This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3130332e3133322e3233312e302f32342d3234203d3e20313338313237.roa File: 3130332e3133322e3233312e302f32342d3234203d3e20313338313237.roa (raw, json) Hash identifier: WyVvseBUv5X8ksDjsVqSJfve5PyMPgdJn+/FGNUqcmk= Subject key identifier: 61:32:04:2F:F4:34:AC:7D:DD:A0:EC:AF:E1:68:17:E9:FE:EA:24:B1 Certificate issuer: /CN=3E0B957B582D8AEF99A49C6448F9993C72378BF3 Certificate serial: 4EEA7D29164D9D96E5F34DD880460B945DF3B79E Authority key identifier: 3E:0B:95:7B:58:2D:8A:EF:99:A4:9C:64:48:F9:99:3C:72:37:8B:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3130332e3133322e3233312e302f32342d3234203d3e20313338313237.roa Signing time: Fri 21 Nov 2025 07:03:05 +0000 ROA not before: Fri 21 Nov 2025 06:58:05 +0000 ROA not after: Fri 20 Nov 2026 07:03:05 +0000 asID: 138127 IP address blocks: 103.132.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.crl rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 14:54:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:ea:7d:29:16:4d:9d:96:e5:f3:4d:d8:80:46:0b:94:5d:f3:b7:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E0B957B582D8AEF99A49C6448F9993C72378BF3 Validity Not Before: Nov 21 06:58:05 2025 GMT Not After : Nov 20 07:03:05 2026 GMT Subject: CN=6132042FF434AC7DDDA0ECAFE16817E9FEEA24B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:64:dd:0f:8a:75:5c:ba:d1:52:7f:a4:4f:4a: 7a:07:c8:a4:14:8b:d1:13:cc:9d:47:a7:53:7f:10: 79:d8:85:54:a8:4c:4d:a4:be:eb:02:96:79:5b:0d: b8:38:ea:97:4e:ee:47:9e:ac:96:70:18:fc:fa:53: 36:a2:e3:f3:81:a2:b2:dd:ea:87:b4:51:69:91:14: 27:f0:17:a3:53:4f:25:58:9e:4a:d6:b8:2f:41:82: 18:cc:ac:7e:cf:b6:2e:64:cb:8d:68:0e:b6:65:6e: 17:ab:ca:e0:9a:f2:d8:a8:a8:46:c3:49:47:e1:1d: 1a:d5:f6:b8:0a:50:26:bd:3e:4e:b7:11:e4:f9:70: 5d:c3:5d:72:a7:08:b2:1f:57:fa:e7:bb:47:78:44: d1:79:26:f3:be:eb:f0:2f:9c:b6:be:c2:d9:39:0b: b4:84:04:a5:01:e5:f6:8f:32:ed:51:c3:77:90:86: 71:e5:dc:26:6b:f1:2d:7a:73:5e:37:4a:31:f0:d6: 6a:02:6e:c1:89:9c:7c:66:b7:90:90:34:65:f7:39: 8d:27:1e:59:cf:77:55:40:b1:a8:8c:09:4a:72:63: 9d:fa:06:b5:2b:8d:56:a9:02:3a:07:d4:96:a6:62: 6f:94:ab:d1:f5:ff:eb:b2:2e:be:8a:df:7e:a9:ce: 96:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:32:04:2F:F4:34:AC:7D:DD:A0:EC:AF:E1:68:17:E9:FE:EA:24:B1 X509v3 Authority Key Identifier: keyid:3E:0B:95:7B:58:2D:8A:EF:99:A4:9C:64:48:F9:99:3C:72:37:8B:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3130332e3133322e3233312e302f32342d3234203d3e20313338313237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.132.231.0/24 Signature Algorithm: sha256WithRSAEncryption 34:43:c8:14:ae:1e:7b:b8:66:27:ed:6f:99:bb:8a:60:30:01: 03:7c:0c:4c:82:f3:60:19:14:a5:34:5f:c1:a5:cd:fb:a9:8a: 97:d8:fe:a8:41:71:28:f3:c2:8f:fb:17:ad:75:ac:53:a9:67: cc:50:82:32:7d:5c:d1:cb:0a:b8:55:67:3d:fc:c4:29:2c:f6: b6:da:bf:71:22:54:3f:9f:37:e5:58:3c:53:20:2e:75:35:d8: 4e:19:79:0a:2f:81:01:d2:bf:0f:ce:0b:73:9d:a9:cf:c8:28: 39:09:2d:42:a6:1c:12:73:d4:8e:77:b1:4c:08:3c:19:bc:ec: 01:2e:cb:25:53:6a:e5:ac:dc:e0:19:b2:6d:47:14:15:bb:82: eb:86:15:39:02:00:dc:74:0e:3e:c5:9d:28:46:2f:e5:24:0c: af:f3:88:bf:74:ff:c3:67:fd:5a:3e:23:f4:a1:7c:d7:a7:95: e8:a6:25:63:09:dc:87:a4:63:c8:be:9e:cc:fc:ba:a7:82:0d: 87:5d:74:bc:d5:aa:c0:85:00:95:c4:02:6b:73:01:0a:5b:0b: a4:14:2e:93:96:fd:30:68:27:cf:cf:0f:b3:d7:38:8f:c6:c3: 2e:1e:99:24:60:84:9e:f4:b2:d9:5e:c7:ab:58:19:2b:42:bb: db:a6:e9:90 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTup9KRZNnZbl803YgEYLlF3zt54wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0UwQjk1N0I1ODJEOEFFRjk5QTQ5QzY0NDhGOTk5M0M3 MjM3OEJGMzAeFw0yNTExMjEwNjU4MDVaFw0yNjExMjAwNzAzMDVaMDMxMTAvBgNV BAMTKDYxMzIwNDJGRjQzNEFDN0REREEwRUNBRkUxNjgxN0U5RkVFQTI0QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsZN0PinVcutFSf6RPSnoHyKQU i9ETzJ1Hp1N/EHnYhVSoTE2kvusClnlbDbg46pdO7keerJZwGPz6Uzai4/OBorLd 6oe0UWmRFCfwF6NTTyVYnkrWuC9BghjMrH7Pti5ky41oDrZlbheryuCa8tioqEbD SUfhHRrV9rgKUCa9Pk63EeT5cF3DXXKnCLIfV/rnu0d4RNF5JvO+6/AvnLa+wtk5 C7SEBKUB5faPMu1Rw3eQhnHl3CZr8S16c143SjHw1moCbsGJnHxmt5CQNGX3OY0n HlnPd1VAsaiMCUpyY536BrUrjVapAjoH1JamYm+Uq9H1/+uyLr6K336pzpZJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUYTIEL/Q0rH3doOyv4WgX6f7qJLEwHwYDVR0j BBgwFoAUPguVe1gtiu+ZpJxkSPmZPHI3i/MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZWRjOWU0Zi04MTgwLTQxZDYtYjA4ZC04ZWU1YThhNzBhMDUvMC8zRTBCOTU3QjU4 MkQ4QUVGOTlBNDlDNjQ0OEY5OTkzQzcyMzc4QkYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0UwQjk1N0I1ODJEOEFFRjk5QTQ5QzY0NDhGOTk5M0M3MjM3 OEJGMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRlZGM5ZTRmLTgxODAtNDFkNi1i MDhkLThlZTVhOGE3MGEwNS8wLzMxMzAzMzJlMzEzMzMyMmUzMjMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMyMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnhOcwDQYJ KoZIhvcNAQELBQADggEBADRDyBSuHnu4Ziftb5m7imAwAQN8DEyC82AZFKU0X8Gl zfupipfY/qhBcSjzwo/7F611rFOpZ8xQgjJ9XNHLCrhVZz38xCks9rbav3EiVD+f N+VYPFMgLnU12E4ZeQovgQHSvw/OC3Odqc/IKDkJLUKmHBJz1I53sUwIPBm87AEu yyVTauWs3OAZsm1HFBW7guuGFTkCANx0Dj7FnShGL+UkDK/ziL90/8Nn/Vo+I/Sh fNenleimJWMJ3IekY8i+nsz8uqeCDYdddLzVqsCFAJXEAmtzAQpbC6QULpOW/TBo J8/PD7PXOI/Gwy4emSRghJ70stlex6tYGStCu9um6ZA= -----END CERTIFICATE-----Generated at Wed Dec 3 15:28:56 2025 by rpki-client