This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa File: 3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa (raw, json) Hash identifier: t1OWN6gm90SvImzwws28CQ53gTfOaLXKxfqrgXh94Y4= Subject key identifier: 58:0D:6D:39:D0:B2:9A:5D:A1:67:13:E2:C4:36:11:B5:9E:EA:63:AC Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 718E70D9636AC6F8460E89C32993CE927EEC864F Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa Signing time: Thu 13 Nov 2025 09:02:33 +0000 ROA not before: Thu 13 Nov 2025 08:57:33 +0000 ROA not after: Thu 12 Nov 2026 09:02:33 +0000 asID: 7713 IP address blocks: 103.149.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 08:30:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:8e:70:d9:63:6a:c6:f8:46:0e:89:c3:29:93:ce:92:7e:ec:86:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Nov 13 08:57:33 2025 GMT Not After : Nov 12 09:02:33 2026 GMT Subject: CN=580D6D39D0B29A5DA16713E2C43611B59EEA63AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d7:0d:c4:cc:a4:5f:2d:f1:2a:a3:e4:91:f1: b0:e4:f5:3c:99:de:c9:17:b8:a4:81:4f:91:89:e0: ba:29:65:8e:dd:b9:65:56:15:5d:18:c7:ba:06:fa: a6:75:b0:ab:73:d7:99:f1:c7:6a:b9:96:ca:62:42: a2:59:4a:d6:02:00:f9:63:8c:99:cc:85:b4:f6:be: 91:18:25:8b:71:e6:38:e8:7c:01:a3:de:75:78:a3: f0:c4:eb:ec:31:ff:59:85:6c:8b:fc:fe:d1:ed:67: 07:64:bb:cc:24:a8:a8:bb:0d:59:d3:a2:1e:4f:5e: 93:22:50:7f:a8:38:99:82:5b:b4:e4:82:1c:9b:34: 4d:2a:15:bf:45:87:9d:39:9d:b8:da:7d:28:8a:23: 09:12:3a:23:52:35:7c:a5:61:1f:b1:55:5e:34:42: 28:a6:04:ff:d8:d1:a7:e9:14:c1:61:96:a2:d8:05: f5:9c:c3:0b:49:4c:76:71:2a:a7:8c:ba:33:77:1b: df:dd:90:ed:3c:37:f3:59:7c:33:ee:e7:ea:c8:30: 79:d4:19:20:3b:63:3a:f2:7a:29:0d:5c:fb:fc:54: 71:42:6d:7c:cb:37:9e:d3:cf:21:43:22:54:85:36: e6:df:29:52:37:1c:9b:4b:0e:bc:de:94:d0:59:fe: 06:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:0D:6D:39:D0:B2:9A:5D:A1:67:13:E2:C4:36:11:B5:9E:EA:63:AC X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.121.0/24 Signature Algorithm: sha256WithRSAEncryption 29:5f:1e:a3:9d:9b:11:9f:11:a0:31:eb:51:9e:d1:eb:0e:0f: 9c:5f:92:38:f5:a4:e9:8c:5a:9b:be:61:3d:88:da:bb:6a:7a: 8b:cb:e6:c9:3e:77:fb:54:2d:44:fb:68:7a:7c:55:1b:d5:6a: ad:06:31:39:b0:84:a8:1c:f1:42:03:9b:15:fe:33:ad:44:05: 00:25:53:98:27:6c:76:6f:22:a5:6d:fd:b1:13:50:36:a3:11: 5a:c8:89:e4:ba:0e:75:f9:43:47:2a:fa:22:8b:01:e2:03:91: 56:e4:50:3a:bd:4a:12:eb:4f:f1:05:46:30:ef:0e:68:2e:1f: 92:38:ef:6d:17:b2:23:be:71:e1:16:e1:b1:84:59:3b:4b:43: d0:c0:fd:20:fe:b8:28:26:54:76:ae:70:94:82:39:8c:b2:61: 63:3c:c0:f1:dc:7d:04:eb:22:35:60:cb:28:57:1c:1a:3d:a7: 14:f1:d2:44:54:1d:68:4d:d6:1a:6d:7a:0c:c5:98:d6:a2:28: 00:5f:ff:69:11:3b:47:1c:42:c6:34:1c:fa:ce:ae:8c:e5:aa: 0b:41:78:8c:32:a7:09:33:f3:3d:51:b9:4b:61:75:80:a6:63: 94:fa:a5:dd:56:3f:0c:2c:50:28:50:6a:dd:cd:04:34:1f:95: 02:19:41:75 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcY5w2WNqxvhGDonDKZPOkn7shk8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNTExMTMwODU3MzNaFw0yNjExMTIwOTAyMzNaMDMxMTAvBgNV BAMTKDU4MEQ2RDM5RDBCMjlBNURBMTY3MTNFMkM0MzYxMUI1OUVFQTYzQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB1w3EzKRfLfEqo+SR8bDk9TyZ 3skXuKSBT5GJ4LopZY7duWVWFV0Yx7oG+qZ1sKtz15nxx2q5lspiQqJZStYCAPlj jJnMhbT2vpEYJYtx5jjofAGj3nV4o/DE6+wx/1mFbIv8/tHtZwdku8wkqKi7DVnT oh5PXpMiUH+oOJmCW7TkghybNE0qFb9Fh505nbjafSiKIwkSOiNSNXylYR+xVV40 QiimBP/Y0afpFMFhlqLYBfWcwwtJTHZxKqeMujN3G9/dkO08N/NZfDPu5+rIMHnU GSA7YzryeikNXPv8VHFCbXzLN57TzyFDIlSFNubfKVI3HJtLDrzelNBZ/gY/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWA1tOdCyml2hZxPixDYRtZ7qY6wwHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZDBlNjQwLTIyZTktNDQxYy04 NjM0LWY5NTI1MzA3ZGE3Ni8wLzMxMzAzMzJlMzEzNDM5MmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNzM3MzEzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeVeTANBgkqhkiG 9w0BAQsFAAOCAQEAKV8eo52bEZ8RoDHrUZ7R6w4PnF+SOPWk6Yxam75hPYjau2p6 i8vmyT53+1QtRPtoenxVG9VqrQYxObCEqBzxQgObFf4zrUQFACVTmCdsdm8ipW39 sRNQNqMRWsiJ5LoOdflDRyr6IosB4gORVuRQOr1KEutP8QVGMO8OaC4fkjjvbRey I75x4RbhsYRZO0tD0MD9IP64KCZUdq5wlII5jLJhYzzA8dx9BOsiNWDLKFccGj2n FPHSRFQdaE3WGm16DMWY1qIoAF//aRE7RxxCxjQc+s6ujOWqC0F4jDKnCTPzPVG5 S2F1gKZjlPql3VY/DCxQKFBq3c0ENB+VAhlBdQ== -----END CERTIFICATE-----Generated at Wed Dec 3 16:09:21 2025 by rpki-client