This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131362e302f32342d3234203d3e20313338313032.roa File: 3130332e3132352e3131362e302f32342d3234203d3e20313338313032.roa (raw, json) Hash identifier: Rijq6K1g57KijomhL6W8vMskGlfJbmrteuOacH80VQM= Subject key identifier: F2:45:25:67:27:80:2F:C9:AE:D6:50:F8:DD:E8:E0:2C:EB:AF:92:6A Certificate issuer: /CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Certificate serial: 4028BF34573E1DCECF7ED717B3F0ED286091B87D Authority key identifier: 4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131362e302f32342d3234203d3e20313338313032.roa Signing time: Sun 30 Nov 2025 08:02:02 +0000 ROA not before: Sun 30 Nov 2025 07:57:02 +0000 ROA not after: Sun 29 Nov 2026 08:02:02 +0000 asID: 138102 IP address blocks: 103.125.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 09:30:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:28:bf:34:57:3e:1d:ce:cf:7e:d7:17:b3:f0:ed:28:60:91:b8:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Validity Not Before: Nov 30 07:57:02 2025 GMT Not After : Nov 29 08:02:02 2026 GMT Subject: CN=F245256727802FC9AED650F8DDE8E02CEBAF926A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d2:21:70:a9:da:a5:c6:9a:ad:53:cb:5a:17: a3:74:4d:98:40:bb:99:f3:c7:28:e0:05:34:f8:31: 0a:da:a7:18:9c:d6:5a:3d:fc:81:a6:9d:d9:9a:a4: 3b:51:ed:e9:ff:8a:c3:0b:0d:f0:e3:de:52:cf:55: 0e:d3:3d:ac:74:d9:48:48:fc:3e:5e:e4:04:14:aa: e9:63:73:4f:1f:ef:f1:9c:27:04:48:a5:fa:1f:db: 8c:c0:de:8a:a5:cc:22:75:79:79:95:e4:31:20:fe: 09:04:95:c3:19:3e:1d:e7:6b:00:d5:f4:e0:fc:8b: fc:83:eb:1d:27:c2:23:4c:bf:98:2d:d6:cb:a3:24: 5e:8d:19:96:1a:c2:e0:f5:72:bf:e5:4d:9e:fe:ae: 41:22:14:11:4d:77:79:b6:fd:1c:86:7b:1f:8f:85: 2c:61:e6:20:1a:5d:b2:20:7a:c4:7e:49:e5:f6:97: a5:fd:10:cb:2b:5c:8b:a6:b8:4c:8b:ea:87:51:dd: b0:71:0a:49:de:ed:0e:08:15:c0:57:75:2f:a5:f8: a4:eb:05:48:ef:93:11:93:e6:9f:20:8c:60:73:13: 2a:eb:6a:a6:a4:d2:75:d4:5a:67:ca:f3:7d:d5:41: 12:4c:b3:b5:24:e6:9c:e5:d3:9d:ac:60:17:55:a2: 72:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:45:25:67:27:80:2F:C9:AE:D6:50:F8:DD:E8:E0:2C:EB:AF:92:6A X509v3 Authority Key Identifier: keyid:4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131362e302f32342d3234203d3e20313338313032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.116.0/24 Signature Algorithm: sha256WithRSAEncryption 84:a7:79:fb:40:12:75:aa:58:96:de:69:b1:89:a6:d0:b0:74: b0:99:e6:c6:c4:fb:f0:19:7f:b2:b2:fd:e8:57:a2:42:18:f7: a7:78:37:91:48:ce:eb:68:21:50:a0:f7:9d:62:d4:47:7c:b7: a1:3c:18:4f:8c:1b:c3:0c:9d:76:48:77:b8:87:4f:0c:17:d6: 77:8e:ee:9e:13:74:30:3b:8f:19:68:db:09:b3:58:ef:c3:c2: ba:1e:79:ce:fe:04:95:c8:97:83:7c:28:38:af:39:24:68:82: ca:f5:52:bd:dd:76:d9:09:c9:fc:01:70:27:ef:36:9d:62:36: 0c:4b:56:28:34:86:c3:de:0f:79:af:0c:2b:27:c8:4e:a6:49: b1:61:2f:ee:8f:0a:ad:f8:47:6d:28:cf:14:99:66:23:27:2c: d5:5a:0b:c3:fc:ea:ca:2b:5a:46:83:56:11:09:24:d5:9a:53: 2a:56:1e:69:52:90:ae:3f:49:06:8b:6a:dc:db:29:98:44:a0: b5:72:dc:54:97:53:7e:18:d4:8d:a9:bd:85:4c:8a:5e:ff:4a: c3:c1:ea:43:24:cf:1a:79:1a:71:1a:25:bb:47:70:08:dc:56: f6:bf:72:3e:d8:7f:d8:ef:85:df:c3:20:ee:67:c2:af:69:39: cf:34:34:58 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQCi/NFc+Hc7PftcXs/DtKGCRuH0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNF RTZBRDFGOTAeFw0yNTExMzAwNzU3MDJaFw0yNjExMjkwODAyMDJaMDMxMTAvBgNV BAMTKEYyNDUyNTY3Mjc4MDJGQzlBRUQ2NTBGOERERThFMDJDRUJBRjkyNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL0iFwqdqlxpqtU8taF6N0TZhA u5nzxyjgBTT4MQrapxic1lo9/IGmndmapDtR7en/isMLDfDj3lLPVQ7TPax02UhI /D5e5AQUquljc08f7/GcJwRIpfof24zA3oqlzCJ1eXmV5DEg/gkElcMZPh3nawDV 9OD8i/yD6x0nwiNMv5gt1sujJF6NGZYawuD1cr/lTZ7+rkEiFBFNd3m2/RyGex+P hSxh5iAaXbIgesR+SeX2l6X9EMsrXIumuEyL6odR3bBxCkne7Q4IFcBXdS+l+KTr BUjvkxGT5p8gjGBzEyrraqak0nXUWmfK833VQRJMs7Uk5pzl052sYBdVonKxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU8kUlZyeAL8mu1lD43ejgLOuvkmowHwYDVR0j BBgwFoAUTe+92YVL6NHij3MwoLgCw+5q0fkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MGRlMjMxZi1mYjhhLTQyN2EtYWEzNi0wYTNmYzk3MjMyOGQvMC80REVGQkREOTg1 NEJFOEQxRTI4RjczMzBBMEI4MDJDM0VFNkFEMUY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNFRTZB RDFGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwZGUyMzFmLWZiOGEtNDI3YS1h YTM2LTBhM2ZjOTcyMzI4ZC8wLzMxMzAzMzJlMzEzMjM1MmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMwMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfXQwDQYJ KoZIhvcNAQELBQADggEBAISneftAEnWqWJbeabGJptCwdLCZ5sbE+/AZf7Ky/ehX okIY96d4N5FIzutoIVCg951i1Ed8t6E8GE+MG8MMnXZId7iHTwwX1neO7p4TdDA7 jxlo2wmzWO/Dwroeec7+BJXIl4N8KDivOSRogsr1Ur3ddtkJyfwBcCfvNp1iNgxL Vig0hsPeD3mvDCsnyE6mSbFhL+6PCq34R20ozxSZZiMnLNVaC8P86sorWkaDVhEJ JNWaUypWHmlSkK4/SQaLatzbKZhEoLVy3FSXU34Y1I2pvYVMil7/SsPB6kMkzxp5 GnEaJbtHcAjcVva/cj7Yf9jvhd/DIO5nwq9pOc80NFg= -----END CERTIFICATE-----Generated at Wed Dec 3 15:31:48 2025 by rpki-client