This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/cc09e13c-cea0-47ff-9c96-f49b39d43920/0/3130332e3231312e34392e302f32342d3234203d3e203633353035.roa File: 3130332e3231312e34392e302f32342d3234203d3e203633353035.roa (raw, json) Hash identifier: jSA7+l89fySFyM7Bs9jzEHqShE9HEzseLTVhKTYttZk= Subject key identifier: 2C:0E:7B:E9:7E:76:7D:A8:80:48:46:6A:85:04:2C:E1:8F:B3:5A:68 Certificate issuer: /CN=4A6FD7E079F543A5D5FDE4433F7BD53DCE426E5A Certificate serial: 2F908DE422FF62A87A48B301B799AED0B426CF6E Authority key identifier: 4A:6F:D7:E0:79:F5:43:A5:D5:FD:E4:43:3F:7B:D5:3D:CE:42:6E:5A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A6FD7E079F543A5D5FDE4433F7BD53DCE426E5A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cc09e13c-cea0-47ff-9c96-f49b39d43920/0/3130332e3231312e34392e302f32342d3234203d3e203633353035.roa Signing time: Mon 02 Jun 2025 01:03:15 +0000 ROA not before: Mon 02 Jun 2025 00:58:15 +0000 ROA not after: Mon 01 Jun 2026 01:03:15 +0000 asID: 63505 IP address blocks: 103.211.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cc09e13c-cea0-47ff-9c96-f49b39d43920/0/4A6FD7E079F543A5D5FDE4433F7BD53DCE426E5A.crl rsync://repo-rpki.idnic.net/repo/cc09e13c-cea0-47ff-9c96-f49b39d43920/0/4A6FD7E079F543A5D5FDE4433F7BD53DCE426E5A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A6FD7E079F543A5D5FDE4433F7BD53DCE426E5A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 00:34:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:90:8d:e4:22:ff:62:a8:7a:48:b3:01:b7:99:ae:d0:b4:26:cf:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A6FD7E079F543A5D5FDE4433F7BD53DCE426E5A Validity Not Before: Jun 2 00:58:15 2025 GMT Not After : Jun 1 01:03:15 2026 GMT Subject: CN=2C0E7BE97E767DA88048466A85042CE18FB35A68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:16:a6:c0:ee:4b:c4:7f:c6:ad:d2:e0:ac:d5: 4f:ae:46:fe:b6:9c:01:01:bc:d3:5a:d5:0c:41:e4: ad:a1:09:26:81:5a:33:ac:dd:f3:ab:6d:cb:10:03: 18:dc:8f:ee:39:d8:bf:9a:89:a5:9f:55:b3:45:3e: 37:e6:69:b1:f9:c6:d3:25:02:0e:78:1c:ed:cd:75: 55:26:24:b3:a6:b3:7d:8f:26:19:6e:60:90:42:a8: 26:9f:e6:91:dd:07:2f:8d:23:d1:ff:da:d0:df:ad: 6d:44:98:c4:a6:d3:cb:11:6e:f6:ff:80:c0:28:f6: 38:7b:f5:18:ed:e0:77:3c:53:4e:de:7f:d1:91:54: 5a:e5:63:de:5d:85:25:8a:d9:14:ef:f8:a8:aa:9b: 92:00:91:46:59:a4:e9:cd:91:f2:51:72:54:82:54: 6a:ef:fc:0a:83:29:e8:06:39:14:26:48:49:a2:ad: 11:1f:fe:41:a8:32:45:00:8e:f0:9c:4c:ce:3b:f4: eb:3b:b5:e4:88:b6:a0:e8:14:78:01:b0:6e:2b:e6: 73:41:1a:8f:e7:d3:20:90:03:ee:76:f4:72:93:e8: 46:4a:87:ef:f2:66:cb:5e:45:14:37:59:2a:3b:b3: 52:33:0b:01:ce:ea:48:79:c6:87:c5:f5:b8:91:97: e9:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:0E:7B:E9:7E:76:7D:A8:80:48:46:6A:85:04:2C:E1:8F:B3:5A:68 X509v3 Authority Key Identifier: keyid:4A:6F:D7:E0:79:F5:43:A5:D5:FD:E4:43:3F:7B:D5:3D:CE:42:6E:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cc09e13c-cea0-47ff-9c96-f49b39d43920/0/4A6FD7E079F543A5D5FDE4433F7BD53DCE426E5A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A6FD7E079F543A5D5FDE4433F7BD53DCE426E5A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cc09e13c-cea0-47ff-9c96-f49b39d43920/0/3130332e3231312e34392e302f32342d3234203d3e203633353035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.211.49.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:9c:5d:4c:6d:ff:ca:67:3f:26:c6:39:42:7a:3b:93:e1:d2: f3:a9:e8:bb:6f:b1:62:7e:87:35:35:ec:44:4b:08:41:47:1f: fa:d7:46:23:9f:4e:0b:48:f2:28:81:3b:57:45:92:bd:e1:03: ce:38:94:b6:ca:02:26:71:08:52:14:1f:03:c5:aa:7b:37:97: 47:4f:74:76:75:6d:6d:12:c8:01:f9:0f:a1:c8:e4:e4:51:f9: de:29:46:5e:91:a2:49:1e:1c:09:0c:4d:70:55:ef:35:67:01: 57:0d:e2:7a:b0:fc:a3:59:03:4b:69:e9:17:ae:ab:1c:d6:f2: dc:f4:6c:e6:e1:2a:5e:44:60:96:88:66:ad:18:17:ff:bd:be: 76:6d:32:db:16:a2:f1:08:80:de:77:43:28:c0:dc:ce:8f:32: 8c:c1:80:22:d8:ae:58:a5:ae:76:cd:5f:91:25:c6:f8:17:ad: 7d:66:62:f9:30:f9:4b:b2:1c:ea:ec:6f:22:de:00:79:c0:10: 51:71:a6:22:2f:bf:85:ea:be:cd:fc:41:5a:6a:c2:eb:df:e6: c3:9b:e8:95:86:f7:80:7a:a5:00:19:4e:83:4b:30:34:4f:fa: c8:ec:83:b3:a2:7a:77:b2:3a:46:9e:ca:2f:f2:b6:44:17:2b: 5e:35:88:67 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUL5CN5CL/Yqh6SLMBt5mu0LQmz24wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEE2RkQ3RTA3OUY1NDNBNUQ1RkRFNDQzM0Y3QkQ1M0RD RTQyNkU1QTAeFw0yNTA2MDIwMDU4MTVaFw0yNjA2MDEwMTAzMTVaMDMxMTAvBgNV BAMTKDJDMEU3QkU5N0U3NjdEQTg4MDQ4NDY2QTg1MDQyQ0UxOEZCMzVBNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6FqbA7kvEf8at0uCs1U+uRv62 nAEBvNNa1QxB5K2hCSaBWjOs3fOrbcsQAxjcj+452L+aiaWfVbNFPjfmabH5xtMl Ag54HO3NdVUmJLOms32PJhluYJBCqCaf5pHdBy+NI9H/2tDfrW1EmMSm08sRbvb/ gMAo9jh79Rjt4Hc8U07ef9GRVFrlY95dhSWK2RTv+Kiqm5IAkUZZpOnNkfJRclSC VGrv/AqDKegGORQmSEmirREf/kGoMkUAjvCcTM479Os7teSItqDoFHgBsG4r5nNB Go/n0yCQA+529HKT6EZKh+/yZsteRRQ3WSo7s1IzCwHO6kh5xofF9biRl+lDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULA576X52faiASEZqhQQs4Y+zWmgwHwYDVR0j BBgwFoAUSm/X4Hn1Q6XV/eRDP3vVPc5CblowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YzA5ZTEzYy1jZWEwLTQ3ZmYtOWM5Ni1mNDliMzlkNDM5MjAvMC80QTZGRDdFMDc5 RjU0M0E1RDVGREU0NDMzRjdCRDUzRENFNDI2RTVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEE2RkQ3RTA3OUY1NDNBNUQ1RkRFNDQzM0Y3QkQ1M0RDRTQy NkU1QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjMDllMTNjLWNlYTAtNDdmZi05 Yzk2LWY0OWIzOWQ0MzkyMC8wLzMxMzAzMzJlMzIzMTMxMmUzNDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM1MzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfTMTANBgkqhkiG 9w0BAQsFAAOCAQEAX5xdTG3/ymc/JsY5Qno7k+HS86nou2+xYn6HNTXsREsIQUcf +tdGI59OC0jyKIE7V0WSveEDzjiUtsoCJnEIUhQfA8WqezeXR090dnVtbRLIAfkP ocjk5FH53ilGXpGiSR4cCQxNcFXvNWcBVw3ierD8o1kDS2npF66rHNby3PRs5uEq XkRglohmrRgX/72+dm0y2xai8QiA3ndDKMDczo8yjMGAItiuWKWuds1fkSXG+Bet fWZi+TD5S7Ic6uxvIt4AecAQUXGmIi+/heq+zfxBWmrC69/mw5volYb3gHqlABlO g0swNE/6yOyDs6J6d7I6Rp7KL/K2RBcrXjWIZw== -----END CERTIFICATE-----Generated at Wed Dec 3 15:28:48 2025 by rpki-client