This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa File: 3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa (raw, json) Hash identifier: kzF5yTng2nsAricqtS3yvK+w9DfNlAwfQFzAL4v5DWA= Subject key identifier: A9:FD:72:81:9D:42:54:C5:A2:AE:85:F4:A5:0D:B9:C9:F6:BC:68:EF Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 278938E6F307020EDAE6D90FC2C017312C25E2FB Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa Signing time: Thu 13 Nov 2025 09:02:33 +0000 ROA not before: Thu 13 Nov 2025 08:57:33 +0000 ROA not after: Thu 12 Nov 2026 09:02:33 +0000 asID: 7713 IP address blocks: 103.149.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 08:30:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:89:38:e6:f3:07:02:0e:da:e6:d9:0f:c2:c0:17:31:2c:25:e2:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Nov 13 08:57:33 2025 GMT Not After : Nov 12 09:02:33 2026 GMT Subject: CN=A9FD72819D4254C5A2AE85F4A50DB9C9F6BC68EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:eb:40:90:a9:31:15:62:47:f9:e4:16:db:e8: 41:bb:f8:4f:cc:0e:dc:c9:3f:5f:92:57:f7:9a:92: 85:a5:b0:70:07:12:e0:f3:25:74:8d:00:b9:e4:7c: 9b:50:6a:a0:3a:fe:a1:b8:76:76:9d:41:98:75:39: 76:d3:57:67:4e:76:d1:dc:ed:6f:9a:67:65:25:de: fe:bf:48:4f:e2:72:3a:58:09:dd:48:ac:4b:50:6a: 95:ae:e4:d9:85:c1:eb:b1:fc:b1:89:0c:6e:1b:60: 84:3f:31:c7:8e:56:3b:d9:e1:a8:21:cc:49:b6:79: d0:99:42:35:3e:7c:95:63:3a:14:f9:90:8b:08:35: a4:74:7d:93:c4:51:fe:72:dd:bf:c4:99:8b:de:90: 8e:ef:d1:12:75:23:e8:4a:7f:e9:c1:70:22:f4:4e: 71:24:18:65:a9:d3:4e:b0:3c:bc:7e:9d:ef:3a:73: 89:b1:27:8c:55:fe:90:e9:a7:56:8c:69:36:bb:e7: 1d:d7:1c:a4:33:1a:89:2d:e3:5d:b8:42:dd:d7:c5: 44:75:fd:b0:1e:3e:df:31:a5:1a:5b:97:a9:50:18: 18:f9:88:42:28:2e:f9:16:26:bb:51:03:e4:cf:3d: 07:56:6f:a2:c4:7b:f2:29:a1:c3:8b:e6:b6:32:4b: 63:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:FD:72:81:9D:42:54:C5:A2:AE:85:F4:A5:0D:B9:C9:F6:BC:68:EF X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.120.0/24 Signature Algorithm: sha256WithRSAEncryption 41:ed:71:b1:e8:1d:d8:c7:50:36:e5:c2:03:67:17:17:85:64: 5a:5b:44:17:83:78:93:21:14:24:29:92:85:02:6f:11:5f:40: e1:24:e7:5c:fd:66:17:e1:a7:ee:bd:b6:1b:79:20:12:bf:0f: 94:0e:61:c1:e8:4d:a8:b9:3d:2a:ee:ca:e4:42:e2:33:16:3d: 9a:9e:ef:25:21:94:7e:0b:cf:6c:80:14:a4:f8:aa:c5:5b:2c: cf:c8:8a:3d:0f:7b:18:aa:fd:7c:17:2c:79:0a:ce:6d:f4:9b: 00:f3:69:61:2a:47:b5:1d:e9:b9:a5:d9:3d:ab:ce:7c:70:a5: 38:16:8e:57:51:05:78:30:02:42:bf:9c:1d:54:b7:5f:97:68: 34:69:fa:32:43:34:cc:49:a4:a7:d4:ef:1a:49:26:6b:ca:6b: 36:ce:1d:cd:4b:4e:16:6a:c5:14:a4:6c:27:11:ec:c7:0d:a2: e3:0b:da:2d:a4:7d:07:8f:47:83:97:01:56:83:7a:0f:a6:10: 7d:3d:1f:f4:9c:76:63:6b:32:92:a2:74:f2:c3:de:5e:46:83: f7:20:31:38:45:bd:28:9a:59:1f:3d:71:b6:0c:48:18:dc:81: 42:ea:ff:de:78:83:de:84:d5:d1:36:58:ff:68:95:ce:2a:7e: d7:77:16:9a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJ4k45vMHAg7a5tkPwsAXMSwl4vswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNTExMTMwODU3MzNaFw0yNjExMTIwOTAyMzNaMDMxMTAvBgNV BAMTKEE5RkQ3MjgxOUQ0MjU0QzVBMkFFODVGNEE1MERCOUM5RjZCQzY4RUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj60CQqTEVYkf55Bbb6EG7+E/M DtzJP1+SV/eakoWlsHAHEuDzJXSNALnkfJtQaqA6/qG4dnadQZh1OXbTV2dOdtHc 7W+aZ2Ul3v6/SE/icjpYCd1IrEtQapWu5NmFweux/LGJDG4bYIQ/MceOVjvZ4agh zEm2edCZQjU+fJVjOhT5kIsINaR0fZPEUf5y3b/EmYvekI7v0RJ1I+hKf+nBcCL0 TnEkGGWp006wPLx+ne86c4mxJ4xV/pDpp1aMaTa75x3XHKQzGokt4124Qt3XxUR1 /bAePt8xpRpbl6lQGBj5iEIoLvkWJrtRA+TPPQdWb6LEe/IpocOL5rYyS2MLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqf1ygZ1CVMWiroX0pQ25yfa8aO8wHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZDBlNjQwLTIyZTktNDQxYy04 NjM0LWY5NTI1MzA3ZGE3Ni8wLzMxMzAzMzJlMzEzNDM5MmUzMTMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNzM3MzEzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeVeDANBgkqhkiG 9w0BAQsFAAOCAQEAQe1xsegd2MdQNuXCA2cXF4VkWltEF4N4kyEUJCmShQJvEV9A 4STnXP1mF+Gn7r22G3kgEr8PlA5hwehNqLk9Ku7K5ELiMxY9mp7vJSGUfgvPbIAU pPiqxVssz8iKPQ97GKr9fBcseQrObfSbAPNpYSpHtR3puaXZPavOfHClOBaOV1EF eDACQr+cHVS3X5doNGn6MkM0zEmkp9TvGkkma8prNs4dzUtOFmrFFKRsJxHsxw2i 4wvaLaR9B49Hg5cBVoN6D6YQfT0f9Jx2Y2sykqJ08sPeXkaD9yAxOEW9KJpZHz1x tgxIGNyBQur/3niD3oTV0TZY/2iVzip+13cWmg== -----END CERTIFICATE-----Generated at Wed Dec 3 16:07:31 2025 by rpki-client