This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/3130332e3135382e39382e302f32332d3234203d3e20313431313235.roa File: 3130332e3135382e39382e302f32332d3234203d3e20313431313235.roa (raw, json) Hash identifier: SOkxDu78tXfJl/igqr9RzKPCr0bIXcHmyK6/S8XprpU= Subject key identifier: 10:1A:89:6E:21:87:8B:28:A0:23:9A:E8:C0:DE:C8:FA:E7:62:0D:D6 Certificate issuer: /CN=FD0F38979237143A0D44165912E79E2FACD5A3BA Certificate serial: 0CA6319667A2C41874EBB5CD9493BF898C44C076 Authority key identifier: FD:0F:38:97:92:37:14:3A:0D:44:16:59:12:E7:9E:2F:AC:D5:A3:BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FD0F38979237143A0D44165912E79E2FACD5A3BA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/3130332e3135382e39382e302f32332d3234203d3e20313431313235.roa Signing time: Sat 08 Nov 2025 10:56:03 +0000 ROA not before: Sat 08 Nov 2025 10:51:03 +0000 ROA not after: Sat 07 Nov 2026 10:56:03 +0000 asID: 141125 IP address blocks: 103.158.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/FD0F38979237143A0D44165912E79E2FACD5A3BA.crl rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/FD0F38979237143A0D44165912E79E2FACD5A3BA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FD0F38979237143A0D44165912E79E2FACD5A3BA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 08:40:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:a6:31:96:67:a2:c4:18:74:eb:b5:cd:94:93:bf:89:8c:44:c0:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD0F38979237143A0D44165912E79E2FACD5A3BA Validity Not Before: Nov 8 10:51:03 2025 GMT Not After : Nov 7 10:56:03 2026 GMT Subject: CN=101A896E21878B28A0239AE8C0DEC8FAE7620DD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:10:f1:ad:9d:a1:bc:62:4a:50:46:5c:68:2e: b5:fb:bf:3d:a3:b7:6d:7d:a0:3e:a5:e3:6b:d1:8f: 7f:1d:44:60:19:b7:20:05:76:80:9c:ad:92:36:0c: 27:2d:fe:c4:a7:53:f1:2c:06:f4:58:5e:48:d2:89: 1b:f4:77:df:6f:ce:28:f6:77:0d:05:ef:92:97:90: 82:94:b1:ed:03:cf:8d:22:45:ac:37:78:c0:49:b9: 7c:72:4b:50:1e:a8:d6:84:04:38:96:9e:d1:46:96: 30:c1:6c:71:9e:ad:1e:18:f3:79:43:4b:18:28:58: 6a:4e:e9:7b:f9:10:b9:de:5a:50:11:a4:14:84:fc: 0b:8b:e0:e6:cf:2e:88:74:66:da:29:bd:a4:f3:23: 20:8d:07:2c:cd:5e:a8:b8:90:b2:6d:89:c7:8a:74: 04:94:83:a6:c5:3c:e3:94:53:fe:4e:39:4c:cb:22: 54:ea:ad:b9:3b:7d:27:f0:97:f5:8e:9e:d7:9d:cf: e3:81:6e:bb:4a:3c:f6:cc:ca:d8:aa:29:fa:18:53: 3c:eb:14:b1:09:7b:81:bc:c5:e8:17:15:b1:13:ef: d9:8c:84:07:66:d1:a5:ff:0b:87:78:74:27:04:18: 7e:30:a3:49:14:d2:50:d4:ea:44:28:38:fe:46:ee: 1c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:1A:89:6E:21:87:8B:28:A0:23:9A:E8:C0:DE:C8:FA:E7:62:0D:D6 X509v3 Authority Key Identifier: keyid:FD:0F:38:97:92:37:14:3A:0D:44:16:59:12:E7:9E:2F:AC:D5:A3:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/FD0F38979237143A0D44165912E79E2FACD5A3BA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FD0F38979237143A0D44165912E79E2FACD5A3BA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/3130332e3135382e39382e302f32332d3234203d3e20313431313235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.98.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:15:e6:a4:fa:1a:c1:f6:90:d7:f4:9f:f6:fe:75:e6:55:f6: c3:bc:af:84:2a:d7:67:a2:95:ab:65:7b:95:a5:45:56:8e:f5: 5b:84:a1:0c:06:b4:90:4f:c6:5e:0d:c3:80:ab:9c:7b:74:97: eb:b6:d4:95:98:ab:4d:26:1f:ae:39:b3:83:7c:1b:0b:04:c5: cf:24:fc:e1:da:33:dc:fb:0a:70:74:24:08:47:d4:e0:b8:b8: 11:07:52:8b:0a:21:34:b6:73:f7:f6:c4:fa:44:e7:08:d3:d3: ed:d6:41:91:da:32:a4:34:9e:1e:c4:92:3e:b6:2d:8a:1e:ce: 16:53:6e:6b:2d:81:af:06:a2:33:72:ab:2c:06:29:f8:c2:8d: 7f:8a:f1:61:80:db:46:7d:61:cb:ec:8c:95:77:a1:e2:da:bf: 62:3a:a1:59:48:b1:5b:fa:45:a2:6e:64:91:8f:5e:af:85:24: 63:3d:6c:dd:03:d6:ae:2b:7a:25:46:3a:c7:0f:c8:14:20:55: d3:3a:bf:75:d2:fe:74:7d:32:4e:62:17:3e:ed:51:07:f0:2a: e3:46:7f:67:e9:e9:f9:1e:d7:43:22:ac:db:61:d5:c0:d6:37: db:69:fb:3b:59:72:54:f4:12:ac:ca:c2:09:cf:2b:21:72:db: 3f:7c:15:f2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDKYxlmeixBh067XNlJO/iYxEwHYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkQwRjM4OTc5MjM3MTQzQTBENDQxNjU5MTJFNzlFMkZB Q0Q1QTNCQTAeFw0yNTExMDgxMDUxMDNaFw0yNjExMDcxMDU2MDNaMDMxMTAvBgNV BAMTKDEwMUE4OTZFMjE4NzhCMjhBMDIzOUFFOEMwREVDOEZBRTc2MjBERDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBEPGtnaG8YkpQRlxoLrX7vz2j t219oD6l42vRj38dRGAZtyAFdoCcrZI2DCct/sSnU/EsBvRYXkjSiRv0d99vzij2 dw0F75KXkIKUse0Dz40iRaw3eMBJuXxyS1AeqNaEBDiWntFGljDBbHGerR4Y83lD SxgoWGpO6Xv5ELneWlARpBSE/AuL4ObPLoh0ZtopvaTzIyCNByzNXqi4kLJticeK dASUg6bFPOOUU/5OOUzLIlTqrbk7fSfwl/WOntedz+OBbrtKPPbMytiqKfoYUzzr FLEJe4G8xegXFbET79mMhAdm0aX/C4d4dCcEGH4wo0kU0lDU6kQoOP5G7hxfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEBqJbiGHiyigI5rowN7I+udiDdYwHwYDVR0j BBgwFoAU/Q84l5I3FDoNRBZZEueeL6zVo7owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDY4NTAwYy00OWY4LTRmMDEtODc3NC1mN2MzMTY0YTBhNTgvMC9GRDBGMzg5Nzky MzcxNDNBMEQ0NDE2NTkxMkU3OUUyRkFDRDVBM0JBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkQwRjM4OTc5MjM3MTQzQTBENDQxNjU5MTJFNzlFMkZBQ0Q1 QTNCQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkNjg1MDBjLTQ5ZjgtNGYwMS04 Nzc0LWY3YzMxNjRhMGE1OC8wLzMxMzAzMzJlMzEzNTM4MmUzOTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ55iMA0GCSqG SIb3DQEBCwUAA4IBAQCPFeak+hrB9pDX9J/2/nXmVfbDvK+EKtdnopWrZXuVpUVW jvVbhKEMBrSQT8ZeDcOAq5x7dJfrttSVmKtNJh+uObODfBsLBMXPJPzh2jPc+wpw dCQIR9TguLgRB1KLCiE0tnP39sT6ROcI09Pt1kGR2jKkNJ4exJI+ti2KHs4WU25r LYGvBqIzcqssBin4wo1/ivFhgNtGfWHL7IyVd6Hi2r9iOqFZSLFb+kWibmSRj16v hSRjPWzdA9auK3olRjrHD8gUIFXTOr910v50fTJOYhc+7VEH8CrjRn9n6en5HtdD IqzbYdXA1jfbafs7WXJU9BKsysIJzyshcts/fBXy -----END CERTIFICATE-----Generated at Wed Dec 3 14:46:05 2025 by rpki-client