This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/3130332e3133392e39382e302f32332d3234203d3e20313338383632.roa File: 3130332e3133392e39382e302f32332d3234203d3e20313338383632.roa (raw, json) Hash identifier: jBlPZ38x7fUq8L2OxFB/CipZgVFJBPwzL0K4wuU8V0I= Subject key identifier: 22:5D:E4:D3:78:9F:33:33:E0:6D:2F:98:A3:9C:80:ED:FB:76:E0:09 Certificate issuer: /CN=88D56B9372987974D75D5FEB6C48FA491B771DE6 Certificate serial: 38C2AD731988C40D2F2C58F0EACF1ACDF9BEAD54 Authority key identifier: 88:D5:6B:93:72:98:79:74:D7:5D:5F:EB:6C:48:FA:49:1B:77:1D:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88D56B9372987974D75D5FEB6C48FA491B771DE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/3130332e3133392e39382e302f32332d3234203d3e20313338383632.roa Signing time: Wed 26 Nov 2025 05:00:02 +0000 ROA not before: Wed 26 Nov 2025 04:55:02 +0000 ROA not after: Wed 25 Nov 2026 05:00:02 +0000 asID: 138862 IP address blocks: 103.139.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/88D56B9372987974D75D5FEB6C48FA491B771DE6.crl rsync://repo-rpki.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/88D56B9372987974D75D5FEB6C48FA491B771DE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88D56B9372987974D75D5FEB6C48FA491B771DE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 01:48:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:c2:ad:73:19:88:c4:0d:2f:2c:58:f0:ea:cf:1a:cd:f9:be:ad:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88D56B9372987974D75D5FEB6C48FA491B771DE6 Validity Not Before: Nov 26 04:55:02 2025 GMT Not After : Nov 25 05:00:02 2026 GMT Subject: CN=225DE4D3789F3333E06D2F98A39C80EDFB76E009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:54:b2:5b:8b:cc:1a:fb:70:1d:83:46:25:82: 03:34:95:eb:71:c9:ec:1d:bd:13:61:7a:23:91:c6: 2e:f5:fa:0c:aa:73:e3:09:4d:1a:5e:13:29:52:27: 05:5e:21:85:6a:50:3b:0d:15:d7:dc:ba:65:6d:65: 91:f0:fe:b8:ed:9e:30:d7:84:32:bc:08:b1:e1:93: 9d:17:6c:72:31:da:8e:90:45:b5:1c:48:cf:a9:1c: b3:35:07:62:2c:4c:10:97:f3:33:94:47:42:c7:27: 41:4d:9b:27:2c:3c:c3:d9:78:75:cb:ab:6c:4e:97: f5:91:03:07:65:28:84:e0:56:09:01:48:a5:4a:48: 16:9f:5c:de:f5:7a:b0:82:d8:ce:cf:ed:c9:12:4b: 4e:80:0f:6c:3f:67:0c:1a:fe:b6:82:a9:6e:ff:f5: d0:4c:28:d3:6b:b4:fa:fb:c4:2c:3f:1b:d9:4b:e3: ec:1d:58:e5:32:5f:c4:2e:e4:84:de:16:da:6f:7b: f7:09:44:69:94:44:b1:3b:59:08:59:be:c7:f0:51: b5:70:06:09:dc:30:9b:1a:8c:3e:d4:a9:f6:7e:50: a1:54:49:ca:b1:c0:4e:d0:dd:cc:30:39:83:0a:b1: 34:b6:1e:60:4d:b7:e5:4f:34:07:8b:60:06:ba:27: 50:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:5D:E4:D3:78:9F:33:33:E0:6D:2F:98:A3:9C:80:ED:FB:76:E0:09 X509v3 Authority Key Identifier: keyid:88:D5:6B:93:72:98:79:74:D7:5D:5F:EB:6C:48:FA:49:1B:77:1D:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/88D56B9372987974D75D5FEB6C48FA491B771DE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88D56B9372987974D75D5FEB6C48FA491B771DE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/450633fc-fe23-4d82-ba64-bb7ee6dd6e06/0/3130332e3133392e39382e302f32332d3234203d3e20313338383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.98.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:49:8d:76:0d:e3:b7:ef:f5:b2:02:7d:46:a2:d6:3b:5d:73: 72:9b:31:98:e3:58:38:c7:cb:5f:92:ce:2e:87:fd:ce:de:4d: 82:53:fb:91:19:50:7a:74:15:25:fc:e0:45:0a:87:f6:9e:23: fa:ce:32:bd:ac:58:73:86:b3:4c:d6:ac:16:12:81:3d:ec:b5: 00:50:93:b7:fb:88:06:c0:99:87:ba:1d:44:65:cd:b4:5d:2c: ca:a4:54:cf:63:8c:e9:88:26:6b:7d:63:9b:8f:2a:2c:ae:e1: 5e:f3:e8:e2:6f:8c:b5:ea:62:f0:96:da:75:e4:76:5a:c8:2f: 36:90:03:d6:a8:0c:45:d2:19:9c:fc:ef:6e:c8:16:06:bc:70: 96:19:e6:d2:0f:6c:cd:87:b2:aa:94:14:f6:72:27:a1:d7:f7: 49:b5:b7:f0:77:d5:e6:b7:7b:a6:f6:7c:57:05:3a:53:9b:83: c8:71:49:d3:28:78:bd:c8:09:29:a8:01:bd:4c:e1:36:dc:44: cc:6e:19:b0:8e:e5:9d:b9:17:87:4e:2d:71:f9:05:03:cf:80: 76:f8:27:c8:ea:41:37:dc:e9:7c:03:c8:9c:50:01:ca:be:1b: 90:55:bc:d7:a4:f8:a0:57:75:2a:b8:e3:41:76:4a:2d:e8:8e: a5:b4:a3:34 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOMKtcxmIxA0vLFjw6s8azfm+rVQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhENTZCOTM3Mjk4Nzk3NEQ3NUQ1RkVCNkM0OEZBNDkx Qjc3MURFNjAeFw0yNTExMjYwNDU1MDJaFw0yNjExMjUwNTAwMDJaMDMxMTAvBgNV BAMTKDIyNURFNEQzNzg5RjMzMzNFMDZEMkY5OEEzOUM4MEVERkI3NkUwMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzVLJbi8wa+3Adg0YlggM0letx yewdvRNheiORxi71+gyqc+MJTRpeEylSJwVeIYVqUDsNFdfcumVtZZHw/rjtnjDX hDK8CLHhk50XbHIx2o6QRbUcSM+pHLM1B2IsTBCX8zOUR0LHJ0FNmycsPMPZeHXL q2xOl/WRAwdlKITgVgkBSKVKSBafXN71erCC2M7P7ckSS06AD2w/Zwwa/raCqW7/ 9dBMKNNrtPr7xCw/G9lL4+wdWOUyX8Qu5ITeFtpve/cJRGmURLE7WQhZvsfwUbVw BgncMJsajD7UqfZ+UKFUScqxwE7Q3cwwOYMKsTS2HmBNt+VPNAeLYAa6J1ArAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUIl3k03ifMzPgbS+Yo5yA7ft24AkwHwYDVR0j BBgwFoAUiNVrk3KYeXTXXV/rbEj6SRt3HeYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NTA2MzNmYy1mZTIzLTRkODItYmE2NC1iYjdlZTZkZDZlMDYvMC84OEQ1NkI5Mzcy OTg3OTc0RDc1RDVGRUI2QzQ4RkE0OTFCNzcxREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODhENTZCOTM3Mjk4Nzk3NEQ3NUQ1RkVCNkM0OEZBNDkxQjc3 MURFNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ1MDYzM2ZjLWZlMjMtNGQ4Mi1i YTY0LWJiN2VlNmRkNmUwNi8wLzMxMzAzMzJlMzEzMzM5MmUzOTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNjMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4tiMA0GCSqG SIb3DQEBCwUAA4IBAQB8SY12DeO37/WyAn1GotY7XXNymzGY41g4x8tfks4uh/3O 3k2CU/uRGVB6dBUl/OBFCof2niP6zjK9rFhzhrNM1qwWEoE97LUAUJO3+4gGwJmH uh1EZc20XSzKpFTPY4zpiCZrfWObjyosruFe8+jib4y16mLwltp15HZayC82kAPW qAxF0hmc/O9uyBYGvHCWGebSD2zNh7KqlBT2cieh1/dJtbfwd9Xmt3um9nxXBTpT m4PIcUnTKHi9yAkpqAG9TOE23ETMbhmwjuWduReHTi1x+QUDz4B2+CfI6kE33Ol8 A8icUAHKvhuQVbzXpPigV3UquONBdkot6I6ltKM0 -----END CERTIFICATE-----Generated at Wed Dec 3 14:48:50 2025 by rpki-client