This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/837694b7-3256-4666-a3fe-6e82e783b1e1/0/3130332e35342e3137312e302f32342d3234203d3e20313530353032.roa File: 3130332e35342e3137312e302f32342d3234203d3e20313530353032.roa (raw, json) Hash identifier: ai9JCDX25QCeUE4Dt2J9yWzbdgut7psf7EgKuUjlEks= Subject key identifier: CA:A8:B6:F0:0A:B4:34:6A:F5:02:66:E9:9E:4D:5C:A1:70:A5:13:65 Certificate issuer: /CN=3C52D4A86ABDDD0D6DA631737F78DC205EEC239B Certificate serial: 6A17DFE2FD393BE7DED71E59164CE5F73612870F Authority key identifier: 3C:52:D4:A8:6A:BD:DD:0D:6D:A6:31:73:7F:78:DC:20:5E:EC:23:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C52D4A86ABDDD0D6DA631737F78DC205EEC239B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/837694b7-3256-4666-a3fe-6e82e783b1e1/0/3130332e35342e3137312e302f32342d3234203d3e20313530353032.roa Signing time: Mon 24 Nov 2025 06:01:34 +0000 ROA not before: Mon 24 Nov 2025 05:56:34 +0000 ROA not after: Mon 23 Nov 2026 06:01:34 +0000 asID: 150502 IP address blocks: 103.54.171.0/24 maxlen: 24 Validation: Failed, certificate revoked on Tue 16 Dec 2025 01:40:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:17:df:e2:fd:39:3b:e7:de:d7:1e:59:16:4c:e5:f7:36:12:87:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C52D4A86ABDDD0D6DA631737F78DC205EEC239B Validity Not Before: Nov 24 05:56:34 2025 GMT Not After : Nov 23 06:01:34 2026 GMT Subject: CN=CAA8B6F00AB4346AF50266E99E4D5CA170A51365 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c2:87:4a:20:7e:fc:c5:62:31:01:9c:86:b5: 05:52:ef:09:b8:2d:ed:ae:2b:99:b8:07:cb:63:8b: a2:39:4d:a0:a1:39:03:39:b0:fa:b7:f0:37:2f:b2: 8b:85:43:2d:a6:52:6b:df:99:f9:fc:4c:68:bc:6d: b9:ca:5c:1d:48:3f:d9:2c:40:e6:1b:46:bf:3d:19: a9:af:42:3a:1c:38:03:1e:f3:5f:83:2d:be:59:d6: 33:e0:af:a3:4e:e2:c3:c9:75:3f:33:a6:41:ae:ed: 36:3a:e6:45:2d:5d:12:c0:58:02:76:c0:23:44:4c: 25:bb:81:66:90:18:04:f0:9e:0d:8c:61:47:8c:d5: a8:f0:6d:40:9a:e9:0e:21:7c:39:01:0e:cc:3c:c8: c0:4a:1d:e3:d5:ac:d3:89:3b:7b:77:f9:d3:84:a8: 03:b5:0d:f3:60:5e:47:a5:3c:48:0c:74:7f:89:ce: c6:72:3e:d8:cd:32:ec:58:d0:75:ab:7f:ee:ea:00: d6:7d:0d:4a:25:62:9a:b7:93:35:c3:b2:01:e1:90: 23:1e:9a:c5:1e:04:fc:a5:94:72:23:43:c3:7f:87: e0:95:8b:7b:ac:e8:6b:b0:71:3f:f0:65:e2:08:9a: 27:64:fd:ce:c4:b5:fb:fb:00:1f:bf:53:5c:90:74: b8:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:A8:B6:F0:0A:B4:34:6A:F5:02:66:E9:9E:4D:5C:A1:70:A5:13:65 X509v3 Authority Key Identifier: keyid:3C:52:D4:A8:6A:BD:DD:0D:6D:A6:31:73:7F:78:DC:20:5E:EC:23:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/837694b7-3256-4666-a3fe-6e82e783b1e1/0/3C52D4A86ABDDD0D6DA631737F78DC205EEC239B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C52D4A86ABDDD0D6DA631737F78DC205EEC239B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/837694b7-3256-4666-a3fe-6e82e783b1e1/0/3130332e35342e3137312e302f32342d3234203d3e20313530353032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.54.171.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:6f:b8:27:ac:a4:17:52:92:fd:ff:72:68:ad:f5:7f:35:4a: 53:b5:53:65:d7:f1:4e:43:c4:7d:d3:26:a7:53:e4:c1:85:a9: 8e:9c:7e:b6:c6:f8:b8:48:c7:b6:f3:b9:15:ac:41:bf:a9:4f: 7f:12:18:2c:f5:58:f9:e0:de:b0:65:82:4d:38:49:1c:df:e3: 72:20:51:cf:4f:44:a1:bd:ed:c8:dc:16:46:37:be:19:4b:fc: c2:77:f9:68:87:26:71:0e:de:ed:d4:d2:72:69:27:20:15:5f: bf:bc:ad:c0:05:df:8c:11:35:36:de:c1:bc:ba:95:fd:a2:37: cf:83:59:f6:2c:18:37:6a:58:f7:66:ad:58:18:f0:ab:d3:e3: 85:80:16:68:d7:cc:26:90:27:98:36:6d:76:38:fa:21:54:79: d7:4f:c6:69:8b:39:e8:fb:d1:52:e1:39:bd:53:b4:33:f3:ff: b1:d3:32:19:ed:e6:32:f2:96:32:09:e5:ea:4e:f6:aa:a4:27: 42:7e:33:7e:ac:a7:e0:d9:7b:7d:7b:9a:a1:95:ff:40:59:34: a0:74:f9:53:be:1e:e9:c5:2c:a5:ac:40:3f:07:69:05:21:79: 9c:76:09:1b:05:d7:f7:7b:38:2d:d2:3e:45:68:0f:17:55:5f: fe:09:a5:e6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUahff4v05O+fe1x5ZFkzl9zYShw8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0M1MkQ0QTg2QUJEREQwRDZEQTYzMTczN0Y3OERDMjA1 RUVDMjM5QjAeFw0yNTExMjQwNTU2MzRaFw0yNjExMjMwNjAxMzRaMDMxMTAvBgNV BAMTKENBQThCNkYwMEFCNDM0NkFGNTAyNjZFOTlFNEQ1Q0ExNzBBNTEzNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCywodKIH78xWIxAZyGtQVS7wm4 Le2uK5m4B8tji6I5TaChOQM5sPq38DcvsouFQy2mUmvfmfn8TGi8bbnKXB1IP9ks QOYbRr89GamvQjocOAMe81+DLb5Z1jPgr6NO4sPJdT8zpkGu7TY65kUtXRLAWAJ2 wCNETCW7gWaQGATwng2MYUeM1ajwbUCa6Q4hfDkBDsw8yMBKHePVrNOJO3t3+dOE qAO1DfNgXkelPEgMdH+JzsZyPtjNMuxY0HWrf+7qANZ9DUolYpq3kzXDsgHhkCMe msUeBPyllHIjQ8N/h+CVi3us6GuwcT/wZeIImidk/c7Etfv7AB+/U1yQdLijAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyqi28Aq0NGr1Ambpnk1coXClE2UwHwYDVR0j BBgwFoAUPFLUqGq93Q1tpjFzf3jcIF7sI5swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Mzc2OTRiNy0zMjU2LTQ2NjYtYTNmZS02ZTgyZTc4M2IxZTEvMC8zQzUyRDRBODZB QkRERDBENkRBNjMxNzM3Rjc4REMyMDVFRUMyMzlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0M1MkQ0QTg2QUJEREQwRDZEQTYzMTczN0Y3OERDMjA1RUVD MjM5Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzNzY5NGI3LTMyNTYtNDY2Ni1h M2ZlLTZlODJlNzgzYjFlMS8wLzMxMzAzMzJlMzUzNDJlMzEzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzMDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzarMA0GCSqG SIb3DQEBCwUAA4IBAQA6b7gnrKQXUpL9/3JorfV/NUpTtVNl1/FOQ8R90yanU+TB hamOnH62xvi4SMe287kVrEG/qU9/Ehgs9Vj54N6wZYJNOEkc3+NyIFHPT0Shve3I 3BZGN74ZS/zCd/lohyZxDt7t1NJyaScgFV+/vK3ABd+METU23sG8upX9ojfPg1n2 LBg3alj3Zq1YGPCr0+OFgBZo18wmkCeYNm12OPohVHnXT8Zpizno+9FS4Tm9U7Qz 8/+x0zIZ7eYy8pYyCeXqTvaqpCdCfjN+rKfg2Xt9e5qhlf9AWTSgdPlTvh7pxSyl rEA/B2kFIXmcdgkbBdf3ezgt0j5FaA8XVV/+CaXm -----END CERTIFICATE-----Generated at Tue Dec 16 06:19:58 2025 by rpki-client