This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/3130332e32332e3131362e302f32332d3234203d3e203538333835.roa File: 3130332e32332e3131362e302f32332d3234203d3e203538333835.roa (raw, json) Hash identifier: GOKg9RSCe07Sx9GP7mLWYk+y2Rm870vCrIk4OhiKGTc= Subject key identifier: BD:95:CB:33:A9:32:7F:E2:B5:EE:F0:CE:24:CE:FA:53:4E:05:9E:46 Certificate issuer: /CN=B891A45840F824B9F116CBEAA3574A68343F5538 Certificate serial: 07BD0E0939BD15D61FB5341C2B5C67931458D423 Authority key identifier: B8:91:A4:58:40:F8:24:B9:F1:16:CB:EA:A3:57:4A:68:34:3F:55:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B891A45840F824B9F116CBEAA3574A68343F5538.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/3130332e32332e3131362e302f32332d3234203d3e203538333835.roa Signing time: Mon 24 Nov 2025 18:00:03 +0000 ROA not before: Mon 24 Nov 2025 17:55:03 +0000 ROA not after: Mon 23 Nov 2026 18:00:03 +0000 asID: 58385 IP address blocks: 103.23.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/B891A45840F824B9F116CBEAA3574A68343F5538.crl rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/B891A45840F824B9F116CBEAA3574A68343F5538.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B891A45840F824B9F116CBEAA3574A68343F5538.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 16:58:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:bd:0e:09:39:bd:15:d6:1f:b5:34:1c:2b:5c:67:93:14:58:d4:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B891A45840F824B9F116CBEAA3574A68343F5538 Validity Not Before: Nov 24 17:55:03 2025 GMT Not After : Nov 23 18:00:03 2026 GMT Subject: CN=BD95CB33A9327FE2B5EEF0CE24CEFA534E059E46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cb:3b:ef:85:dd:b2:cd:74:c1:1e:03:2a:85: 42:5a:96:6c:b6:c3:6a:f4:fd:33:cd:fb:be:16:17: 7d:8a:4e:6f:a5:1e:92:46:77:c6:a8:9f:b9:81:1d: 50:80:49:8c:eb:98:a1:d1:61:08:bd:5a:a2:22:de: a8:c6:dd:59:eb:bf:d3:33:f0:19:75:43:f8:80:87: e9:6c:0f:c0:2c:51:cd:51:0b:67:cd:c2:19:2c:56: 86:20:ed:ba:45:09:a3:86:d4:be:78:cd:e0:21:04: fc:fb:07:d0:d6:69:aa:e5:10:89:0a:8d:bc:e3:c6: c4:97:a3:6d:8f:c8:ee:88:cf:2a:f4:db:f7:80:07: 27:a3:2b:8c:28:14:0f:45:17:e1:6f:25:e9:7b:76: b8:93:06:80:13:49:89:3d:15:d9:c0:aa:52:82:2f: 24:3b:6d:88:d2:e2:ec:0e:7c:b1:35:1b:c7:68:77: c4:6f:48:ef:b9:e6:86:87:99:e3:a4:8f:72:4f:f7: 9b:4a:0a:d9:1d:61:c1:c2:34:af:7a:d2:c4:1e:07: b5:d2:54:27:36:c2:fe:a7:1c:29:86:6b:d0:08:fd: 1c:75:4d:ce:90:86:33:8a:08:0a:ed:83:ad:ff:00: 6c:0f:be:4d:52:02:b2:34:bd:c2:f5:f6:24:1e:29: a5:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:95:CB:33:A9:32:7F:E2:B5:EE:F0:CE:24:CE:FA:53:4E:05:9E:46 X509v3 Authority Key Identifier: keyid:B8:91:A4:58:40:F8:24:B9:F1:16:CB:EA:A3:57:4A:68:34:3F:55:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/B891A45840F824B9F116CBEAA3574A68343F5538.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B891A45840F824B9F116CBEAA3574A68343F5538.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/3130332e32332e3131362e302f32332d3234203d3e203538333835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.23.116.0/23 Signature Algorithm: sha256WithRSAEncryption 24:eb:f5:8c:fa:e3:38:bf:68:bb:9e:c9:e2:ea:84:cf:2d:6a: 88:c1:59:8b:e8:31:48:64:08:5d:03:67:73:ca:72:94:51:01: f5:8a:2d:79:d5:e0:23:9d:c1:c1:c1:f3:0d:44:57:de:b3:72: 85:b5:9d:2d:b5:af:27:89:aa:02:2a:1b:d0:8c:5a:4d:9d:ae: 4c:7d:62:44:53:37:6b:7d:92:44:e6:89:86:a9:ed:e9:e8:2d: 5a:47:5c:2f:3d:63:03:dd:84:6f:ea:5f:12:dd:ca:5d:bf:de: 7e:2f:81:84:62:b5:d5:22:ad:d7:31:7b:b2:58:ad:33:a3:fb: 13:f2:40:59:b8:73:99:99:27:f5:79:19:09:41:54:f4:80:0e: 1e:d6:67:b8:7c:c8:99:77:2a:c5:3a:b0:3b:11:01:f6:c5:0e: 47:41:3a:0b:fb:c5:80:0f:73:5d:0d:a6:23:e7:ec:56:0f:ca: 86:b6:8c:a3:eb:9d:86:ea:ce:4f:7d:14:9d:50:95:be:d4:af: c3:81:98:bc:11:2a:bb:17:78:dc:bb:8d:31:9b:bb:63:45:10: bf:9e:4a:8d:30:7c:ce:c5:14:a8:d5:19:87:56:b2:02:3a:f7: 7c:d0:f0:d7:7d:38:b0:b1:71:76:1b:d9:cf:90:bc:49:b9:d7: 71:4e:11:76 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUB70OCTm9FdYftTQcK1xnkxRY1CMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg5MUE0NTg0MEY4MjRCOUYxMTZDQkVBQTM1NzRBNjgz NDNGNTUzODAeFw0yNTExMjQxNzU1MDNaFw0yNjExMjMxODAwMDNaMDMxMTAvBgNV BAMTKEJEOTVDQjMzQTkzMjdGRTJCNUVFRjBDRTI0Q0VGQTUzNEUwNTlFNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwyzvvhd2yzXTBHgMqhUJalmy2 w2r0/TPN+74WF32KTm+lHpJGd8aon7mBHVCASYzrmKHRYQi9WqIi3qjG3Vnrv9Mz 8Bl1Q/iAh+lsD8AsUc1RC2fNwhksVoYg7bpFCaOG1L54zeAhBPz7B9DWaarlEIkK jbzjxsSXo22PyO6Izyr02/eAByejK4woFA9FF+FvJel7driTBoATSYk9FdnAqlKC LyQ7bYjS4uwOfLE1G8dod8RvSO+55oaHmeOkj3JP95tKCtkdYcHCNK960sQeB7XS VCc2wv6nHCmGa9AI/Rx1Tc6QhjOKCArtg63/AGwPvk1SArI0vcL19iQeKaWHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvZXLM6kyf+K17vDOJM76U04FnkYwHwYDVR0j BBgwFoAUuJGkWED4JLnxFsvqo1dKaDQ/VTgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MzkyNTM4OC0zNWM2LTQxZDctOWRjNC1kYjRkMTE4ZDEzNWEvMC9CODkxQTQ1ODQw RjgyNEI5RjExNkNCRUFBMzU3NEE2ODM0M0Y1NTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg5MUE0NTg0MEY4MjRCOUYxMTZDQkVBQTM1NzRBNjgzNDNG NTUzOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzOTI1Mzg4LTM1YzYtNDFkNy05 ZGM0LWRiNGQxMThkMTM1YS8wLzMxMzAzMzJlMzIzMzJlMzEzMTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzODMzMzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcXdDANBgkqhkiG 9w0BAQsFAAOCAQEAJOv1jPrjOL9ou57J4uqEzy1qiMFZi+gxSGQIXQNnc8pylFEB 9YotedXgI53BwcHzDURX3rNyhbWdLbWvJ4mqAiob0IxaTZ2uTH1iRFM3a32SROaJ hqnt6egtWkdcLz1jA92Eb+pfEt3KXb/efi+BhGK11SKt1zF7slitM6P7E/JAWbhz mZkn9XkZCUFU9IAOHtZnuHzImXcqxTqwOxEB9sUOR0E6C/vFgA9zXQ2mI+fsVg/K hraMo+udhurOT30UnVCVvtSvw4GYvBEquxd43LuNMZu7Y0UQv55KjTB8zsUUqNUZ h1ayAjr3fNDw1304sLFxdhvZz5C8SbnXcU4Rdg== -----END CERTIFICATE-----Generated at Wed Dec 3 15:30:15 2025 by rpki-client