This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/3130332e33312e3234302e302f32342d3234203d3e20313339393532.roa File: 3130332e33312e3234302e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: SnMbgMOxWF6U2uyaAr5mP0bLC0JpKov3uB08AyMeVTY= Subject key identifier: C6:0A:F4:FF:F0:82:2F:92:D9:B2:08:6C:C3:16:A4:2E:A5:58:5D:60 Certificate issuer: /CN=DEB4279F0D4CD8368462787573162FB753A9B04B Certificate serial: 3A5BEE94901B288049DCD6DE58472136B2C3F8AA Authority key identifier: DE:B4:27:9F:0D:4C:D8:36:84:62:78:75:73:16:2F:B7:53:A9:B0:4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEB4279F0D4CD8368462787573162FB753A9B04B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/3130332e33312e3234302e302f32342d3234203d3e20313339393532.roa Signing time: Thu 06 Nov 2025 05:00:00 +0000 ROA not before: Thu 06 Nov 2025 04:55:00 +0000 ROA not after: Thu 05 Nov 2026 05:00:00 +0000 asID: 139952 IP address blocks: 103.31.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/DEB4279F0D4CD8368462787573162FB753A9B04B.crl rsync://repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/DEB4279F0D4CD8368462787573162FB753A9B04B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEB4279F0D4CD8368462787573162FB753A9B04B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 00:57:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:5b:ee:94:90:1b:28:80:49:dc:d6:de:58:47:21:36:b2:c3:f8:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DEB4279F0D4CD8368462787573162FB753A9B04B Validity Not Before: Nov 6 04:55:00 2025 GMT Not After : Nov 5 05:00:00 2026 GMT Subject: CN=C60AF4FFF0822F92D9B2086CC316A42EA5585D60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b6:8c:ea:c8:1d:f3:4a:4f:7f:65:de:6a:bd: 52:d9:d4:85:09:a0:72:02:5b:b0:26:3b:a8:0a:93: 21:f0:9e:28:50:7b:92:07:16:92:8d:28:6f:b6:00: 33:9c:ca:f3:6f:42:ca:37:33:02:d8:14:92:87:c8: 50:e5:1d:5e:ec:98:38:ca:1b:ec:f7:fc:a4:52:da: 16:8c:57:00:3b:9a:e0:88:78:72:e3:f7:c7:38:e9: 77:85:f6:bc:50:62:e9:48:bd:fe:be:ab:a7:cf:3e: 85:a6:54:e0:87:00:f2:20:5e:1a:c0:be:51:e9:8c: f9:90:ea:48:d3:09:3f:1d:0a:66:66:62:3f:40:4a: 3f:54:56:6d:52:6c:5f:bf:d8:1d:b1:63:fe:1a:ac: 3d:24:e6:ee:56:e3:f0:0e:94:e7:d4:5d:3c:bd:ae: 93:ae:52:8f:60:e2:d8:f9:4e:e5:b8:1f:2a:c7:d3: ed:89:2e:9a:1e:ad:c0:96:d2:70:26:c5:47:e5:1c: 74:69:57:2f:76:4b:5d:33:38:b8:46:ae:7e:b2:07: f6:d9:09:4e:80:02:5d:65:ce:ab:d3:70:a5:07:18: c4:50:db:35:ac:95:a7:76:e5:63:12:86:91:27:1c: f6:9f:87:d0:74:f8:f0:3a:25:9c:b7:3e:1d:d1:f8: ed:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:0A:F4:FF:F0:82:2F:92:D9:B2:08:6C:C3:16:A4:2E:A5:58:5D:60 X509v3 Authority Key Identifier: keyid:DE:B4:27:9F:0D:4C:D8:36:84:62:78:75:73:16:2F:B7:53:A9:B0:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/DEB4279F0D4CD8368462787573162FB753A9B04B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEB4279F0D4CD8368462787573162FB753A9B04B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/3130332e33312e3234302e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.240.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:90:05:ed:d0:a6:75:4f:db:1a:b0:d4:c6:cc:67:21:8a:6a: 45:6e:5d:74:df:5d:d5:f9:06:46:dd:be:14:e2:0d:9a:9c:b7: 06:22:a6:88:b8:ce:dc:2d:05:d1:26:25:05:1d:d1:f1:45:8f: da:f6:9a:6d:e3:f1:84:8a:85:c9:fd:55:c7:d9:92:1e:90:77: 43:49:ef:6e:10:74:a9:e8:f7:94:9a:66:aa:ea:f6:71:a4:c4: 66:84:63:25:96:ec:79:b0:92:2e:78:28:91:1f:dd:ad:6b:05: e3:9d:5e:25:c8:9b:a7:df:60:f0:43:bb:1c:8e:de:62:8c:f8: f3:8c:be:b4:be:13:2e:da:aa:59:6d:d9:18:b1:a7:9a:26:40: 7d:53:62:b3:93:0f:2f:94:7a:03:e2:8d:3f:59:71:3d:83:b5: 99:7e:0f:cf:3c:fa:22:de:f5:d7:fb:b2:45:0d:e6:f6:d2:21: 96:5a:4e:30:0f:b5:69:f7:64:ae:16:12:63:d5:36:7e:64:33: ab:40:eb:df:24:fc:1c:72:ee:23:cf:a1:25:de:55:ad:ea:4c: 56:e5:42:96:59:fa:3e:70:d1:ac:30:f0:78:f5:96:93:c8:80: 92:21:f6:07:46:55:50:4f:c9:99:cb:5c:db:11:27:2d:78:2f: 74:24:ea:64 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOlvulJAbKIBJ3NbeWEchNrLD+KowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREVCNDI3OUYwRDRDRDgzNjg0NjI3ODc1NzMxNjJGQjc1 M0E5QjA0QjAeFw0yNTExMDYwNDU1MDBaFw0yNjExMDUwNTAwMDBaMDMxMTAvBgNV BAMTKEM2MEFGNEZGRjA4MjJGOTJEOUIyMDg2Q0MzMTZBNDJFQTU1ODVENjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCutozqyB3zSk9/Zd5qvVLZ1IUJ oHICW7AmO6gKkyHwnihQe5IHFpKNKG+2ADOcyvNvQso3MwLYFJKHyFDlHV7smDjK G+z3/KRS2haMVwA7muCIeHLj98c46XeF9rxQYulIvf6+q6fPPoWmVOCHAPIgXhrA vlHpjPmQ6kjTCT8dCmZmYj9ASj9UVm1SbF+/2B2xY/4arD0k5u5W4/AOlOfUXTy9 rpOuUo9g4tj5TuW4HyrH0+2JLpoercCW0nAmxUflHHRpVy92S10zOLhGrn6yB/bZ CU6AAl1lzqvTcKUHGMRQ2zWslad25WMShpEnHPafh9B0+PA6JZy3Ph3R+O1hAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxgr0//CCL5LZsghswxakLqVYXWAwHwYDVR0j BBgwFoAU3rQnnw1M2DaEYnh1cxYvt1OpsEswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDMwMzRhYS1mMzljLTQ4ZjUtODUyZS1kMWJkN2YxN2FhNDIvMC9ERUI0Mjc5RjBE NENEODM2ODQ2Mjc4NzU3MzE2MkZCNzUzQTlCMDRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREVCNDI3OUYwRDRDRDgzNjg0NjI3ODc1NzMxNjJGQjc1M0E5 QjA0Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0MzAzNGFhLWYzOWMtNDhmNS04 NTJlLWQxYmQ3ZjE3YWE0Mi8wLzMxMzAzMzJlMzMzMTJlMzIzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZx/wMA0GCSqG SIb3DQEBCwUAA4IBAQB+kAXt0KZ1T9sasNTGzGchimpFbl10313V+QZG3b4U4g2a nLcGIqaIuM7cLQXRJiUFHdHxRY/a9ppt4/GEioXJ/VXH2ZIekHdDSe9uEHSp6PeU mmaq6vZxpMRmhGMllux5sJIueCiRH92tawXjnV4lyJun32DwQ7scjt5ijPjzjL60 vhMu2qpZbdkYsaeaJkB9U2Kzkw8vlHoD4o0/WXE9g7WZfg/PPPoi3vXX+7JFDeb2 0iGWWk4wD7Vp92SuFhJj1TZ+ZDOrQOvfJPwccu4jz6El3lWt6kxW5UKWWfo+cNGs MPB49ZaTyICSIfYHRlVQT8mZy1zbEScteC90JOpk -----END CERTIFICATE-----Generated at Wed Dec 3 14:47:35 2025 by rpki-client