This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa File: 3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa (raw, json) Hash identifier: G0y3tssGsefR1ItOMtc1BYHuZ0hgATuC18s9snklT+E= Subject key identifier: 37:F3:FB:91:DD:DC:3C:4A:40:D6:BF:87:43:AD:00:01:6A:F5:F4:D7 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 34256ADE662564440276BBC0E0DDCC23DCA32450 Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa Signing time: Thu 13 Nov 2025 09:02:33 +0000 ROA not before: Thu 13 Nov 2025 08:57:33 +0000 ROA not after: Thu 12 Nov 2026 09:02:33 +0000 asID: 7713 IP address blocks: 103.149.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 08:30:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:25:6a:de:66:25:64:44:02:76:bb:c0:e0:dd:cc:23:dc:a3:24:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Nov 13 08:57:33 2025 GMT Not After : Nov 12 09:02:33 2026 GMT Subject: CN=37F3FB91DDDC3C4A40D6BF8743AD00016AF5F4D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ff:ff:3b:57:57:ca:d7:b3:07:bb:28:81:6a: d2:f8:db:82:a6:0d:9a:7f:35:8c:0d:62:89:98:92: 26:c7:fc:c3:f2:e3:b1:5a:8f:17:6d:5f:8f:17:fe: 98:29:1a:9a:4a:59:e9:05:b0:00:8e:33:da:14:ed: 47:43:79:8f:37:50:8a:36:62:de:03:30:09:d1:43: 82:26:0c:35:8d:da:17:a0:70:13:d4:14:17:a1:d2: a2:05:cb:ca:25:36:1c:ff:9c:4a:b3:c0:04:2b:f8: 2c:4f:ee:79:31:c1:45:7c:3b:2b:7b:f0:7a:15:da: da:cc:30:79:f2:22:f0:6a:22:48:bc:1c:e5:00:37: b2:0b:e0:ef:58:96:73:ce:8b:dc:18:2b:da:15:b5: 56:84:21:e4:9e:d1:80:f3:4f:de:68:32:74:8f:bc: a0:e0:a2:57:b4:e7:2c:eb:1b:0b:8f:e1:1c:3c:ad: 11:26:25:be:f0:c5:8a:47:a9:54:e5:ba:45:0b:32: 6b:6d:8e:2f:df:2d:19:ce:37:93:9c:c3:8f:f8:62: 3d:ca:e9:2f:cc:61:03:4a:1b:e9:fa:77:f2:be:22: 4f:d0:4a:64:8d:68:4e:4b:69:c7:0b:f8:fd:cd:ff: f9:99:e8:c2:87:f2:62:5f:4b:6b:c7:46:40:d7:ad: 43:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:F3:FB:91:DD:DC:3C:4A:40:D6:BF:87:43:AD:00:01:6A:F5:F4:D7 X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.120.0/23 Signature Algorithm: sha256WithRSAEncryption a5:01:32:4e:7a:c8:83:06:82:60:57:ed:bb:df:5d:e9:16:95: 9c:e4:ce:e3:32:86:05:eb:74:86:fc:55:e6:b1:ec:3d:9a:ee: a0:db:77:4e:d5:33:48:9b:9f:d3:43:14:40:8e:f3:b3:34:52: 5a:ed:4a:3b:1d:f4:50:f0:db:85:9f:65:08:6c:8d:e9:2a:f0: cd:f0:21:c3:eb:6f:74:b1:33:d1:44:87:0a:32:6e:44:e0:4c: 4f:80:02:44:69:cf:96:50:77:d0:15:0f:db:13:1b:78:a5:78: f4:74:02:89:f7:c6:ec:1b:99:f1:16:4e:61:76:0a:ee:7a:fb: 77:fe:63:bb:6f:15:12:64:21:01:b5:4b:17:b7:5e:3c:bf:8d: 05:38:9a:90:5e:a5:6f:0a:ed:20:e8:02:15:23:6d:f2:7f:8c: 76:76:f6:19:52:2f:68:02:16:b4:7e:5b:af:c1:9a:c4:39:f6: 5c:63:ac:ca:de:a7:f2:fd:ed:1c:2e:41:6d:1c:e5:b2:0d:7d: 7b:5a:5d:7c:2f:82:9d:fe:c8:50:7f:b1:8e:64:a4:ef:b9:fe: 31:21:1b:a4:4c:08:a6:60:8d:cf:a6:74:d3:e7:e5:b6:ca:66: 57:1b:a2:60:c3:f0:e2:76:af:d8:28:42:52:c9:12:98:ac:77: f3:f0:6c:04 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNCVq3mYlZEQCdrvA4N3MI9yjJFAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNTExMTMwODU3MzNaFw0yNjExMTIwOTAyMzNaMDMxMTAvBgNV BAMTKDM3RjNGQjkxREREQzNDNEE0MEQ2QkY4NzQzQUQwMDAxNkFGNUY0RDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd//87V1fK17MHuyiBatL424Km DZp/NYwNYomYkibH/MPy47FajxdtX48X/pgpGppKWekFsACOM9oU7UdDeY83UIo2 Yt4DMAnRQ4ImDDWN2hegcBPUFBeh0qIFy8olNhz/nEqzwAQr+CxP7nkxwUV8Oyt7 8HoV2trMMHnyIvBqIki8HOUAN7IL4O9YlnPOi9wYK9oVtVaEIeSe0YDzT95oMnSP vKDgole05yzrGwuP4Rw8rREmJb7wxYpHqVTlukULMmttji/fLRnON5Ocw4/4Yj3K 6S/MYQNKG+n6d/K+Ik/QSmSNaE5LaccL+P3N//mZ6MKH8mJfS2vHRkDXrUPNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUN/P7kd3cPEpA1r+HQ60AAWr19NcwHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZDBlNjQwLTIyZTktNDQxYy04 NjM0LWY5NTI1MzA3ZGE3Ni8wLzMxMzAzMzJlMzEzNDM5MmUzMTMyMzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNzM3MzEzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeVeDANBgkqhkiG 9w0BAQsFAAOCAQEApQEyTnrIgwaCYFftu99d6RaVnOTO4zKGBet0hvxV5rHsPZru oNt3TtUzSJuf00MUQI7zszRSWu1KOx30UPDbhZ9lCGyN6SrwzfAhw+tvdLEz0USH CjJuROBMT4ACRGnPllB30BUP2xMbeKV49HQCiffG7BuZ8RZOYXYK7nr7d/5ju28V EmQhAbVLF7dePL+NBTiakF6lbwrtIOgCFSNt8n+Mdnb2GVIvaAIWtH5br8GaxDn2 XGOsyt6n8v3tHC5BbRzlsg19e1pdfC+Cnf7IUH+xjmSk77n+MSEbpEwIpmCNz6Z0 0+fltspmVxuiYMPw4nav2ChCUskSmKx38/BsBA== -----END CERTIFICATE-----Generated at Wed Dec 3 16:06:56 2025 by rpki-client