This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131362e302f32322d3232203d3e20313338313032.roa File: 3130332e3132352e3131362e302f32322d3232203d3e20313338313032.roa (raw, json) Hash identifier: ap/TAn2i+zkksu9/CGCNCkYifXPZgmxnJOJkOH4ZWr8= Subject key identifier: 8B:CB:2B:F1:FE:8E:C0:CC:83:DE:DF:77:4D:E7:4A:F7:C0:81:D2:1E Certificate issuer: /CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Certificate serial: 6CA532B921B84A767DA01F7265BAF809B53812F3 Authority key identifier: 4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131362e302f32322d3232203d3e20313338313032.roa Signing time: Sun 30 Nov 2025 07:00:02 +0000 ROA not before: Sun 30 Nov 2025 06:55:02 +0000 ROA not after: Sun 29 Nov 2026 07:00:02 +0000 asID: 138102 IP address blocks: 103.125.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 09:30:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:a5:32:b9:21:b8:4a:76:7d:a0:1f:72:65:ba:f8:09:b5:38:12:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Validity Not Before: Nov 30 06:55:02 2025 GMT Not After : Nov 29 07:00:02 2026 GMT Subject: CN=8BCB2BF1FE8EC0CC83DEDF774DE74AF7C081D21E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:dd:33:8d:4f:30:c5:19:b0:15:72:db:3e:af: 17:8d:8d:2c:c9:f8:fe:75:b0:65:ad:81:08:b2:5d: 9f:87:0b:3f:cb:ea:1f:bf:f7:4e:0c:75:f5:b1:9c: 9a:e6:1b:0c:29:83:70:46:d0:2f:54:e5:f8:cc:22: 07:e7:01:5b:09:97:2a:cf:a3:8d:f5:a4:fe:71:d2: 59:8e:bd:87:c1:52:bc:3a:fc:66:bf:43:72:ad:01: d7:6e:95:7e:48:f4:92:37:49:cf:dc:3a:07:19:3c: 26:fc:46:8c:8c:b1:7d:a5:2e:45:1c:16:b5:7d:a2: d6:60:6b:b5:38:4a:d4:4a:11:25:cf:5a:92:ed:59: 91:3e:3e:d3:78:c1:57:72:b2:77:1c:e5:73:32:be: c1:8f:4c:14:f6:20:33:e5:65:2e:07:0b:13:e1:c7: 88:4b:a0:f9:92:74:a1:8e:49:2b:4b:0f:16:7e:24: a8:cf:25:80:5b:6f:9a:8e:d2:11:b9:3b:ab:3c:31: 21:bb:f9:8c:81:29:64:82:83:44:f4:d8:2e:55:4e: 2e:03:e0:e8:c6:ec:49:c1:46:db:e2:d4:4f:22:ac: d2:f9:c5:d1:4c:75:1b:29:60:bd:f3:ba:8d:d4:7f: cb:9b:25:be:77:53:52:25:b4:98:66:ed:c5:1d:b2: a4:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:CB:2B:F1:FE:8E:C0:CC:83:DE:DF:77:4D:E7:4A:F7:C0:81:D2:1E X509v3 Authority Key Identifier: keyid:4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131362e302f32322d3232203d3e20313338313032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.116.0/22 Signature Algorithm: sha256WithRSAEncryption 65:ef:b2:62:6f:c4:aa:dd:54:f7:55:77:a8:64:21:78:5b:e0: 51:b6:01:2b:dc:88:bb:e2:bc:cc:ba:b4:e9:45:1b:77:75:59: 82:1f:f0:78:29:98:a2:b8:f8:d8:4f:e5:c6:10:47:e8:9e:87: f5:56:fc:74:63:27:62:da:86:da:0b:79:08:eb:8f:7a:9f:49: c0:0a:a2:fe:da:03:2d:a6:48:1c:cc:94:e7:95:5b:0c:21:92: cf:c3:f5:49:9a:8d:e1:92:e4:5d:26:f1:8e:54:b1:c5:14:8d: ef:0f:b6:6e:3c:72:31:f1:37:a0:bc:18:cd:21:8e:b3:30:9b: 1a:67:ba:09:3d:c4:a2:1a:24:f0:6c:26:2a:6a:8c:0e:55:d1: 42:02:4a:85:c9:8b:c1:c6:f6:fc:e0:9c:90:e6:56:b1:02:e2: 8e:d3:e3:f1:0d:7e:7b:4a:b4:2f:86:c6:35:61:cd:67:58:d1: a3:89:36:fc:f6:00:3b:ca:7c:2e:36:ae:5b:6e:36:fd:d1:10: 6a:25:8f:f1:11:ab:63:1e:d4:33:7e:b2:77:f8:a3:08:f7:b2: 76:99:89:b4:bf:c6:33:8c:67:1a:9d:3e:22:7a:9c:ca:a8:54: 72:a6:1b:4e:6d:a3:11:8a:86:7d:9f:bf:22:b4:5a:94:0f:c0: 78:af:3b:22 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbKUyuSG4SnZ9oB9yZbr4CbU4EvMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNF RTZBRDFGOTAeFw0yNTExMzAwNjU1MDJaFw0yNjExMjkwNzAwMDJaMDMxMTAvBgNV BAMTKDhCQ0IyQkYxRkU4RUMwQ0M4M0RFREY3NzRERTc0QUY3QzA4MUQyMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi3TONTzDFGbAVcts+rxeNjSzJ +P51sGWtgQiyXZ+HCz/L6h+/904MdfWxnJrmGwwpg3BG0C9U5fjMIgfnAVsJlyrP o431pP5x0lmOvYfBUrw6/Ga/Q3KtAddulX5I9JI3Sc/cOgcZPCb8RoyMsX2lLkUc FrV9otZga7U4StRKESXPWpLtWZE+PtN4wVdysncc5XMyvsGPTBT2IDPlZS4HCxPh x4hLoPmSdKGOSStLDxZ+JKjPJYBbb5qO0hG5O6s8MSG7+YyBKWSCg0T02C5VTi4D 4OjG7EnBRtvi1E8irNL5xdFMdRspYL3zuo3Uf8ubJb53U1IltJhm7cUdsqQfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUi8sr8f6OwMyD3t93TedK98CB0h4wHwYDVR0j BBgwFoAUTe+92YVL6NHij3MwoLgCw+5q0fkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MGRlMjMxZi1mYjhhLTQyN2EtYWEzNi0wYTNmYzk3MjMyOGQvMC80REVGQkREOTg1 NEJFOEQxRTI4RjczMzBBMEI4MDJDM0VFNkFEMUY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNFRTZB RDFGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwZGUyMzFmLWZiOGEtNDI3YS1h YTM2LTBhM2ZjOTcyMzI4ZC8wLzMxMzAzMzJlMzEzMjM1MmUzMTMxMzYyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMTMzMzgzMTMwMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnfXQwDQYJ KoZIhvcNAQELBQADggEBAGXvsmJvxKrdVPdVd6hkIXhb4FG2ASvciLvivMy6tOlF G3d1WYIf8HgpmKK4+NhP5cYQR+ieh/VW/HRjJ2LahtoLeQjrj3qfScAKov7aAy2m SBzMlOeVWwwhks/D9UmajeGS5F0m8Y5UscUUje8Ptm48cjHxN6C8GM0hjrMwmxpn ugk9xKIaJPBsJipqjA5V0UICSoXJi8HG9vzgnJDmVrEC4o7T4/ENfntKtC+GxjVh zWdY0aOJNvz2ADvKfC42rltuNv3REGolj/ERq2Me1DN+snf4owj3snaZibS/xjOM ZxqdPiJ6nMqoVHKmG05toxGKhn2fvyK0WpQPwHivOyI= -----END CERTIFICATE-----Generated at Wed Dec 3 16:51:14 2025 by rpki-client