This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/3130332e3132312e3133362e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3133362e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: jOayWyAgZCsvj+hLghVgXXEurXODkcmj5Sfa+RC7w5g= Subject key identifier: 52:4D:60:C8:DD:29:4E:7A:7A:55:20:39:2B:3E:A8:EA:33:C0:57:0F Certificate issuer: /CN=5CC6B0489E576BC0D642B626195A0AA0560DC792 Certificate serial: 1D5C946273AA5F17EB3462C339717C015C1D64E3 Authority key identifier: 5C:C6:B0:48:9E:57:6B:C0:D6:42:B6:26:19:5A:0A:A0:56:0D:C7:92 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CC6B0489E576BC0D642B626195A0AA0560DC792.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/3130332e3132312e3133362e302f32332d3234203d3e20313335343738.roa Signing time: Wed 05 Nov 2025 07:02:28 +0000 ROA not before: Wed 05 Nov 2025 06:57:28 +0000 ROA not after: Wed 04 Nov 2026 07:02:28 +0000 asID: 135478 IP address blocks: 103.121.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/5CC6B0489E576BC0D642B626195A0AA0560DC792.crl rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/5CC6B0489E576BC0D642B626195A0AA0560DC792.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CC6B0489E576BC0D642B626195A0AA0560DC792.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 23:18:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:5c:94:62:73:aa:5f:17:eb:34:62:c3:39:71:7c:01:5c:1d:64:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5CC6B0489E576BC0D642B626195A0AA0560DC792 Validity Not Before: Nov 5 06:57:28 2025 GMT Not After : Nov 4 07:02:28 2026 GMT Subject: CN=524D60C8DD294E7A7A5520392B3EA8EA33C0570F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:40:6d:cd:77:49:74:8a:a0:14:9e:34:92:4a: 5f:5f:b9:21:2f:7d:06:31:6d:72:66:52:ee:ef:11: a7:21:8b:b1:12:67:9d:05:90:7f:ab:7a:1a:99:e3: 5c:09:f8:72:89:9d:6e:59:67:83:a0:a3:7f:21:f4: 80:01:34:03:96:df:a2:54:d5:ec:7a:e4:d5:c2:f9: 4c:d0:52:01:37:f5:0b:92:5e:44:e3:ea:3d:8c:8b: 32:18:a8:3f:d0:8e:d2:c7:3b:dd:bb:7c:37:c7:a7: 36:26:36:bc:6d:dd:92:38:8c:6a:54:be:49:56:65: 3d:2e:1c:5c:79:bd:b1:7d:26:76:86:f8:f0:d9:66: 5c:26:ea:b4:7a:fc:fe:b5:22:6f:24:80:fb:82:3b: 19:25:d5:44:94:f2:ca:1e:17:82:50:1f:4d:32:31: a0:12:76:3d:61:5f:09:bd:ed:22:51:b5:3e:3b:9d: 04:16:6f:cb:04:1e:e0:a4:9e:f7:0d:cb:cf:ec:a9: f0:ff:ed:16:60:ab:2c:a1:94:51:28:9b:80:f7:6c: dc:8b:08:63:d1:34:dc:17:35:d6:19:95:e9:1b:e5: 3f:6a:ec:38:54:78:fb:47:03:d1:e2:d7:9a:70:0f: 8c:62:a6:0f:2e:f2:5e:27:dd:0a:af:70:78:bb:ed: ba:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:4D:60:C8:DD:29:4E:7A:7A:55:20:39:2B:3E:A8:EA:33:C0:57:0F X509v3 Authority Key Identifier: keyid:5C:C6:B0:48:9E:57:6B:C0:D6:42:B6:26:19:5A:0A:A0:56:0D:C7:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/5CC6B0489E576BC0D642B626195A0AA0560DC792.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CC6B0489E576BC0D642B626195A0AA0560DC792.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/3130332e3132312e3133362e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.136.0/23 Signature Algorithm: sha256WithRSAEncryption ee:0e:26:d5:ea:b6:5a:52:d7:25:c9:8b:d7:82:99:7c:26:ba: ed:3c:2e:3d:7a:4c:40:d1:06:f2:50:d9:76:c3:d8:eb:bf:b9: 04:f7:f1:4b:af:7c:18:52:81:c2:08:aa:b0:0b:5b:bc:70:5e: 13:69:83:0d:5f:39:ef:09:de:75:d6:15:c0:aa:8f:24:44:5c: ec:c8:6c:c8:61:69:b1:b7:b4:89:09:09:48:4a:a9:e9:40:e8: cc:c8:2a:d5:5e:3e:2c:b3:54:09:9f:8b:60:50:90:21:0c:62: f3:f4:fa:2f:e9:7b:7a:f9:03:f7:a5:ae:bd:af:74:3c:0a:d3: 23:fe:7b:89:fb:c8:16:86:d7:81:f6:89:44:5d:d6:58:78:55: ec:f5:cd:d3:69:8f:0a:9a:4c:f4:87:eb:c9:f3:13:05:46:48: 1d:ea:63:4b:7b:53:41:61:e3:83:d0:7d:8d:18:a1:65:d6:8e: 98:94:ce:d9:ec:1f:46:6a:ce:eb:85:ab:49:0b:a6:2d:cc:4c: 6c:c8:05:85:e2:ef:3a:4b:9a:2e:29:bd:8a:24:ad:75:30:4e: bc:79:33:bc:70:70:b6:79:48:04:7c:e4:e4:7a:ac:a2:77:1e: 6b:69:2c:7c:73:7c:3c:a8:f3:db:33:27:9d:04:4f:82:f4:09: ee:6f:c9:85 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHVyUYnOqXxfrNGLDOXF8AVwdZOMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUNDNkIwNDg5RTU3NkJDMEQ2NDJCNjI2MTk1QTBBQTA1 NjBEQzc5MjAeFw0yNTExMDUwNjU3MjhaFw0yNjExMDQwNzAyMjhaMDMxMTAvBgNV BAMTKDUyNEQ2MEM4REQyOTRFN0E3QTU1MjAzOTJCM0VBOEVBMzNDMDU3MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkQG3Nd0l0iqAUnjSSSl9fuSEv fQYxbXJmUu7vEachi7ESZ50FkH+rehqZ41wJ+HKJnW5ZZ4Ogo38h9IABNAOW36JU 1ex65NXC+UzQUgE39QuSXkTj6j2MizIYqD/QjtLHO927fDfHpzYmNrxt3ZI4jGpU vklWZT0uHFx5vbF9JnaG+PDZZlwm6rR6/P61Im8kgPuCOxkl1USU8soeF4JQH00y MaASdj1hXwm97SJRtT47nQQWb8sEHuCknvcNy8/sqfD/7RZgqyyhlFEom4D3bNyL CGPRNNwXNdYZlekb5T9q7DhUePtHA9Hi15pwD4xipg8u8l4n3QqvcHi77br7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUUk1gyN0pTnp6VSA5Kz6o6jPAVw8wHwYDVR0j BBgwFoAUXMawSJ5Xa8DWQrYmGVoKoFYNx5IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjRmYTdiOC01MzAyLTQ5MGItOTJlNC0yN2YyOGM2NjU3NWMvMC81Q0M2QjA0ODlF NTc2QkMwRDY0MkI2MjYxOTVBMEFBMDU2MERDNzkyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUNDNkIwNDg5RTU3NkJDMEQ2NDJCNjI2MTk1QTBBQTA1NjBE Qzc5Mi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNGZhN2I4LTUzMDItNDkwYi05 MmU0LTI3ZjI4YzY2NTc1Yy8wLzMxMzAzMzJlMzEzMjMxMmUzMTMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneYgwDQYJ KoZIhvcNAQELBQADggEBAO4OJtXqtlpS1yXJi9eCmXwmuu08Lj16TEDRBvJQ2XbD 2Ou/uQT38UuvfBhSgcIIqrALW7xwXhNpgw1fOe8J3nXWFcCqjyREXOzIbMhhabG3 tIkJCUhKqelA6MzIKtVePiyzVAmfi2BQkCEMYvP0+i/pe3r5A/elrr2vdDwK0yP+ e4n7yBaG14H2iURd1lh4Vez1zdNpjwqaTPSH68nzEwVGSB3qY0t7U0Fh44PQfY0Y oWXWjpiUztnsH0ZqzuuFq0kLpi3MTGzIBYXi7zpLmi4pvYokrXUwTrx5M7xwcLZ5 SAR85OR6rKJ3HmtpLHxzfDyo89szJ50ET4L0Ce5vyYU= -----END CERTIFICATE-----Generated at Wed Dec 3 11:48:35 2025 by rpki-client