This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/3130332e36372e38302e302f32332d3233203d3e20313532303031.roa File: 3130332e36372e38302e302f32332d3233203d3e20313532303031.roa (raw, json) Hash identifier: hdkprfHwU4RXLgXXOBxZ9L/4dynqLbbepC7imEy91UI= Subject key identifier: E1:91:8B:2D:38:5A:81:94:64:03:FC:F4:6D:9B:87:A9:9D:34:C4:B9 Certificate issuer: /CN=16889A9053AE7EB169CF822E9EE670A5C618F97E Certificate serial: 442AF20BC67E814BB35BDE7D28C06B9830AE7C98 Authority key identifier: 16:88:9A:90:53:AE:7E:B1:69:CF:82:2E:9E:E6:70:A5:C6:18:F9:7E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16889A9053AE7EB169CF822E9EE670A5C618F97E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/3130332e36372e38302e302f32332d3233203d3e20313532303031.roa Signing time: Tue 11 Nov 2025 08:00:36 +0000 ROA not before: Tue 11 Nov 2025 07:55:36 +0000 ROA not after: Tue 10 Nov 2026 08:00:36 +0000 asID: 152001 IP address blocks: 103.67.80.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.crl rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16889A9053AE7EB169CF822E9EE670A5C618F97E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 11:04:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:2a:f2:0b:c6:7e:81:4b:b3:5b:de:7d:28:c0:6b:98:30:ae:7c:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16889A9053AE7EB169CF822E9EE670A5C618F97E Validity Not Before: Nov 11 07:55:36 2025 GMT Not After : Nov 10 08:00:36 2026 GMT Subject: CN=E1918B2D385A81946403FCF46D9B87A99D34C4B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9d:fa:c3:24:b3:71:12:37:5f:3e:98:1a:d5: ac:fa:93:41:10:f3:75:5a:64:6a:64:11:17:2f:88: 10:b1:bc:bc:6a:e7:dd:77:81:d5:de:c1:cd:cd:88: a7:37:c5:a0:c9:91:06:09:8d:72:df:c3:60:90:87: a1:5b:96:ca:67:8a:c7:1d:db:ce:d1:f9:89:3d:86: 96:ac:57:da:e6:32:b7:f7:c5:f2:9b:2e:0c:cb:24: af:0e:f9:99:fd:49:63:54:60:3b:75:e2:4b:1a:61: 3b:c8:e3:f4:39:f5:61:90:f0:ce:18:db:db:04:ff: 88:05:e2:d0:1d:78:5d:16:03:ab:6d:dd:16:8a:e6: 41:a3:17:04:41:39:72:2a:46:24:ea:72:49:f8:af: 52:6f:b2:68:82:69:e3:9f:ba:98:a0:a4:1a:3a:fa: a5:8c:ad:d9:30:04:0f:ef:35:31:aa:62:18:59:7f: 9b:4a:4a:ae:78:ff:58:1d:65:35:19:f4:c7:1a:0f: 2e:15:65:ca:e6:73:a9:e2:cc:ce:15:23:89:8e:9f: b5:9c:eb:fc:4f:f2:de:52:a9:9b:a1:46:51:41:bf: 96:f1:27:4d:a2:fe:bf:18:d1:d7:b2:a3:21:a3:bb: 1a:37:c9:75:81:af:f6:a4:f3:01:ad:49:6b:31:42: 6d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:91:8B:2D:38:5A:81:94:64:03:FC:F4:6D:9B:87:A9:9D:34:C4:B9 X509v3 Authority Key Identifier: keyid:16:88:9A:90:53:AE:7E:B1:69:CF:82:2E:9E:E6:70:A5:C6:18:F9:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16889A9053AE7EB169CF822E9EE670A5C618F97E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/3130332e36372e38302e302f32332d3233203d3e20313532303031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.67.80.0/23 Signature Algorithm: sha256WithRSAEncryption 31:d5:5a:6f:e2:1d:52:28:5b:30:80:d2:6c:e0:73:53:e7:6c: 4b:b9:ab:6e:ef:c7:30:35:9c:76:36:e5:2d:73:1e:d8:10:5d: e5:67:42:b8:ee:02:28:9b:2f:4a:9a:34:54:14:05:96:18:4a: 6d:fc:f0:b1:96:7b:5c:ee:9e:b4:43:7f:5c:2c:2d:d2:57:6d: 3c:f6:9e:03:0c:c6:6a:7d:66:ce:66:c8:0e:09:60:7c:e3:0c: df:4c:e8:69:41:8f:df:61:34:81:07:5d:84:e8:fa:2c:20:ab: dc:57:7e:89:f2:e0:27:69:7b:16:a9:22:0d:bd:9e:e8:99:b1: df:f2:7c:ab:53:4f:8d:07:80:33:0d:16:72:95:58:ea:8a:29: 5f:6d:68:e2:1a:21:6e:05:e7:26:2f:56:cb:38:0c:95:79:7e: 6a:72:7e:76:63:05:98:27:e4:45:8c:67:52:dd:0f:74:2e:b0: ed:e6:de:34:87:fa:08:c8:b6:d9:f9:e1:72:b0:89:75:2a:31: 15:f1:05:5c:02:ed:48:8c:95:10:9e:0a:d5:8e:72:7b:6f:18: c1:1b:6e:17:99:c6:d4:60:32:1a:39:c0:54:58:08:b6:3f:db: 4d:47:32:1d:d6:0b:57:7f:aa:a0:a3:a3:7a:55:05:5b:53:b9: 72:50:c7:bd -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIURCryC8Z+gUuzW959KMBrmDCufJgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY4ODlBOTA1M0FFN0VCMTY5Q0Y4MjJFOUVFNjcwQTVD NjE4Rjk3RTAeFw0yNTExMTEwNzU1MzZaFw0yNjExMTAwODAwMzZaMDMxMTAvBgNV BAMTKEUxOTE4QjJEMzg1QTgxOTQ2NDAzRkNGNDZEOUI4N0E5OUQzNEM0QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4nfrDJLNxEjdfPpga1az6k0EQ 83VaZGpkERcviBCxvLxq5913gdXewc3NiKc3xaDJkQYJjXLfw2CQh6Fblspniscd 287R+Yk9hpasV9rmMrf3xfKbLgzLJK8O+Zn9SWNUYDt14ksaYTvI4/Q59WGQ8M4Y 29sE/4gF4tAdeF0WA6tt3RaK5kGjFwRBOXIqRiTqckn4r1JvsmiCaeOfupigpBo6 +qWMrdkwBA/vNTGqYhhZf5tKSq54/1gdZTUZ9McaDy4VZcrmc6nizM4VI4mOn7Wc 6/xP8t5SqZuhRlFBv5bxJ02i/r8Y0deyoyGjuxo3yXWBr/ak8wGtSWsxQm1NAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4ZGLLThagZRkA/z0bZuHqZ00xLkwHwYDVR0j BBgwFoAUFoiakFOufrFpz4IunuZwpcYY+X4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTNmMmU5Yi0xMDY4LTRmYTktYmExZC01OWQwNzFhNDEyYTIvMC8xNjg4OUE5MDUz QUU3RUIxNjlDRjgyMkU5RUU2NzBBNUM2MThGOTdFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY4ODlBOTA1M0FFN0VCMTY5Q0Y4MjJFOUVFNjcwQTVDNjE4 Rjk3RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlM2YyZTliLTEwNjgtNGZhOS1i YTFkLTU5ZDA3MWE0MTJhMi8wLzMxMzAzMzJlMzYzNzJlMzgzMDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjMwMzAzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWdDUDANBgkqhkiG 9w0BAQsFAAOCAQEAMdVab+IdUihbMIDSbOBzU+dsS7mrbu/HMDWcdjblLXMe2BBd 5WdCuO4CKJsvSpo0VBQFlhhKbfzwsZZ7XO6etEN/XCwt0ldtPPaeAwzGan1mzmbI DglgfOMM30zoaUGP32E0gQddhOj6LCCr3Fd+ifLgJ2l7FqkiDb2e6Jmx3/J8q1NP jQeAMw0WcpVY6oopX21o4hohbgXnJi9WyzgMlXl+anJ+dmMFmCfkRYxnUt0PdC6w 7ebeNIf6CMi22fnhcrCJdSoxFfEFXALtSIyVEJ4K1Y5ye28YwRtuF5nG1GAyGjnA VFgItj/bTUcyHdYLV3+qoKOjelUFW1O5clDHvQ== -----END CERTIFICATE-----Generated at Wed Dec 3 16:21:16 2025 by rpki-client