This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/9d4cffe0-1f94-43d2-81ee-80030b5c3746/0/3130332e3135312e37322e302f32332d3234203d3e20313430343039.roa File: 3130332e3135312e37322e302f32332d3234203d3e20313430343039.roa (raw, json) Hash identifier: d+kI3rz6/1ncnjpxf/67wx7VsG4KrN+uZWF3vlmupvY= Subject key identifier: C5:96:1E:C2:CB:59:D8:75:D8:A4:86:1F:8C:75:13:F9:7F:93:C6:C3 Certificate issuer: /CN=146D9338596ECF1F976FB37F330D8C0CD48414C9 Certificate serial: 58C0310B716C747E7B1E16D7AA56550767B70FE6 Authority key identifier: 14:6D:93:38:59:6E:CF:1F:97:6F:B3:7F:33:0D:8C:0C:D4:84:14:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/146D9338596ECF1F976FB37F330D8C0CD48414C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9d4cffe0-1f94-43d2-81ee-80030b5c3746/0/3130332e3135312e37322e302f32332d3234203d3e20313430343039.roa Signing time: Tue 02 Dec 2025 08:00:48 +0000 ROA not before: Tue 02 Dec 2025 07:55:48 +0000 ROA not after: Tue 01 Dec 2026 08:00:48 +0000 asID: 140409 IP address blocks: 103.151.72.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9d4cffe0-1f94-43d2-81ee-80030b5c3746/0/146D9338596ECF1F976FB37F330D8C0CD48414C9.crl rsync://repo-rpki.idnic.net/repo/9d4cffe0-1f94-43d2-81ee-80030b5c3746/0/146D9338596ECF1F976FB37F330D8C0CD48414C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/146D9338596ECF1F976FB37F330D8C0CD48414C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 19:03:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:c0:31:0b:71:6c:74:7e:7b:1e:16:d7:aa:56:55:07:67:b7:0f:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=146D9338596ECF1F976FB37F330D8C0CD48414C9 Validity Not Before: Dec 2 07:55:48 2025 GMT Not After : Dec 1 08:00:48 2026 GMT Subject: CN=C5961EC2CB59D875D8A4861F8C7513F97F93C6C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:82:40:16:39:c9:a2:75:ac:5a:1e:4e:e5:d3: b2:53:13:df:8c:73:f3:e1:0a:00:7c:c8:83:a7:f5: 53:30:f4:16:38:1f:a0:ef:0b:10:0d:67:7c:ef:af: 7d:ce:25:de:5c:c5:5a:8e:98:e2:ae:73:09:13:03: 5c:8d:b4:79:89:4e:05:82:12:60:52:37:f6:2a:ff: 5c:44:a6:1c:8b:64:ae:a5:ee:30:de:f2:ba:a5:09: 95:4d:62:78:87:3e:aa:8d:09:42:99:0d:2d:ac:69: 95:68:5d:0f:e2:25:9e:5a:7c:48:0a:29:d6:e0:b2: 14:5d:8d:92:60:ca:a7:a9:c4:11:d2:69:39:cc:f2: 4d:22:6c:8d:28:08:e6:d8:7c:26:0c:5c:13:c7:90: 5c:4f:83:8b:c5:36:55:59:5d:d8:8e:91:13:89:05: 65:2d:ff:de:11:c9:fa:c9:10:9b:38:a9:e7:2b:17: 9c:ed:3c:a2:4b:ad:d9:f4:33:d5:cd:0c:68:26:34: ff:91:a2:49:f6:63:c5:b2:3d:3b:a2:fd:38:65:5c: 3c:c3:d2:4c:3d:6b:6a:c4:76:e4:1d:16:a0:2e:86: fb:33:96:b0:8f:68:9e:47:98:cf:1a:2d:c1:03:fc: 79:fb:f3:87:54:6d:85:60:06:c8:e9:f7:59:c8:52: 98:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:96:1E:C2:CB:59:D8:75:D8:A4:86:1F:8C:75:13:F9:7F:93:C6:C3 X509v3 Authority Key Identifier: keyid:14:6D:93:38:59:6E:CF:1F:97:6F:B3:7F:33:0D:8C:0C:D4:84:14:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9d4cffe0-1f94-43d2-81ee-80030b5c3746/0/146D9338596ECF1F976FB37F330D8C0CD48414C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/146D9338596ECF1F976FB37F330D8C0CD48414C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9d4cffe0-1f94-43d2-81ee-80030b5c3746/0/3130332e3135312e37322e302f32332d3234203d3e20313430343039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.72.0/23 Signature Algorithm: sha256WithRSAEncryption 15:d9:92:13:ce:dd:8b:31:b0:05:b8:bb:0d:f9:53:b1:10:90: a5:c9:fe:60:3a:df:06:26:d7:93:80:ca:ef:59:9b:8f:7d:94: 29:88:f1:dd:a4:01:40:39:19:31:b4:39:cf:5d:86:4d:4a:ce: 5a:76:45:6d:f7:de:63:b9:12:7c:66:1e:59:d8:8e:c6:37:24: ce:1e:93:3c:e9:65:d3:fc:a9:55:91:ef:af:06:a6:87:f3:90: cf:03:66:67:2b:df:05:07:c7:17:e4:c4:8a:32:f1:77:33:61: 91:58:ff:12:67:c2:79:71:fa:ce:55:de:ca:bd:ac:df:ba:2b: e7:70:3e:30:dd:db:cc:ab:c3:59:9b:96:51:75:04:ef:5a:71: bc:7e:18:8e:8b:b1:05:e7:a5:db:a5:bc:a8:4d:db:52:e5:f4: 48:07:08:69:b8:67:8a:eb:f4:24:3e:04:55:ce:20:6f:09:27: 3d:4b:06:22:f0:2b:c7:43:1c:7e:a2:c6:1e:31:97:ae:68:7f: f5:89:03:de:82:f3:05:9c:87:a8:1e:d4:dc:d9:2e:bc:92:c4: 0e:8a:c6:c1:1d:c4:bd:e5:d6:88:4a:f0:db:91:82:0f:70:8e: e7:ef:c0:3a:5d:53:c0:e8:f1:0b:4a:0c:a3:0e:39:99:64:b0: 8f:25:81:79 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWMAxC3FsdH57HhbXqlZVB2e3D+YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTQ2RDkzMzg1OTZFQ0YxRjk3NkZCMzdGMzMwRDhDMENE NDg0MTRDOTAeFw0yNTEyMDIwNzU1NDhaFw0yNjEyMDEwODAwNDhaMDMxMTAvBgNV BAMTKEM1OTYxRUMyQ0I1OUQ4NzVEOEE0ODYxRjhDNzUxM0Y5N0Y5M0M2QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlgkAWOcmidaxaHk7l07JTE9+M c/PhCgB8yIOn9VMw9BY4H6DvCxANZ3zvr33OJd5cxVqOmOKucwkTA1yNtHmJTgWC EmBSN/Yq/1xEphyLZK6l7jDe8rqlCZVNYniHPqqNCUKZDS2saZVoXQ/iJZ5afEgK KdbgshRdjZJgyqepxBHSaTnM8k0ibI0oCObYfCYMXBPHkFxPg4vFNlVZXdiOkROJ BWUt/94RyfrJEJs4qecrF5ztPKJLrdn0M9XNDGgmNP+Rokn2Y8WyPTui/ThlXDzD 0kw9a2rEduQdFqAuhvszlrCPaJ5HmM8aLcED/Hn784dUbYVgBsjp91nIUphpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxZYewstZ2HXYpIYfjHUT+X+TxsMwHwYDVR0j BBgwFoAUFG2TOFluzx+Xb7N/Mw2MDNSEFMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZDRjZmZlMC0xZjk0LTQzZDItODFlZS04MDAzMGI1YzM3NDYvMC8xNDZEOTMzODU5 NkVDRjFGOTc2RkIzN0YzMzBEOEMwQ0Q0ODQxNEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTQ2RDkzMzg1OTZFQ0YxRjk3NkZCMzdGMzMwRDhDMENENDg0 MTRDOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkNGNmZmUwLTFmOTQtNDNkMi04 MWVlLTgwMDMwYjVjMzc0Ni8wLzMxMzAzMzJlMzEzNTMxMmUzNzMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5dIMA0GCSqG SIb3DQEBCwUAA4IBAQAV2ZITzt2LMbAFuLsN+VOxEJClyf5gOt8GJteTgMrvWZuP fZQpiPHdpAFAORkxtDnPXYZNSs5adkVt995juRJ8Zh5Z2I7GNyTOHpM86WXT/KlV ke+vBqaH85DPA2ZnK98FB8cX5MSKMvF3M2GRWP8SZ8J5cfrOVd7KvazfuivncD4w 3dvMq8NZm5ZRdQTvWnG8fhiOi7EF56XbpbyoTdtS5fRIBwhpuGeK6/QkPgRVziBv CSc9SwYi8CvHQxx+osYeMZeuaH/1iQPegvMFnIeoHtTc2S68ksQOisbBHcS95daI SvDbkYIPcI7n78A6XVPA6PELSgyjDjmZZLCPJYF5 -----END CERTIFICATE-----Generated at Wed Dec 3 15:30:41 2025 by rpki-client