This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/3130332e3234362e3136392e302f32342d3234203d3e203538333835.roa File: 3130332e3234362e3136392e302f32342d3234203d3e203538333835.roa (raw, json) Hash identifier: M7vZQHPEWxI5UNs6yi6gKlm3olQkDzTXBE8xEqwNtQY= Subject key identifier: 9F:A6:CB:F6:0A:6B:FC:9A:14:C2:07:6D:B9:8E:98:5A:CE:C8:29:F4 Certificate issuer: /CN=B891A45840F824B9F116CBEAA3574A68343F5538 Certificate serial: 0E5B06EB132F9FFA1CE18480293E5C3F43BA2955 Authority key identifier: B8:91:A4:58:40:F8:24:B9:F1:16:CB:EA:A3:57:4A:68:34:3F:55:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B891A45840F824B9F116CBEAA3574A68343F5538.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/3130332e3234362e3136392e302f32342d3234203d3e203538333835.roa Signing time: Mon 24 Nov 2025 18:00:03 +0000 ROA not before: Mon 24 Nov 2025 17:55:03 +0000 ROA not after: Mon 23 Nov 2026 18:00:03 +0000 asID: 58385 IP address blocks: 103.246.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/B891A45840F824B9F116CBEAA3574A68343F5538.crl rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/B891A45840F824B9F116CBEAA3574A68343F5538.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B891A45840F824B9F116CBEAA3574A68343F5538.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 16:58:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:5b:06:eb:13:2f:9f:fa:1c:e1:84:80:29:3e:5c:3f:43:ba:29:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B891A45840F824B9F116CBEAA3574A68343F5538 Validity Not Before: Nov 24 17:55:03 2025 GMT Not After : Nov 23 18:00:03 2026 GMT Subject: CN=9FA6CBF60A6BFC9A14C2076DB98E985ACEC829F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:30:27:b2:12:f0:50:ed:ad:c5:5c:25:85:1e: c3:4a:29:3e:4e:9c:31:1e:48:aa:f0:a6:62:ab:72: 32:22:17:4c:08:a5:2b:4d:1d:a1:3a:5c:73:74:9e: 72:aa:b1:c9:6d:79:84:de:cf:da:ec:08:ec:30:a5: 3c:12:aa:0f:c0:ad:09:59:85:2f:a9:38:7b:e2:ba: 29:dd:34:13:34:c6:55:e4:00:91:c4:74:2a:a2:e5: bf:79:71:67:cf:03:af:34:96:51:a4:44:41:32:04: 6d:9f:46:ab:b4:70:7d:fb:85:67:81:ff:95:6e:5a: 28:b1:65:1d:fa:ae:e4:d5:2a:dd:84:a2:58:0e:0f: 28:72:05:42:d3:41:3a:29:d3:0b:8b:01:f9:5b:46: ea:d5:cc:34:81:44:3b:43:db:b1:d5:3d:09:db:8d: d8:f1:5d:50:83:8e:00:a1:0f:1a:5f:9b:dc:cc:4a: 96:d3:1f:81:41:c6:b2:de:2b:e7:a2:5a:9b:0f:c5: 0f:39:0b:e9:04:2d:7b:d7:f8:9b:19:1f:2d:db:e2: 5d:4b:f5:b5:ed:bc:ca:f5:92:78:e2:2b:79:56:6d: 34:43:2d:22:49:74:1b:cb:79:fc:7c:48:2c:bd:3b: 0c:df:15:d0:c8:56:7b:e8:55:8d:98:ce:31:34:ec: 45:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:A6:CB:F6:0A:6B:FC:9A:14:C2:07:6D:B9:8E:98:5A:CE:C8:29:F4 X509v3 Authority Key Identifier: keyid:B8:91:A4:58:40:F8:24:B9:F1:16:CB:EA:A3:57:4A:68:34:3F:55:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/B891A45840F824B9F116CBEAA3574A68343F5538.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B891A45840F824B9F116CBEAA3574A68343F5538.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3925388-35c6-41d7-9dc4-db4d118d135a/0/3130332e3234362e3136392e302f32342d3234203d3e203538333835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.246.169.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:7e:de:05:34:ae:6b:b3:a9:e1:73:c4:63:90:25:38:ae:c3: 82:21:37:38:62:29:1f:1a:94:7c:5f:65:2d:98:28:43:0b:88: ee:5f:e0:40:83:88:dd:c5:dd:a2:32:d2:cc:74:9b:dc:4f:3d: 60:4e:e5:cd:dc:02:20:16:75:af:ea:89:b3:77:92:77:3a:01: d2:3f:2a:c0:18:5f:9f:0d:f3:63:c7:3a:be:e4:eb:e2:d0:77: 16:92:a9:a0:35:ef:1c:8f:de:bf:9a:a7:5c:7b:9d:d3:b4:ef: 4a:53:c0:e3:57:2c:50:6b:a3:b9:d8:30:dd:5c:fe:4a:4f:b6: 53:88:6a:ac:43:d7:48:44:a9:5a:d6:e0:92:27:a5:0e:fe:59: 6a:5a:d3:e7:92:94:75:7d:de:36:b4:f8:c7:bd:54:51:22:5f: 60:0e:cc:03:07:ce:d2:65:43:d7:f3:b8:56:86:de:99:6e:69: f1:44:f9:d9:7d:8b:2b:8a:5b:37:d9:e8:7e:10:a8:f8:9b:56: 8f:ab:b9:38:9a:cd:87:cb:cb:e4:5a:a1:34:0a:6c:5f:27:0a: 97:49:40:57:85:72:81:71:87:72:6b:f9:62:12:a0:56:63:a3: 93:bd:d6:73:dd:f1:45:22:79:97:69:22:76:62:b9:07:4f:7f: 25:9d:51:50 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDlsG6xMvn/oc4YSAKT5cP0O6KVUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg5MUE0NTg0MEY4MjRCOUYxMTZDQkVBQTM1NzRBNjgz NDNGNTUzODAeFw0yNTExMjQxNzU1MDNaFw0yNjExMjMxODAwMDNaMDMxMTAvBgNV BAMTKDlGQTZDQkY2MEE2QkZDOUExNEMyMDc2REI5OEU5ODVBQ0VDODI5RjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuMCeyEvBQ7a3FXCWFHsNKKT5O nDEeSKrwpmKrcjIiF0wIpStNHaE6XHN0nnKqsclteYTez9rsCOwwpTwSqg/ArQlZ hS+pOHviuindNBM0xlXkAJHEdCqi5b95cWfPA680llGkREEyBG2fRqu0cH37hWeB /5VuWiixZR36ruTVKt2EolgODyhyBULTQTop0wuLAflbRurVzDSBRDtD27HVPQnb jdjxXVCDjgChDxpfm9zMSpbTH4FBxrLeK+eiWpsPxQ85C+kELXvX+JsZHy3b4l1L 9bXtvMr1knjiK3lWbTRDLSJJdBvLefx8SCy9OwzfFdDIVnvoVY2YzjE07EVLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUn6bL9gpr/JoUwgdtuY6YWs7IKfQwHwYDVR0j BBgwFoAUuJGkWED4JLnxFsvqo1dKaDQ/VTgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MzkyNTM4OC0zNWM2LTQxZDctOWRjNC1kYjRkMTE4ZDEzNWEvMC9CODkxQTQ1ODQw RjgyNEI5RjExNkNCRUFBMzU3NEE2ODM0M0Y1NTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg5MUE0NTg0MEY4MjRCOUYxMTZDQkVBQTM1NzRBNjgzNDNG NTUzOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzOTI1Mzg4LTM1YzYtNDFkNy05 ZGM0LWRiNGQxMThkMTM1YS8wLzMxMzAzMzJlMzIzNDM2MmUzMTM2MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/apMA0GCSqG SIb3DQEBCwUAA4IBAQB6ft4FNK5rs6nhc8RjkCU4rsOCITc4YikfGpR8X2UtmChD C4juX+BAg4jdxd2iMtLMdJvcTz1gTuXN3AIgFnWv6omzd5J3OgHSPyrAGF+fDfNj xzq+5Ovi0HcWkqmgNe8cj96/mqdce53TtO9KU8DjVyxQa6O52DDdXP5KT7ZTiGqs Q9dIRKla1uCSJ6UO/llqWtPnkpR1fd42tPjHvVRRIl9gDswDB87SZUPX87hWht6Z bmnxRPnZfYsrils32eh+EKj4m1aPq7k4ms2Hy8vkWqE0CmxfJwqXSUBXhXKBcYdy a/liEqBWY6OTvdZz3fFFInmXaSJ2YrkHT38lnVFQ -----END CERTIFICATE-----Generated at Wed Dec 3 16:10:49 2025 by rpki-client