This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/bdc41c1a-e088-4ef6-9d28-814c61456d30/0/3130332e3135332e33342e302f32342d3234203d3e20313430343532.roa File: 3130332e3135332e33342e302f32342d3234203d3e20313430343532.roa (raw, json) Hash identifier: L+WYyxtBJBb4IPQAp+Phpn95Mr1s/ocDbq38zQ6JLtA= Subject key identifier: CA:90:13:C0:EB:BF:F5:84:B7:24:0C:0C:92:E8:66:67:41:1F:33:BA Certificate issuer: /CN=B591059B6AF2F5D66EBBD14031DA23E5AAFC64F7 Certificate serial: 3DAD4F0ABFAD094C08333A8A4F19A30D86702F48 Authority key identifier: B5:91:05:9B:6A:F2:F5:D6:6E:BB:D1:40:31:DA:23:E5:AA:FC:64:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B591059B6AF2F5D66EBBD14031DA23E5AAFC64F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdc41c1a-e088-4ef6-9d28-814c61456d30/0/3130332e3135332e33342e302f32342d3234203d3e20313430343532.roa Signing time: Mon 02 Jun 2025 02:04:02 +0000 ROA not before: Mon 02 Jun 2025 01:59:02 +0000 ROA not after: Mon 01 Jun 2026 02:04:02 +0000 asID: 140452 IP address blocks: 103.153.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdc41c1a-e088-4ef6-9d28-814c61456d30/0/B591059B6AF2F5D66EBBD14031DA23E5AAFC64F7.crl rsync://repo-rpki.idnic.net/repo/bdc41c1a-e088-4ef6-9d28-814c61456d30/0/B591059B6AF2F5D66EBBD14031DA23E5AAFC64F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B591059B6AF2F5D66EBBD14031DA23E5AAFC64F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:ad:4f:0a:bf:ad:09:4c:08:33:3a:8a:4f:19:a3:0d:86:70:2f:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B591059B6AF2F5D66EBBD14031DA23E5AAFC64F7 Validity Not Before: Jun 2 01:59:02 2025 GMT Not After : Jun 1 02:04:02 2026 GMT Subject: CN=CA9013C0EBBFF584B7240C0C92E86667411F33BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:7c:c4:7b:47:14:7e:26:82:5c:c3:d3:07:9d: b9:33:15:73:2e:56:8d:66:07:e6:67:70:fa:b7:3b: 22:4f:41:af:30:03:a3:1e:ce:48:94:c8:d2:00:34: f0:fa:69:ee:4b:1e:ce:b8:42:5a:4d:67:a3:ae:8d: a2:cc:37:5a:ea:0a:17:9e:a8:67:a6:18:f1:db:26: 70:7a:16:f7:ce:6d:a6:1d:13:59:53:26:0b:79:de: ad:4a:26:b3:c9:94:fd:27:26:4d:a5:d6:9e:54:a9: 9a:f9:6d:bd:8b:47:62:b5:1c:46:8e:d6:43:c8:20: 36:f5:4e:2a:b0:6f:b8:23:04:48:3f:67:e4:74:4e: dc:f5:f6:b7:ec:5a:a3:11:8c:73:65:39:22:41:48: fb:a6:16:b6:e1:a0:d0:d2:a3:34:07:60:82:dd:73: 3b:23:15:67:c4:ba:63:22:69:32:3e:e2:e7:89:91: e5:c2:1c:7c:68:38:1c:ac:84:44:a3:21:e2:9f:4c: c1:22:16:24:b3:e3:25:8d:36:6f:0e:61:88:2f:a7: 70:50:0e:eb:f8:ad:01:8f:48:0a:25:d0:9b:09:eb: ff:5b:16:1d:0d:09:d7:02:70:df:4d:e3:51:58:da: 21:f6:bc:92:bb:94:0b:0c:b1:c7:9b:7b:15:56:20: a5:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:90:13:C0:EB:BF:F5:84:B7:24:0C:0C:92:E8:66:67:41:1F:33:BA X509v3 Authority Key Identifier: keyid:B5:91:05:9B:6A:F2:F5:D6:6E:BB:D1:40:31:DA:23:E5:AA:FC:64:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdc41c1a-e088-4ef6-9d28-814c61456d30/0/B591059B6AF2F5D66EBBD14031DA23E5AAFC64F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B591059B6AF2F5D66EBBD14031DA23E5AAFC64F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdc41c1a-e088-4ef6-9d28-814c61456d30/0/3130332e3135332e33342e302f32342d3234203d3e20313430343532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.34.0/24 Signature Algorithm: sha256WithRSAEncryption 33:81:38:db:04:f7:7a:c5:62:c6:50:8c:9a:dc:4f:80:5c:db: 90:77:f0:ff:74:21:06:26:26:54:e5:e8:7f:a7:2f:d4:e8:15: 45:52:a3:0c:57:2d:45:16:17:8e:b5:6d:2a:6f:a0:c9:0e:53: 06:47:a4:ba:8f:83:56:d8:50:f7:09:cf:b6:55:cb:19:69:03: e0:d9:2e:76:3b:17:b4:21:1d:02:44:94:0f:7f:84:db:d0:59: 10:aa:aa:46:54:05:7a:f4:d5:63:ea:c2:2d:71:cc:0e:9b:7e: 59:79:2f:7e:38:84:84:45:db:ef:cc:78:9e:58:73:92:3b:6e: bc:3f:8f:1b:8b:42:39:db:57:5a:42:8e:cd:2e:8d:c1:60:5f: 36:d4:cd:29:de:51:da:57:cf:0f:8f:f7:54:4c:ba:71:6b:ba: 3d:1d:5e:d4:f4:c0:9e:24:51:dd:17:d3:f1:0d:33:d6:b6:30: d8:b4:29:33:2e:78:cf:67:04:72:00:28:6c:ce:b1:c2:2a:be: 83:73:8d:8b:66:57:62:3f:d4:cc:40:4d:cc:8f:fa:97:13:97: 8b:11:e1:08:2c:2d:dc:72:29:3c:0a:ca:90:6a:b3:2b:25:71: 6c:e3:e1:f2:6d:ab:9c:2b:5b:63:bd:67:3e:4d:e1:7d:6a:68: af:ca:0e:61 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPa1PCr+tCUwIMzqKTxmjDYZwL0gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjU5MTA1OUI2QUYyRjVENjZFQkJEMTQwMzFEQTIzRTVB QUZDNjRGNzAeFw0yNTA2MDIwMTU5MDJaFw0yNjA2MDEwMjA0MDJaMDMxMTAvBgNV BAMTKENBOTAxM0MwRUJCRkY1ODRCNzI0MEMwQzkyRTg2NjY3NDExRjMzQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvfMR7RxR+JoJcw9MHnbkzFXMu Vo1mB+ZncPq3OyJPQa8wA6MezkiUyNIANPD6ae5LHs64QlpNZ6OujaLMN1rqChee qGemGPHbJnB6FvfObaYdE1lTJgt53q1KJrPJlP0nJk2l1p5UqZr5bb2LR2K1HEaO 1kPIIDb1Tiqwb7gjBEg/Z+R0Ttz19rfsWqMRjHNlOSJBSPumFrbhoNDSozQHYILd czsjFWfEumMiaTI+4ueJkeXCHHxoOByshESjIeKfTMEiFiSz4yWNNm8OYYgvp3BQ Duv4rQGPSAol0JsJ6/9bFh0NCdcCcN9N41FY2iH2vJK7lAsMscebexVWIKUbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUypATwOu/9YS3JAwMkuhmZ0EfM7owHwYDVR0j BBgwFoAUtZEFm2ry9dZuu9FAMdoj5ar8ZPcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGM0MWMxYS1lMDg4LTRlZjYtOWQyOC04MTRjNjE0NTZkMzAvMC9CNTkxMDU5QjZB RjJGNUQ2NkVCQkQxNDAzMURBMjNFNUFBRkM2NEY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjU5MTA1OUI2QUYyRjVENjZFQkJEMTQwMzFEQTIzRTVBQUZD NjRGNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkYzQxYzFhLWUwODgtNGVmNi05 ZDI4LTgxNGM2MTQ1NmQzMC8wLzMxMzAzMzJlMzEzNTMzMmUzMzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5kiMA0GCSqG SIb3DQEBCwUAA4IBAQAzgTjbBPd6xWLGUIya3E+AXNuQd/D/dCEGJiZU5eh/py/U 6BVFUqMMVy1FFheOtW0qb6DJDlMGR6S6j4NW2FD3Cc+2VcsZaQPg2S52Oxe0IR0C RJQPf4Tb0FkQqqpGVAV69NVj6sItccwOm35ZeS9+OISERdvvzHieWHOSO268P48b i0I521daQo7NLo3BYF821M0p3lHaV88Pj/dUTLpxa7o9HV7U9MCeJFHdF9PxDTPW tjDYtCkzLnjPZwRyAChszrHCKr6Dc42LZldiP9TMQE3Mj/qXE5eLEeEILC3ccik8 CsqQarMrJXFs4+HybaucK1tjvWc+TeF9amivyg5h -----END CERTIFICATE-----Generated at Wed Dec 3 14:46:07 2025 by rpki-client