This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/78d774f4-2300-4e69-a6ca-7cf48002e2fb/0/3130332e3137322e3132302e302f32332d3234203d3e20313432333938.roa File: 3130332e3137322e3132302e302f32332d3234203d3e20313432333938.roa (raw, json) Hash identifier: cguq4oNr1TGal57sKoh6yP2CeznnB5jHxZL1G1cEH1E= Subject key identifier: 00:1D:23:28:9C:47:20:07:6A:92:15:B8:55:F3:0D:9C:75:20:88:FE Certificate issuer: /CN=45422D0C59556C680872F58CC42068EF3ED1BA2E Certificate serial: 5D2C2B7C2CAC7A79C66265D161D16CBC65EABD3C Authority key identifier: 45:42:2D:0C:59:55:6C:68:08:72:F5:8C:C4:20:68:EF:3E:D1:BA:2E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45422D0C59556C680872F58CC42068EF3ED1BA2E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/78d774f4-2300-4e69-a6ca-7cf48002e2fb/0/3130332e3137322e3132302e302f32332d3234203d3e20313432333938.roa Signing time: Tue 16 Dec 2025 06:00:01 +0000 ROA not before: Tue 16 Dec 2025 05:55:01 +0000 ROA not after: Tue 15 Dec 2026 06:00:01 +0000 asID: 142398 IP address blocks: 103.172.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/78d774f4-2300-4e69-a6ca-7cf48002e2fb/0/45422D0C59556C680872F58CC42068EF3ED1BA2E.crl rsync://repo-rpki.idnic.net/repo/78d774f4-2300-4e69-a6ca-7cf48002e2fb/0/45422D0C59556C680872F58CC42068EF3ED1BA2E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45422D0C59556C680872F58CC42068EF3ED1BA2E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 19:49:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:2c:2b:7c:2c:ac:7a:79:c6:62:65:d1:61:d1:6c:bc:65:ea:bd:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45422D0C59556C680872F58CC42068EF3ED1BA2E Validity Not Before: Dec 16 05:55:01 2025 GMT Not After : Dec 15 06:00:01 2026 GMT Subject: CN=001D23289C4720076A9215B855F30D9C752088FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:59:29:07:a4:42:4f:28:10:cf:96:f4:9b:a6: 40:a7:94:d8:5f:7d:98:ba:0e:5e:54:b2:f7:b3:1e: ea:95:ef:7c:cf:4f:ac:51:4b:95:f3:c8:44:4f:f7: 40:10:a9:05:85:43:0a:3b:05:0c:77:28:18:61:b0: 60:06:e3:15:8b:36:cc:91:4c:8b:db:00:5a:f4:6e: ab:14:44:48:2d:3b:25:4f:9f:34:3d:72:c2:4f:03: a1:d5:cd:02:7b:1a:ce:b0:a7:af:1e:fb:60:27:16: 46:32:a7:d9:d0:90:76:76:be:53:4c:04:1e:dc:bc: 50:af:72:69:83:db:19:dd:dc:bc:ca:14:c5:4c:05: 2d:ff:3b:dc:25:73:fc:c2:09:bb:73:7e:b4:ba:1a: d6:63:cd:52:6b:3e:42:94:55:9f:70:34:98:96:49: 24:8a:d8:d2:f0:63:74:ef:3e:10:16:57:eb:36:48: 3f:c7:28:fd:40:35:3d:fc:f1:c5:39:25:af:44:95: d0:ac:f7:7e:97:f2:cd:e7:3b:51:26:df:6f:e3:59: 60:41:2e:85:3f:2d:e1:bd:86:05:15:73:93:21:b9: e7:a5:1c:f7:9f:76:40:ef:a9:dc:3e:21:2d:6e:e1: ed:56:f8:24:43:46:4c:fd:0a:38:3e:e7:39:34:16: f5:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:1D:23:28:9C:47:20:07:6A:92:15:B8:55:F3:0D:9C:75:20:88:FE X509v3 Authority Key Identifier: keyid:45:42:2D:0C:59:55:6C:68:08:72:F5:8C:C4:20:68:EF:3E:D1:BA:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/78d774f4-2300-4e69-a6ca-7cf48002e2fb/0/45422D0C59556C680872F58CC42068EF3ED1BA2E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45422D0C59556C680872F58CC42068EF3ED1BA2E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/78d774f4-2300-4e69-a6ca-7cf48002e2fb/0/3130332e3137322e3132302e302f32332d3234203d3e20313432333938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.120.0/23 Signature Algorithm: sha256WithRSAEncryption 03:2a:f6:fa:36:97:61:2b:c1:31:70:33:d1:50:19:9d:7d:a7: 9e:57:72:1f:97:e9:24:40:41:12:3b:af:e5:83:33:b4:c2:30: c5:33:68:e3:6a:ae:05:c7:22:05:14:0b:7a:1d:f1:ed:5f:90: 93:1a:bc:ae:c3:90:eb:50:b0:eb:a6:91:02:a6:85:1d:aa:dc: 7b:23:0c:22:5f:33:30:ee:c7:72:7a:96:c2:79:81:40:11:33: a4:60:14:2d:1a:c7:c1:af:0a:bb:fa:6e:17:7e:c4:a6:23:6c: 4c:00:1a:c9:b9:d2:e3:a3:66:c3:7d:39:0b:b9:2e:cc:93:d0: 57:c2:62:46:da:e5:ee:99:27:2d:9e:b1:96:7f:2b:54:18:a0: 91:f8:74:98:3c:b2:c6:50:5e:50:e1:08:47:e8:68:d6:97:ce: f5:62:cb:d6:d7:30:fe:dc:fd:ce:8a:28:e3:55:17:85:fb:51: 01:6e:40:0f:6f:7b:9e:60:e6:c7:a1:a3:10:c1:66:bb:c4:26: 92:2b:c0:60:a2:00:9e:71:aa:e8:00:cb:c9:5b:19:eb:b7:b0: f4:ff:be:f7:44:45:0e:ff:cc:6e:70:ed:64:e5:75:0d:9f:6c: 58:ee:70:1d:cf:c7:57:3e:f3:6c:f2:3d:63:65:99:5b:ff:9f: 97:09:c2:cb -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXSwrfCysennGYmXRYdFsvGXqvTwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU0MjJEMEM1OTU1NkM2ODA4NzJGNThDQzQyMDY4RUYz RUQxQkEyRTAeFw0yNTEyMTYwNTU1MDFaFw0yNjEyMTUwNjAwMDFaMDMxMTAvBgNV BAMTKDAwMUQyMzI4OUM0NzIwMDc2QTkyMTVCODU1RjMwRDlDNzUyMDg4RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwWSkHpEJPKBDPlvSbpkCnlNhf fZi6Dl5UsvezHuqV73zPT6xRS5XzyERP90AQqQWFQwo7BQx3KBhhsGAG4xWLNsyR TIvbAFr0bqsUREgtOyVPnzQ9csJPA6HVzQJ7Gs6wp68e+2AnFkYyp9nQkHZ2vlNM BB7cvFCvcmmD2xnd3LzKFMVMBS3/O9wlc/zCCbtzfrS6GtZjzVJrPkKUVZ9wNJiW SSSK2NLwY3TvPhAWV+s2SD/HKP1ANT388cU5Ja9EldCs936X8s3nO1Em32/jWWBB LoU/LeG9hgUVc5MhueelHPefdkDvqdw+IS1u4e1W+CRDRkz9Cjg+5zk0FvUzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUAB0jKJxHIAdqkhW4VfMNnHUgiP4wHwYDVR0j BBgwFoAURUItDFlVbGgIcvWMxCBo7z7Rui4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OGQ3NzRmNC0yMzAwLTRlNjktYTZjYS03Y2Y0ODAwMmUyZmIvMC80NTQyMkQwQzU5 NTU2QzY4MDg3MkY1OENDNDIwNjhFRjNFRDFCQTJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU0MjJEMEM1OTU1NkM2ODA4NzJGNThDQzQyMDY4RUYzRUQx QkEyRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc4ZDc3NGY0LTIzMDAtNGU2OS1h NmNhLTdjZjQ4MDAyZTJmYi8wLzMxMzAzMzJlMzEzNzMyMmUzMTMyMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrHgwDQYJ KoZIhvcNAQELBQADggEBAAMq9vo2l2ErwTFwM9FQGZ19p55Xch+X6SRAQRI7r+WD M7TCMMUzaONqrgXHIgUUC3od8e1fkJMavK7DkOtQsOumkQKmhR2q3HsjDCJfMzDu x3J6lsJ5gUARM6RgFC0ax8GvCrv6bhd+xKYjbEwAGsm50uOjZsN9OQu5LsyT0FfC Ykba5e6ZJy2esZZ/K1QYoJH4dJg8ssZQXlDhCEfoaNaXzvViy9bXMP7c/c6KKONV F4X7UQFuQA9ve55g5sehoxDBZrvEJpIrwGCiAJ5xqugAy8lbGeu3sPT/vvdERQ7/ zG5w7WTldQ2fbFjucB3Px1c+82zyPWNlmVv/n5cJwss= -----END CERTIFICATE-----Generated at Sat Dec 20 12:23:56 2025 by rpki-client