This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/3130332e3132392e34302e302f32332d3234203d3e20313335343738.roa File: 3130332e3132392e34302e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: DU0fCsxoRXxLuGIvLie3IhsmUfNJhRn0zykqF5A0jpc= Subject key identifier: C5:FA:F8:61:22:2A:C3:89:4D:4E:2F:7E:79:EA:FF:E2:8D:B9:BE:45 Certificate issuer: /CN=B70932ED6C688D58897E32E1D5C990B20910FF02 Certificate serial: 719A68BAF39DDA0447B6AB6973E5C68A9EA1A4E2 Authority key identifier: B7:09:32:ED:6C:68:8D:58:89:7E:32:E1:D5:C9:90:B2:09:10:FF:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B70932ED6C688D58897E32E1D5C990B20910FF02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/3130332e3132392e34302e302f32332d3234203d3e20313335343738.roa Signing time: Wed 05 Nov 2025 10:03:02 +0000 ROA not before: Wed 05 Nov 2025 09:58:02 +0000 ROA not after: Wed 04 Nov 2026 10:03:02 +0000 asID: 135478 IP address blocks: 103.129.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/B70932ED6C688D58897E32E1D5C990B20910FF02.crl rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/B70932ED6C688D58897E32E1D5C990B20910FF02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B70932ED6C688D58897E32E1D5C990B20910FF02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 17:26:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:9a:68:ba:f3:9d:da:04:47:b6:ab:69:73:e5:c6:8a:9e:a1:a4:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B70932ED6C688D58897E32E1D5C990B20910FF02 Validity Not Before: Nov 5 09:58:02 2025 GMT Not After : Nov 4 10:03:02 2026 GMT Subject: CN=C5FAF861222AC3894D4E2F7E79EAFFE28DB9BE45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:50:b1:fa:90:f4:58:58:09:ea:bf:fd:b5:01: 25:f9:b6:2d:7f:04:a1:94:be:32:c8:f3:3d:93:19: f8:cc:eb:72:e5:fe:d4:5d:05:a4:6d:c1:4d:f4:93: c5:e9:55:53:f0:b9:41:27:e7:0b:54:13:5d:53:78: e2:73:63:c2:72:87:04:87:8d:99:1f:9f:e2:18:64: 48:c8:f4:95:56:a6:86:0e:a4:49:93:d4:bd:47:d7: 8a:e3:0e:1e:f8:1c:95:26:14:8c:d8:3e:69:ac:50: e2:12:8d:d6:9d:5f:f0:f7:22:18:27:7a:87:8a:19: 64:fd:11:5a:7b:82:63:de:b6:80:42:12:e2:29:21: 62:fe:70:90:4e:4f:65:7c:bc:90:f9:2b:aa:80:e0: 73:39:10:10:1c:63:0c:d8:33:17:b1:d1:0a:d0:bc: 4c:ec:88:b6:e6:d5:d1:04:ce:62:72:58:6c:98:bc: f7:d7:90:47:87:c5:1f:d0:b3:66:e0:0f:7b:58:be: ad:d3:a7:85:f3:88:2e:2c:07:d3:20:53:21:a3:55: fd:88:3a:76:c0:51:8d:bc:74:7c:cb:ac:49:41:3a: e3:82:71:0e:3e:be:e0:af:15:86:4c:b7:c8:0d:f7: 02:60:33:89:1c:27:59:87:cc:aa:53:e5:e0:38:80: de:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:FA:F8:61:22:2A:C3:89:4D:4E:2F:7E:79:EA:FF:E2:8D:B9:BE:45 X509v3 Authority Key Identifier: keyid:B7:09:32:ED:6C:68:8D:58:89:7E:32:E1:D5:C9:90:B2:09:10:FF:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/B70932ED6C688D58897E32E1D5C990B20910FF02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B70932ED6C688D58897E32E1D5C990B20910FF02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/3130332e3132392e34302e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.40.0/23 Signature Algorithm: sha256WithRSAEncryption 25:5b:53:82:7e:ba:1a:75:9e:4a:c1:3d:a4:34:7e:d6:6a:bc: 24:f9:e4:85:15:0b:49:53:a5:0d:10:15:39:93:4b:d9:37:66: 32:17:e3:b5:9c:9f:05:c2:80:d7:4e:a6:f4:14:8f:11:57:31: 09:03:d1:41:82:e5:0a:7a:48:34:1f:f8:2b:c0:0c:45:85:bb: 4f:85:41:df:74:2c:a8:eb:14:56:b1:fa:8c:ff:0d:f5:1e:c1: 67:b8:7c:e3:ac:ed:12:a3:d6:07:a5:47:9e:4a:18:f4:35:46: cd:ad:69:ae:3e:5a:d4:2f:8d:3f:14:e8:93:37:72:da:3c:9f: 89:26:fb:44:48:e0:6b:b7:12:3c:46:8f:32:0d:e6:fb:93:cf: ad:b2:90:dc:4c:76:af:87:a1:d6:14:99:84:f6:6b:34:25:d4: f5:2b:89:f1:43:16:90:f5:8f:cc:b6:57:3b:e7:ac:19:f5:f6: bf:f0:9c:c3:ad:a4:49:cc:05:ef:4a:de:1b:be:ec:3d:9e:60: b8:2d:0d:b5:08:e2:c3:de:d7:e5:5b:ac:f4:39:17:77:19:e5: 1a:bd:0b:96:6e:d3:36:37:d8:59:cc:24:5e:b6:38:94:5c:72: f2:29:69:5e:9a:5f:06:52:64:85:2e:96:e2:f7:e4:ca:57:44: a6:fa:f0:ce -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcZpouvOd2gRHtqtpc+XGip6hpOIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjcwOTMyRUQ2QzY4OEQ1ODg5N0UzMkUxRDVDOTkwQjIw OTEwRkYwMjAeFw0yNTExMDUwOTU4MDJaFw0yNjExMDQxMDAzMDJaMDMxMTAvBgNV BAMTKEM1RkFGODYxMjIyQUMzODk0RDRFMkY3RTc5RUFGRkUyOERCOUJFNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6ULH6kPRYWAnqv/21ASX5ti1/ BKGUvjLI8z2TGfjM63Ll/tRdBaRtwU30k8XpVVPwuUEn5wtUE11TeOJzY8JyhwSH jZkfn+IYZEjI9JVWpoYOpEmT1L1H14rjDh74HJUmFIzYPmmsUOISjdadX/D3Ihgn eoeKGWT9EVp7gmPetoBCEuIpIWL+cJBOT2V8vJD5K6qA4HM5EBAcYwzYMxex0QrQ vEzsiLbm1dEEzmJyWGyYvPfXkEeHxR/Qs2bgD3tYvq3Tp4XziC4sB9MgUyGjVf2I OnbAUY28dHzLrElBOuOCcQ4+vuCvFYZMt8gN9wJgM4kcJ1mHzKpT5eA4gN7lAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUxfr4YSIqw4lNTi9+eer/4o25vkUwHwYDVR0j BBgwFoAUtwky7WxojViJfjLh1cmQsgkQ/wIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTkwZGE0OS05ODYyLTQxZGUtODMzZS1iMzA0ZjBjMWFlNTcvMC9CNzA5MzJFRDZD Njg4RDU4ODk3RTMyRTFENUM5OTBCMjA5MTBGRjAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjcwOTMyRUQ2QzY4OEQ1ODg5N0UzMkUxRDVDOTkwQjIwOTEw RkYwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E5OTBkYTQ5LTk4NjItNDFkZS04 MzNlLWIzMDRmMGMxYWU1Ny8wLzMxMzAzMzJlMzEzMjM5MmUzNDMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4EoMA0GCSqG SIb3DQEBCwUAA4IBAQAlW1OCfroadZ5KwT2kNH7Warwk+eSFFQtJU6UNEBU5k0vZ N2YyF+O1nJ8FwoDXTqb0FI8RVzEJA9FBguUKekg0H/grwAxFhbtPhUHfdCyo6xRW sfqM/w31HsFnuHzjrO0So9YHpUeeShj0NUbNrWmuPlrUL40/FOiTN3LaPJ+JJvtE SOBrtxI8Ro8yDeb7k8+tspDcTHavh6HWFJmE9ms0JdT1K4nxQxaQ9Y/Mtlc756wZ 9fa/8JzDraRJzAXvSt4bvuw9nmC4LQ21COLD3tflW6z0ORd3GeUavQuWbtM2N9hZ zCRetjiUXHLyKWleml8GUmSFLpbi9+TKV0Sm+vDO -----END CERTIFICATE-----Generated at Wed Dec 3 11:48:53 2025 by rpki-client