This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131392e302f32342d3234203d3e20313338313032.roa File: 3130332e3132352e3131392e302f32342d3234203d3e20313338313032.roa (raw, json) Hash identifier: yF5QYDSmZl11Br5OhVCNQy6ELbgnz0I3Y8PMUZejcuI= Subject key identifier: AD:B2:A7:48:D2:AE:37:18:19:55:B9:B3:1A:8F:FD:26:DD:64:C4:61 Certificate issuer: /CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Certificate serial: 0A8A161E68AD6C027AD6F59EE420C80E2F750249 Authority key identifier: 4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131392e302f32342d3234203d3e20313338313032.roa Signing time: Sun 30 Nov 2025 08:02:01 +0000 ROA not before: Sun 30 Nov 2025 07:57:01 +0000 ROA not after: Sun 29 Nov 2026 08:02:01 +0000 asID: 138102 IP address blocks: 103.125.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 09:30:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:8a:16:1e:68:ad:6c:02:7a:d6:f5:9e:e4:20:c8:0e:2f:75:02:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Validity Not Before: Nov 30 07:57:01 2025 GMT Not After : Nov 29 08:02:01 2026 GMT Subject: CN=ADB2A748D2AE37181955B9B31A8FFD26DD64C461 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:c0:ca:5b:4d:3c:8e:ef:42:2b:c6:25:49:9c: 2b:aa:f1:1d:6f:28:58:6f:72:6b:5a:90:f4:d2:bc: 62:6d:ab:20:a5:8d:a3:20:21:a5:3d:ef:58:84:5c: da:f2:08:30:26:f9:77:f1:75:86:ff:5b:83:8a:7c: 84:f7:62:35:29:49:80:b0:94:17:d5:13:f8:b4:2f: e3:f7:c5:aa:ad:fc:9b:c4:59:24:22:cd:c0:a6:bb: ed:c3:7f:6e:e8:d1:8b:16:2e:f7:10:b8:8e:a2:d7: df:43:ad:b7:35:a9:a4:27:65:e4:63:79:4c:5e:3c: 15:98:cd:47:ad:5b:6e:9a:f4:bf:be:bb:90:26:ca: d5:0f:db:61:51:d6:a8:c2:12:57:cb:58:82:32:9a: 97:63:7d:fe:af:fd:6b:86:80:10:8a:ce:24:d5:f6: 36:d3:79:c4:67:49:f8:ad:03:77:40:5f:df:5e:1b: 8c:36:3e:5a:97:5d:19:a4:39:63:a5:40:21:53:b1: f2:a3:f6:64:63:88:04:f3:9a:27:78:56:be:67:58: db:1c:4f:12:8d:e7:ce:51:18:e7:f7:14:a5:42:35: e0:85:53:86:bc:5c:a5:d6:87:63:6a:ee:18:dc:ed: fe:9d:2b:39:7e:8b:d4:10:a0:32:4c:87:6e:5b:6c: bc:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:B2:A7:48:D2:AE:37:18:19:55:B9:B3:1A:8F:FD:26:DD:64:C4:61 X509v3 Authority Key Identifier: keyid:4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131392e302f32342d3234203d3e20313338313032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.119.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:27:79:d3:8f:1c:f4:8e:8f:96:2e:3a:3d:9f:2e:e0:a0:ec: 43:46:75:16:db:9d:9e:41:11:8f:73:bb:23:b3:1e:dc:7d:56: 21:26:ba:94:ca:bf:03:96:dd:b8:48:05:58:34:18:f0:44:1a: ca:08:5b:8d:a2:61:f2:83:ed:59:c9:5a:fc:0a:d1:02:a1:d2: 1b:e9:af:f6:c2:df:8b:40:67:84:9b:0d:ce:6f:01:da:88:84: 58:cd:02:1a:38:a9:a4:00:22:c2:3c:44:76:35:78:46:a6:74: ba:fa:bf:76:61:9c:7d:ac:c8:f2:52:3c:f1:72:74:6b:b2:5f: 56:c8:e4:8c:f5:a0:ff:7d:4b:87:52:3b:5c:9e:f5:1c:9f:85: 3e:da:94:2e:f2:e0:93:a4:4f:d4:62:24:8e:7b:ed:36:ae:a5: f8:2a:d6:f0:f7:03:11:f3:be:2a:c0:d5:e8:c2:41:aa:11:eb: 09:ad:58:0b:dd:2a:fe:bc:ab:be:9a:a5:7e:85:3b:6b:79:46: 43:c2:e9:04:59:5f:1d:a7:14:04:2d:fd:84:fa:3a:26:4c:0d: d2:6a:a1:4d:94:50:1d:28:85:08:5f:48:ac:a6:0c:4c:e7:9e: ff:a6:8e:3e:13:01:6e:11:8b:8f:41:c0:19:fa:89:7e:23:52: 3c:d9:cf:54 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUCooWHmitbAJ61vWe5CDIDi91AkkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNF RTZBRDFGOTAeFw0yNTExMzAwNzU3MDFaFw0yNjExMjkwODAyMDFaMDMxMTAvBgNV BAMTKEFEQjJBNzQ4RDJBRTM3MTgxOTU1QjlCMzFBOEZGRDI2REQ2NEM0NjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkwMpbTTyO70IrxiVJnCuq8R1v KFhvcmtakPTSvGJtqyCljaMgIaU971iEXNryCDAm+XfxdYb/W4OKfIT3YjUpSYCw lBfVE/i0L+P3xaqt/JvEWSQizcCmu+3Df27o0YsWLvcQuI6i199Drbc1qaQnZeRj eUxePBWYzUetW26a9L++u5AmytUP22FR1qjCElfLWIIympdjff6v/WuGgBCKziTV 9jbTecRnSfitA3dAX99eG4w2PlqXXRmkOWOlQCFTsfKj9mRjiATzmid4Vr5nWNsc TxKN585RGOf3FKVCNeCFU4a8XKXWh2Nq7hjc7f6dKzl+i9QQoDJMh25bbLwnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUrbKnSNKuNxgZVbmzGo/9Jt1kxGEwHwYDVR0j BBgwFoAUTe+92YVL6NHij3MwoLgCw+5q0fkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MGRlMjMxZi1mYjhhLTQyN2EtYWEzNi0wYTNmYzk3MjMyOGQvMC80REVGQkREOTg1 NEJFOEQxRTI4RjczMzBBMEI4MDJDM0VFNkFEMUY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNFRTZB RDFGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwZGUyMzFmLWZiOGEtNDI3YS1h YTM2LTBhM2ZjOTcyMzI4ZC8wLzMxMzAzMzJlMzEzMjM1MmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMwMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfXcwDQYJ KoZIhvcNAQELBQADggEBADwnedOPHPSOj5YuOj2fLuCg7ENGdRbbnZ5BEY9zuyOz Htx9ViEmupTKvwOW3bhIBVg0GPBEGsoIW42iYfKD7VnJWvwK0QKh0hvpr/bC34tA Z4SbDc5vAdqIhFjNAho4qaQAIsI8RHY1eEamdLr6v3ZhnH2syPJSPPFydGuyX1bI 5Iz1oP99S4dSO1ye9RyfhT7alC7y4JOkT9RiJI577Taupfgq1vD3AxHzvirA1ejC QaoR6wmtWAvdKv68q76apX6FO2t5RkPC6QRZXx2nFAQt/YT6OiZMDdJqoU2UUB0o hQhfSKymDEznnv+mjj4TAW4Ri49BwBn6iX4jUjzZz1Q= -----END CERTIFICATE-----Generated at Wed Dec 3 16:14:02 2025 by rpki-client