This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/51e00779-4a39-47f0-8338-44f88c291706/0/3130332e3132312e3134362e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3134362e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: nWVhYRUUcfc8aYv1wy6ZUuBKnCS0BHar4Lt91zGFRLk= Subject key identifier: 08:25:3A:C7:76:05:68:4D:E6:F6:A9:3A:BD:57:3F:F6:0C:1F:6B:EF Certificate issuer: /CN=D714F468978E86AB39DC1CFD7B22A6CED936605D Certificate serial: 0D72EBFD9DE79F6A56872F32B60723AD41BEC866 Authority key identifier: D7:14:F4:68:97:8E:86:AB:39:DC:1C:FD:7B:22:A6:CE:D9:36:60:5D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D714F468978E86AB39DC1CFD7B22A6CED936605D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51e00779-4a39-47f0-8338-44f88c291706/0/3130332e3132312e3134362e302f32332d3234203d3e20313335343738.roa Signing time: Wed 05 Nov 2025 10:02:59 +0000 ROA not before: Wed 05 Nov 2025 09:57:59 +0000 ROA not after: Wed 04 Nov 2026 10:02:59 +0000 asID: 135478 IP address blocks: 103.121.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51e00779-4a39-47f0-8338-44f88c291706/0/D714F468978E86AB39DC1CFD7B22A6CED936605D.crl rsync://repo-rpki.idnic.net/repo/51e00779-4a39-47f0-8338-44f88c291706/0/D714F468978E86AB39DC1CFD7B22A6CED936605D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D714F468978E86AB39DC1CFD7B22A6CED936605D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 23:52:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:72:eb:fd:9d:e7:9f:6a:56:87:2f:32:b6:07:23:ad:41:be:c8:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D714F468978E86AB39DC1CFD7B22A6CED936605D Validity Not Before: Nov 5 09:57:59 2025 GMT Not After : Nov 4 10:02:59 2026 GMT Subject: CN=08253AC77605684DE6F6A93ABD573FF60C1F6BEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:12:72:8a:6f:97:f7:12:5a:55:bf:f7:68:0d: 52:e3:56:c2:f7:5e:b3:49:5c:19:7b:4a:c4:6c:03: 6e:c0:0b:1f:d9:e4:d5:93:07:85:a7:e5:e1:af:af: 54:45:b2:8a:70:d2:e7:07:6a:d7:9c:4f:2b:f1:e2: ce:bd:15:1a:9a:9b:06:37:83:7d:ca:f5:28:da:33: 7e:98:ff:d7:e4:02:32:dd:64:55:a9:41:ad:cb:06: e0:94:9c:c7:70:34:aa:ba:a2:7b:5d:f5:60:60:59: 7a:48:18:7d:dd:97:76:c9:b1:64:d8:59:69:d5:2b: a2:ac:33:21:29:59:d7:a6:15:6c:90:3e:c5:b2:81: f7:cc:90:e6:43:75:fb:a4:c8:8b:2b:1a:fe:e3:49: ab:aa:94:bf:ab:39:4f:9d:ed:83:f9:fd:5a:fe:42: bd:ee:b0:86:34:e7:d4:97:e1:e5:27:cb:3e:e7:36: 72:92:2f:2a:1c:da:ea:46:8e:81:0e:b6:78:40:f3: 5b:41:79:8c:9d:2a:14:01:59:3f:6f:7a:cc:3b:d7: a3:d3:10:04:38:80:c7:61:99:54:f4:b0:e3:45:25: ed:f5:f8:bd:93:96:f1:88:3d:c1:b6:84:8a:09:de: 45:2c:15:83:76:fe:51:22:61:cb:d0:79:b2:8e:ad: da:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:25:3A:C7:76:05:68:4D:E6:F6:A9:3A:BD:57:3F:F6:0C:1F:6B:EF X509v3 Authority Key Identifier: keyid:D7:14:F4:68:97:8E:86:AB:39:DC:1C:FD:7B:22:A6:CE:D9:36:60:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51e00779-4a39-47f0-8338-44f88c291706/0/D714F468978E86AB39DC1CFD7B22A6CED936605D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D714F468978E86AB39DC1CFD7B22A6CED936605D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51e00779-4a39-47f0-8338-44f88c291706/0/3130332e3132312e3134362e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.146.0/23 Signature Algorithm: sha256WithRSAEncryption ac:65:db:74:b3:b4:28:40:43:26:13:0d:ea:31:50:1d:09:45: 51:ca:71:d9:7c:c5:dd:ff:a7:ae:47:a9:e2:fd:94:d3:e6:c9: 29:c5:95:25:5e:4e:3e:eb:69:8a:8b:8f:5f:3b:1a:84:c4:40: 38:49:7a:df:36:42:7c:2e:c3:4f:27:c0:f4:8f:63:3d:f1:8c: 27:13:08:04:ea:1e:cf:a7:84:9c:ea:aa:ab:ca:a8:b1:ed:77: 25:d3:d8:90:e8:b7:01:cf:cc:39:19:5b:a2:f3:a3:98:b6:f4: ac:71:56:e0:e9:23:d6:3e:d5:03:30:5a:eb:dd:7c:a4:0a:d4: 9f:14:75:de:f1:38:33:0b:d2:25:ee:fc:ed:51:d9:9b:62:c2: de:49:18:7d:45:b2:dc:06:e6:60:cd:2f:10:69:56:23:0b:01: e2:40:4f:95:23:c6:5a:dc:eb:38:96:70:e9:00:a8:51:6c:03: 52:92:d0:90:3c:42:1c:2e:dc:e0:ba:12:9d:e0:55:b8:9d:94: 5e:3f:87:7a:d3:33:e2:75:df:61:f8:76:ed:2e:52:6e:22:10: 39:a5:00:ee:dd:b2:29:5c:81:f8:30:6c:c4:fd:31:f8:29:f2: 76:64:c5:a7:a5:75:7a:46:af:9d:3c:e2:e3:97:6d:f2:68:7a: 1b:2e:40:67 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDXLr/Z3nn2pWhy8ytgcjrUG+yGYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDcxNEY0Njg5NzhFODZBQjM5REMxQ0ZEN0IyMkE2Q0VE OTM2NjA1RDAeFw0yNTExMDUwOTU3NTlaFw0yNjExMDQxMDAyNTlaMDMxMTAvBgNV BAMTKDA4MjUzQUM3NzYwNTY4NERFNkY2QTkzQUJENTczRkY2MEMxRjZCRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJEnKKb5f3ElpVv/doDVLjVsL3 XrNJXBl7SsRsA27ACx/Z5NWTB4Wn5eGvr1RFsopw0ucHatecTyvx4s69FRqamwY3 g33K9SjaM36Y/9fkAjLdZFWpQa3LBuCUnMdwNKq6ontd9WBgWXpIGH3dl3bJsWTY WWnVK6KsMyEpWdemFWyQPsWygffMkOZDdfukyIsrGv7jSauqlL+rOU+d7YP5/Vr+ Qr3usIY059SX4eUnyz7nNnKSLyoc2upGjoEOtnhA81tBeYydKhQBWT9vesw716PT EAQ4gMdhmVT0sONFJe31+L2TlvGIPcG2hIoJ3kUsFYN2/lEiYcvQebKOrdpbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUCCU6x3YFaE3m9qk6vVc/9gwfa+8wHwYDVR0j BBgwFoAU1xT0aJeOhqs53Bz9eyKmztk2YF0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MWUwMDc3OS00YTM5LTQ3ZjAtODMzOC00NGY4OGMyOTE3MDYvMC9ENzE0RjQ2ODk3 OEU4NkFCMzlEQzFDRkQ3QjIyQTZDRUQ5MzY2MDVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDcxNEY0Njg5NzhFODZBQjM5REMxQ0ZEN0IyMkE2Q0VEOTM2 NjA1RC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxZTAwNzc5LTRhMzktNDdmMC04 MzM4LTQ0Zjg4YzI5MTcwNi8wLzMxMzAzMzJlMzEzMjMxMmUzMTM0MzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneZIwDQYJ KoZIhvcNAQELBQADggEBAKxl23SztChAQyYTDeoxUB0JRVHKcdl8xd3/p65HqeL9 lNPmySnFlSVeTj7raYqLj187GoTEQDhJet82Qnwuw08nwPSPYz3xjCcTCATqHs+n hJzqqqvKqLHtdyXT2JDotwHPzDkZW6Lzo5i29KxxVuDpI9Y+1QMwWuvdfKQK1J8U dd7xODML0iXu/O1R2Ztiwt5JGH1FstwG5mDNLxBpViMLAeJAT5Ujxlrc6ziWcOkA qFFsA1KS0JA8Qhwu3OC6Ep3gVbidlF4/h3rTM+J132H4du0uUm4iEDmlAO7dsilc gfgwbMT9Mfgp8nZkxaeldXpGr5084uOXbfJoehsuQGc= -----END CERTIFICATE-----Generated at Wed Dec 3 11:48:53 2025 by rpki-client