This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/3130332e36392e36312e302f32342d3234203d3e20313530353239.roa File: 3130332e36392e36312e302f32342d3234203d3e20313530353239.roa (raw, json) Hash identifier: uQsxGbefiEsVtpCcyhbMnpmwezO+DzoY1mF96tzo5Pg= Subject key identifier: F7:42:E1:02:16:58:D5:EA:A7:63:78:D7:5F:59:3C:82:02:84:EB:68 Certificate issuer: /CN=41820333252DF92B1DBA238F558CC8D822C768EF Certificate serial: 4858B5AE7560AD442178045917048C9201D7C60E Authority key identifier: 41:82:03:33:25:2D:F9:2B:1D:BA:23:8F:55:8C:C8:D8:22:C7:68:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/3130332e36392e36312e302f32342d3234203d3e20313530353239.roa Signing time: Wed 26 Nov 2025 03:00:00 +0000 ROA not before: Wed 26 Nov 2025 02:55:00 +0000 ROA not after: Wed 25 Nov 2026 03:00:00 +0000 asID: 150529 IP address blocks: 103.69.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.crl rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 04:04:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:58:b5:ae:75:60:ad:44:21:78:04:59:17:04:8c:92:01:d7:c6:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41820333252DF92B1DBA238F558CC8D822C768EF Validity Not Before: Nov 26 02:55:00 2025 GMT Not After : Nov 25 03:00:00 2026 GMT Subject: CN=F742E1021658D5EAA76378D75F593C820284EB68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:40:d9:23:87:13:f2:59:d7:fd:a8:c7:40:a0: 36:1a:fc:e5:48:ec:09:06:d6:ec:c1:b6:eb:3f:3c: 12:7b:86:8f:09:71:3e:dd:7c:11:8b:7c:53:8c:49: e0:9e:85:e4:ac:ca:3f:7f:12:36:9f:3a:fc:7d:e1: e0:27:6e:c8:04:0b:41:87:f9:a7:68:ea:bf:33:42: ba:0f:2f:51:30:ed:bc:f5:b5:7b:1b:e3:d9:2c:12: dc:14:ec:e6:94:40:9f:aa:bc:da:e0:d8:27:c8:67: fb:fa:22:66:d7:54:2b:0e:dd:19:52:e9:3b:3a:ef: c9:f1:05:f8:e9:34:9a:3d:f5:50:36:7b:98:81:7e: a6:12:9d:2a:07:23:10:69:ed:06:87:3d:8e:ad:b9: e7:20:ff:ba:39:ed:6a:84:8e:d2:87:ac:f7:bb:3e: 1c:65:8e:cf:52:29:6d:e3:ab:94:ef:77:0c:9f:4a: 8b:75:2b:86:b0:9d:52:b7:46:02:ad:21:86:53:e4: d9:77:bf:64:e6:e4:73:9e:de:9f:6c:e9:bf:52:36: 8f:90:68:75:34:1b:61:cb:0a:78:60:1b:bf:d7:b5: ba:91:9a:c5:60:26:ff:04:29:9e:f0:d1:05:cf:19: ac:6e:4d:3e:8f:06:e3:c4:53:fd:44:61:e2:a5:96: b4:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:42:E1:02:16:58:D5:EA:A7:63:78:D7:5F:59:3C:82:02:84:EB:68 X509v3 Authority Key Identifier: keyid:41:82:03:33:25:2D:F9:2B:1D:BA:23:8F:55:8C:C8:D8:22:C7:68:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/3130332e36392e36312e302f32342d3234203d3e20313530353239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.69.61.0/24 Signature Algorithm: sha256WithRSAEncryption ba:2f:70:22:e2:97:ea:c9:de:95:05:f1:79:74:75:54:c1:76: 9e:05:6b:41:e2:b2:31:5a:35:9d:5e:82:9c:99:03:14:ec:e9: ed:11:1b:5a:4f:fd:c3:73:c3:76:c2:ef:da:be:3f:fb:1d:20: 3e:e6:2c:7f:e2:d5:89:91:8f:e7:70:a4:81:62:dc:b1:1f:3d: 48:6c:21:20:a8:34:8a:c1:c3:b3:57:7e:ee:bc:a6:45:b6:65: 1f:2c:df:f8:91:7b:72:24:30:3c:1d:dc:d6:17:87:4e:de:19: 40:fa:ee:51:8a:4c:01:9d:84:ca:0f:2c:69:01:0e:07:bf:26: 39:e2:17:ac:5c:88:40:9d:b5:e3:91:ff:b4:22:85:da:4e:a5: 22:32:b7:c1:31:31:50:f6:a7:73:6e:43:b1:75:f7:c4:00:02: 9a:e7:f3:6a:35:de:b1:32:ac:f3:c8:eb:cd:85:d4:15:b7:46: 8e:7c:c4:78:40:73:9c:65:43:92:f1:93:d1:fe:02:31:0d:bf: c6:7a:26:50:36:f3:cc:68:81:aa:a1:09:f2:d7:47:0a:2b:3f: 81:d9:96:8a:1b:dd:7a:54:c1:92:60:b4:be:04:8d:70:9d:9f: 27:4b:d9:fa:9e:d9:5e:06:bb:86:38:dc:4b:e4:87:a2:33:7e: d8:a9:58:94 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSFi1rnVgrUQheARZFwSMkgHXxg4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4RDgy MkM3NjhFRjAeFw0yNTExMjYwMjU1MDBaFw0yNjExMjUwMzAwMDBaMDMxMTAvBgNV BAMTKEY3NDJFMTAyMTY1OEQ1RUFBNzYzNzhENzVGNTkzQzgyMDI4NEVCNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBQNkjhxPyWdf9qMdAoDYa/OVI 7AkG1uzBtus/PBJ7ho8JcT7dfBGLfFOMSeCeheSsyj9/EjafOvx94eAnbsgEC0GH +ado6r8zQroPL1Ew7bz1tXsb49ksEtwU7OaUQJ+qvNrg2CfIZ/v6ImbXVCsO3RlS 6Ts678nxBfjpNJo99VA2e5iBfqYSnSoHIxBp7QaHPY6tuecg/7o57WqEjtKHrPe7 Phxljs9SKW3jq5TvdwyfSot1K4awnVK3RgKtIYZT5Nl3v2Tm5HOe3p9s6b9SNo+Q aHU0G2HLCnhgG7/XtbqRmsVgJv8EKZ7w0QXPGaxuTT6PBuPEU/1EYeKllrRtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU90LhAhZY1eqnY3jXX1k8ggKE62gwHwYDVR0j BBgwFoAUQYIDMyUt+SsduiOPVYzI2CLHaO8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NTk3MWFlOS01Y2RkLTRkNDEtYjYyYS01YzI4NGFhODA5OGUvMC80MTgyMDMzMzI1 MkRGOTJCMURCQTIzOEY1NThDQzhEODIyQzc2OEVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4RDgyMkM3 NjhFRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1OTcxYWU5LTVjZGQtNGQ0MS1i NjJhLTVjMjg0YWE4MDk4ZS8wLzMxMzAzMzJlMzYzOTJlMzYzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM1MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdFPTANBgkqhkiG 9w0BAQsFAAOCAQEAui9wIuKX6snelQXxeXR1VMF2ngVrQeKyMVo1nV6CnJkDFOzp 7REbWk/9w3PDdsLv2r4/+x0gPuYsf+LViZGP53CkgWLcsR89SGwhIKg0isHDs1d+ 7rymRbZlHyzf+JF7ciQwPB3c1heHTt4ZQPruUYpMAZ2Eyg8saQEOB78mOeIXrFyI QJ2145H/tCKF2k6lIjK3wTExUPanc25DsXX3xAACmufzajXesTKs88jrzYXUFbdG jnzEeEBznGVDkvGT0f4CMQ2/xnomUDbzzGiBqqEJ8tdHCis/gdmWihvdelTBkmC0 vgSNcJ2fJ0vZ+p7ZXga7hjjcS+SHojN+2KlYlA== -----END CERTIFICATE-----Generated at Wed Dec 3 15:50:41 2025 by rpki-client