This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/89b8604f-395a-42be-b997-e80fc1df90f9/0/3130332e3137372e39322e302f32332d3233203d3e20313437313435.roa File: 3130332e3137372e39322e302f32332d3233203d3e20313437313435.roa (raw, json) Hash identifier: bmzsNhYujGH2LmgXskz/0GWC9scVu/AXTjmp6dOWN3g= Subject key identifier: AE:A4:DD:6E:F8:4B:5E:15:3E:49:32:99:55:2F:0E:2E:9E:78:08:89 Certificate issuer: /CN=0D05EF7BA71D640B784F72C7D8F0F4DCD285029E Certificate serial: 54BBA119F777D4403C025F6B7B2BCA7962A313C9 Authority key identifier: 0D:05:EF:7B:A7:1D:64:0B:78:4F:72:C7:D8:F0:F4:DC:D2:85:02:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D05EF7BA71D640B784F72C7D8F0F4DCD285029E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/89b8604f-395a-42be-b997-e80fc1df90f9/0/3130332e3137372e39322e302f32332d3233203d3e20313437313435.roa Signing time: Tue 04 Nov 2025 19:00:01 +0000 ROA not before: Tue 04 Nov 2025 18:55:01 +0000 ROA not after: Tue 03 Nov 2026 19:00:01 +0000 asID: 147145 IP address blocks: 103.177.92.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/89b8604f-395a-42be-b997-e80fc1df90f9/0/0D05EF7BA71D640B784F72C7D8F0F4DCD285029E.crl rsync://repo-rpki.idnic.net/repo/89b8604f-395a-42be-b997-e80fc1df90f9/0/0D05EF7BA71D640B784F72C7D8F0F4DCD285029E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D05EF7BA71D640B784F72C7D8F0F4DCD285029E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 04:02:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:bb:a1:19:f7:77:d4:40:3c:02:5f:6b:7b:2b:ca:79:62:a3:13:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D05EF7BA71D640B784F72C7D8F0F4DCD285029E Validity Not Before: Nov 4 18:55:01 2025 GMT Not After : Nov 3 19:00:01 2026 GMT Subject: CN=AEA4DD6EF84B5E153E493299552F0E2E9E780889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:88:40:ab:18:f3:24:ec:53:ca:ac:e2:83:e4: 94:a0:9c:d3:a3:e5:5e:d0:61:9f:f3:dd:6d:86:09: 35:fd:23:9b:45:0d:0c:88:5a:47:6c:ba:d8:e2:f0: 74:d0:bf:32:5a:7f:b4:3f:2e:e3:d4:68:93:cc:d6: 03:01:dc:b1:44:4b:78:07:4c:ff:b7:fb:c5:28:35: ee:c2:ea:8a:7e:7b:80:4c:58:c1:8f:d2:df:9a:c8: 45:4d:ca:3a:3b:af:33:4d:22:53:fd:70:f5:f2:ea: 15:29:b5:ee:de:f9:8d:6b:65:55:25:22:8a:42:95: 40:1b:30:e1:61:35:f3:41:cd:96:96:a9:8b:e0:e5: 2a:c6:b0:a6:c0:a8:f1:73:fb:b6:86:0b:39:94:34: 62:2a:86:ed:47:cb:bf:ca:1e:b3:2a:eb:3d:c7:92: a9:d3:d4:44:1d:13:7e:d0:13:ae:9a:3c:16:40:79: 2b:5a:d2:6d:e3:b0:6c:63:a5:1d:b8:39:3c:80:45: ec:bd:ce:cd:81:ab:1a:16:1e:9d:2b:8a:e6:d7:aa: 83:3b:bb:ec:12:ba:bc:74:ee:85:d3:89:a7:07:db: 30:43:41:9d:4e:b7:4a:e8:a4:78:2c:7e:cb:69:6b: 33:34:34:54:f9:e6:29:30:8e:85:b6:32:d6:03:c1: b1:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:A4:DD:6E:F8:4B:5E:15:3E:49:32:99:55:2F:0E:2E:9E:78:08:89 X509v3 Authority Key Identifier: keyid:0D:05:EF:7B:A7:1D:64:0B:78:4F:72:C7:D8:F0:F4:DC:D2:85:02:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/89b8604f-395a-42be-b997-e80fc1df90f9/0/0D05EF7BA71D640B784F72C7D8F0F4DCD285029E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D05EF7BA71D640B784F72C7D8F0F4DCD285029E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/89b8604f-395a-42be-b997-e80fc1df90f9/0/3130332e3137372e39322e302f32332d3233203d3e20313437313435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.92.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:fb:69:d5:f2:2c:28:ac:79:25:34:cd:6e:b8:ce:c0:a0:39: 62:d8:e0:10:08:c8:01:b7:b9:63:50:49:e3:00:99:4f:ee:20: e3:16:ac:5e:fb:f3:c5:0f:01:20:a0:f6:d6:4a:7d:59:06:c4: fc:1b:4c:16:84:67:4a:af:3d:a8:c5:17:a2:ac:3e:c5:38:95: 4d:60:7f:cb:ae:10:52:b2:ce:70:cb:1a:fa:f1:51:af:c3:ed: b7:e7:4b:7c:ae:71:f8:15:66:e3:78:57:40:ad:d4:0e:c3:1c: 9b:82:40:af:dd:aa:dd:e3:e7:f2:7a:9d:b6:37:7c:4c:c3:96: 80:e2:4b:1a:24:34:6f:4f:00:15:d6:7f:ee:1c:00:31:43:90: ee:23:dc:f1:4a:b9:d1:f4:91:7f:24:59:c2:70:87:f0:c5:bd: 3d:99:1d:3e:4f:1c:30:e3:e3:53:db:94:29:63:99:fc:99:09: e5:9c:16:b2:f0:d8:3f:df:81:94:0e:8c:43:6d:0b:43:14:9e: 00:1a:69:20:94:51:9c:00:21:86:64:bc:6b:86:fc:f8:95:39: 6b:31:c4:88:c8:b6:eb:9e:3b:5d:fb:67:6c:3d:7c:12:b0:cf: 12:90:79:55:52:d1:26:53:fa:25:68:b5:f5:cb:1e:ed:7e:f2: 80:46:f8:13 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVLuhGfd31EA8Al9reyvKeWKjE8kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEQwNUVGN0JBNzFENjQwQjc4NEY3MkM3RDhGMEY0RENE Mjg1MDI5RTAeFw0yNTExMDQxODU1MDFaFw0yNjExMDMxOTAwMDFaMDMxMTAvBgNV BAMTKEFFQTRERDZFRjg0QjVFMTUzRTQ5MzI5OTU1MkYwRTJFOUU3ODA4ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1iECrGPMk7FPKrOKD5JSgnNOj 5V7QYZ/z3W2GCTX9I5tFDQyIWkdsutji8HTQvzJaf7Q/LuPUaJPM1gMB3LFES3gH TP+3+8UoNe7C6op+e4BMWMGP0t+ayEVNyjo7rzNNIlP9cPXy6hUpte7e+Y1rZVUl IopClUAbMOFhNfNBzZaWqYvg5SrGsKbAqPFz+7aGCzmUNGIqhu1Hy7/KHrMq6z3H kqnT1EQdE37QE66aPBZAeSta0m3jsGxjpR24OTyARey9zs2BqxoWHp0riubXqoM7 u+wSurx07oXTiacH2zBDQZ1Ot0ropHgsfstpazM0NFT55ikwjoW2MtYDwbFDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrqTdbvhLXhU+STKZVS8OLp54CIkwHwYDVR0j BBgwFoAUDQXve6cdZAt4T3LH2PD03NKFAp4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OWI4NjA0Zi0zOTVhLTQyYmUtYjk5Ny1lODBmYzFkZjkwZjkvMC8wRDA1RUY3QkE3 MUQ2NDBCNzg0RjcyQzdEOEYwRjREQ0QyODUwMjlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEQwNUVGN0JBNzFENjQwQjc4NEY3MkM3RDhGMEY0RENEMjg1 MDI5RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg5Yjg2MDRmLTM5NWEtNDJiZS1i OTk3LWU4MGZjMWRmOTBmOS8wLzMxMzAzMzJlMzEzNzM3MmUzOTMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDM3MzEzNDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7FcMA0GCSqG SIb3DQEBCwUAA4IBAQCb+2nV8iworHklNM1uuM7AoDli2OAQCMgBt7ljUEnjAJlP 7iDjFqxe+/PFDwEgoPbWSn1ZBsT8G0wWhGdKrz2oxReirD7FOJVNYH/LrhBSss5w yxr68VGvw+2350t8rnH4FWbjeFdArdQOwxybgkCv3ard4+fyep22N3xMw5aA4ksa JDRvTwAV1n/uHAAxQ5DuI9zxSrnR9JF/JFnCcIfwxb09mR0+Txww4+NT25QpY5n8 mQnlnBay8Ng/34GUDoxDbQtDFJ4AGmkglFGcACGGZLxrhvz4lTlrMcSIyLbrnjtd +2dsPXwSsM8SkHlVUtEmU/olaLX1yx7tfvKARvgT -----END CERTIFICATE-----Generated at Wed Dec 3 16:42:47 2025 by rpki-client