd:43:60: 75:79:60:45:2e:75:31:03:33:52:00:47:48:32:86: 7f:aa:e6:8a:d2:83:b2:27:7e:ac:fb:1f:5b:81:be: a1:12:eb:06:54:05:d7:bb:18:46:26:9a:da:79:7e: 37:f9:61:3f:f6:6e:ec:d3:79:65:ba:55:a3:d3:36: 54:97:da:84:c3:35:29:54:57:08:9a:10:e3:c9:5e: 63:b7:8a:e9:d8:88:5a:b5:6b:ad:87:48:ab:0a:24: af:fb:c5:5f:93:84:b1:e6:40:d7:2a:b8:b7:17:9a: dd:f4:24:33:3d:1f:23:a5:be:4a:97:b6:24:26:a8: 1d:64:a3:e8:e2:24:74:54:95:0a:9d:7b:0c:fa:0d: 65:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:30:DC:0E:E6:E7:00:13:68:7F:6E:0B:9B:22:F6:E7:C1:69:C3:B7 X509v3 Authority Key Identifier: keyid:EF:C0:FE:32:8F:7B:86:F9:C6:82:F4:FE:37:36:0C:4E:3A:D9:94:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EFC0FE328F7B86F9C682F4FE37360C4E3AD9942C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/383ed7ab-1ac9-4f42-acdd-53557ac7b3f3/0/3130332e3135332e3132362e302f32342d3234203d3e20313430343632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.126.0/24 Signature Algorithm: sha256WithRSAEncryption 15:8b:66:88:40:75:0f:3e:b8:3a:ec:cd:d4:d8:aa:8f:1e:07: 9a:d6:bc:a6:5d:bd:4a:45:95:bd:a2:fa:03:82:ea:59:eb:a8: d7:ba:f7:60:91:4c:99:f1:be:d1:be:58:5d:f1:14:8c:5a:46: 73:03:80:60:33:aa:30:97:47:3f:02:48:41:6d:8d:92:2c:e2: de:cc:6b:d2:bd:23:d8:71:7b:f8:79:9c:92:fe:57:3f:fc:9f: 5b:18:7c:22:d3:bd:1e:1c:08:52:50:d9:a5:d7:49:82:81:b1: 02:e2:62:8a:81:11:6c:e1:81:68:57:76:62:8e:e9:eb:0a:7a: 88:f1:65:c4:84:12:27:24:5c:cb:81:49:5e:51:a0:25:68:df: 38:93:5c:d6:ca:af:68:b7:bb:6c:7a:6f:65:ea:9f:6f:b3:64: 37:03:f0:c8:21:08:6e:5b:2e:ef:fd:0d:a5:e5:23:e7:66:0b: 78:72:10:a3:a1:9d:25:36:bc:0f:5c:69:5e:8c:ae:8c:bb:9b: 09:74:b9:23:32:aa:10:a3:9a:87:72:e7:90:69:ac:f6:80:0f: be:7d:05:89:94:f7:3a:35:b7:d6:08:3b:0c:4c:44:44:49:39: 72:82:d4:d1:04:47:11:20:f1:c7:44:e0:d1:e9:58:76:ef:75: d6:4e:9b:81 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWOAOkZWkRWch4MFcwCeToqBm7kgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUZDMEZFMzI4RjdCODZGOUM2ODJGNEZFMzczNjBDNEUz QUQ5OTQyQzAeFw0yNTEyMDkxMjU1MDFaFw0yNjEyMDgxMzAwMDFaMDMxMTAvBgNV BAMTKDcxMzBEQzBFRTZFNzAwMTM2ODdGNkUwQjlCMjJGNkU3QzE2OUMzQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDai9FlRBO8UPkmMJ33Ry3yTuR JCS/9cIiGEukrnkDjpCVoqH4GUFC+NiXA94LCJsAV6gMdJhQ6Zpb2bDAs0mxaaac 8mb2zqdy39eRrOBMfCn8x8Gl16WljNaf3Mf8xODATRBKHyiUX+lLAPYElSJIR6u0 mt1DYHV5YEUudTEDM1IAR0gyhn+q5orSg7Infqz7H1uBvqES6wZUBde7GEYmmtp5 fjf5YT/2buzTeWW6VaPTNlSX2oTDNSlUVwiaEOPJXmO3iunYiFq1a62HSKsKJK/7 xV+ThLHmQNcquLcXmt30JDM9HyOlvkqXtiQmqB1ko+jiJHRUlQqdewz6DWVxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUcTDcDubnABNof24LmyL258Fpw7cwHwYDVR0j BBgwFoAU78D+Mo97hvnGgvT+NzYMTjrZlCwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODNlZDdhYi0xYWM5LTRmNDItYWNkZC01MzU1N2FjN2IzZjMvMC9FRkMwRkUzMjhG N0I4NkY5QzY4MkY0RkUzNzM2MEM0RTNBRDk5NDJDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUZDMEZFMzI4RjdCODZGOUM2ODJGNEZFMzczNjBDNEUzQUQ5 OTQyQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4M2VkN2FiLTFhYzktNGY0Mi1h Y2RkLTUzNTU3YWM3YjNmMy8wLzMxMzAzMzJlMzEzNTMzMmUzMTMyMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM2MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnmX4wDQYJ KoZIhvcNAQELBQADggEBABWLZohAdQ8+uDrszdTYqo8eB5rWvKZdvUpFlb2i+gOC 6lnrqNe692CRTJnxvtG+WF3xFIxaRnMDgGAzqjCXRz8CSEFtjZIs4t7Ma9K9I9hx e/h5nJL+Vz/8n1sYfCLTvR4cCFJQ2aXXSYKBsQLiYoqBEWzhgWhXdmKO6esKeojx ZcSEEickXMuBSV5RoCVo3ziTXNbKr2i3u2x6b2Xqn2+zZDcD8MghCG5bLu/9DaXl I+dmC3hyEKOhnSU2vA9caV6Mroy7mwl0uSMyqhCjmody55BprPaAD759BYmU9zo1 t9YIOwxMRERJOXKC1NEERxEg8cdE4NHpWHbvddZOm4E= -----END CERTIFICATE-----Generated at Sun Dec 21 12:48:40 2025 by rpki-client