This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3130332e35332e32302e302f32342d3234203d3e203436303334.roa File: 3130332e35332e32302e302f32342d3234203d3e203436303334.roa (raw, json) Hash identifier: R0jNeZREOH7PdH08cIX9FXJ07BU9g/y14/QiKIW3zDQ= Subject key identifier: 0B:E5:50:2B:4F:2C:1E:E5:3E:7B:01:12:B8:37:32:CC:EA:6E:3E:4D Certificate issuer: /CN=E89C93F089A07D03B5794B0C02239EF67E1D721C Certificate serial: 2B26A7157D776A3D54B0B02646D15D22E6D928D6 Authority key identifier: E8:9C:93:F0:89:A0:7D:03:B5:79:4B:0C:02:23:9E:F6:7E:1D:72:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E89C93F089A07D03B5794B0C02239EF67E1D721C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3130332e35332e32302e302f32342d3234203d3e203436303334.roa Signing time: Thu 23 Oct 2025 13:00:00 +0000 ROA not before: Thu 23 Oct 2025 12:55:00 +0000 ROA not after: Thu 22 Oct 2026 13:00:00 +0000 asID: 46034 IP address blocks: 103.53.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/E89C93F089A07D03B5794B0C02239EF67E1D721C.crl rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/E89C93F089A07D03B5794B0C02239EF67E1D721C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E89C93F089A07D03B5794B0C02239EF67E1D721C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 04:54:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:26:a7:15:7d:77:6a:3d:54:b0:b0:26:46:d1:5d:22:e6:d9:28:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E89C93F089A07D03B5794B0C02239EF67E1D721C Validity Not Before: Oct 23 12:55:00 2025 GMT Not After : Oct 22 13:00:00 2026 GMT Subject: CN=0BE5502B4F2C1EE53E7B0112B83732CCEA6E3E4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b0:44:c3:25:82:ca:1f:ae:77:c8:3f:a5:05: d3:23:a6:1f:e9:17:26:5e:a2:a9:af:c3:63:06:a7: ef:e4:24:a2:b7:16:c5:f9:12:ec:73:2c:86:ea:db: e4:ca:6f:85:c0:61:be:38:6c:07:4c:a1:6b:d5:a4: a7:9a:83:68:69:99:f3:87:fa:2c:44:d7:9c:42:c1: cb:7c:20:70:f0:9f:f9:53:b3:af:d2:c4:9e:3d:1a: 3b:0f:8f:c9:7d:02:e6:67:46:76:ca:c9:8a:4c:fe: ad:01:35:91:a1:75:fc:dd:bd:d3:d9:2d:0a:64:dc: 0d:ab:ca:4b:ee:ed:6b:1d:85:56:1a:e6:fb:20:8f: 24:e8:c5:fe:ef:73:02:91:3f:02:83:b9:a2:26:e1: b7:ff:22:40:aa:3b:0e:46:60:0e:82:e4:49:5b:36: df:ed:a3:c3:1d:e6:c8:4c:ab:ee:ae:4a:bf:aa:3d: 4f:d0:3c:96:80:62:26:bd:cd:09:51:6e:56:e3:77: 54:63:ae:81:ab:cf:f1:8a:e5:0f:f3:aa:1a:cd:25: 23:af:dc:32:d0:5e:2f:68:e9:45:e3:16:55:ff:6f: 47:17:cd:0a:5c:b8:f2:e8:ba:a1:4c:93:64:7c:e8: bd:1b:90:b6:66:52:0f:b1:07:99:10:70:cc:d0:56: 1e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:E5:50:2B:4F:2C:1E:E5:3E:7B:01:12:B8:37:32:CC:EA:6E:3E:4D X509v3 Authority Key Identifier: keyid:E8:9C:93:F0:89:A0:7D:03:B5:79:4B:0C:02:23:9E:F6:7E:1D:72:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/E89C93F089A07D03B5794B0C02239EF67E1D721C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E89C93F089A07D03B5794B0C02239EF67E1D721C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3130332e35332e32302e302f32342d3234203d3e203436303334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.53.20.0/24 Signature Algorithm: sha256WithRSAEncryption 30:29:42:87:10:43:86:6d:8f:50:4a:41:b1:44:6a:1f:e0:6d: 02:ca:c7:1f:30:3f:ec:b1:b4:aa:44:1f:07:63:cf:a2:9b:f1: d6:c5:7d:5b:b7:bc:e1:a3:f3:32:1d:ae:0f:0f:55:58:ea:f1: 33:bd:93:09:49:e5:5b:8a:68:e4:8f:fb:c0:90:ba:78:3d:05: 4c:92:83:f9:21:0d:14:06:52:a9:40:47:1c:2f:40:4b:77:34: 64:8e:b6:b3:72:26:92:21:7d:93:c3:10:76:ef:55:3b:f1:c9: ef:5c:23:39:80:80:37:9d:38:19:41:38:5a:80:fd:08:74:6c: 9f:6a:ef:7e:68:e3:ab:ec:34:14:cc:21:69:09:a8:e5:63:52: 97:37:55:14:d2:e2:9c:2e:24:0d:1c:81:3d:7b:ac:0b:88:08: 14:40:5c:ba:16:fe:f4:68:a2:c8:b5:c6:b2:3a:90:cc:65:16: 9b:f6:52:ae:9f:05:3a:e7:85:1b:d5:1e:d8:80:07:d9:ce:a3: 66:e5:63:a8:b1:7e:b2:e9:56:5a:f0:4b:b9:8a:62:b7:fd:6e: 6e:5e:c8:82:3e:29:fc:cb:b6:62:7b:7a:fc:66:45:77:3e:7b: fa:fa:5a:21:13:ea:50:54:30:15:1a:b4:89:84:10:81:1a:4b: d9:2d:bd:3b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUKyanFX13aj1UsLAmRtFdIubZKNYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5QzkzRjA4OUEwN0QwM0I1Nzk0QjBDMDIyMzlFRjY3 RTFENzIxQzAeFw0yNTEwMjMxMjU1MDBaFw0yNjEwMjIxMzAwMDBaMDMxMTAvBgNV BAMTKDBCRTU1MDJCNEYyQzFFRTUzRTdCMDExMkI4MzczMkNDRUE2RTNFNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnsETDJYLKH653yD+lBdMjph/p FyZeoqmvw2MGp+/kJKK3FsX5EuxzLIbq2+TKb4XAYb44bAdMoWvVpKeag2hpmfOH +ixE15xCwct8IHDwn/lTs6/SxJ49GjsPj8l9AuZnRnbKyYpM/q0BNZGhdfzdvdPZ LQpk3A2rykvu7WsdhVYa5vsgjyToxf7vcwKRPwKDuaIm4bf/IkCqOw5GYA6C5Elb Nt/to8Md5shMq+6uSr+qPU/QPJaAYia9zQlRblbjd1RjroGrz/GK5Q/zqhrNJSOv 3DLQXi9o6UXjFlX/b0cXzQpcuPLouqFMk2R86L0bkLZmUg+xB5kQcMzQVh4hAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUC+VQK08sHuU+ewESuDcyzOpuPk0wHwYDVR0j BBgwFoAU6JyT8ImgfQO1eUsMAiOe9n4dchwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 Zjg4NTFlNS1lZTViLTQxZTEtOWFiYy00NDI2NTFkMjcyOTQvMC9FODlDOTNGMDg5 QTA3RDAzQjU3OTRCMEMwMjIzOUVGNjdFMUQ3MjFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTg5QzkzRjA4OUEwN0QwM0I1Nzk0QjBDMDIyMzlFRjY3RTFE NzIxQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmODg1MWU1LWVlNWItNDFlMS05 YWJjLTQ0MjY1MWQyNzI5NC8wLzMxMzAzMzJlMzUzMzJlMzIzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnNRQwDQYJKoZIhvcN AQELBQADggEBADApQocQQ4Ztj1BKQbFEah/gbQLKxx8wP+yxtKpEHwdjz6Kb8dbF fVu3vOGj8zIdrg8PVVjq8TO9kwlJ5VuKaOSP+8CQung9BUySg/khDRQGUqlARxwv QEt3NGSOtrNyJpIhfZPDEHbvVTvxye9cIzmAgDedOBlBOFqA/Qh0bJ9q735o46vs NBTMIWkJqOVjUpc3VRTS4pwuJA0cgT17rAuICBRAXLoW/vRoosi1xrI6kMxlFpv2 Uq6fBTrnhRvVHtiAB9nOo2blY6ixfrLpVlrwS7mKYrf9bm5eyII+KfzLtmJ7evxm RXc+e/r6WiET6lBUMBUatImEEIEaS9ktvTs= -----END CERTIFICATE-----Generated at Wed Dec 3 15:49:04 2025 by rpki-client