This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/be5aa93d-787b-4a17-87d0-7ef41b0f2def/0/3130332e3133342e31362e302f32342d3234203d3e20313338313432.roa File: 3130332e3133342e31362e302f32342d3234203d3e20313338313432.roa (raw, json) Hash identifier: ZuDG3oqhW0+APEzfCML43aRTTIhVqjXyjhsrMxTrLWg= Subject key identifier: BA:7F:69:11:2A:6E:5A:E1:04:B4:43:CF:0F:DB:2B:11:51:3C:C3:60 Certificate issuer: /CN=FC4F8762524C3EBF98126E5F579CCB30C37EEF63 Certificate serial: 0F51736257A8DCE9728B25222C8E563A704FDE08 Authority key identifier: FC:4F:87:62:52:4C:3E:BF:98:12:6E:5F:57:9C:CB:30:C3:7E:EF:63 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC4F8762524C3EBF98126E5F579CCB30C37EEF63.cer Subject info access: rsync://repo-rpki.idnic.net/repo/be5aa93d-787b-4a17-87d0-7ef41b0f2def/0/3130332e3133342e31362e302f32342d3234203d3e20313338313432.roa Signing time: Thu 20 Nov 2025 14:00:01 +0000 ROA not before: Thu 20 Nov 2025 13:55:01 +0000 ROA not after: Thu 19 Nov 2026 14:00:01 +0000 asID: 138142 IP address blocks: 103.134.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/be5aa93d-787b-4a17-87d0-7ef41b0f2def/0/FC4F8762524C3EBF98126E5F579CCB30C37EEF63.crl rsync://repo-rpki.idnic.net/repo/be5aa93d-787b-4a17-87d0-7ef41b0f2def/0/FC4F8762524C3EBF98126E5F579CCB30C37EEF63.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC4F8762524C3EBF98126E5F579CCB30C37EEF63.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 00:13:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:51:73:62:57:a8:dc:e9:72:8b:25:22:2c:8e:56:3a:70:4f:de:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC4F8762524C3EBF98126E5F579CCB30C37EEF63 Validity Not Before: Nov 20 13:55:01 2025 GMT Not After : Nov 19 14:00:01 2026 GMT Subject: CN=BA7F69112A6E5AE104B443CF0FDB2B11513CC360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ba:37:70:ed:a9:6f:25:75:3d:c4:9f:e9:c2: 62:61:36:24:a8:c1:c7:8c:79:3d:1b:b3:17:0e:eb: 19:84:d8:ff:9a:07:f4:13:f5:b8:0d:fd:77:c4:bb: 17:93:3d:c9:39:a5:4d:2d:d5:1a:66:36:22:8a:f4: 2e:e4:1d:ff:76:14:43:a3:c7:01:c5:0f:23:67:1c: a9:ac:b1:80:3b:6e:79:b4:fa:5c:bb:43:2e:a2:92: bf:50:72:6b:b6:87:ca:a2:27:57:b4:5e:b9:57:f3: 90:a4:7c:07:b7:db:22:a4:30:49:7c:52:bf:60:2b: 79:ef:30:77:1d:6c:22:fb:88:86:a4:f6:bc:e8:9e: 1b:f5:63:7a:00:1b:00:25:36:6d:8b:90:9d:71:49: cf:a1:af:b5:18:89:07:6a:18:95:5b:e4:86:5d:6d: ba:d1:41:60:ed:d6:98:a8:15:05:bf:73:7d:50:ee: 1c:7a:6f:ad:ce:2b:33:6b:36:e6:3a:76:78:ee:e8: 18:2c:c6:be:d2:8e:6d:ca:68:0f:a1:01:ff:80:7c: f3:b5:2a:05:fc:89:70:53:15:c2:6c:bc:70:d5:40: 77:0f:9a:24:1c:73:23:5b:b0:ab:bc:88:fa:ea:0d: 12:d8:f6:27:c6:a7:69:6b:e2:29:49:4f:a1:28:71: ef:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:7F:69:11:2A:6E:5A:E1:04:B4:43:CF:0F:DB:2B:11:51:3C:C3:60 X509v3 Authority Key Identifier: keyid:FC:4F:87:62:52:4C:3E:BF:98:12:6E:5F:57:9C:CB:30:C3:7E:EF:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/be5aa93d-787b-4a17-87d0-7ef41b0f2def/0/FC4F8762524C3EBF98126E5F579CCB30C37EEF63.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC4F8762524C3EBF98126E5F579CCB30C37EEF63.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/be5aa93d-787b-4a17-87d0-7ef41b0f2def/0/3130332e3133342e31362e302f32342d3234203d3e20313338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.16.0/24 Signature Algorithm: sha256WithRSAEncryption b8:1a:4e:41:8a:41:89:84:56:f3:eb:28:b7:7e:78:ae:77:15: 25:81:10:95:65:66:13:01:43:77:5b:fc:27:73:2f:52:89:71: 1d:54:45:85:15:46:0d:5c:39:ac:7e:69:61:e3:21:01:1c:41: 14:21:81:44:b2:50:37:f5:4b:81:51:3c:98:fd:73:8b:0a:8d: aa:05:4a:a8:01:0f:9d:4d:a5:fa:b7:f6:1c:52:01:9e:5b:3e: 67:c2:65:78:a9:ea:37:14:7a:b7:74:b0:89:f9:6e:30:4d:64: fb:a5:e0:14:7c:0b:d7:27:d6:90:7a:53:ee:7a:9a:13:20:77: ec:1e:88:80:6e:16:6d:4e:fa:89:32:3b:07:0e:d0:92:38:59: 97:21:c6:33:68:72:49:14:a1:ec:28:af:e5:ee:8b:1a:ae:a2: 86:63:18:46:15:cd:18:34:de:95:64:a0:01:f0:e1:30:10:56: 28:06:e5:f6:34:8e:a8:69:0b:4d:e4:d6:79:ce:10:6a:00:9f: 40:f6:2a:7d:fe:75:b0:86:3e:df:69:9c:8c:ca:14:bd:a5:d3: fb:6c:cd:aa:50:80:ec:ab:b1:4b:de:f3:02:af:af:dd:6e:db: 6f:19:bb:12:de:0f:ea:3a:c8:a5:25:87:67:b7:6e:7c:30:96: 63:66:bc:83 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUD1FzYleo3OlyiyUiLI5WOnBP3ggwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkM0Rjg3NjI1MjRDM0VCRjk4MTI2RTVGNTc5Q0NCMzBD MzdFRUY2MzAeFw0yNTExMjAxMzU1MDFaFw0yNjExMTkxNDAwMDFaMDMxMTAvBgNV BAMTKEJBN0Y2OTExMkE2RTVBRTEwNEI0NDNDRjBGREIyQjExNTEzQ0MzNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxujdw7alvJXU9xJ/pwmJhNiSo wceMeT0bsxcO6xmE2P+aB/QT9bgN/XfEuxeTPck5pU0t1RpmNiKK9C7kHf92FEOj xwHFDyNnHKmssYA7bnm0+ly7Qy6ikr9Qcmu2h8qiJ1e0XrlX85CkfAe32yKkMEl8 Ur9gK3nvMHcdbCL7iIak9rzonhv1Y3oAGwAlNm2LkJ1xSc+hr7UYiQdqGJVb5IZd bbrRQWDt1pioFQW/c31Q7hx6b63OKzNrNuY6dnju6Bgsxr7Sjm3KaA+hAf+AfPO1 KgX8iXBTFcJsvHDVQHcPmiQccyNbsKu8iPrqDRLY9ifGp2lr4ilJT6Eoce+NAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUun9pESpuWuEEtEPPD9srEVE8w2AwHwYDVR0j BBgwFoAU/E+HYlJMPr+YEm5fV5zLMMN+72MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZTVhYTkzZC03ODdiLTRhMTctODdkMC03ZWY0MWIwZjJkZWYvMC9GQzRGODc2MjUy NEMzRUJGOTgxMjZFNUY1NzlDQ0IzMEMzN0VFRjYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkM0Rjg3NjI1MjRDM0VCRjk4MTI2RTVGNTc5Q0NCMzBDMzdF RUY2My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JlNWFhOTNkLTc4N2ItNGExNy04 N2QwLTdlZjQxYjBmMmRlZi8wLzMxMzAzMzJlMzEzMzM0MmUzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4YQMA0GCSqG SIb3DQEBCwUAA4IBAQC4Gk5BikGJhFbz6yi3fniudxUlgRCVZWYTAUN3W/wncy9S iXEdVEWFFUYNXDmsfmlh4yEBHEEUIYFEslA39UuBUTyY/XOLCo2qBUqoAQ+dTaX6 t/YcUgGeWz5nwmV4qeo3FHq3dLCJ+W4wTWT7peAUfAvXJ9aQelPuepoTIHfsHoiA bhZtTvqJMjsHDtCSOFmXIcYzaHJJFKHsKK/l7osarqKGYxhGFc0YNN6VZKAB8OEw EFYoBuX2NI6oaQtN5NZ5zhBqAJ9A9ip9/nWwhj7faZyMyhS9pdP7bM2qUIDsq7FL 3vMCr6/dbttvGbsS3g/qOsilJYdnt258MJZjZryD -----END CERTIFICATE-----Generated at Wed Dec 3 15:31:02 2025 by rpki-client