This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa File: 3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa (raw, json) Hash identifier: FyCE3LyMNMrGnPbdrpK5+sH4y62xX8bxVpZUT6w7BJU= Subject key identifier: 3B:38:81:BF:66:CB:F5:BB:95:5C:7C:3A:F7:F4:2F:B2:20:D2:66:B5 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 2B968F43243E214B413B6378F05DB8044B6F66B5 Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa Signing time: Thu 13 Nov 2025 09:02:33 +0000 ROA not before: Thu 13 Nov 2025 08:57:33 +0000 ROA not after: Thu 12 Nov 2026 09:02:33 +0000 asID: 139952 IP address blocks: 103.149.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 08:30:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:96:8f:43:24:3e:21:4b:41:3b:63:78:f0:5d:b8:04:4b:6f:66:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Nov 13 08:57:33 2025 GMT Not After : Nov 12 09:02:33 2026 GMT Subject: CN=3B3881BF66CBF5BB955C7C3AF7F42FB220D266B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d0:c3:78:5c:cc:2d:0c:83:db:29:51:f7:9e: 3a:4f:e2:7a:c2:08:93:63:0a:aa:99:fb:0a:e7:f4: 1c:39:ca:27:8b:7e:67:74:68:68:d3:6f:ef:f3:99: bc:81:83:b3:ea:65:41:43:15:54:dc:41:a6:d4:f5: 3d:30:2e:85:2f:48:2f:e4:57:66:24:06:53:03:44: 51:9e:8e:65:19:f3:dc:8b:97:6a:55:cf:1f:bc:ec: f0:f5:e1:41:26:88:75:fb:2e:9d:c9:88:a2:e6:00: f4:e9:c1:ee:67:4c:d8:f5:83:6b:11:a2:34:c7:f3: c8:bc:f1:af:7c:08:35:26:48:96:aa:0e:d5:7d:ec: 1a:1d:d5:bb:fe:6a:0c:c1:cc:ac:ab:8d:d3:2b:b8: f4:33:fb:1a:ba:08:27:98:90:ad:53:5f:0a:10:16: df:0c:f8:b5:ed:00:b2:aa:15:6b:62:13:5b:ad:4c: c1:df:cf:77:fe:a0:f5:a2:02:60:53:ef:36:c0:76: 23:56:cb:1f:94:03:e3:e5:4f:42:d2:60:9c:47:0e: e4:28:74:75:d0:70:28:b4:c1:0e:ee:28:a1:16:22: 66:96:b6:40:a0:a3:4e:57:fa:d5:d5:cc:d6:11:fa: a7:fb:5e:e1:ff:1e:e9:64:1c:ee:5d:09:76:51:45: 13:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:38:81:BF:66:CB:F5:BB:95:5C:7C:3A:F7:F4:2F:B2:20:D2:66:B5 X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.120.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:c8:57:6a:5d:42:42:54:54:3e:c6:6b:ae:ef:11:3d:77:9d: d3:92:5d:62:cd:22:fa:c6:cb:72:e7:f1:19:8c:23:99:6a:e4: 61:3e:c9:4e:88:12:12:0d:3b:74:bc:35:0c:72:36:8d:8a:ef: ad:73:50:37:d3:f7:d2:d0:c8:24:bd:29:bc:3a:73:f8:10:3f: 44:65:6e:32:65:08:81:64:e6:d7:26:e7:dc:f0:74:7e:1e:64: 23:fa:5c:d6:b9:f6:8d:a6:b7:f3:cf:ca:c9:03:bc:35:c2:3e: 0c:e2:83:5e:c6:84:f2:70:69:97:be:f2:a4:37:1f:9b:c0:79: 6e:04:16:79:a8:74:a2:a7:53:69:23:7b:da:27:bc:aa:ff:3f: 17:09:27:bb:10:48:a7:24:01:18:48:55:67:de:81:93:8f:02: ff:72:56:3f:7d:0a:4e:44:3b:41:99:b6:f9:aa:25:3d:97:41: 51:33:30:f2:a4:56:c1:59:51:11:73:9f:b4:fe:60:da:0e:00: 59:4f:26:bf:c6:c3:c7:89:eb:95:ee:90:d8:11:b9:cd:01:57: 6e:3b:e9:44:1f:d5:58:1d:b5:27:0b:14:c1:e9:ee:0a:76:c3: eb:1d:7b:8a:57:33:b2:af:ee:0b:42:90:6e:13:44:e9:bc:c0: e2:82:d2:c3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUK5aPQyQ+IUtBO2N48F24BEtvZrUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNTExMTMwODU3MzNaFw0yNjExMTIwOTAyMzNaMDMxMTAvBgNV BAMTKDNCMzg4MUJGNjZDQkY1QkI5NTVDN0MzQUY3RjQyRkIyMjBEMjY2QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK0MN4XMwtDIPbKVH3njpP4nrC CJNjCqqZ+wrn9Bw5yieLfmd0aGjTb+/zmbyBg7PqZUFDFVTcQabU9T0wLoUvSC/k V2YkBlMDRFGejmUZ89yLl2pVzx+87PD14UEmiHX7Lp3JiKLmAPTpwe5nTNj1g2sR ojTH88i88a98CDUmSJaqDtV97Bod1bv+agzBzKyrjdMruPQz+xq6CCeYkK1TXwoQ Ft8M+LXtALKqFWtiE1utTMHfz3f+oPWiAmBT7zbAdiNWyx+UA+PlT0LSYJxHDuQo dHXQcCi0wQ7uKKEWImaWtkCgo05X+tXVzNYR+qf7XuH/HulkHO5dCXZRRRMvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUOziBv2bL9buVXHw69/QvsiDSZrUwHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZDBlNjQwLTIyZTktNDQxYy04 NjM0LWY5NTI1MzA3ZGE3Ni8wLzMxMzAzMzJlMzEzNDM5MmUzMTMyMzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlXgwDQYJ KoZIhvcNAQELBQADggEBAI/IV2pdQkJUVD7Ga67vET13ndOSXWLNIvrGy3Ln8RmM I5lq5GE+yU6IEhINO3S8NQxyNo2K761zUDfT99LQyCS9Kbw6c/gQP0RlbjJlCIFk 5tcm59zwdH4eZCP6XNa59o2mt/PPyskDvDXCPgzig17GhPJwaZe+8qQ3H5vAeW4E FnmodKKnU2kje9onvKr/PxcJJ7sQSKckARhIVWfegZOPAv9yVj99Ck5EO0GZtvmq JT2XQVEzMPKkVsFZURFzn7T+YNoOAFlPJr/Gw8eJ65XukNgRuc0BV2476UQf1Vgd tScLFMHp7gp2w+sde4pXM7Kv7gtCkG4TROm8wOKC0sM= -----END CERTIFICATE-----Generated at Wed Dec 3 14:47:32 2025 by rpki-client