This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3130332e3133322e3233302e302f32332d3234203d3e20313338313237.roa File: 3130332e3133322e3233302e302f32332d3234203d3e20313338313237.roa (raw, json) Hash identifier: fcE9nxP4F/tonEL2jLycsAVcDyzYWrh05xw29/4haAg= Subject key identifier: 72:22:68:EB:72:38:56:30:92:F9:07:BD:03:7B:7F:42:7D:CD:90:E0 Certificate issuer: /CN=3E0B957B582D8AEF99A49C6448F9993C72378BF3 Certificate serial: 1E35CC5510A49A8B45A8C80D6A5B1393508D7CED Authority key identifier: 3E:0B:95:7B:58:2D:8A:EF:99:A4:9C:64:48:F9:99:3C:72:37:8B:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3130332e3133322e3233302e302f32332d3234203d3e20313338313237.roa Signing time: Fri 21 Nov 2025 07:03:04 +0000 ROA not before: Fri 21 Nov 2025 06:58:04 +0000 ROA not after: Fri 20 Nov 2026 07:03:04 +0000 asID: 138127 IP address blocks: 103.132.230.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.crl rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 14:54:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:35:cc:55:10:a4:9a:8b:45:a8:c8:0d:6a:5b:13:93:50:8d:7c:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E0B957B582D8AEF99A49C6448F9993C72378BF3 Validity Not Before: Nov 21 06:58:04 2025 GMT Not After : Nov 20 07:03:04 2026 GMT Subject: CN=722268EB7238563092F907BD037B7F427DCD90E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ce:58:9c:dd:8f:f0:55:7a:9e:fc:51:e5:56: 53:e0:9d:7e:69:98:e5:1e:62:59:e9:3c:12:5b:48: 01:5b:d3:a1:13:5c:ae:7a:e4:09:5d:ec:c9:b6:53: a4:bf:18:25:e1:bf:92:1c:4a:d4:f2:9b:06:7a:3f: f9:3b:0e:bc:d9:65:1d:51:84:6f:3a:73:25:51:67: 37:30:06:50:60:1a:d4:a7:0d:f4:dd:90:b1:6b:41: 25:ca:9d:c8:7f:c8:70:25:7a:da:d7:dc:47:e5:bf: d2:50:71:c8:10:15:ea:46:90:c7:3f:00:c9:71:c7: 74:e2:b9:e0:91:67:95:53:2d:f5:1f:62:fc:6e:55: 04:1a:f6:95:75:06:48:17:6a:1a:9e:29:61:5d:d7: 8f:ff:47:e5:60:e1:1f:70:02:51:27:10:81:fd:f4: e9:f8:02:16:67:2e:d7:72:f4:af:1b:32:c2:1f:05: 4b:3f:bc:2c:42:01:b9:04:c1:87:84:58:97:be:80: 9f:d3:9f:1b:16:b9:08:fa:d9:b4:5a:5f:84:4b:74: 96:54:57:3b:9c:14:b5:18:e0:6b:de:08:89:a3:87: ca:03:ea:e4:0c:82:9d:60:4c:f0:6a:9f:aa:0b:7a: fb:dd:22:64:3a:d1:78:10:78:b9:b0:79:5c:bd:da: b2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:22:68:EB:72:38:56:30:92:F9:07:BD:03:7B:7F:42:7D:CD:90:E0 X509v3 Authority Key Identifier: keyid:3E:0B:95:7B:58:2D:8A:EF:99:A4:9C:64:48:F9:99:3C:72:37:8B:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3130332e3133322e3233302e302f32332d3234203d3e20313338313237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.230.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:7b:82:f5:7a:da:d5:6d:6a:46:92:3e:ee:9c:02:5b:f5:0c: 9c:7f:e0:4f:a2:be:69:0d:cc:80:a1:94:90:db:a9:ea:38:39: 63:4c:13:15:a0:2f:05:6c:b8:be:91:c0:20:db:fb:9f:10:b8: ca:28:b3:ee:26:d9:1a:30:ee:0c:94:ba:de:50:b3:19:f0:0a: 59:ac:68:bb:b2:fc:56:09:95:86:ab:91:f9:a7:04:a9:c7:98: a7:01:0c:dc:0e:3e:f3:46:73:af:c5:e0:98:e0:c0:5c:50:5c: 89:d7:41:4b:65:cc:d0:0c:1d:17:32:1d:ae:3b:2e:83:ce:49: 9a:a9:4a:7e:44:26:99:b3:f5:60:60:09:8f:2b:cb:4b:a8:20: af:35:31:d0:7c:9a:86:a6:4d:52:2e:14:d0:a2:1a:a5:f9:00: 14:da:e1:9e:40:2e:a7:c8:10:09:ef:d2:0b:68:1e:41:50:68: 32:2b:b5:90:21:d7:cc:a6:a2:15:3f:cd:81:1d:33:9c:93:b2: 80:7a:1a:b5:e5:6f:21:f1:b5:2a:31:2b:f4:51:04:db:a9:6c: 11:c5:da:8a:78:46:25:af:0b:11:e5:28:93:f3:62:20:68:30: 7d:ee:5a:00:b3:dd:f8:60:5e:36:b8:3f:3b:06:78:76:8a:97: 72:bc:fe:cc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHjXMVRCkmotFqMgNalsTk1CNfO0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0UwQjk1N0I1ODJEOEFFRjk5QTQ5QzY0NDhGOTk5M0M3 MjM3OEJGMzAeFw0yNTExMjEwNjU4MDRaFw0yNjExMjAwNzAzMDRaMDMxMTAvBgNV BAMTKDcyMjI2OEVCNzIzODU2MzA5MkY5MDdCRDAzN0I3RjQyN0RDRDkwRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfzlic3Y/wVXqe/FHlVlPgnX5p mOUeYlnpPBJbSAFb06ETXK565Ald7Mm2U6S/GCXhv5IcStTymwZ6P/k7DrzZZR1R hG86cyVRZzcwBlBgGtSnDfTdkLFrQSXKnch/yHAletrX3Eflv9JQccgQFepGkMc/ AMlxx3TiueCRZ5VTLfUfYvxuVQQa9pV1BkgXahqeKWFd14//R+Vg4R9wAlEnEIH9 9On4AhZnLtdy9K8bMsIfBUs/vCxCAbkEwYeEWJe+gJ/TnxsWuQj62bRaX4RLdJZU VzucFLUY4GveCImjh8oD6uQMgp1gTPBqn6oLevvdImQ60XgQeLmweVy92rITAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUciJo63I4VjCS+Qe9A3t/Qn3NkOAwHwYDVR0j BBgwFoAUPguVe1gtiu+ZpJxkSPmZPHI3i/MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZWRjOWU0Zi04MTgwLTQxZDYtYjA4ZC04ZWU1YThhNzBhMDUvMC8zRTBCOTU3QjU4 MkQ4QUVGOTlBNDlDNjQ0OEY5OTkzQzcyMzc4QkYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0UwQjk1N0I1ODJEOEFFRjk5QTQ5QzY0NDhGOTk5M0M3MjM3 OEJGMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRlZGM5ZTRmLTgxODAtNDFkNi1i MDhkLThlZTVhOGE3MGEwNS8wLzMxMzAzMzJlMzEzMzMyMmUzMjMzMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMyMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnhOYwDQYJ KoZIhvcNAQELBQADggEBAFx7gvV62tVtakaSPu6cAlv1DJx/4E+ivmkNzIChlJDb qeo4OWNMExWgLwVsuL6RwCDb+58QuMoos+4m2Row7gyUut5QsxnwClmsaLuy/FYJ lYarkfmnBKnHmKcBDNwOPvNGc6/F4JjgwFxQXInXQUtlzNAMHRcyHa47LoPOSZqp Sn5EJpmz9WBgCY8ry0uoIK81MdB8moamTVIuFNCiGqX5ABTa4Z5ALqfIEAnv0gto HkFQaDIrtZAh18ymohU/zYEdM5yTsoB6GrXlbyHxtSoxK/RRBNupbBHF2op4RiWv CxHlKJPzYiBoMH3uWgCz3fhgXja4PzsGeHaKl3K8/sw= -----END CERTIFICATE-----Generated at Wed Dec 3 16:11:02 2025 by rpki-client