This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32332d3233203d3e20313530323338.roa File: 3130332e32302e3130382e302f32332d3233203d3e20313530323338.roa (raw, json) Hash identifier: h3F9Llj9O7Xku7uQRgTprbQZ0BqnZP4nbNoiUb3SuDY= Subject key identifier: 63:3D:E9:03:B6:AD:54:FF:E7:09:89:E2:15:34:CE:F1:18:49:A2:13 Certificate issuer: /CN=7A216F23D8A228FBB8F563EC15DF76FD503231B3 Certificate serial: 2BB1C10B755EFB675833C4062F0A62D11C8199D7 Authority key identifier: 7A:21:6F:23:D8:A2:28:FB:B8:F5:63:EC:15:DF:76:FD:50:32:31:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32332d3233203d3e20313530323338.roa Signing time: Fri 07 Nov 2025 09:38:40 +0000 ROA not before: Fri 07 Nov 2025 09:33:40 +0000 ROA not after: Fri 06 Nov 2026 09:38:40 +0000 asID: 150238 IP address blocks: 103.20.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.crl rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 03:48:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:b1:c1:0b:75:5e:fb:67:58:33:c4:06:2f:0a:62:d1:1c:81:99:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7A216F23D8A228FBB8F563EC15DF76FD503231B3 Validity Not Before: Nov 7 09:33:40 2025 GMT Not After : Nov 6 09:38:40 2026 GMT Subject: CN=633DE903B6AD54FFE70989E21534CEF11849A213 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6a:f5:f5:67:6e:5e:c1:01:05:9a:67:0b:cf: a3:b9:09:64:55:44:89:a9:21:e6:e8:f2:22:ca:c2: 93:c4:01:41:86:59:7d:b3:b7:0b:04:6c:14:b8:6d: cd:45:c5:a8:38:0b:9b:63:f4:3a:84:48:11:0e:f8: 9e:91:d2:0e:56:be:d0:2b:1c:36:24:e1:ea:e3:7b: cd:a4:7b:23:43:64:be:12:29:c0:90:a3:cb:ef:cc: 49:a2:4f:50:86:2d:91:cf:be:b9:4a:a3:4b:fd:5f: 54:be:8c:a3:99:f0:08:5a:26:2e:60:0b:73:f3:b1: 18:50:1c:60:a5:d0:ad:b7:6f:3f:b4:fa:f6:9f:d3: c7:09:40:e9:9d:f1:28:8b:81:67:63:e1:35:60:aa: 1d:b6:ff:ac:40:be:31:bd:45:b3:6a:fb:6b:37:11: b2:d2:7a:d1:ee:70:8d:93:f7:b6:4e:2f:5d:99:05: 21:e4:72:9b:1b:8d:fd:e1:7b:ab:72:ac:e4:b3:e2: d3:3b:48:c3:03:34:20:95:b3:e1:68:c5:33:fd:28: 6f:57:9e:01:57:78:74:f8:8b:b7:78:62:e4:a3:88: d4:ff:ef:1f:95:90:65:e0:4d:e4:d8:ac:b0:d5:b4: 51:0c:6b:78:6f:b7:ae:99:9d:95:b4:e5:7b:e8:10: 92:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:3D:E9:03:B6:AD:54:FF:E7:09:89:E2:15:34:CE:F1:18:49:A2:13 X509v3 Authority Key Identifier: keyid:7A:21:6F:23:D8:A2:28:FB:B8:F5:63:EC:15:DF:76:FD:50:32:31:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32332d3233203d3e20313530323338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.108.0/23 Signature Algorithm: sha256WithRSAEncryption af:fb:95:95:49:fd:e3:57:90:ca:54:99:7f:b9:7c:73:24:db: 72:51:74:b6:14:91:24:37:8f:6a:40:72:00:e8:c8:90:46:ba: fa:59:62:b5:fa:bf:0f:dc:0f:5c:35:4c:18:fb:ea:d8:8e:e9: fb:fb:60:b8:63:8c:4c:9f:78:b4:f6:45:d0:7f:59:8c:fe:70: e8:ca:d5:9b:ce:bb:fe:3e:f4:09:14:36:85:87:ef:24:0e:da: cc:48:c6:de:3a:35:d7:bc:57:90:2d:5f:33:64:a6:11:5d:8a: 89:45:2e:25:bf:98:ac:19:90:c8:3a:e7:a1:54:38:0e:40:6f: 8c:65:3e:2a:1e:f6:d6:10:e0:55:c7:76:07:98:ff:6a:5a:34: d7:e1:f6:1b:8a:f0:63:c6:d2:9c:f9:d0:e1:28:e3:da:92:a3: 35:92:3e:30:df:82:16:4e:2f:08:95:b5:6e:36:84:26:e9:1e: 31:1e:f4:b9:7e:f9:05:90:62:ba:47:25:d1:dc:88:7c:98:e7: 1c:a4:27:0c:cf:86:c3:9d:75:71:a4:23:87:ff:f8:86:37:c5: 4b:e6:b2:b6:9c:13:1e:f5:e2:2c:ba:2a:a7:a6:52:e3:f1:c4: 12:ab:8e:2c:bb:06:17:cd:b7:4c:9e:b5:da:54:55:e0:39:cd: a9:a8:51:e9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUK7HBC3Ve+2dYM8QGLwpi0RyBmdcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0EyMTZGMjNEOEEyMjhGQkI4RjU2M0VDMTVERjc2RkQ1 MDMyMzFCMzAeFw0yNTExMDcwOTMzNDBaFw0yNjExMDYwOTM4NDBaMDMxMTAvBgNV BAMTKDYzM0RFOTAzQjZBRDU0RkZFNzA5ODlFMjE1MzRDRUYxMTg0OUEyMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCavX1Z25ewQEFmmcLz6O5CWRV RImpIebo8iLKwpPEAUGGWX2ztwsEbBS4bc1Fxag4C5tj9DqESBEO+J6R0g5WvtAr HDYk4erje82keyNDZL4SKcCQo8vvzEmiT1CGLZHPvrlKo0v9X1S+jKOZ8AhaJi5g C3PzsRhQHGCl0K23bz+0+vaf08cJQOmd8SiLgWdj4TVgqh22/6xAvjG9RbNq+2s3 EbLSetHucI2T97ZOL12ZBSHkcpsbjf3he6tyrOSz4tM7SMMDNCCVs+FoxTP9KG9X ngFXeHT4i7d4YuSjiNT/7x+VkGXgTeTYrLDVtFEMa3hvt66ZnZW05XvoEJK9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYz3pA7atVP/nCYniFTTO8RhJohMwHwYDVR0j BBgwFoAUeiFvI9iiKPu49WPsFd92/VAyMbMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2M2YmQ3My1mOWJkLTRmNWEtOWM1OS1mYmVhMWJkODM0NzMvMC83QTIxNkYyM0Q4 QTIyOEZCQjhGNTYzRUMxNURGNzZGRDUwMzIzMUIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0EyMTZGMjNEOEEyMjhGQkI4RjU2M0VDMTVERjc2RkQ1MDMy MzFCMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYzZiZDczLWY5YmQtNGY1YS05 YzU5LWZiZWExYmQ4MzQ3My8wLzMxMzAzMzJlMzIzMDJlMzEzMDM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMwMzIzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZxRsMA0GCSqG SIb3DQEBCwUAA4IBAQCv+5WVSf3jV5DKVJl/uXxzJNtyUXS2FJEkN49qQHIA6MiQ Rrr6WWK1+r8P3A9cNUwY++rYjun7+2C4Y4xMn3i09kXQf1mM/nDoytWbzrv+PvQJ FDaFh+8kDtrMSMbeOjXXvFeQLV8zZKYRXYqJRS4lv5isGZDIOuehVDgOQG+MZT4q HvbWEOBVx3YHmP9qWjTX4fYbivBjxtKc+dDhKOPakqM1kj4w34IWTi8IlbVuNoQm 6R4xHvS5fvkFkGK6RyXR3Ih8mOccpCcMz4bDnXVxpCOH//iGN8VL5rK2nBMe9eIs uiqnplLj8cQSq44suwYXzbdMnrXaVFXgOc2pqFHp -----END CERTIFICATE-----Generated at Wed Dec 3 14:48:36 2025 by rpki-client