This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/3130332e3132392e32302e302f32332d3234203d3e20313335343738.roa File: 3130332e3132392e32302e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: ezzFeBhaAvNsKhxbFuThV49gvTqwygGDYXBHtWaw660= Subject key identifier: B2:95:6F:51:32:07:8D:1D:ED:2F:78:EF:40:8D:D4:00:FD:48:C2:04 Certificate issuer: /CN=5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297 Certificate serial: 50674A83BC416F9746B3D89DD24843DE2728AD0B Authority key identifier: 51:97:E2:A7:8B:BA:1E:8C:9E:B8:08:E4:5A:99:DD:2B:E7:B4:12:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.cer Subject info access: rsync://repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/3130332e3132392e32302e302f32332d3234203d3e20313335343738.roa Signing time: Wed 05 Nov 2025 10:00:00 +0000 ROA not before: Wed 05 Nov 2025 09:55:00 +0000 ROA not after: Wed 04 Nov 2026 10:00:00 +0000 asID: 135478 IP address blocks: 103.129.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.crl rsync://repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 08:20:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:67:4a:83:bc:41:6f:97:46:b3:d8:9d:d2:48:43:de:27:28:ad:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297 Validity Not Before: Nov 5 09:55:00 2025 GMT Not After : Nov 4 10:00:00 2026 GMT Subject: CN=B2956F5132078D1DED2F78EF408DD400FD48C204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2a:f5:05:a4:7d:8c:f7:ce:b8:60:49:cc:6e: c4:0c:c8:18:7b:ba:62:41:14:86:1b:84:52:93:be: 60:05:07:4d:68:11:a0:14:5e:9a:91:30:4c:5f:ee: 7d:ac:d3:16:cd:f7:62:d5:8e:8f:14:9a:46:a8:26: ae:dd:76:49:76:5f:fb:75:87:79:04:cf:52:cd:ab: 2f:b7:c2:92:d0:6f:46:68:4c:ca:29:a4:2b:7a:1f: e2:27:6f:c5:fa:e6:c2:db:1f:e9:24:c0:70:1a:69: b0:ee:09:e1:85:50:20:28:6b:cf:96:51:25:4e:2d: 42:e4:f0:35:59:9b:0f:8f:21:33:d5:49:80:9f:1d: 75:fe:ee:ad:41:fd:83:d1:1f:e1:11:5a:d3:57:4c: b8:07:0a:34:2d:86:00:47:e3:e4:e5:61:cd:b4:55: 04:45:4c:57:31:e4:65:cd:c3:5c:2e:f1:ca:dd:0f: 8b:58:95:f2:6a:e9:ab:4a:af:50:24:20:e7:47:2a: 6d:1d:b7:59:01:8e:03:ff:9e:bc:e1:81:77:34:bd: 7c:bc:61:1f:88:77:86:75:8c:f9:f3:a1:fc:f3:29: 80:14:ec:8d:31:73:1a:be:78:9b:96:00:f7:21:44: 03:36:25:2a:ba:db:36:f0:ce:47:83:05:47:57:52: f3:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:95:6F:51:32:07:8D:1D:ED:2F:78:EF:40:8D:D4:00:FD:48:C2:04 X509v3 Authority Key Identifier: keyid:51:97:E2:A7:8B:BA:1E:8C:9E:B8:08:E4:5A:99:DD:2B:E7:B4:12:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5197E2A78BBA1E8C9EB808E45A99DD2BE7B41297.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/76542839-2858-49f0-acdf-fa7d3ab9c558/0/3130332e3132392e32302e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.20.0/23 Signature Algorithm: sha256WithRSAEncryption 42:19:01:3f:dc:79:4f:c8:83:48:f8:6d:3a:1b:e2:26:25:ff: 9e:fa:d1:9a:a0:63:97:e5:09:20:4c:ef:23:84:02:b5:2f:d3: 95:78:dd:65:45:e6:44:26:d3:2f:84:0c:88:a6:37:a0:39:4c: cc:39:81:bc:19:cc:e0:58:a3:47:c6:31:c7:23:91:9f:17:ac: 77:a8:73:79:fe:97:bc:de:4e:8a:17:de:db:e8:72:c0:9a:91: 19:39:15:78:47:ab:83:e4:a0:03:1c:19:13:0d:bc:14:b2:ee: 75:5f:bc:f2:bd:69:9b:c6:67:75:a8:3e:de:c5:91:4d:92:c0: 9c:e3:94:00:d5:be:dd:36:98:51:41:89:3e:7d:1c:82:ed:e3: 05:07:f6:4a:83:03:b9:d8:e6:18:06:e1:24:21:98:d8:69:14: 22:1f:71:3f:1f:49:87:6f:da:85:f0:24:61:e1:6f:03:9c:cf: a6:1a:f4:fe:f3:b5:36:55:5d:dd:c6:03:f1:c7:a1:01:fa:e7: 99:b4:1a:31:57:3a:54:06:ff:63:e1:92:a8:f6:ff:5f:21:ea: 49:c7:67:bf:da:a1:4b:06:36:34:d7:bf:b6:a2:d0:52:63:5e: e6:f4:60:a3:73:61:84:ee:5c:48:27:11:5e:da:c3:59:9e:00: 71:6c:d0:7c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUGdKg7xBb5dGs9id0khD3icorQswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTE5N0UyQTc4QkJBMUU4QzlFQjgwOEU0NUE5OUREMkJF N0I0MTI5NzAeFw0yNTExMDUwOTU1MDBaFw0yNjExMDQxMDAwMDBaMDMxMTAvBgNV BAMTKEIyOTU2RjUxMzIwNzhEMURFRDJGNzhFRjQwOERENDAwRkQ0OEMyMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/KvUFpH2M9864YEnMbsQMyBh7 umJBFIYbhFKTvmAFB01oEaAUXpqRMExf7n2s0xbN92LVjo8UmkaoJq7ddkl2X/t1 h3kEz1LNqy+3wpLQb0ZoTMoppCt6H+Inb8X65sLbH+kkwHAaabDuCeGFUCAoa8+W USVOLULk8DVZmw+PITPVSYCfHXX+7q1B/YPRH+ERWtNXTLgHCjQthgBH4+TlYc20 VQRFTFcx5GXNw1wu8crdD4tYlfJq6atKr1AkIOdHKm0dt1kBjgP/nrzhgXc0vXy8 YR+Id4Z1jPnzofzzKYAU7I0xcxq+eJuWAPchRAM2JSq62zbwzkeDBUdXUvORAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUspVvUTIHjR3tL3jvQI3UAP1IwgQwHwYDVR0j BBgwFoAUUZfip4u6HoyeuAjkWpndK+e0EpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NjU0MjgzOS0yODU4LTQ5ZjAtYWNkZi1mYTdkM2FiOWM1NTgvMC81MTk3RTJBNzhC QkExRThDOUVCODA4RTQ1QTk5REQyQkU3QjQxMjk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTE5N0UyQTc4QkJBMUU4QzlFQjgwOEU0NUE5OUREMkJFN0I0 MTI5Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc2NTQyODM5LTI4NTgtNDlmMC1h Y2RmLWZhN2QzYWI5YzU1OC8wLzMxMzAzMzJlMzEzMjM5MmUzMjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4EUMA0GCSqG SIb3DQEBCwUAA4IBAQBCGQE/3HlPyINI+G06G+ImJf+e+tGaoGOX5QkgTO8jhAK1 L9OVeN1lReZEJtMvhAyIpjegOUzMOYG8GczgWKNHxjHHI5GfF6x3qHN5/pe83k6K F97b6HLAmpEZORV4R6uD5KADHBkTDbwUsu51X7zyvWmbxmd1qD7exZFNksCc45QA 1b7dNphRQYk+fRyC7eMFB/ZKgwO52OYYBuEkIZjYaRQiH3E/H0mHb9qF8CRh4W8D nM+mGvT+87U2VV3dxgPxx6EB+ueZtBoxVzpUBv9j4ZKo9v9fIepJx2e/2qFLBjY0 17+2otBSY17m9GCjc2GE7lxIJxFe2sNZngBxbNB8 -----END CERTIFICATE-----Generated at Wed Dec 3 11:48:52 2025 by rpki-client