This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/3130332e3132312e3133322e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3133322e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: +aJ3urDYDAdZbLVxgK3efiShr+akQCYv1/hl/FmSvgY= Subject key identifier: 9C:D6:BC:73:88:8B:F2:3A:3D:74:94:32:D8:2B:EF:3D:25:6A:98:B7 Certificate issuer: /CN=FF75AEDDC6059E8A2B830E487D72BE77E330BEEF Certificate serial: 2C2B63774FC2AB2428D76CF89668B06EA33E3DD8 Authority key identifier: FF:75:AE:DD:C6:05:9E:8A:2B:83:0E:48:7D:72:BE:77:E3:30:BE:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/3130332e3132312e3133322e302f32332d3234203d3e20313335343738.roa Signing time: Wed 05 Nov 2025 07:02:28 +0000 ROA not before: Wed 05 Nov 2025 06:57:28 +0000 ROA not after: Wed 04 Nov 2026 07:02:28 +0000 asID: 135478 IP address blocks: 103.121.132.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.crl rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:2b:63:77:4f:c2:ab:24:28:d7:6c:f8:96:68:b0:6e:a3:3e:3d:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF75AEDDC6059E8A2B830E487D72BE77E330BEEF Validity Not Before: Nov 5 06:57:28 2025 GMT Not After : Nov 4 07:02:28 2026 GMT Subject: CN=9CD6BC73888BF23A3D749432D82BEF3D256A98B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:fa:06:dc:40:2f:79:d1:1b:f4:5f:65:74:a2: 11:46:96:9b:77:d6:b6:7e:99:c7:c4:a7:73:c3:90: 70:dc:e3:04:36:a3:ba:d0:a8:f1:ba:bb:26:54:c6: 45:bc:8e:83:0d:df:50:1e:6c:95:5e:c4:d8:f9:ea: 84:77:3c:7b:3e:fa:03:fc:f4:45:c1:c4:c5:95:96: 61:91:0f:46:15:e9:17:35:ef:df:de:71:e1:41:08: 2c:e3:79:f8:08:fb:54:12:bf:ee:07:88:9a:3c:0e: 72:ff:9f:03:c7:55:d5:96:2c:8d:cf:ba:54:20:0e: 4b:1f:bb:c4:ee:10:2b:e4:14:db:22:7f:73:ea:b4: a4:27:98:09:f5:fd:57:60:1e:48:1d:66:4f:37:71: b6:fa:59:45:4e:9f:43:f2:4e:c6:35:1a:2d:cf:d1: 4b:9f:d2:c2:43:de:90:37:a5:4b:79:77:6c:a9:71: 5b:c3:1d:97:e5:ef:b4:b4:8c:cd:5f:7c:37:5f:8d: 70:7d:c8:03:db:83:f3:59:59:b0:73:af:89:76:49: e7:92:ef:69:da:36:53:b0:92:a1:7f:f3:de:8a:ae: 52:a2:39:e4:92:12:9d:42:33:5d:31:54:24:85:d4: d0:b6:d2:8f:40:f7:a8:51:e0:47:6a:0b:30:ec:5e: cd:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:D6:BC:73:88:8B:F2:3A:3D:74:94:32:D8:2B:EF:3D:25:6A:98:B7 X509v3 Authority Key Identifier: keyid:FF:75:AE:DD:C6:05:9E:8A:2B:83:0E:48:7D:72:BE:77:E3:30:BE:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/3130332e3132312e3133322e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.132.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:7c:ce:04:ab:cd:96:25:d2:17:f4:49:2c:52:30:31:99:97: 10:64:4a:dd:b1:6e:3a:10:ad:ee:2d:39:8b:c3:ba:c8:ef:ac: 81:50:c2:72:1c:39:25:c3:c8:22:57:1a:9e:51:05:27:3d:f0: 96:43:c1:f9:b8:e5:23:97:97:b2:5f:64:25:bc:ad:29:1c:c3: ac:fb:18:76:d6:d3:45:c6:84:42:fa:5b:04:22:f5:14:61:d7: 59:c7:b4:1a:3a:01:eb:44:e2:2c:2c:e4:25:db:6d:c2:e1:a5: 73:de:42:56:1b:15:9c:82:3b:a3:69:7e:d9:85:b8:1f:6b:81: 8d:c3:53:3e:eb:b5:b2:f5:0b:34:06:11:1b:cc:9a:41:43:ff: 49:f7:7e:f4:1a:08:05:83:7f:cc:cf:f7:95:51:2b:9b:cd:86: 24:33:68:90:cf:99:00:bc:33:33:b0:c7:0f:8e:5d:dc:03:4f: 43:aa:b4:68:86:f4:a9:1e:40:29:5f:52:e4:54:57:e2:29:cf: 10:cb:2a:c2:93:7e:ce:8d:50:6b:a0:d4:4c:54:45:4d:ad:fb: 89:da:57:04:b6:39:46:a3:a3:30:c9:f5:11:26:21:e6:7f:d0: 57:3c:20:50:9b:81:0b:7e:ea:c6:dd:a2:19:93:1b:e0:d9:43: 61:ab:d2:44 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULCtjd0/CqyQo12z4lmiwbqM+PdgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY3NUFFRERDNjA1OUU4QTJCODMwRTQ4N0Q3MkJFNzdF MzMwQkVFRjAeFw0yNTExMDUwNjU3MjhaFw0yNjExMDQwNzAyMjhaMDMxMTAvBgNV BAMTKDlDRDZCQzczODg4QkYyM0EzRDc0OTQzMkQ4MkJFRjNEMjU2QTk4QjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb+gbcQC950Rv0X2V0ohFGlpt3 1rZ+mcfEp3PDkHDc4wQ2o7rQqPG6uyZUxkW8joMN31AebJVexNj56oR3PHs++gP8 9EXBxMWVlmGRD0YV6Rc179/eceFBCCzjefgI+1QSv+4HiJo8DnL/nwPHVdWWLI3P ulQgDksfu8TuECvkFNsif3PqtKQnmAn1/VdgHkgdZk83cbb6WUVOn0PyTsY1Gi3P 0Uuf0sJD3pA3pUt5d2ypcVvDHZfl77S0jM1ffDdfjXB9yAPbg/NZWbBzr4l2SeeS 72naNlOwkqF/896KrlKiOeSSEp1CM10xVCSF1NC20o9A96hR4EdqCzDsXs3HAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUnNa8c4iL8jo9dJQy2CvvPSVqmLcwHwYDVR0j BBgwFoAU/3Wu3cYFnoorgw5IfXK+d+Mwvu8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YjM3ODRmZS1mOWZlLTRjYmUtODc2OC0yNjNhNzY5ODZhM2EvMC9GRjc1QUVEREM2 MDU5RThBMkI4MzBFNDg3RDcyQkU3N0UzMzBCRUVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkY3NUFFRERDNjA1OUU4QTJCODMwRTQ4N0Q3MkJFNzdFMzMw QkVFRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzliMzc4NGZlLWY5ZmUtNGNiZS04 NzY4LTI2M2E3Njk4NmEzYS8wLzMxMzAzMzJlMzEzMjMxMmUzMTMzMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneYQwDQYJ KoZIhvcNAQELBQADggEBABp8zgSrzZYl0hf0SSxSMDGZlxBkSt2xbjoQre4tOYvD usjvrIFQwnIcOSXDyCJXGp5RBSc98JZDwfm45SOXl7JfZCW8rSkcw6z7GHbW00XG hEL6WwQi9RRh11nHtBo6AetE4iws5CXbbcLhpXPeQlYbFZyCO6NpftmFuB9rgY3D Uz7rtbL1CzQGERvMmkFD/0n3fvQaCAWDf8zP95VRK5vNhiQzaJDPmQC8MzOwxw+O XdwDT0OqtGiG9KkeQClfUuRUV+IpzxDLKsKTfs6NUGug1ExURU2t+4naVwS2OUaj ozDJ9REmIeZ/0Fc8IFCbgQt+6sbdohmTG+DZQ2Gr0kQ= -----END CERTIFICATE-----Generated at Wed Dec 3 11:48:32 2025 by rpki-client