This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/7e6bff9d-fb13-47b9-9cc0-dd6a0730a1c6/0/3130332e3132392e34382e302f32332d3234203d3e20313335343738.roa File: 3130332e3132392e34382e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: o6xh9ZmeUkW54lbLFnSG54IoYTtHKw0vyrbfABLw2qM= Subject key identifier: 76:27:B9:41:2D:F6:52:9E:BA:69:A0:2C:51:F6:B3:CD:A9:71:6F:59 Certificate issuer: /CN=2AA6E65B86E4423AEC7D02D85B43BA008012D29D Certificate serial: 19A958A4311D68275D563F27D605792988FA3AFD Authority key identifier: 2A:A6:E6:5B:86:E4:42:3A:EC:7D:02:D8:5B:43:BA:00:80:12:D2:9D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AA6E65B86E4423AEC7D02D85B43BA008012D29D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e6bff9d-fb13-47b9-9cc0-dd6a0730a1c6/0/3130332e3132392e34382e302f32332d3234203d3e20313335343738.roa Signing time: Wed 05 Nov 2025 10:03:05 +0000 ROA not before: Wed 05 Nov 2025 09:58:05 +0000 ROA not after: Wed 04 Nov 2026 10:03:05 +0000 asID: 135478 IP address blocks: 103.129.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e6bff9d-fb13-47b9-9cc0-dd6a0730a1c6/0/2AA6E65B86E4423AEC7D02D85B43BA008012D29D.crl rsync://repo-rpki.idnic.net/repo/7e6bff9d-fb13-47b9-9cc0-dd6a0730a1c6/0/2AA6E65B86E4423AEC7D02D85B43BA008012D29D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AA6E65B86E4423AEC7D02D85B43BA008012D29D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 12:42:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:a9:58:a4:31:1d:68:27:5d:56:3f:27:d6:05:79:29:88:fa:3a:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AA6E65B86E4423AEC7D02D85B43BA008012D29D Validity Not Before: Nov 5 09:58:05 2025 GMT Not After : Nov 4 10:03:05 2026 GMT Subject: CN=7627B9412DF6529EBA69A02C51F6B3CDA9716F59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0d:4d:14:44:3a:37:f1:6d:7f:f6:8b:e7:c7: 0f:d4:a1:c7:84:bd:10:a8:be:4c:a9:da:8b:9b:cd: 03:55:9b:27:57:f9:24:93:d7:fc:dc:ff:67:4e:17: 9e:5e:f9:68:4f:65:5b:29:23:b0:92:aa:30:8b:2b: 72:65:b1:bb:0a:8f:96:e7:e7:6d:2b:eb:63:8c:18: 4f:ab:5e:e4:7f:0b:27:57:77:fb:98:ac:da:1e:11: a3:26:55:5d:9f:60:67:98:d0:a4:61:7d:6e:bc:01: 8a:e8:d3:52:ed:06:2a:ac:cc:3a:cc:c4:dd:dc:b1: a9:a0:3a:29:f1:d5:73:1d:f0:90:b3:4b:95:69:e8: 17:72:f2:87:2b:cc:77:26:e4:03:3c:14:74:f3:26: 78:3a:05:c7:7b:28:e2:5a:c3:0d:90:ca:38:2d:31: 65:25:ce:26:4b:e4:9e:f7:ae:00:1b:0b:22:65:cb: 76:74:b7:b9:13:f0:f2:bb:74:7c:af:c5:bf:2f:0d: 89:73:ba:53:0b:9e:ca:44:fb:1e:24:a4:3b:3b:52: be:42:e2:70:d0:80:e9:b8:eb:d2:da:93:4b:bb:9a: 62:cf:dd:9b:09:aa:ef:ef:2e:d5:22:a4:be:f3:de: 99:ae:ca:f5:75:e1:35:78:9b:5e:4e:92:20:07:03: e5:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:27:B9:41:2D:F6:52:9E:BA:69:A0:2C:51:F6:B3:CD:A9:71:6F:59 X509v3 Authority Key Identifier: keyid:2A:A6:E6:5B:86:E4:42:3A:EC:7D:02:D8:5B:43:BA:00:80:12:D2:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e6bff9d-fb13-47b9-9cc0-dd6a0730a1c6/0/2AA6E65B86E4423AEC7D02D85B43BA008012D29D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AA6E65B86E4423AEC7D02D85B43BA008012D29D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e6bff9d-fb13-47b9-9cc0-dd6a0730a1c6/0/3130332e3132392e34382e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.48.0/23 Signature Algorithm: sha256WithRSAEncryption 73:7b:8b:52:49:91:06:f4:96:1a:d6:f1:1b:0b:2f:fc:f1:1b: e6:d9:17:e1:c7:e8:b5:4d:21:92:75:26:c5:74:36:8e:2b:7a: a4:cb:7b:1a:1b:23:36:b7:de:d2:a6:29:f9:55:a8:23:e8:22: 50:bb:b1:e1:c9:c2:eb:87:ee:32:53:e2:f5:f2:2f:8b:12:a1: 5a:26:1b:85:cd:bc:ac:eb:53:d1:0d:50:22:b9:eb:0e:9e:d0: 57:5e:98:18:c8:21:0b:b2:3c:cd:7d:ed:4a:15:5b:62:47:ce: 16:b9:a0:2a:d9:af:f7:f0:5b:ec:78:61:f2:c3:10:f8:52:cc: 8f:19:b6:d8:28:44:b9:10:80:eb:da:ff:84:20:da:6a:52:6c: ef:b6:a4:33:8b:3d:a1:f4:48:7e:9c:17:62:eb:e9:3a:2a:e5: 71:5b:86:58:8c:4e:65:3c:50:8b:c0:c2:4f:d7:f6:38:af:37: 17:a6:2f:5a:ea:23:9a:ac:93:2e:8a:f2:4c:37:9c:1f:06:d0: e6:ca:07:bb:6b:cf:4d:ea:92:2e:12:cc:6a:0a:fd:59:1e:04: 53:f1:75:4c:dc:52:d5:e1:6b:0e:df:38:86:ac:b3:40:1a:b4: 25:d7:d1:6d:80:45:57:19:05:79:cb:ff:73:c9:cb:f9:96:ac: 53:6a:3a:bd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGalYpDEdaCddVj8n1gV5KYj6Ov0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFBNkU2NUI4NkU0NDIzQUVDN0QwMkQ4NUI0M0JBMDA4 MDEyRDI5RDAeFw0yNTExMDUwOTU4MDVaFw0yNjExMDQxMDAzMDVaMDMxMTAvBgNV BAMTKDc2MjdCOTQxMkRGNjUyOUVCQTY5QTAyQzUxRjZCM0NEQTk3MTZGNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9DU0URDo38W1/9ovnxw/UoceE vRCovkyp2oubzQNVmydX+SST1/zc/2dOF55e+WhPZVspI7CSqjCLK3JlsbsKj5bn 520r62OMGE+rXuR/CydXd/uYrNoeEaMmVV2fYGeY0KRhfW68AYro01LtBiqszDrM xN3csamgOinx1XMd8JCzS5Vp6Bdy8ocrzHcm5AM8FHTzJng6Bcd7KOJaww2Qyjgt MWUlziZL5J73rgAbCyJly3Z0t7kT8PK7dHyvxb8vDYlzulMLnspE+x4kpDs7Ur5C 4nDQgOm469Lak0u7mmLP3ZsJqu/vLtUipL7z3pmuyvV14TV4m15OkiAHA+UbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdie5QS32Up66aaAsUfazzalxb1kwHwYDVR0j BBgwFoAUKqbmW4bkQjrsfQLYW0O6AIAS0p0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTZiZmY5ZC1mYjEzLTQ3YjktOWNjMC1kZDZhMDczMGExYzYvMC8yQUE2RTY1Qjg2 RTQ0MjNBRUM3RDAyRDg1QjQzQkEwMDgwMTJEMjlELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkFBNkU2NUI4NkU0NDIzQUVDN0QwMkQ4NUI0M0JBMDA4MDEy RDI5RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNmJmZjlkLWZiMTMtNDdiOS05 Y2MwLWRkNmEwNzMwYTFjNi8wLzMxMzAzMzJlMzEzMjM5MmUzNDM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4EwMA0GCSqG SIb3DQEBCwUAA4IBAQBze4tSSZEG9JYa1vEbCy/88Rvm2Rfhx+i1TSGSdSbFdDaO K3qky3saGyM2t97Spin5Vagj6CJQu7HhycLrh+4yU+L18i+LEqFaJhuFzbys61PR DVAiuesOntBXXpgYyCELsjzNfe1KFVtiR84WuaAq2a/38FvseGHywxD4UsyPGbbY KES5EIDr2v+EINpqUmzvtqQziz2h9Eh+nBdi6+k6KuVxW4ZYjE5lPFCLwMJP1/Y4 rzcXpi9a6iOarJMuivJMN5wfBtDmyge7a89N6pIuEsxqCv1ZHgRT8XVM3FLV4WsO 3ziGrLNAGrQl19FtgEVXGQV5y/9zycv5lqxTajq9 -----END CERTIFICATE-----Generated at Wed Dec 3 11:47:40 2025 by rpki-client