This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa File: 3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: 2PpG67/Hif4l3pFwRCwEQ7HNcb5HgHsPLTC3ZJMlI9c= Subject key identifier: B7:65:34:2C:44:24:BA:44:55:39:4E:23:88:38:69:CC:D0:1D:E3:29 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 4BD6CA19CAB4D95A985C30897DFE74AA2D0C497D Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa Signing time: Thu 13 Nov 2025 09:02:33 +0000 ROA not before: Thu 13 Nov 2025 08:57:33 +0000 ROA not after: Thu 12 Nov 2026 09:02:33 +0000 asID: 139952 IP address blocks: 103.149.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 08:30:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:d6:ca:19:ca:b4:d9:5a:98:5c:30:89:7d:fe:74:aa:2d:0c:49:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Nov 13 08:57:33 2025 GMT Not After : Nov 12 09:02:33 2026 GMT Subject: CN=B765342C4424BA4455394E23883869CCD01DE329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:db:73:a1:a2:b5:aa:86:5a:d8:ca:f0:6b:6a: 1c:ac:93:44:59:61:9d:b3:bd:f7:cd:bf:5a:ba:fb: ca:47:9e:d6:3c:f8:d4:3e:5b:cd:7a:3c:17:bb:98: 60:23:41:5e:af:d5:05:66:c2:71:dc:6f:79:18:27: 86:18:6a:b9:46:c9:fa:e7:e5:1d:59:3e:eb:35:f9: e4:c0:b8:e2:0d:b2:53:2c:04:6c:d0:f4:10:5e:3b: 09:46:15:2f:8b:f5:81:33:07:16:bc:7c:58:46:d6: 40:27:f7:ae:c6:3a:ab:41:c8:ae:b9:bd:db:f2:2f: fa:d7:26:f2:75:3c:4d:75:1a:82:05:ff:20:cb:5e: b0:9c:29:78:1d:12:7a:67:ce:a6:d1:82:2a:5d:37: ab:bf:fd:02:07:1f:5e:3b:ef:5b:3a:7e:a6:ab:69: 6a:ee:1e:ef:b6:6d:23:92:4b:93:c0:39:a6:72:0b: 9e:f6:d9:57:e5:86:57:a3:54:21:a5:85:ab:3c:64: 67:f1:2f:06:94:ac:1a:08:0f:d8:ad:ab:f0:b0:72: bb:ce:60:6a:d8:a3:cf:4e:ee:9c:cf:a8:78:06:96: a2:af:83:5c:f6:cf:7b:8e:d8:23:4c:bc:7e:e6:c6: e2:b1:df:db:c3:fd:5c:e3:db:0f:71:cc:04:9c:8e: 6d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:65:34:2C:44:24:BA:44:55:39:4E:23:88:38:69:CC:D0:1D:E3:29 X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.120.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:80:f1:f5:c7:db:cd:85:90:55:cd:29:1e:15:67:02:fc:ab: 00:4d:1a:aa:e5:de:3b:2a:f4:76:27:00:c9:47:52:90:35:f9: 69:1a:ca:56:1c:84:84:cc:b7:41:b4:c6:2b:71:46:f1:70:44: d3:f2:1e:1b:92:fc:9c:0b:62:5f:4f:0d:13:90:19:c8:40:57: 03:fa:1b:53:fd:15:5e:af:8b:13:5a:62:b2:f5:e4:05:ad:e9: 1e:75:ba:51:2f:da:12:ff:c2:f4:0c:83:a8:16:24:24:d7:bc: 00:12:33:16:05:c4:a0:8a:61:e4:6a:2f:29:61:d9:56:09:b8: 41:2f:03:ab:61:1e:aa:50:65:b2:cf:a4:92:cd:1a:91:4f:2f: d9:d0:69:6d:c6:89:da:5a:61:bd:77:49:89:06:22:80:43:a7: d3:ff:15:b4:f0:0a:fb:19:12:4f:50:6e:ba:47:9c:0e:1c:6f: 4e:55:d7:3c:38:2d:9c:d5:38:d0:14:c0:15:7b:a2:4b:9a:ba: c7:5a:a7:9e:14:ec:67:6a:d0:d3:b6:23:6c:32:89:58:ca:3f: 01:a8:6a:6b:91:90:ec:cb:7a:5e:a7:f6:54:8c:05:c1:ab:dc: 5c:4a:00:36:25:f2:3d:8d:8e:23:92:30:94:c6:18:23:22:09: 62:1f:1d:28 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUS9bKGcq02VqYXDCJff50qi0MSX0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNTExMTMwODU3MzNaFw0yNjExMTIwOTAyMzNaMDMxMTAvBgNV BAMTKEI3NjUzNDJDNDQyNEJBNDQ1NTM5NEUyMzg4Mzg2OUNDRDAxREUzMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC523OhorWqhlrYyvBrahysk0RZ YZ2zvffNv1q6+8pHntY8+NQ+W816PBe7mGAjQV6v1QVmwnHcb3kYJ4YYarlGyfrn 5R1ZPus1+eTAuOINslMsBGzQ9BBeOwlGFS+L9YEzBxa8fFhG1kAn967GOqtByK65 vdvyL/rXJvJ1PE11GoIF/yDLXrCcKXgdEnpnzqbRgipdN6u//QIHH14771s6fqar aWruHu+2bSOSS5PAOaZyC5722VflhlejVCGlhas8ZGfxLwaUrBoID9itq/CwcrvO YGrYo89O7pzPqHgGlqKvg1z2z3uO2CNMvH7mxuKx39vD/Vzj2w9xzAScjm31AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUt2U0LEQkukRVOU4jiDhpzNAd4ykwHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZDBlNjQwLTIyZTktNDQxYy04 NjM0LWY5NTI1MzA3ZGE3Ni8wLzMxMzAzMzJlMzEzNDM5MmUzMTMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnlXgwDQYJ KoZIhvcNAQELBQADggEBAB6A8fXH282FkFXNKR4VZwL8qwBNGqrl3jsq9HYnAMlH UpA1+WkaylYchITMt0G0xitxRvFwRNPyHhuS/JwLYl9PDROQGchAVwP6G1P9FV6v ixNaYrL15AWt6R51ulEv2hL/wvQMg6gWJCTXvAASMxYFxKCKYeRqLylh2VYJuEEv A6thHqpQZbLPpJLNGpFPL9nQaW3GidpaYb13SYkGIoBDp9P/FbTwCvsZEk9QbrpH nA4cb05V1zw4LZzVONAUwBV7okuausdap54U7Gdq0NO2I2wyiVjKPwGoamuRkOzL el6n9lSMBcGr3FxKADYl8j2NjiOSMJTGGCMiCWIfHSg= -----END CERTIFICATE-----Generated at Wed Dec 3 14:47:40 2025 by rpki-client