This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/3130332e3132392e32342e302f32332d3234203d3e20313335343738.roa File: 3130332e3132392e32342e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: acHkQDc68Jj27op6u+60Ox/pAf3ZpE5ZeAF+XMaxR0M= Subject key identifier: 59:70:38:5F:F3:00:3B:D9:0C:17:10:5D:1E:A8:4C:8C:2B:CE:FD:67 Certificate issuer: /CN=532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F Certificate serial: 5C7C6E462676C8BF57014084424C595B931941 Authority key identifier: 53:2A:4A:6E:A2:52:E9:D1:CF:F5:74:81:A5:A8:6B:35:CE:0D:D2:1F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/3130332e3132392e32342e302f32332d3234203d3e20313335343738.roa Signing time: Wed 05 Nov 2025 10:02:26 +0000 ROA not before: Wed 05 Nov 2025 09:57:26 +0000 ROA not after: Wed 04 Nov 2026 10:02:26 +0000 asID: 135478 IP address blocks: 103.129.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.crl rsync://repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:7c:6e:46:26:76:c8:bf:57:01:40:84:42:4c:59:5b:93:19:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F Validity Not Before: Nov 5 09:57:26 2025 GMT Not After : Nov 4 10:02:26 2026 GMT Subject: CN=5970385FF3003BD90C17105D1EA84C8C2BCEFD67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a8:8b:a9:b2:69:16:7e:6e:c2:a0:60:cb:62: 22:bf:b8:83:5e:d9:a3:10:a7:1f:8e:21:28:bb:93: c9:8a:02:a6:6e:bb:db:e8:be:37:b0:1f:35:0e:a5: cd:a2:c0:bb:6d:9b:53:45:28:21:2c:3c:f6:04:36: 0c:cc:0f:3e:aa:e4:a8:33:8c:fb:28:5c:4d:c5:cb: 96:1f:9e:22:bf:1e:75:e2:c6:7d:40:5b:32:1f:17: d4:f4:c4:ad:1b:51:40:4d:3d:c3:2e:c6:07:b2:4d: 30:89:cc:0a:15:e2:03:3b:c5:c5:a8:7c:8d:d0:94: 69:a8:60:23:9f:b8:7e:a0:64:8b:7e:23:13:66:07: c8:2a:3d:03:f8:13:5c:f2:ef:f2:35:76:e5:83:ab: c1:ee:c0:41:53:fd:d1:2a:04:cc:57:4d:4c:cd:c6: ea:64:ca:15:a1:24:80:16:bc:17:5d:9e:13:e5:ea: 5a:02:cb:14:62:0e:0a:63:eb:40:e5:93:10:1d:7b: ed:b3:d6:d9:72:f3:e2:8c:79:7a:39:60:f3:a1:9d: 7e:cd:52:0d:46:da:6e:3f:f3:c7:1a:25:23:8d:66: 65:08:85:81:9d:e5:75:5e:6f:d4:f0:a1:3f:fb:dd: 6d:46:de:4e:76:4c:d1:c4:bf:e4:9f:6e:c6:25:9f: d9:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:70:38:5F:F3:00:3B:D9:0C:17:10:5D:1E:A8:4C:8C:2B:CE:FD:67 X509v3 Authority Key Identifier: keyid:53:2A:4A:6E:A2:52:E9:D1:CF:F5:74:81:A5:A8:6B:35:CE:0D:D2:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/532A4A6EA252E9D1CFF57481A5A86B35CE0DD21F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/47df2ad0-6e99-44a7-a068-500656ffb00f/0/3130332e3132392e32342e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.24.0/23 Signature Algorithm: sha256WithRSAEncryption 06:5b:c6:aa:c6:2c:b0:bb:39:15:be:32:3d:39:a4:3c:6a:8d: 05:93:a3:bd:8f:af:4c:03:0c:9f:5a:71:be:e7:85:53:d2:c2: 0c:74:c4:15:1e:6c:7e:e9:a5:d6:75:8f:f4:35:d4:3a:a3:e2: f9:b6:3b:5e:3b:13:2e:a4:83:f9:a4:b7:6a:9d:83:c4:e9:12: b2:af:9e:cf:9c:54:d7:c1:dd:b6:77:00:51:da:5f:91:10:7a: a3:d0:fe:5a:50:d6:52:b3:82:0f:87:a1:19:0a:95:62:3d:e0: 07:4d:69:69:c6:2a:c8:a7:ac:16:08:18:47:ce:3e:f2:50:11: 6e:8f:c2:bf:18:d2:26:9f:aa:69:4c:46:48:54:29:65:b2:65: f3:13:77:9c:9c:3a:d5:7d:64:e2:04:25:f6:76:f7:a7:f7:bc: e6:ee:00:bd:dd:58:6f:13:93:18:a8:72:78:07:4c:4e:76:cb: 9a:dd:f9:d8:e0:f8:c5:28:27:38:a0:84:c7:b3:30:c0:9c:6a: cc:f7:1d:d7:66:f9:f9:54:7f:49:ea:d8:10:78:f8:af:f5:23: f9:4a:ee:d7:cb:df:39:a3:3e:74:46:90:5b:86:ee:1e:61:dc: fa:6c:68:f7:04:51:35:cc:1d:08:a2:be:e0:db:74:32:64:9b: f8:6e:96:d9 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgITXHxuRiZ2yL9XAUCEQkxZW5MZQTANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyg1MzJBNEE2RUEyNTJFOUQxQ0ZGNTc0ODFBNUE4NkIzNUNF MEREMjFGMB4XDTI1MTEwNTA5NTcyNloXDTI2MTEwNDEwMDIyNlowMzExMC8GA1UE AxMoNTk3MDM4NUZGMzAwM0JEOTBDMTcxMDVEMUVBODRDOEMyQkNFRkQ2NzCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM6oi6myaRZ+bsKgYMtiIr+4g17Z oxCnH44hKLuTyYoCpm672+i+N7AfNQ6lzaLAu22bU0UoISw89gQ2DMwPPqrkqDOM +yhcTcXLlh+eIr8edeLGfUBbMh8X1PTErRtRQE09wy7GB7JNMInMChXiAzvFxah8 jdCUaahgI5+4fqBki34jE2YHyCo9A/gTXPLv8jV25YOrwe7AQVP90SoEzFdNTM3G 6mTKFaEkgBa8F12eE+XqWgLLFGIOCmPrQOWTEB177bPW2XLz4ox5ejlg86Gdfs1S DUbabj/zxxolI41mZQiFgZ3ldV5v1PChP/vdbUbeTnZM0cS/5J9uxiWf2YkCAwEA AaOCAjQwggIwMB0GA1UdDgQWBBRZcDhf8wA72QwXEF0eqEyMK879ZzAfBgNVHSME GDAWgBRTKkpuolLp0c/1dIGlqGs1zg3SHzAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3 ZGYyYWQwLTZlOTktNDRhNy1hMDY4LTUwMDY1NmZmYjAwZi8wLzUzMkE0QTZFQTI1 MkU5RDFDRkY1NzQ4MUE1QTg2QjM1Q0UwREQyMUYuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi81MzJBNEE2RUEyNTJFOUQxQ0ZGNTc0ODFBNUE4NkIzNUNFMERE MjFGLmNlcjCBpAYIKwYBBQUHAQsEgZcwgZQwgZEGCCsGAQUFBzALhoGEcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDdkZjJhZDAtNmU5OS00NGE3LWEw NjgtNTAwNjU2ZmZiMDBmLzAvMzEzMDMzMmUzMTMyMzkyZTMyMzQyZTMwMmYzMjMz MmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFngRgwDQYJKoZI hvcNAQELBQADggEBAAZbxqrGLLC7ORW+Mj05pDxqjQWTo72Pr0wDDJ9acb7nhVPS wgx0xBUebH7ppdZ1j/Q11Dqj4vm2O147Ey6kg/mkt2qdg8TpErKvns+cVNfB3bZ3 AFHaX5EQeqPQ/lpQ1lKzgg+HoRkKlWI94AdNaWnGKsinrBYIGEfOPvJQEW6Pwr8Y 0iafqmlMRkhUKWWyZfMTd5ycOtV9ZOIEJfZ296f3vObuAL3dWG8TkxiocngHTE52 y5rd+djg+MUoJzighMezMMCcasz3Hddm+flUf0nq2BB4+K/1I/lK7tfL3zmjPnRG kFuG7h5h3PpsaPcEUTXMHQiivuDbdDJkm/hultk= -----END CERTIFICATE-----Generated at Wed Dec 3 11:48:31 2025 by rpki-client