This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/3130332e38302e3231342e302f32342d3234203d3e20313533303932.roa File: 3130332e38302e3231342e302f32342d3234203d3e20313533303932.roa (raw, json) Hash identifier: E7LmVcTtrOc0QLca3OKgAjrGPUq24WcKvpibpJhqwMo= Subject key identifier: D3:F1:03:71:6A:E7:8C:57:CC:43:25:3C:57:06:2C:D8:0F:1F:AF:60 Certificate issuer: /CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Certificate serial: 39BB657E94A481BD6AED6D91F96A18205430D8F3 Authority key identifier: 2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/3130332e38302e3231342e302f32342d3234203d3e20313533303932.roa Signing time: Sat 15 Nov 2025 05:00:02 +0000 ROA not before: Sat 15 Nov 2025 04:55:02 +0000 ROA not after: Sat 14 Nov 2026 05:00:02 +0000 asID: 153092 IP address blocks: 103.80.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 00:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:bb:65:7e:94:a4:81:bd:6a:ed:6d:91:f9:6a:18:20:54:30:d8:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Validity Not Before: Nov 15 04:55:02 2025 GMT Not After : Nov 14 05:00:02 2026 GMT Subject: CN=D3F103716AE78C57CC43253C57062CD80F1FAF60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d9:82:e2:8f:b9:41:23:17:4a:4b:ee:49:95: bc:4d:69:f0:c1:23:84:b0:21:c0:36:26:01:a2:bf: be:6a:76:59:86:5b:ce:c3:9b:31:e5:54:d4:1e:55: ce:be:ae:66:de:7e:83:52:c3:0d:24:c3:1b:f5:24: 60:fe:e1:32:09:18:14:ff:d7:41:02:7e:1f:24:0a: 69:c9:71:d0:30:72:79:62:7a:b2:1d:3d:e4:3a:ad: c7:58:ef:49:48:51:79:7f:89:fd:75:46:d4:e0:f9: e3:12:7c:b9:85:1c:6c:4a:40:e6:70:91:d7:9a:54: 12:1e:a7:13:1f:2a:20:d1:4c:ab:b6:ef:0c:3a:60: c9:b4:40:68:ea:e0:9a:cf:87:18:85:72:4e:cb:db: 1c:bc:8e:c0:f2:34:60:8d:8a:b7:2d:e4:fb:66:03: 6d:54:3a:de:e2:65:0e:97:90:b9:cf:f6:74:33:a1: e7:eb:e7:e5:12:a7:df:28:4f:9a:a0:07:d7:0b:b4: eb:e8:4e:0f:38:99:95:ba:7b:b9:4d:2c:23:90:4c: 0c:cc:8b:1a:d4:00:b4:97:ac:05:e0:a6:48:d1:9e: 12:5f:89:b6:32:b4:ed:c4:fb:6b:c7:be:42:4e:17: 41:da:8a:14:b1:be:8f:03:01:2c:f0:1f:44:5e:36: b9:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:F1:03:71:6A:E7:8C:57:CC:43:25:3C:57:06:2C:D8:0F:1F:AF:60 X509v3 Authority Key Identifier: keyid:2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/3130332e38302e3231342e302f32342d3234203d3e20313533303932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.80.214.0/24 Signature Algorithm: sha256WithRSAEncryption ab:5a:52:05:73:4d:bf:4a:3e:60:77:6e:45:07:03:d2:11:fd: fb:7e:a8:cc:d9:37:88:3d:28:36:a5:38:f4:1b:0b:c0:f7:92: ea:ed:49:f4:c8:68:a4:c1:9f:18:f9:d4:c1:44:fa:1a:51:62: 97:b0:4f:1c:3a:3f:05:12:7a:9a:a3:b3:6d:db:e5:1e:17:d1: 26:8d:80:f7:12:ac:34:cb:9d:a5:03:4b:53:85:23:a3:3d:f7: c6:ea:6e:06:14:db:ca:a1:f8:8f:b4:ae:87:25:3f:dc:32:4e: c9:15:02:ba:91:03:8c:c6:ad:af:b3:77:af:2b:b0:3a:06:80: 48:d5:ba:7a:df:bc:d5:83:51:94:d6:06:de:47:a3:a1:ea:fc: c5:ad:f0:c4:3c:94:b6:12:8a:dc:1a:ed:23:97:09:10:72:b2: 3f:7d:94:85:8e:9d:22:c1:20:49:b2:bb:7e:4a:33:82:d7:23: d0:18:07:4d:50:63:7e:3e:0c:a6:96:fe:ee:bf:9e:2a:c2:69: 78:fa:ff:d3:9d:2b:9d:d3:d1:8f:dd:26:82:3c:f4:4a:59:c4: 86:45:32:2e:36:53:7a:99:ba:0c:4d:3e:da:ee:ee:af:db:fd: b1:0f:71:85:3f:71:3f:d8:3b:d0:87:60:a9:eb:2f:19:2f:53: 97:df:fe:d6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUObtlfpSkgb1q7W2R+WoYIFQw2PMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJE N0UxODI3NzAeFw0yNTExMTUwNDU1MDJaFw0yNjExMTQwNTAwMDJaMDMxMTAvBgNV BAMTKEQzRjEwMzcxNkFFNzhDNTdDQzQzMjUzQzU3MDYyQ0Q4MEYxRkFGNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC12YLij7lBIxdKS+5JlbxNafDB I4SwIcA2JgGiv75qdlmGW87DmzHlVNQeVc6+rmbefoNSww0kwxv1JGD+4TIJGBT/ 10ECfh8kCmnJcdAwcnlierIdPeQ6rcdY70lIUXl/if11RtTg+eMSfLmFHGxKQOZw kdeaVBIepxMfKiDRTKu27ww6YMm0QGjq4JrPhxiFck7L2xy8jsDyNGCNirct5Ptm A21UOt7iZQ6XkLnP9nQzoefr5+USp98oT5qgB9cLtOvoTg84mZW6e7lNLCOQTAzM ixrUALSXrAXgpkjRnhJfibYytO3E+2vHvkJOF0HaihSxvo8DASzwH0ReNrnhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0/EDcWrnjFfMQyU8VwYs2A8fr2AwHwYDVR0j BBgwFoAUK5C7F+eLYsFReQKcZYPkK9fhgncwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTVhNWU2ZC05MWVlLTQ0OTctYjQxNy04ZDMyZjY1M2U0YjAvMC8yQjkwQkIxN0U3 OEI2MkMxNTE3OTAyOUM2NTgzRTQyQkQ3RTE4Mjc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJEN0Ux ODI3Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlNWE1ZTZkLTkxZWUtNDQ5Ny1i NDE3LThkMzJmNjUzZTRiMC8wLzMxMzAzMzJlMzgzMDJlMzIzMTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzOTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1DWMA0GCSqG SIb3DQEBCwUAA4IBAQCrWlIFc02/Sj5gd25FBwPSEf37fqjM2TeIPSg2pTj0GwvA 95Lq7Un0yGikwZ8Y+dTBRPoaUWKXsE8cOj8FEnqao7Nt2+UeF9EmjYD3Eqw0y52l A0tThSOjPffG6m4GFNvKofiPtK6HJT/cMk7JFQK6kQOMxq2vs3evK7A6BoBI1bp6 37zVg1GU1gbeR6Oh6vzFrfDEPJS2EorcGu0jlwkQcrI/fZSFjp0iwSBJsrt+SjOC 1yPQGAdNUGN+Pgymlv7uv54qwml4+v/TnSud09GP3SaCPPRKWcSGRTIuNlN6mboM TT7a7u6v2/2xD3GFP3E/2DvQh2Cp6y8ZL1OX3/7W -----END CERTIFICATE-----Generated at Wed Dec 3 14:58:31 2025 by rpki-client