This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/94ee2bd3-0f66-4d43-a9e7-965d33f12852/0/3130332e3133392e3131322e302f32342d3234203d3e20313338383933.roa File: 3130332e3133392e3131322e302f32342d3234203d3e20313338383933.roa (raw, json) Hash identifier: 0a6d0VadEC4mllKiwomZ9jBfURtS2Uj6BdXxHPbtGhc= Subject key identifier: B1:D7:96:A7:8D:76:17:C2:5E:3C:03:9C:B1:31:1C:59:42:F1:86:48 Certificate issuer: /CN=F5A5DFAFD47F54DC54D56683E91A5C1722CBA6AD Certificate serial: 4895B01DC4E2F6AC25C5F81F9BE24BF2F1EDD13E Authority key identifier: F5:A5:DF:AF:D4:7F:54:DC:54:D5:66:83:E9:1A:5C:17:22:CB:A6:AD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F5A5DFAFD47F54DC54D56683E91A5C1722CBA6AD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/94ee2bd3-0f66-4d43-a9e7-965d33f12852/0/3130332e3133392e3131322e302f32342d3234203d3e20313338383933.roa Signing time: Fri 14 Nov 2025 12:00:00 +0000 ROA not before: Fri 14 Nov 2025 11:55:00 +0000 ROA not after: Fri 13 Nov 2026 12:00:00 +0000 asID: 138893 IP address blocks: 103.139.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/94ee2bd3-0f66-4d43-a9e7-965d33f12852/0/F5A5DFAFD47F54DC54D56683E91A5C1722CBA6AD.crl rsync://repo-rpki.idnic.net/repo/94ee2bd3-0f66-4d43-a9e7-965d33f12852/0/F5A5DFAFD47F54DC54D56683E91A5C1722CBA6AD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F5A5DFAFD47F54DC54D56683E91A5C1722CBA6AD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 06:54:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:95:b0:1d:c4:e2:f6:ac:25:c5:f8:1f:9b:e2:4b:f2:f1:ed:d1:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F5A5DFAFD47F54DC54D56683E91A5C1722CBA6AD Validity Not Before: Nov 14 11:55:00 2025 GMT Not After : Nov 13 12:00:00 2026 GMT Subject: CN=B1D796A78D7617C25E3C039CB1311C5942F18648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:23:69:40:1f:a3:d2:81:3a:ab:6c:52:33:d0: d8:ec:9b:b0:00:d5:63:89:20:49:48:0f:7b:52:db: 75:6a:0e:02:9b:9c:98:66:97:89:b4:f3:be:ff:a1: ad:e4:c8:16:fd:46:23:66:8e:6c:84:19:d5:27:4c: 90:c9:a7:0f:45:15:bd:58:e0:d0:78:c2:34:c8:75: 81:42:68:f2:27:4f:88:c1:23:e8:12:21:b3:4c:84: 8a:2e:73:06:55:07:4a:29:35:56:0e:f7:2d:e5:48: c6:09:b3:a0:ec:33:b1:18:55:0c:62:0d:11:df:28: b1:a3:88:ca:89:96:00:9e:a5:a8:75:62:8d:b4:c4: 81:c9:dc:2b:0f:16:22:e8:7c:33:ad:01:6d:15:11: ab:c5:65:5d:26:87:f7:45:e8:95:9e:e4:55:eb:70: ac:fa:b1:a5:6b:a2:6d:cc:1d:94:e6:25:5b:eb:be: 42:3c:8b:ed:33:b0:a4:c9:99:16:95:f8:d7:05:f2: ae:23:79:0f:6f:d2:e2:b2:37:64:76:a1:61:2c:d7: 2e:05:ac:c3:ea:94:b7:6a:ae:8c:29:c5:20:2e:ed: 35:89:ef:c1:f5:82:c3:08:fe:2d:40:f7:16:0f:f1: 02:8e:d7:8e:6d:ab:99:a2:c4:60:23:b0:fe:02:4a: ea:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:D7:96:A7:8D:76:17:C2:5E:3C:03:9C:B1:31:1C:59:42:F1:86:48 X509v3 Authority Key Identifier: keyid:F5:A5:DF:AF:D4:7F:54:DC:54:D5:66:83:E9:1A:5C:17:22:CB:A6:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/94ee2bd3-0f66-4d43-a9e7-965d33f12852/0/F5A5DFAFD47F54DC54D56683E91A5C1722CBA6AD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F5A5DFAFD47F54DC54D56683E91A5C1722CBA6AD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/94ee2bd3-0f66-4d43-a9e7-965d33f12852/0/3130332e3133392e3131322e302f32342d3234203d3e20313338383933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.112.0/24 Signature Algorithm: sha256WithRSAEncryption bc:0b:a0:18:6a:32:23:9a:af:d0:65:6b:1f:64:38:7a:7d:f3: cf:00:f5:50:ee:25:28:46:16:94:08:5b:3c:0b:e0:81:d1:03: 62:2e:51:df:d5:ea:bd:62:98:d2:df:8e:55:84:ef:4e:04:11: 58:d6:00:c3:f8:16:4f:97:38:af:2f:f7:c9:3d:ea:ef:dd:be: e0:1c:e2:4d:52:d9:03:2d:7f:00:c0:f9:ae:63:57:c9:a8:37: 27:e2:72:28:11:90:9a:90:98:13:e7:53:df:8f:3a:b1:a7:d7: 35:ad:18:24:72:72:f2:83:37:e5:18:6c:eb:f8:e3:8c:75:16: e2:41:55:85:6b:49:62:71:48:b9:22:74:0e:52:c5:49:d7:eb: 2e:b1:ca:65:40:2b:70:dd:d8:b0:ab:ee:97:95:2f:79:35:7f: 41:7a:5d:35:f8:b3:59:cc:23:59:6f:7f:5b:49:39:f0:56:a3: bb:a8:a2:55:eb:f2:6f:16:b3:5e:be:bc:e1:a6:e2:b0:07:15: 24:69:8c:ab:5d:8a:ea:ed:9e:02:de:57:4a:e4:a1:7d:43:8d: e4:a8:ef:c3:ee:09:30:07:82:14:db:93:dc:e4:b5:fa:0a:c2: 9e:ff:98:44:71:e8:eb:1e:82:ec:36:25:a5:e4:0d:67:66:24: 91:6f:9d:de -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSJWwHcTi9qwlxfgfm+JL8vHt0T4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjVBNURGQUZENDdGNTREQzU0RDU2NjgzRTkxQTVDMTcy MkNCQTZBRDAeFw0yNTExMTQxMTU1MDBaFw0yNjExMTMxMjAwMDBaMDMxMTAvBgNV BAMTKEIxRDc5NkE3OEQ3NjE3QzI1RTNDMDM5Q0IxMzExQzU5NDJGMTg2NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzI2lAH6PSgTqrbFIz0Njsm7AA 1WOJIElID3tS23VqDgKbnJhml4m0877/oa3kyBb9RiNmjmyEGdUnTJDJpw9FFb1Y 4NB4wjTIdYFCaPInT4jBI+gSIbNMhIoucwZVB0opNVYO9y3lSMYJs6DsM7EYVQxi DRHfKLGjiMqJlgCepah1Yo20xIHJ3CsPFiLofDOtAW0VEavFZV0mh/dF6JWe5FXr cKz6saVrom3MHZTmJVvrvkI8i+0zsKTJmRaV+NcF8q4jeQ9v0uKyN2R2oWEs1y4F rMPqlLdqrowpxSAu7TWJ78H1gsMI/i1A9xYP8QKO145tq5mixGAjsP4CSuq9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUsdeWp412F8JePAOcsTEcWULxhkgwHwYDVR0j BBgwFoAU9aXfr9R/VNxU1WaD6RpcFyLLpq0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NGVlMmJkMy0wZjY2LTRkNDMtYTllNy05NjVkMzNmMTI4NTIvMC9GNUE1REZBRkQ0 N0Y1NERDNTRENTY2ODNFOTFBNUMxNzIyQ0JBNkFELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjVBNURGQUZENDdGNTREQzU0RDU2NjgzRTkxQTVDMTcyMkNC QTZBRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0ZWUyYmQzLTBmNjYtNGQ0My1h OWU3LTk2NWQzM2YxMjg1Mi8wLzMxMzAzMzJlMzEzMzM5MmUzMTMxMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODM5MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABni3AwDQYJ KoZIhvcNAQELBQADggEBALwLoBhqMiOar9Blax9kOHp9888A9VDuJShGFpQIWzwL 4IHRA2IuUd/V6r1imNLfjlWE704EEVjWAMP4Fk+XOK8v98k96u/dvuAc4k1S2QMt fwDA+a5jV8moNyficigRkJqQmBPnU9+POrGn1zWtGCRycvKDN+UYbOv444x1FuJB VYVrSWJxSLkidA5SxUnX6y6xymVAK3Dd2LCr7peVL3k1f0F6XTX4s1nMI1lvf1tJ OfBWo7uoolXr8m8Ws16+vOGm4rAHFSRpjKtdiurtngLeV0rkoX1DjeSo78PuCTAH ghTbk9zktfoKwp7/mERx6Oseguw2JaXkDWdmJJFvnd4= -----END CERTIFICATE-----Generated at Wed Dec 3 14:55:49 2025 by rpki-client