This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131372e302f32342d3234203d3e20313338313032.roa File: 3130332e3132352e3131372e302f32342d3234203d3e20313338313032.roa (raw, json) Hash identifier: DvXqXB3KDxEUrIvLC7HCxRYW39FKt6kOul7sjWDdzKs= Subject key identifier: 7F:1E:2D:1B:D9:87:6A:4B:82:A2:F4:AC:5A:85:A8:7D:29:74:99:86 Certificate issuer: /CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Certificate serial: 3A82BFAF78D030E0BC0EB8C16B138414469A0612 Authority key identifier: 4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131372e302f32342d3234203d3e20313338313032.roa Signing time: Sun 30 Nov 2025 08:02:01 +0000 ROA not before: Sun 30 Nov 2025 07:57:01 +0000 ROA not after: Sun 29 Nov 2026 08:02:01 +0000 asID: 138102 IP address blocks: 103.125.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 09:30:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:82:bf:af:78:d0:30:e0:bc:0e:b8:c1:6b:13:84:14:46:9a:06:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Validity Not Before: Nov 30 07:57:01 2025 GMT Not After : Nov 29 08:02:01 2026 GMT Subject: CN=7F1E2D1BD9876A4B82A2F4AC5A85A87D29749986 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:26:bc:62:09:73:b1:3c:5d:c0:3b:fc:b3:4b: 2b:51:5d:17:6f:55:24:b1:5b:e5:ac:87:97:fc:a9: b9:b7:77:47:3c:5e:d9:e4:54:95:76:69:fb:dc:92: ba:f3:3f:0f:9d:b0:ab:85:52:b1:f4:8e:1f:68:2c: 1a:8b:4e:08:ef:bf:0e:91:a1:84:18:e7:4d:66:f4: 4d:58:27:ab:16:be:0f:0e:4c:a4:72:61:c4:68:cc: 69:33:f8:de:68:5c:bf:df:66:21:0a:65:91:98:1f: 5b:83:69:d7:a8:ae:69:0d:ac:37:46:d6:69:19:8f: 31:cd:73:31:7e:0e:8c:c2:fa:26:cf:05:ec:50:f8: f3:ea:36:62:45:12:a2:a6:82:86:85:57:ea:4b:83: 83:dc:8e:43:f4:16:84:8b:c6:fa:f8:a0:83:93:ef: 60:8a:73:42:3b:cd:6a:a1:f0:5c:37:ca:cd:85:1d: 19:c7:4e:d8:da:de:32:f3:f2:0e:96:d8:44:a7:7f: ba:ec:fd:40:9e:32:70:9e:e4:d3:81:39:d0:28:35: fe:a1:a1:93:1f:a4:59:95:9c:94:7a:5b:2a:d9:18: d8:79:0a:5d:c9:97:84:de:42:3b:92:55:b7:66:eb: 54:6d:92:2b:b4:d3:5b:24:fe:3d:d2:91:b9:35:58: 4a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:1E:2D:1B:D9:87:6A:4B:82:A2:F4:AC:5A:85:A8:7D:29:74:99:86 X509v3 Authority Key Identifier: keyid:4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131372e302f32342d3234203d3e20313338313032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.117.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:64:9e:dc:2f:5c:e8:50:2b:3a:1a:49:d5:96:71:9d:a4:88: 96:92:23:dc:67:98:0b:9a:94:ed:6b:92:17:cc:0a:b2:05:20: 00:1b:51:ec:df:11:81:e6:60:cb:9b:68:46:8a:ac:06:f9:58: be:1e:68:cb:66:8d:a4:d3:a0:b1:33:3f:2d:dc:ed:77:eb:90: cb:cd:d0:05:1c:bb:af:b5:3a:1a:28:56:7e:c3:85:4b:15:2a: 24:28:35:f9:08:87:0d:df:de:6a:33:4e:b4:fe:2b:e1:b8:19: ce:a5:8f:f2:9a:b6:2a:5e:8e:74:3b:fd:90:1b:5d:33:ea:4c: 59:41:ce:06:a4:28:8a:bc:12:45:3a:4b:8b:eb:13:9a:93:e4: b7:14:cc:ff:30:38:c8:41:c4:f4:ed:f0:49:17:61:ee:da:2b: 0e:2a:96:f0:cc:b1:85:ad:06:25:08:1e:f4:2b:e7:24:bd:bf: 37:9d:ac:56:68:32:06:9f:e7:f2:b5:35:12:af:dd:bb:ad:52: aa:cb:47:50:2b:ea:76:4e:03:16:de:f5:d8:84:59:5b:a0:2c: 2f:ba:04:5c:db:65:6f:ab:16:dc:f8:14:66:51:a9:95:50:3f: d5:f5:00:61:4a:13:35:d9:5a:47:3f:22:9e:dd:1e:83:d9:a2: f0:41:e6:6f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOoK/r3jQMOC8DrjBaxOEFEaaBhIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNF RTZBRDFGOTAeFw0yNTExMzAwNzU3MDFaFw0yNjExMjkwODAyMDFaMDMxMTAvBgNV BAMTKDdGMUUyRDFCRDk4NzZBNEI4MkEyRjRBQzVBODVBODdEMjk3NDk5ODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiJrxiCXOxPF3AO/yzSytRXRdv VSSxW+Wsh5f8qbm3d0c8XtnkVJV2afvckrrzPw+dsKuFUrH0jh9oLBqLTgjvvw6R oYQY501m9E1YJ6sWvg8OTKRyYcRozGkz+N5oXL/fZiEKZZGYH1uDadeormkNrDdG 1mkZjzHNczF+DozC+ibPBexQ+PPqNmJFEqKmgoaFV+pLg4PcjkP0FoSLxvr4oIOT 72CKc0I7zWqh8Fw3ys2FHRnHTtja3jLz8g6W2ESnf7rs/UCeMnCe5NOBOdAoNf6h oZMfpFmVnJR6WyrZGNh5Cl3Jl4TeQjuSVbdm61Rtkiu001sk/j3Skbk1WEpFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfx4tG9mHakuCovSsWoWofSl0mYYwHwYDVR0j BBgwFoAUTe+92YVL6NHij3MwoLgCw+5q0fkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MGRlMjMxZi1mYjhhLTQyN2EtYWEzNi0wYTNmYzk3MjMyOGQvMC80REVGQkREOTg1 NEJFOEQxRTI4RjczMzBBMEI4MDJDM0VFNkFEMUY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNFRTZB RDFGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwZGUyMzFmLWZiOGEtNDI3YS1h YTM2LTBhM2ZjOTcyMzI4ZC8wLzMxMzAzMzJlMzEzMjM1MmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMwMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfXUwDQYJ KoZIhvcNAQELBQADggEBABpkntwvXOhQKzoaSdWWcZ2kiJaSI9xnmAualO1rkhfM CrIFIAAbUezfEYHmYMubaEaKrAb5WL4eaMtmjaTToLEzPy3c7XfrkMvN0AUcu6+1 OhooVn7DhUsVKiQoNfkIhw3f3mozTrT+K+G4Gc6lj/KatipejnQ7/ZAbXTPqTFlB zgakKIq8EkU6S4vrE5qT5LcUzP8wOMhBxPTt8EkXYe7aKw4qlvDMsYWtBiUIHvQr 5yS9vzedrFZoMgaf5/K1NRKv3butUqrLR1Ar6nZOAxbe9diEWVugLC+6BFzbZW+r Ftz4FGZRqZVQP9X1AGFKEzXZWkc/Ip7dHoPZovBB5m8= -----END CERTIFICATE-----Generated at Wed Dec 3 16:51:37 2025 by rpki-client