This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/3130332e3137342e31342e302f32332d3234203d3e20313439333532.roa File: 3130332e3137342e31342e302f32332d3234203d3e20313439333532.roa (raw, json) Hash identifier: EWZ8aolNNLiVVbkuT7UicoQ0CTjjE+TbqDmkXpjzrr8= Subject key identifier: 1B:FE:9E:DC:72:0D:9B:F3:87:21:F9:FF:5E:72:CB:28:CC:98:11:FF Certificate issuer: /CN=4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623 Certificate serial: 62A822E691146FFFD0256B0C1A60E3940F9F163B Authority key identifier: 4E:2A:A9:ED:35:DB:0F:27:6A:5F:F0:D4:02:0D:BE:A1:3E:04:C6:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/3130332e3137342e31342e302f32332d3234203d3e20313439333532.roa Signing time: Thu 20 Nov 2025 09:00:01 +0000 ROA not before: Thu 20 Nov 2025 08:55:01 +0000 ROA not after: Thu 19 Nov 2026 09:00:01 +0000 asID: 149352 IP address blocks: 103.174.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.crl rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:a8:22:e6:91:14:6f:ff:d0:25:6b:0c:1a:60:e3:94:0f:9f:16:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623 Validity Not Before: Nov 20 08:55:01 2025 GMT Not After : Nov 19 09:00:01 2026 GMT Subject: CN=1BFE9EDC720D9BF38721F9FF5E72CB28CC9811FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e0:ae:72:49:55:69:55:f6:11:6f:a8:1c:2e: 5d:2e:c4:d0:b5:d6:69:d4:dd:d4:af:de:96:5e:1c: e8:ec:46:02:a4:7c:ae:d6:13:a1:fd:e9:44:8d:3f: b3:61:5c:33:fb:48:79:9d:f7:52:21:e0:99:ab:d1: 77:18:bf:9b:26:0c:ea:33:a6:09:80:a1:1e:bd:2b: eb:e5:cb:95:66:e6:92:32:e7:9e:3a:9b:93:08:f2: 6a:2b:9d:fd:d9:40:2b:36:f7:65:9a:1d:de:da:dc: 1d:94:47:2c:e8:44:72:19:c7:4d:a1:e0:89:88:c7: a1:3f:dc:f9:ee:e3:1a:6c:2d:5e:b8:0f:99:ff:ec: 9e:38:74:28:59:ab:30:da:a2:d0:10:02:5e:68:2a: 80:43:b9:df:90:57:ac:42:28:87:72:5b:81:5c:26: d2:3e:e6:10:98:cd:c6:3b:02:ce:d4:49:ee:dc:fd: 50:fb:cb:fd:96:81:29:8a:f8:cd:39:04:ae:28:77: 5d:79:ac:02:97:f7:f3:79:7a:ff:96:49:85:55:ad: 55:6e:55:49:d8:1b:a6:12:bf:d9:73:2f:8f:1e:0f: da:ea:ef:60:12:78:a6:e2:2e:a7:ca:ae:ee:b2:68: 8d:08:53:cf:18:44:15:46:36:e1:ae:20:8a:49:1d: 86:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:FE:9E:DC:72:0D:9B:F3:87:21:F9:FF:5E:72:CB:28:CC:98:11:FF X509v3 Authority Key Identifier: keyid:4E:2A:A9:ED:35:DB:0F:27:6A:5F:F0:D4:02:0D:BE:A1:3E:04:C6:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/3130332e3137342e31342e302f32332d3234203d3e20313439333532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.14.0/23 Signature Algorithm: sha256WithRSAEncryption 80:4b:15:d7:2a:e4:d6:bb:ea:09:5f:f1:b4:59:95:c9:53:a1: c2:8c:54:2d:fa:b7:36:ec:cb:e8:91:a1:85:04:3b:f1:52:05: 3b:c4:a0:b7:6b:68:01:e9:cf:dd:c3:4a:89:9a:ca:9c:aa:c2: ca:68:f5:b1:86:73:d7:41:6a:0e:ce:d2:fc:17:5e:44:c0:9a: 28:35:39:9b:9c:d0:c7:e8:0d:b7:04:00:c1:87:55:c1:86:05: 19:6b:77:2e:76:dd:3c:9a:c0:27:5c:57:4f:af:0a:ad:2b:cd: af:50:af:17:fc:f9:1c:dd:bc:07:b1:24:ce:bb:77:c7:a5:8d: fb:b3:e8:d5:1f:9f:5f:fb:86:b8:aa:ff:f9:96:6e:e5:bd:43: 4b:90:13:11:36:13:6d:73:94:38:25:c5:5e:bb:c9:19:6b:65: bf:d5:f9:d2:b1:79:db:8a:b3:78:9a:a9:37:d4:9c:a5:43:e8: 3e:ff:6c:d2:86:f4:1b:1f:fa:f1:c5:2b:55:08:10:1d:d2:83: ab:71:01:9f:eb:11:ff:fa:1f:cb:6e:20:17:6c:fc:ad:5d:e1: 1c:cc:72:f0:18:bd:52:08:e4:c1:16:21:bb:19:a2:12:e1:48: c8:3f:40:ee:85:c0:87:35:bb:d9:da:88:72:6a:42:5a:04:61: 2e:fe:c8:ae -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYqgi5pEUb//QJWsMGmDjlA+fFjswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEUyQUE5RUQzNURCMEYyNzZBNUZGMEQ0MDIwREJFQTEz RTA0QzYyMzAeFw0yNTExMjAwODU1MDFaFw0yNjExMTkwOTAwMDFaMDMxMTAvBgNV BAMTKDFCRkU5RURDNzIwRDlCRjM4NzIxRjlGRjVFNzJDQjI4Q0M5ODExRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN4K5ySVVpVfYRb6gcLl0uxNC1 1mnU3dSv3pZeHOjsRgKkfK7WE6H96USNP7NhXDP7SHmd91Ih4Jmr0XcYv5smDOoz pgmAoR69K+vly5Vm5pIy5546m5MI8mornf3ZQCs292WaHd7a3B2URyzoRHIZx02h 4ImIx6E/3Pnu4xpsLV64D5n/7J44dChZqzDaotAQAl5oKoBDud+QV6xCKIdyW4Fc JtI+5hCYzcY7As7USe7c/VD7y/2WgSmK+M05BK4od115rAKX9/N5ev+WSYVVrVVu VUnYG6YSv9lzL48eD9rq72ASeKbiLqfKru6yaI0IU88YRBVGNuGuIIpJHYbPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUG/6e3HINm/OHIfn/XnLLKMyYEf8wHwYDVR0j BBgwFoAUTiqp7TXbDydqX/DUAg2+oT4ExiMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZWFiMGEwMS04ZWU0LTQ4MjUtODQwZC0xMTJkYWVmMGFjYTgvMC80RTJBQTlFRDM1 REIwRjI3NkE1RkYwRDQwMjBEQkVBMTNFMDRDNjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEUyQUE5RUQzNURCMEYyNzZBNUZGMEQ0MDIwREJFQTEzRTA0 QzYyMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllYWIwYTAxLThlZTQtNDgyNS04 NDBkLTExMmRhZWYwYWNhOC8wLzMxMzAzMzJlMzEzNzM0MmUzMTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzMzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ64OMA0GCSqG SIb3DQEBCwUAA4IBAQCASxXXKuTWu+oJX/G0WZXJU6HCjFQt+rc27MvokaGFBDvx UgU7xKC3a2gB6c/dw0qJmsqcqsLKaPWxhnPXQWoOztL8F15EwJooNTmbnNDH6A23 BADBh1XBhgUZa3cudt08msAnXFdPrwqtK82vUK8X/Pkc3bwHsSTOu3fHpY37s+jV H59f+4a4qv/5lm7lvUNLkBMRNhNtc5Q4JcVeu8kZa2W/1fnSsXnbirN4mqk31Jyl Q+g+/2zShvQbH/rxxStVCBAd0oOrcQGf6xH/+h/LbiAXbPytXeEczHLwGL1SCOTB FiG7GaIS4UjIP0DuhcCHNbvZ2ohyakJaBGEu/siu -----END CERTIFICATE-----Generated at Wed Dec 3 14:57:27 2025 by rpki-client