This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/c64b20d8-591b-4152-9768-9c42b06c2fe2/0/3130332e3132392e342e302f32332d3234203d3e20313335343738.roa File: 3130332e3132392e342e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: dhNCCntTXF8fPVmBhyc2TID6diy3HmHPisy8tFKfm4Y= Subject key identifier: A3:C2:66:D9:8F:FB:25:AF:2B:F8:F1:0E:17:FC:6D:25:14:EE:52:DF Certificate issuer: /CN=556756B0E211DD262F0D5DC9EC5931EFA74CAC3C Certificate serial: 4A524F5C35E21BC0A8333C703F3076E0F4C54BDD Authority key identifier: 55:67:56:B0:E2:11:DD:26:2F:0D:5D:C9:EC:59:31:EF:A7:4C:AC:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/556756B0E211DD262F0D5DC9EC5931EFA74CAC3C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c64b20d8-591b-4152-9768-9c42b06c2fe2/0/3130332e3132392e342e302f32332d3234203d3e20313335343738.roa Signing time: Wed 05 Nov 2025 08:00:00 +0000 ROA not before: Wed 05 Nov 2025 07:55:00 +0000 ROA not after: Wed 04 Nov 2026 08:00:00 +0000 asID: 135478 IP address blocks: 103.129.4.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c64b20d8-591b-4152-9768-9c42b06c2fe2/0/556756B0E211DD262F0D5DC9EC5931EFA74CAC3C.crl rsync://repo-rpki.idnic.net/repo/c64b20d8-591b-4152-9768-9c42b06c2fe2/0/556756B0E211DD262F0D5DC9EC5931EFA74CAC3C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/556756B0E211DD262F0D5DC9EC5931EFA74CAC3C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 04:32:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:52:4f:5c:35:e2:1b:c0:a8:33:3c:70:3f:30:76:e0:f4:c5:4b:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=556756B0E211DD262F0D5DC9EC5931EFA74CAC3C Validity Not Before: Nov 5 07:55:00 2025 GMT Not After : Nov 4 08:00:00 2026 GMT Subject: CN=A3C266D98FFB25AF2BF8F10E17FC6D2514EE52DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:6d:72:6f:23:aa:3d:6b:66:2d:80:4f:7d:0e: 52:34:ee:3d:a7:82:51:1d:3c:6c:13:7f:ad:69:ae: b5:e9:2d:63:d7:29:8b:2a:8f:da:74:ad:5c:c8:42: 8f:f8:fa:38:03:61:48:cd:bc:09:cd:e4:b3:e5:48: 12:fb:c9:31:b9:82:59:28:b3:4c:fa:3b:cc:73:c7: dd:94:15:c9:9b:73:01:ba:f2:4c:9b:db:5f:d4:07: 51:b7:2c:d7:18:72:20:86:c7:5c:9a:8a:cb:d1:a9: e7:13:b9:d9:f0:c8:70:c8:04:78:b6:63:23:43:4d: 9f:69:d2:91:b8:6d:a4:49:2b:ab:9b:fa:98:14:c5: cc:d2:e1:fe:f9:48:a2:2b:cf:c8:1a:9d:08:ff:23: 1e:76:20:ae:3d:9e:ba:96:76:4b:22:aa:08:86:83: ae:4a:5d:3f:7d:f0:ac:5b:6f:24:91:12:28:3d:d5: 11:57:38:df:17:3e:d8:ff:fe:ec:ea:93:04:cf:a1: 67:65:08:9a:fa:3b:29:e9:e9:53:47:d2:1f:f0:b3: c3:8c:3d:05:c6:4f:6e:2f:d5:ee:49:80:7e:f4:d2: f6:0a:da:6f:94:32:bb:52:3e:a8:84:af:dd:e2:1b: 5e:cf:c2:c4:06:c3:c3:25:61:48:0d:57:aa:17:07: 21:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:C2:66:D9:8F:FB:25:AF:2B:F8:F1:0E:17:FC:6D:25:14:EE:52:DF X509v3 Authority Key Identifier: keyid:55:67:56:B0:E2:11:DD:26:2F:0D:5D:C9:EC:59:31:EF:A7:4C:AC:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c64b20d8-591b-4152-9768-9c42b06c2fe2/0/556756B0E211DD262F0D5DC9EC5931EFA74CAC3C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/556756B0E211DD262F0D5DC9EC5931EFA74CAC3C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c64b20d8-591b-4152-9768-9c42b06c2fe2/0/3130332e3132392e342e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.4.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:c8:df:f5:27:29:8c:f3:62:9b:05:4b:f7:68:9b:88:f7:a9: a5:e6:2c:f2:17:f1:18:b4:f2:1f:9a:2b:a7:6d:7b:bb:0e:b0: 05:b8:13:29:95:bd:c3:70:c7:67:7a:f7:25:ed:8b:35:41:b2: e0:5e:34:4a:c5:14:b1:6b:10:68:39:41:41:2a:0f:9d:96:90: b5:63:eb:14:22:81:b6:8b:a2:13:fc:9b:a1:47:c8:b4:f9:e5: 2d:03:7a:69:e4:e3:d2:20:5f:dd:68:ee:53:70:96:c9:ca:2f: 57:dd:c6:90:16:41:ce:17:51:52:cc:68:2c:a3:01:5c:3c:81: 84:02:6f:25:cd:46:b0:51:24:f1:06:2d:f8:e7:e5:d9:89:43: d0:09:1a:97:fe:d7:34:62:ba:16:a2:c4:33:82:f3:c3:17:48: 71:a7:91:00:54:40:6c:4b:78:fa:e4:21:d6:d2:3b:78:de:b8: 27:c4:d7:61:51:01:a2:08:9e:e0:64:be:ab:75:70:75:5f:07: 7c:95:b8:4e:38:ff:ac:66:a1:55:00:21:15:da:cb:55:19:1d: 50:ab:31:e5:a8:61:db:57:94:f0:71:6e:e5:75:e3:d9:5f:e2: d0:3a:16:0e:d4:51:16:88:fc:aa:bc:c6:4f:69:d7:1c:7d:21: 88:68:c4:c2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSlJPXDXiG8CoMzxwPzB24PTFS90wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTU2NzU2QjBFMjExREQyNjJGMEQ1REM5RUM1OTMxRUZB NzRDQUMzQzAeFw0yNTExMDUwNzU1MDBaFw0yNjExMDQwODAwMDBaMDMxMTAvBgNV BAMTKEEzQzI2NkQ5OEZGQjI1QUYyQkY4RjEwRTE3RkM2RDI1MTRFRTUyREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRbXJvI6o9a2YtgE99DlI07j2n glEdPGwTf61prrXpLWPXKYsqj9p0rVzIQo/4+jgDYUjNvAnN5LPlSBL7yTG5glko s0z6O8xzx92UFcmbcwG68kyb21/UB1G3LNcYciCGx1yaisvRqecTudnwyHDIBHi2 YyNDTZ9p0pG4baRJK6ub+pgUxczS4f75SKIrz8ganQj/Ix52IK49nrqWdksiqgiG g65KXT998KxbbySREig91RFXON8XPtj//uzqkwTPoWdlCJr6Oynp6VNH0h/ws8OM PQXGT24v1e5JgH700vYK2m+UMrtSPqiEr93iG17PwsQGw8MlYUgNV6oXByGlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUo8Jm2Y/7Ja8r+PEOF/xtJRTuUt8wHwYDVR0j BBgwFoAUVWdWsOIR3SYvDV3J7Fkx76dMrDwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NjRiMjBkOC01OTFiLTQxNTItOTc2OC05YzQyYjA2YzJmZTIvMC81NTY3NTZCMEUy MTFERDI2MkYwRDVEQzlFQzU5MzFFRkE3NENBQzNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTU2NzU2QjBFMjExREQyNjJGMEQ1REM5RUM1OTMxRUZBNzRD QUMzQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2NGIyMGQ4LTU5MWItNDE1Mi05 NzY4LTljNDJiMDZjMmZlMi8wLzMxMzAzMzJlMzEzMjM5MmUzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeBBDANBgkqhkiG 9w0BAQsFAAOCAQEAj8jf9ScpjPNimwVL92ibiPeppeYs8hfxGLTyH5orp217uw6w BbgTKZW9w3DHZ3r3Je2LNUGy4F40SsUUsWsQaDlBQSoPnZaQtWPrFCKBtouiE/yb oUfItPnlLQN6aeTj0iBf3WjuU3CWycovV93GkBZBzhdRUsxoLKMBXDyBhAJvJc1G sFEk8QYt+Ofl2YlD0Akal/7XNGK6FqLEM4LzwxdIcaeRAFRAbEt4+uQh1tI7eN64 J8TXYVEBogie4GS+q3VwdV8HfJW4Tjj/rGahVQAhFdrLVRkdUKsx5ahh21eU8HFu 5XXj2V/i0DoWDtRRFoj8qrzGT2nXHH0hiGjEwg== -----END CERTIFICATE-----Generated at Wed Dec 3 11:48:34 2025 by rpki-client