This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/3130332e3132312e3133382e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3133382e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: DZ9aFZwF9ggTsXgvyFo7pS14fMoFuaypTJy0+7wDw/w= Subject key identifier: 96:E0:70:89:38:01:85:C5:81:E3:4F:31:2F:82:EF:1E:0A:60:90:70 Certificate issuer: /CN=5CC6B0489E576BC0D642B626195A0AA0560DC792 Certificate serial: 5210170B0BAFCB78AAD6411BA408489BA8A9C1DC Authority key identifier: 5C:C6:B0:48:9E:57:6B:C0:D6:42:B6:26:19:5A:0A:A0:56:0D:C7:92 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CC6B0489E576BC0D642B626195A0AA0560DC792.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/3130332e3132312e3133382e302f32332d3234203d3e20313335343738.roa Signing time: Wed 05 Nov 2025 07:02:29 +0000 ROA not before: Wed 05 Nov 2025 06:57:29 +0000 ROA not after: Wed 04 Nov 2026 07:02:29 +0000 asID: 135478 IP address blocks: 103.121.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/5CC6B0489E576BC0D642B626195A0AA0560DC792.crl rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/5CC6B0489E576BC0D642B626195A0AA0560DC792.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CC6B0489E576BC0D642B626195A0AA0560DC792.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 23:18:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:10:17:0b:0b:af:cb:78:aa:d6:41:1b:a4:08:48:9b:a8:a9:c1:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5CC6B0489E576BC0D642B626195A0AA0560DC792 Validity Not Before: Nov 5 06:57:29 2025 GMT Not After : Nov 4 07:02:29 2026 GMT Subject: CN=96E07089380185C581E34F312F82EF1E0A609070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:34:04:d4:84:89:3c:03:c3:a4:03:02:4a:1b: 92:22:ca:76:16:92:bd:f8:74:e1:83:5e:03:b8:a7: f7:0f:e9:d4:b6:40:50:76:76:b9:59:ce:96:ed:d4: e1:94:0c:b9:74:a4:67:fb:8e:cb:19:cf:32:0e:85: e2:69:62:d4:7a:eb:98:6d:92:7c:6b:4c:07:54:16: 48:0e:d6:69:ba:b6:33:42:3e:cc:8a:d7:47:e0:1e: cc:27:00:81:c1:9d:f5:21:1e:78:82:4b:3b:ab:4a: 28:9b:28:eb:d4:74:24:93:e9:ba:dd:da:41:a1:fe: 4b:cc:06:7e:d4:67:9e:e7:92:e2:e4:e7:35:e2:02: b8:8e:e6:b1:71:44:de:2a:83:7d:40:64:f1:55:83: 2c:28:7a:3b:94:5b:83:ed:85:6d:e5:e8:f1:b9:87: b6:90:8f:1d:a9:d8:0e:52:71:e0:31:48:44:11:fe: b8:a8:7a:41:98:fc:c1:2c:81:66:eb:8f:11:88:67: 97:64:b1:79:8d:9b:bf:04:2e:0d:ab:c5:43:be:1d: 8d:7f:ed:8f:be:f0:44:0b:15:d2:a8:6f:33:b1:af: 05:35:56:6c:0f:b1:e5:34:0f:30:01:ce:56:ae:2e: 53:80:02:e4:f6:af:5a:df:22:44:6e:2f:02:23:c2: e8:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:E0:70:89:38:01:85:C5:81:E3:4F:31:2F:82:EF:1E:0A:60:90:70 X509v3 Authority Key Identifier: keyid:5C:C6:B0:48:9E:57:6B:C0:D6:42:B6:26:19:5A:0A:A0:56:0D:C7:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/5CC6B0489E576BC0D642B626195A0AA0560DC792.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CC6B0489E576BC0D642B626195A0AA0560DC792.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/3130332e3132312e3133382e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.138.0/23 Signature Algorithm: sha256WithRSAEncryption 22:7e:cf:f8:74:a1:da:a1:48:da:7a:4c:b6:96:75:79:e1:e1: d7:99:b8:19:55:bf:d0:53:6c:b5:e3:d5:90:1f:c4:77:df:12: 9c:ff:25:aa:6b:9a:04:1d:bf:58:35:e1:75:19:bf:a6:71:04: 5e:c3:70:dd:3b:7f:da:7c:f9:cc:80:e6:77:07:f4:92:9c:65: 9e:2c:69:ac:60:a4:eb:d6:dc:a6:26:ae:28:ea:c4:2c:0e:65: be:94:da:64:ff:bd:ca:6c:f3:e3:e1:cc:ee:1f:ce:2b:7a:f7: 16:5c:4d:13:34:87:67:5a:53:34:ec:52:02:5c:dd:26:4f:0e: fa:27:ce:85:ef:8b:49:8b:c3:dd:1d:b7:f4:50:25:d2:d3:51: 61:8c:97:d3:6b:4a:16:1c:56:9f:69:f4:f2:f1:f1:31:43:20: ad:4a:fb:b7:d3:dd:7d:44:fe:7c:cf:32:5b:4a:51:f7:87:d5: 73:48:7d:68:94:4b:b4:8f:54:50:29:1b:4a:c6:6c:22:62:8a: dc:0a:be:e5:5a:17:5a:8a:01:66:f0:77:80:fd:1c:9a:5d:5e: 00:e5:c7:7a:1f:d0:55:3b:46:f1:aa:36:3b:b4:5a:97:0a:f1: ab:0f:35:a2:e7:19:e2:da:28:fd:3c:86:4a:94:61:4e:10:84: 2d:61:37:6f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUhAXCwuvy3iq1kEbpAhIm6ipwdwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUNDNkIwNDg5RTU3NkJDMEQ2NDJCNjI2MTk1QTBBQTA1 NjBEQzc5MjAeFw0yNTExMDUwNjU3MjlaFw0yNjExMDQwNzAyMjlaMDMxMTAvBgNV BAMTKDk2RTA3MDg5MzgwMTg1QzU4MUUzNEYzMTJGODJFRjFFMEE2MDkwNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKNATUhIk8A8OkAwJKG5IiynYW kr34dOGDXgO4p/cP6dS2QFB2drlZzpbt1OGUDLl0pGf7jssZzzIOheJpYtR665ht knxrTAdUFkgO1mm6tjNCPsyK10fgHswnAIHBnfUhHniCSzurSiibKOvUdCST6brd 2kGh/kvMBn7UZ57nkuLk5zXiAriO5rFxRN4qg31AZPFVgywoejuUW4PthW3l6PG5 h7aQjx2p2A5SceAxSEQR/rioekGY/MEsgWbrjxGIZ5dksXmNm78ELg2rxUO+HY1/ 7Y++8EQLFdKobzOxrwU1VmwPseU0DzABzlauLlOAAuT2r1rfIkRuLwIjwugzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUluBwiTgBhcWB408xL4LvHgpgkHAwHwYDVR0j BBgwFoAUXMawSJ5Xa8DWQrYmGVoKoFYNx5IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjRmYTdiOC01MzAyLTQ5MGItOTJlNC0yN2YyOGM2NjU3NWMvMC81Q0M2QjA0ODlF NTc2QkMwRDY0MkI2MjYxOTVBMEFBMDU2MERDNzkyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUNDNkIwNDg5RTU3NkJDMEQ2NDJCNjI2MTk1QTBBQTA1NjBE Qzc5Mi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNGZhN2I4LTUzMDItNDkwYi05 MmU0LTI3ZjI4YzY2NTc1Yy8wLzMxMzAzMzJlMzEzMjMxMmUzMTMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneYowDQYJ KoZIhvcNAQELBQADggEBACJ+z/h0odqhSNp6TLaWdXnh4deZuBlVv9BTbLXj1ZAf xHffEpz/JaprmgQdv1g14XUZv6ZxBF7DcN07f9p8+cyA5ncH9JKcZZ4saaxgpOvW 3KYmrijqxCwOZb6U2mT/vcps8+PhzO4fzit69xZcTRM0h2daUzTsUgJc3SZPDvon zoXvi0mLw90dt/RQJdLTUWGMl9NrShYcVp9p9PLx8TFDIK1K+7fT3X1E/nzPMltK UfeH1XNIfWiUS7SPVFApG0rGbCJiitwKvuVaF1qKAWbwd4D9HJpdXgDlx3of0FU7 RvGqNju0WpcK8asPNaLnGeLaKP08hkqUYU4QhC1hN28= -----END CERTIFICATE-----Generated at Wed Dec 3 11:48:33 2025 by rpki-client