This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/3130332e3134332e32342e302f32342d3234203d3e203536323432.roa File: 3130332e3134332e32342e302f32342d3234203d3e203536323432.roa (raw, json) Hash identifier: 2rrLsC09Wk5In+nn3fns2W2xhNn/o1UykNLInh2ZFNs= Subject key identifier: DE:26:07:23:6D:AC:CE:0C:4D:E7:E7:C7:E7:2B:EB:E3:91:BC:84:15 Certificate issuer: /CN=C380A411E3CE15C60336341BB4B0994B307B920D Certificate serial: 4E13B23B59A7ECC5CED7DBCE0E700C41A60555CE Authority key identifier: C3:80:A4:11:E3:CE:15:C6:03:36:34:1B:B4:B0:99:4B:30:7B:92:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C380A411E3CE15C60336341BB4B0994B307B920D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/3130332e3134332e32342e302f32342d3234203d3e203536323432.roa Signing time: Thu 11 Dec 2025 09:02:33 +0000 ROA not before: Thu 11 Dec 2025 08:57:33 +0000 ROA not after: Thu 10 Dec 2026 09:02:33 +0000 asID: 56242 IP address blocks: 103.143.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/C380A411E3CE15C60336341BB4B0994B307B920D.crl rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/C380A411E3CE15C60336341BB4B0994B307B920D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C380A411E3CE15C60336341BB4B0994B307B920D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 04:27:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:13:b2:3b:59:a7:ec:c5:ce:d7:db:ce:0e:70:0c:41:a6:05:55:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C380A411E3CE15C60336341BB4B0994B307B920D Validity Not Before: Dec 11 08:57:33 2025 GMT Not After : Dec 10 09:02:33 2026 GMT Subject: CN=DE2607236DACCE0C4DE7E7C7E72BEBE391BC8415 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8d:2c:31:58:81:52:d6:ba:a6:13:0f:dd:37: c6:44:00:85:94:4c:ea:72:7a:79:83:26:d4:d7:55: 09:a5:a4:26:07:d2:fc:b4:5b:85:3e:61:95:c6:e3: ee:fe:7b:a7:1d:16:89:60:41:e6:f4:0e:29:90:a4: b5:c5:6e:93:9e:77:7b:00:6d:d2:a2:1f:c1:ce:be: 18:95:c6:02:51:25:b6:40:7f:3c:cb:b5:ec:41:25: eb:8d:59:68:79:1b:1a:d2:f6:7e:62:f4:80:ee:d4: 76:e0:81:03:d7:43:c7:74:2a:cc:44:42:6e:c6:c6: 52:3a:29:b1:d6:1d:5d:7d:c9:af:ca:ef:b6:aa:49: 6d:b4:a2:cd:9f:1f:60:fa:71:36:a5:55:c3:61:9b: ce:f3:17:a0:10:9b:f7:c5:0a:ba:7a:c8:73:57:cd: 40:4b:cb:61:f5:fd:7f:eb:b7:5c:82:c7:88:82:b4: e2:54:d9:1f:27:d9:fd:b2:db:25:ae:af:ec:c9:21: 31:59:67:3a:1a:6a:2d:dd:2f:a8:7b:ad:bd:eb:6e: 66:9a:a2:3f:a0:77:0f:58:4f:7b:d2:a5:f3:df:ba: 39:1f:6d:13:7b:ab:1d:c8:21:29:3f:09:bb:86:50: ca:67:4a:46:af:16:a4:a0:d4:09:23:77:88:98:22: 05:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:26:07:23:6D:AC:CE:0C:4D:E7:E7:C7:E7:2B:EB:E3:91:BC:84:15 X509v3 Authority Key Identifier: keyid:C3:80:A4:11:E3:CE:15:C6:03:36:34:1B:B4:B0:99:4B:30:7B:92:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/C380A411E3CE15C60336341BB4B0994B307B920D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C380A411E3CE15C60336341BB4B0994B307B920D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/3130332e3134332e32342e302f32342d3234203d3e203536323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.24.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:6a:2a:b5:79:ae:1d:bc:4e:7f:96:c2:97:a4:66:0e:54:d4: 1e:10:41:74:d8:78:b0:a7:21:fe:57:ad:5c:4e:0f:6a:0e:02: 7f:e7:15:ef:77:01:47:8e:8c:0c:c8:82:ae:e0:28:15:31:64: b7:a5:7b:6d:aa:68:8d:fb:45:02:5c:e2:6f:91:4f:e7:44:5e: 63:ff:82:c3:9b:5c:73:23:6e:27:61:35:5d:1c:7c:db:ba:19: 09:db:4f:3c:47:69:c3:d9:d5:f5:3b:56:be:74:d5:da:7e:5d: 4b:5b:2e:3e:76:18:1a:68:01:a0:ff:bf:55:99:93:0f:da:d4: d0:da:2e:ed:31:56:e1:1c:66:42:f1:5d:5b:62:73:8d:f0:62: 38:fc:d5:9c:c2:32:d6:db:25:7c:14:88:2f:85:f7:d0:ef:72: b5:60:c3:4e:70:47:bd:5b:da:e1:bd:1e:39:75:a3:0e:89:b0: 9d:9e:c6:35:d1:72:71:6f:ae:b3:6a:d5:9e:9c:dd:97:dd:85: b0:d5:47:0c:70:b3:4f:bb:f2:db:5b:ab:25:e7:21:98:52:99: 66:7f:87:75:61:e6:da:1e:6d:f6:18:fd:e8:74:d2:cf:0a:52: 2e:7e:a3:33:7e:54:d6:5c:c0:06:bd:8c:08:3b:e2:07:49:d2: a0:c1:37:c0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUThOyO1mn7MXO19vODnAMQaYFVc4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzM4MEE0MTFFM0NFMTVDNjAzMzYzNDFCQjRCMDk5NEIz MDdCOTIwRDAeFw0yNTEyMTEwODU3MzNaFw0yNjEyMTAwOTAyMzNaMDMxMTAvBgNV BAMTKERFMjYwNzIzNkRBQ0NFMEM0REU3RTdDN0U3MkJFQkUzOTFCQzg0MTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFjSwxWIFS1rqmEw/dN8ZEAIWU TOpyenmDJtTXVQmlpCYH0vy0W4U+YZXG4+7+e6cdFolgQeb0DimQpLXFbpOed3sA bdKiH8HOvhiVxgJRJbZAfzzLtexBJeuNWWh5GxrS9n5i9IDu1HbggQPXQ8d0KsxE Qm7GxlI6KbHWHV19ya/K77aqSW20os2fH2D6cTalVcNhm87zF6AQm/fFCrp6yHNX zUBLy2H1/X/rt1yCx4iCtOJU2R8n2f2y2yWur+zJITFZZzoaai3dL6h7rb3rbmaa oj+gdw9YT3vSpfPfujkfbRN7qx3IISk/CbuGUMpnSkavFqSg1Akjd4iYIgW/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3iYHI22szgxN5+fH5yvr45G8hBUwHwYDVR0j BBgwFoAUw4CkEePOFcYDNjQbtLCZSzB7kg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWM0MDBkMS05YmJkLTRlMmItOGQ1OC02Zjc0OWRiYzM5MmQvMC9DMzgwQTQxMUUz Q0UxNUM2MDMzNjM0MUJCNEIwOTk0QjMwN0I5MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzM4MEE0MTFFM0NFMTVDNjAzMzYzNDFCQjRCMDk5NEIzMDdC OTIwRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1YzQwMGQxLTliYmQtNGUyYi04 ZDU4LTZmNzQ5ZGJjMzkyZC8wLzMxMzAzMzJlMzEzNDMzMmUzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGePGDANBgkqhkiG 9w0BAQsFAAOCAQEAWmoqtXmuHbxOf5bCl6RmDlTUHhBBdNh4sKch/letXE4Pag4C f+cV73cBR46MDMiCruAoFTFkt6V7bapojftFAlzib5FP50ReY/+Cw5tccyNuJ2E1 XRx827oZCdtPPEdpw9nV9TtWvnTV2n5dS1suPnYYGmgBoP+/VZmTD9rU0Nou7TFW 4RxmQvFdW2JzjfBiOPzVnMIy1tslfBSIL4X30O9ytWDDTnBHvVva4b0eOXWjDomw nZ7GNdFycW+us2rVnpzdl92FsNVHDHCzT7vy21urJechmFKZZn+HdWHm2h5t9hj9 6HTSzwpSLn6jM35U1lzABr2MCDviB0nSoME3wA== -----END CERTIFICATE-----Generated at Mon Dec 15 11:42:42 2025 by rpki-client