This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/3130332e36392e36302e302f32342d3234203d3e20313530353239.roa File: 3130332e36392e36302e302f32342d3234203d3e20313530353239.roa (raw, json) Hash identifier: RVo6qspo0NsN9BxZrHPSAeKSfxIe7qLdXa5VG0+wvkA= Subject key identifier: CC:C9:5D:19:49:7E:A0:26:69:40:DA:46:1D:57:AE:52:1E:6C:F8:5D Certificate issuer: /CN=41820333252DF92B1DBA238F558CC8D822C768EF Certificate serial: 2457647778058B56BC146D1A79FE54179FFA369E Authority key identifier: 41:82:03:33:25:2D:F9:2B:1D:BA:23:8F:55:8C:C8:D8:22:C7:68:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/3130332e36392e36302e302f32342d3234203d3e20313530353239.roa Signing time: Wed 26 Nov 2025 04:00:06 +0000 ROA not before: Wed 26 Nov 2025 03:55:06 +0000 ROA not after: Wed 25 Nov 2026 04:00:06 +0000 asID: 150529 IP address blocks: 103.69.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.crl rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 04:04:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:57:64:77:78:05:8b:56:bc:14:6d:1a:79:fe:54:17:9f:fa:36:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41820333252DF92B1DBA238F558CC8D822C768EF Validity Not Before: Nov 26 03:55:06 2025 GMT Not After : Nov 25 04:00:06 2026 GMT Subject: CN=CCC95D19497EA0266940DA461D57AE521E6CF85D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:22:a7:8d:a2:9a:25:88:a5:df:36:f7:35:81: c0:e8:ef:68:95:3f:fa:be:80:32:1d:1d:57:27:a4: e4:3f:c2:82:48:02:bc:4d:fc:64:b3:3e:10:79:7c: 57:b8:39:39:70:3c:eb:28:fb:3f:e0:f6:29:ff:1b: 09:fa:04:c7:55:20:3f:fb:31:8b:07:e8:f3:c6:02: b4:ab:f0:8b:31:06:1b:5e:ab:4b:61:07:03:4d:74: ca:23:26:6d:43:62:e2:8e:73:ae:f0:2f:36:a8:d0: 0f:96:0e:ad:f4:a7:d4:d1:f3:b7:77:53:04:32:1b: 66:2e:77:51:76:35:78:4d:c7:23:e8:c5:36:25:c4: e6:33:36:60:0d:cb:c6:ce:c7:75:b3:47:61:28:29: 18:df:02:f3:d0:8d:51:8e:a3:eb:66:e9:90:f2:6b: 57:04:f5:f0:0c:1c:8e:ab:2d:2b:b6:ba:90:c4:47: f2:5e:be:1c:c8:bb:06:38:10:0f:b6:e7:e7:c5:5f: f8:f3:d1:8b:7e:46:12:fa:25:f2:d3:a4:29:8d:b6: fb:2b:95:46:45:86:1e:e7:99:45:16:98:c5:f0:04: aa:50:8b:d4:98:91:04:aa:b4:83:a0:1d:00:44:4e: 4a:49:a2:0f:72:52:c2:21:2d:3d:8b:7c:89:50:b9: 65:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:C9:5D:19:49:7E:A0:26:69:40:DA:46:1D:57:AE:52:1E:6C:F8:5D X509v3 Authority Key Identifier: keyid:41:82:03:33:25:2D:F9:2B:1D:BA:23:8F:55:8C:C8:D8:22:C7:68:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/3130332e36392e36302e302f32342d3234203d3e20313530353239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.69.60.0/24 Signature Algorithm: sha256WithRSAEncryption 36:c9:93:f2:d3:c0:c7:a8:89:ec:75:f5:64:8c:10:f4:31:96: f4:0b:59:6c:6a:b8:27:48:05:5e:27:53:6d:b6:8a:e4:d8:78: 28:c3:dc:a8:5f:59:13:a4:a5:45:26:ae:74:17:81:98:01:f3: c0:dd:c5:d6:ec:b0:4a:d7:ff:52:f0:49:ef:4e:e6:ff:d4:44: 10:3e:8c:12:d8:bc:86:4a:3c:94:5f:8e:fd:03:d2:43:d7:70: e6:05:39:f0:05:8a:2f:8a:c3:78:91:72:19:f7:44:ce:59:2c: eb:58:75:87:94:4f:b8:7c:db:ee:b7:a7:26:48:da:e6:b5:ed: 0a:b2:6a:53:25:6b:f3:7e:b9:66:f7:54:b1:15:95:d8:cd:a5: fb:05:f3:98:3f:d8:b2:e8:79:04:6c:64:9d:57:77:15:cb:ef: 22:a0:62:be:68:63:cf:8c:ba:69:2c:fa:21:26:db:82:53:62: 84:6b:76:9c:f9:00:2f:34:2b:af:e1:0a:7f:85:87:a2:18:79: e5:f2:73:b6:78:fd:c5:a0:a2:ec:da:74:5c:c0:a8:11:1e:44: d4:5d:b6:2e:dc:c1:47:b4:53:b6:de:43:52:db:d7:fc:84:4a: 9f:bf:73:11:5f:63:9b:c5:a6:d8:59:c3:f1:6e:0f:6d:9f:ea: 11:aa:e0:53 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJFdkd3gFi1a8FG0aef5UF5/6Np4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4RDgy MkM3NjhFRjAeFw0yNTExMjYwMzU1MDZaFw0yNjExMjUwNDAwMDZaMDMxMTAvBgNV BAMTKENDQzk1RDE5NDk3RUEwMjY2OTQwREE0NjFENTdBRTUyMUU2Q0Y4NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9IqeNopoliKXfNvc1gcDo72iV P/q+gDIdHVcnpOQ/woJIArxN/GSzPhB5fFe4OTlwPOso+z/g9in/Gwn6BMdVID/7 MYsH6PPGArSr8IsxBhteq0thBwNNdMojJm1DYuKOc67wLzao0A+WDq30p9TR87d3 UwQyG2Yud1F2NXhNxyPoxTYlxOYzNmANy8bOx3WzR2EoKRjfAvPQjVGOo+tm6ZDy a1cE9fAMHI6rLSu2upDER/JevhzIuwY4EA+25+fFX/jz0Yt+RhL6JfLTpCmNtvsr lUZFhh7nmUUWmMXwBKpQi9SYkQSqtIOgHQBETkpJog9yUsIhLT2LfIlQuWW9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzMldGUl+oCZpQNpGHVeuUh5s+F0wHwYDVR0j BBgwFoAUQYIDMyUt+SsduiOPVYzI2CLHaO8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NTk3MWFlOS01Y2RkLTRkNDEtYjYyYS01YzI4NGFhODA5OGUvMC80MTgyMDMzMzI1 MkRGOTJCMURCQTIzOEY1NThDQzhEODIyQzc2OEVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4RDgyMkM3 NjhFRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1OTcxYWU5LTVjZGQtNGQ0MS1i NjJhLTVjMjg0YWE4MDk4ZS8wLzMxMzAzMzJlMzYzOTJlMzYzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM1MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdFPDANBgkqhkiG 9w0BAQsFAAOCAQEANsmT8tPAx6iJ7HX1ZIwQ9DGW9AtZbGq4J0gFXidTbbaK5Nh4 KMPcqF9ZE6SlRSaudBeBmAHzwN3F1uywStf/UvBJ707m/9REED6MEti8hko8lF+O /QPSQ9dw5gU58AWKL4rDeJFyGfdEzlks61h1h5RPuHzb7renJkja5rXtCrJqUyVr 8365ZvdUsRWV2M2l+wXzmD/Ysuh5BGxknVd3FcvvIqBivmhjz4y6aSz6ISbbglNi hGt2nPkALzQrr+EKf4WHohh55fJztnj9xaCi7Np0XMCoER5E1F22LtzBR7RTtt5D UtvX/IRKn79zEV9jm8Wm2FnD8W4PbZ/qEargUw== -----END CERTIFICATE-----Generated at Wed Dec 3 15:50:44 2025 by rpki-client