This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/3130332e3132312e3130382e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3130382e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: w5I/RiOjY8frWwGU7LEaZXsggiMBZTucFm8ZgJxFBJY= Subject key identifier: 5D:66:18:C2:34:F5:93:16:00:32:25:98:02:02:52:EF:53:5D:CB:99 Certificate issuer: /CN=BE77663F7F3591A0E64D8D5AC98F2635919B4B3B Certificate serial: 1D34D440A94CD208BFEF584688F8507ABF0C99BF Authority key identifier: BE:77:66:3F:7F:35:91:A0:E6:4D:8D:5A:C9:8F:26:35:91:9B:4B:3B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/3130332e3132312e3130382e302f32332d3234203d3e20313335343738.roa Signing time: Wed 05 Nov 2025 05:00:00 +0000 ROA not before: Wed 05 Nov 2025 04:55:00 +0000 ROA not after: Wed 04 Nov 2026 05:00:00 +0000 asID: 135478 IP address blocks: 103.121.108.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.crl rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 20:34:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:34:d4:40:a9:4c:d2:08:bf:ef:58:46:88:f8:50:7a:bf:0c:99:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE77663F7F3591A0E64D8D5AC98F2635919B4B3B Validity Not Before: Nov 5 04:55:00 2025 GMT Not After : Nov 4 05:00:00 2026 GMT Subject: CN=5D6618C234F5931600322598020252EF535DCB99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:74:d5:7f:81:bd:ef:bd:a6:58:f3:4b:bb:a3: 2e:4f:f6:a0:7b:b2:cf:e8:27:06:46:75:b6:02:cb: 09:a1:18:c4:e7:9a:4e:03:68:24:cb:ed:5e:9b:70: 33:6f:86:b7:e2:a1:a9:d9:53:12:40:a8:8b:02:e9: 02:bb:d4:a5:ae:9d:67:a8:e4:df:d4:0b:54:f6:c1: 93:17:4e:e3:f3:45:e7:23:27:c7:00:fd:75:18:8b: 0d:1c:05:83:96:84:df:06:04:44:d1:be:08:9d:15: f5:f4:55:68:76:64:0d:0b:81:6c:36:7f:4f:d4:13: d1:d5:c8:30:b4:36:02:b8:7d:81:23:aa:3d:9a:ae: fb:e4:60:d9:ac:87:1b:f8:b8:c4:86:d6:f8:a9:f5: 8c:a2:55:79:e3:68:62:82:48:7d:76:16:af:ee:42: 8c:3b:9f:3d:eb:56:36:bd:23:bd:b7:ff:a7:dd:6a: 23:8e:04:7f:ac:8b:e4:1f:9d:42:71:64:c2:91:21: 2f:95:90:66:1c:3e:c9:ff:d8:6f:81:44:57:db:a1: 0e:db:1b:9a:89:79:9b:b7:ca:6f:5a:95:b7:f3:e1: d4:60:41:03:57:db:67:fc:f6:63:60:9c:62:0f:e3: 71:f3:ff:b2:af:d1:88:47:3f:8a:7a:e0:3c:e6:b2: fd:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:66:18:C2:34:F5:93:16:00:32:25:98:02:02:52:EF:53:5D:CB:99 X509v3 Authority Key Identifier: keyid:BE:77:66:3F:7F:35:91:A0:E6:4D:8D:5A:C9:8F:26:35:91:9B:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/3130332e3132312e3130382e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.108.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:99:2a:38:60:6c:77:74:fb:65:2c:83:6c:4b:e6:f0:04:d4: cf:85:e6:33:c5:d3:5b:a7:57:3b:0d:2f:5e:03:fe:be:8f:59: d6:be:93:a0:7b:dd:90:d3:d3:98:31:e2:34:b4:5b:1a:ab:a6: fc:73:72:45:79:e2:79:e6:73:d9:36:60:5f:a1:48:6c:6c:b7: 66:d3:e1:7b:3d:1c:34:09:44:f0:92:19:1c:de:cb:b1:da:a4: 2a:e4:1c:2b:22:46:cd:07:40:14:3b:79:79:fe:fd:e7:bc:b6: a5:c1:cd:5d:49:f2:15:29:02:12:36:23:b1:26:da:80:91:fc: 09:b5:ef:32:ef:24:a0:f0:8b:94:b0:34:df:f8:f6:93:6d:26: 7f:e3:e0:60:57:63:25:9f:ea:be:fc:02:d8:32:34:32:da:71: ae:bc:59:17:63:61:4d:ef:fd:33:fd:ad:9c:59:d4:30:29:92: 2c:dd:14:48:20:a9:68:9e:69:ef:0d:e3:6f:78:67:f9:d0:38: 1e:c8:28:29:a0:4a:f0:0e:55:37:00:f6:08:0e:99:dc:4a:e9: 46:cb:17:78:b9:42:85:25:7e:d5:5a:df:33:45:53:cf:10:3c: 33:36:9c:6d:80:0f:b6:a3:67:88:6f:ea:04:4f:15:59:ea:9a: c9:64:c1:f6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHTTUQKlM0gi/71hGiPhQer8Mmb8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3NzY2M0Y3RjM1OTFBMEU2NEQ4RDVBQzk4RjI2MzU5 MTlCNEIzQjAeFw0yNTExMDUwNDU1MDBaFw0yNjExMDQwNTAwMDBaMDMxMTAvBgNV BAMTKDVENjYxOEMyMzRGNTkzMTYwMDMyMjU5ODAyMDI1MkVGNTM1RENCOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcdNV/gb3vvaZY80u7oy5P9qB7 ss/oJwZGdbYCywmhGMTnmk4DaCTL7V6bcDNvhrfioanZUxJAqIsC6QK71KWunWeo 5N/UC1T2wZMXTuPzRecjJ8cA/XUYiw0cBYOWhN8GBETRvgidFfX0VWh2ZA0LgWw2 f0/UE9HVyDC0NgK4fYEjqj2arvvkYNmshxv4uMSG1vip9YyiVXnjaGKCSH12Fq/u Qow7nz3rVja9I723/6fdaiOOBH+si+QfnUJxZMKRIS+VkGYcPsn/2G+BRFfboQ7b G5qJeZu3ym9albfz4dRgQQNX22f89mNgnGIP43Hz/7Kv0YhHP4p64Dzmsv0bAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXWYYwjT1kxYAMiWYAgJS71Ndy5kwHwYDVR0j BBgwFoAUvndmP381kaDmTY1ayY8mNZGbSzswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NGI0ZmU5My03Mjk2LTQ4YjQtYWEwZC1jOGE1YTNkZmQ1OWEvMC9CRTc3NjYzRjdG MzU5MUEwRTY0RDhENUFDOThGMjYzNTkxOUI0QjNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3NzY2M0Y3RjM1OTFBMEU2NEQ4RDVBQzk4RjI2MzU5MTlC NEIzQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0YjRmZTkzLTcyOTYtNDhiNC1h YTBkLWM4YTVhM2RmZDU5YS8wLzMxMzAzMzJlMzEzMjMxMmUzMTMwMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneWwwDQYJ KoZIhvcNAQELBQADggEBAHyZKjhgbHd0+2Usg2xL5vAE1M+F5jPF01unVzsNL14D /r6PWda+k6B73ZDT05gx4jS0WxqrpvxzckV54nnmc9k2YF+hSGxst2bT4Xs9HDQJ RPCSGRzey7HapCrkHCsiRs0HQBQ7eXn+/ee8tqXBzV1J8hUpAhI2I7Em2oCR/Am1 7zLvJKDwi5SwNN/49pNtJn/j4GBXYyWf6r78AtgyNDLaca68WRdjYU3v/TP9rZxZ 1DApkizdFEggqWieae8N4294Z/nQOB7IKCmgSvAOVTcA9ggOmdxK6UbLF3i5QoUl ftVa3zNFU88QPDM2nG2AD7ajZ4hv6gRPFVnqmslkwfY= -----END CERTIFICATE-----Generated at Wed Dec 3 11:48:31 2025 by rpki-client