This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/e1132497-5963-47aa-9de1-6c8496a36eb6/0/3130332e3132312e3130302e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3130302e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: 1tRc3T5eoYylfxzpb+5valfa2TuOC31+xj6WFfqujf8= Subject key identifier: 00:11:FB:C4:4A:C4:CC:64:E7:87:66:F8:90:D5:0F:31:B1:0A:4E:48 Certificate issuer: /CN=EA364B048B6B5A81F887F07FDB60499024CE8C94 Certificate serial: 7FC9E1FD84599D143E04971C1F2D79E05A323C53 Authority key identifier: EA:36:4B:04:8B:6B:5A:81:F8:87:F0:7F:DB:60:49:90:24:CE:8C:94 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EA364B048B6B5A81F887F07FDB60499024CE8C94.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e1132497-5963-47aa-9de1-6c8496a36eb6/0/3130332e3132312e3130302e302f32332d3234203d3e20313335343738.roa Signing time: Wed 05 Nov 2025 06:00:01 +0000 ROA not before: Wed 05 Nov 2025 05:55:01 +0000 ROA not after: Wed 04 Nov 2026 06:00:01 +0000 asID: 135478 IP address blocks: 103.121.100.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e1132497-5963-47aa-9de1-6c8496a36eb6/0/EA364B048B6B5A81F887F07FDB60499024CE8C94.crl rsync://repo-rpki.idnic.net/repo/e1132497-5963-47aa-9de1-6c8496a36eb6/0/EA364B048B6B5A81F887F07FDB60499024CE8C94.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EA364B048B6B5A81F887F07FDB60499024CE8C94.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 01:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:c9:e1:fd:84:59:9d:14:3e:04:97:1c:1f:2d:79:e0:5a:32:3c:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EA364B048B6B5A81F887F07FDB60499024CE8C94 Validity Not Before: Nov 5 05:55:01 2025 GMT Not After : Nov 4 06:00:01 2026 GMT Subject: CN=0011FBC44AC4CC64E78766F890D50F31B10A4E48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:44:98:30:61:a6:4b:6b:56:cb:70:ea:19:99: 02:b3:98:00:25:8e:2c:99:be:7e:73:1d:a2:c6:a9: 77:43:da:b1:9e:33:d0:80:d0:95:54:ed:da:43:ba: 9c:d2:7b:36:d9:ec:10:00:3e:c0:40:c3:83:5b:bf: f2:4e:40:0e:04:eb:8e:e3:e5:b5:56:f1:38:0e:40: 64:24:dd:69:b8:e8:13:35:e7:fa:17:86:53:47:22: 61:68:56:ae:54:11:82:4d:b7:19:ea:8e:ca:74:b5: ac:e9:8c:48:46:ad:7e:bd:aa:3b:98:13:7a:8c:9b: ed:ac:de:bd:b6:d5:42:b1:d6:7e:e9:53:62:4e:98: c5:1d:58:a9:88:e4:d9:1d:b4:18:6e:29:7f:92:58: 16:3f:4d:04:4e:bf:79:cd:2c:ae:9e:cb:57:f1:ac: a8:33:e3:e9:15:95:eb:60:d8:2c:48:11:68:cc:1a: 8f:05:f0:1f:cb:9b:b6:dc:ce:b0:7d:6e:32:85:f6: 95:80:08:7c:09:20:e6:49:8f:cc:2b:31:95:23:3d: 51:ad:8f:d4:48:17:57:c3:a3:c9:e9:17:6f:5c:66: da:6d:3e:a5:20:81:0f:51:a6:c4:3e:13:9d:dc:6f: e6:0b:6d:42:06:8f:14:b0:05:f5:f5:3c:ca:4e:56: 10:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:11:FB:C4:4A:C4:CC:64:E7:87:66:F8:90:D5:0F:31:B1:0A:4E:48 X509v3 Authority Key Identifier: keyid:EA:36:4B:04:8B:6B:5A:81:F8:87:F0:7F:DB:60:49:90:24:CE:8C:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e1132497-5963-47aa-9de1-6c8496a36eb6/0/EA364B048B6B5A81F887F07FDB60499024CE8C94.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EA364B048B6B5A81F887F07FDB60499024CE8C94.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e1132497-5963-47aa-9de1-6c8496a36eb6/0/3130332e3132312e3130302e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.100.0/23 Signature Algorithm: sha256WithRSAEncryption b8:47:9f:cb:aa:70:53:29:46:eb:f1:89:1c:d1:86:d7:0d:e5: 6d:ef:c3:f0:9e:97:20:f7:0c:d1:28:1f:f7:06:81:2d:d3:7b: 81:af:ed:90:93:d8:57:49:0b:5b:af:0d:ac:25:9f:b8:04:82: 27:4e:08:88:b2:f3:cc:67:e5:63:83:bd:81:67:1d:9f:ce:ff: 0b:55:7e:35:5c:0f:1d:6d:24:52:7d:10:9d:df:5f:0a:ce:3c: 50:58:b5:85:c5:b4:19:26:4e:66:5a:c7:f5:1c:90:2d:7e:35: 55:db:a6:1c:89:74:7f:e9:07:3b:f2:7d:f9:01:9c:f1:2f:59: 25:7f:96:19:c1:50:bb:27:0f:3a:dd:23:48:31:ba:8e:d1:7f: f9:fd:e2:f2:58:82:98:05:3c:18:88:66:e6:08:a0:a8:1e:94: 35:8e:e3:27:cd:35:f8:80:dd:3f:b8:e4:60:84:47:00:41:a1: 81:66:6c:b4:de:c1:3f:65:dc:61:66:c6:73:e5:84:fc:d6:dc: 48:1d:95:a8:47:00:38:de:b0:b2:2b:27:dd:e4:ef:b7:c0:18: 1f:3f:55:d9:db:f4:68:d2:87:cf:e5:83:aa:27:13:0e:79:f9: 8c:7e:3e:f9:d7:8c:5a:2a:fc:56:92:23:e7:c6:c4:b9:9b:3a: 1f:d6:27:c1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUf8nh/YRZnRQ+BJccHy154FoyPFMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUEzNjRCMDQ4QjZCNUE4MUY4ODdGMDdGREI2MDQ5OTAy NENFOEM5NDAeFw0yNTExMDUwNTU1MDFaFw0yNjExMDQwNjAwMDFaMDMxMTAvBgNV BAMTKDAwMTFGQkM0NEFDNENDNjRFNzg3NjZGODkwRDUwRjMxQjEwQTRFNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLRJgwYaZLa1bLcOoZmQKzmAAl jiyZvn5zHaLGqXdD2rGeM9CA0JVU7dpDupzSezbZ7BAAPsBAw4Nbv/JOQA4E647j 5bVW8TgOQGQk3Wm46BM15/oXhlNHImFoVq5UEYJNtxnqjsp0tazpjEhGrX69qjuY E3qMm+2s3r221UKx1n7pU2JOmMUdWKmI5NkdtBhuKX+SWBY/TQROv3nNLK6ey1fx rKgz4+kVletg2CxIEWjMGo8F8B/Lm7bczrB9bjKF9pWACHwJIOZJj8wrMZUjPVGt j9RIF1fDo8npF29cZtptPqUggQ9RpsQ+E53cb+YLbUIGjxSwBfX1PMpOVhBLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUABH7xErEzGTnh2b4kNUPMbEKTkgwHwYDVR0j BBgwFoAU6jZLBItrWoH4h/B/22BJkCTOjJQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MTEzMjQ5Ny01OTYzLTQ3YWEtOWRlMS02Yzg0OTZhMzZlYjYvMC9FQTM2NEIwNDhC NkI1QTgxRjg4N0YwN0ZEQjYwNDk5MDI0Q0U4Qzk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUEzNjRCMDQ4QjZCNUE4MUY4ODdGMDdGREI2MDQ5OTAyNENF OEM5NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxMTMyNDk3LTU5NjMtNDdhYS05 ZGUxLTZjODQ5NmEzNmViNi8wLzMxMzAzMzJlMzEzMjMxMmUzMTMwMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneWQwDQYJ KoZIhvcNAQELBQADggEBALhHn8uqcFMpRuvxiRzRhtcN5W3vw/CelyD3DNEoH/cG gS3Te4Gv7ZCT2FdJC1uvDawln7gEgidOCIiy88xn5WODvYFnHZ/O/wtVfjVcDx1t JFJ9EJ3fXwrOPFBYtYXFtBkmTmZax/UckC1+NVXbphyJdH/pBzvyffkBnPEvWSV/ lhnBULsnDzrdI0gxuo7Rf/n94vJYgpgFPBiIZuYIoKgelDWO4yfNNfiA3T+45GCE RwBBoYFmbLTewT9l3GFmxnPlhPzW3EgdlahHADjesLIrJ93k77fAGB8/Vdnb9GjS h8/lg6onEw55+Yx+PvnXjFoq/FaSI+fGxLmbOh/WJ8E= -----END CERTIFICATE-----Generated at Wed Dec 3 11:48:52 2025 by rpki-client