This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/e2f6a39f-2940-4ccc-8c1f-9d559c47a79b/0/3130332e3131382e3132312e302f32342d3234203d3e20313530323033.roa File: 3130332e3131382e3132312e302f32342d3234203d3e20313530323033.roa (raw, json) Hash identifier: XcmiTK4lbXwTUsCM0a8uD99kDHrKe3SuEWNxjOChLtA= Subject key identifier: CD:4C:BB:51:89:5F:EC:ED:5F:EE:1A:52:1F:29:78:E5:73:91:F1:CF Certificate issuer: /CN=D85B24E818A4DAC388415FB8C96905DF03C8D6EA Certificate serial: 5F90FD0D0E3E27FC1B331B8894C8C85BA4BD0EC2 Authority key identifier: D8:5B:24:E8:18:A4:DA:C3:88:41:5F:B8:C9:69:05:DF:03:C8:D6:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85B24E818A4DAC388415FB8C96905DF03C8D6EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e2f6a39f-2940-4ccc-8c1f-9d559c47a79b/0/3130332e3131382e3132312e302f32342d3234203d3e20313530323033.roa Signing time: Mon 24 Nov 2025 09:00:02 +0000 ROA not before: Mon 24 Nov 2025 08:55:02 +0000 ROA not after: Mon 23 Nov 2026 09:00:02 +0000 asID: 150203 IP address blocks: 103.118.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e2f6a39f-2940-4ccc-8c1f-9d559c47a79b/0/D85B24E818A4DAC388415FB8C96905DF03C8D6EA.crl rsync://repo-rpki.idnic.net/repo/e2f6a39f-2940-4ccc-8c1f-9d559c47a79b/0/D85B24E818A4DAC388415FB8C96905DF03C8D6EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85B24E818A4DAC388415FB8C96905DF03C8D6EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 16:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:90:fd:0d:0e:3e:27:fc:1b:33:1b:88:94:c8:c8:5b:a4:bd:0e:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85B24E818A4DAC388415FB8C96905DF03C8D6EA Validity Not Before: Nov 24 08:55:02 2025 GMT Not After : Nov 23 09:00:02 2026 GMT Subject: CN=CD4CBB51895FECED5FEE1A521F2978E57391F1CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:fe:fc:be:6c:5b:17:40:19:2b:c5:9b:10:ee: 0f:08:e9:78:a0:fe:b3:54:af:a2:9b:ea:69:61:dd: a1:1e:0c:4f:7e:b2:35:41:88:a4:e3:71:45:0e:db: 2a:cd:d5:5b:46:97:8b:1e:b0:8d:e4:bf:6f:6a:eb: af:84:f0:bd:b0:bc:f5:91:48:7e:31:a6:3c:17:af: e6:1c:5a:fc:cf:76:e0:f3:44:f1:f1:d6:e4:f0:39: cd:1a:52:e0:7f:5f:ef:5b:5a:1f:02:0d:17:d6:a3: 54:25:75:c7:e2:38:d1:cc:c1:83:4e:38:70:5f:2c: 95:41:11:18:e2:b3:24:d5:b9:6d:e4:4a:22:ec:66: b3:34:65:2b:62:05:a4:62:47:82:5a:77:10:1c:6a: de:46:95:d6:db:6e:b8:2d:0f:ef:89:d7:7e:cf:41: 36:03:47:5c:1c:a5:b4:ac:55:17:e6:72:c5:49:59: 4c:61:42:7e:df:cd:6a:42:1e:1c:11:8b:9e:2f:1d: 95:03:b5:15:b1:d7:60:14:01:2a:46:64:5f:30:56: d5:f6:d3:18:52:21:a7:78:8a:53:d1:da:ba:52:85: bf:69:39:0c:08:1a:d6:38:9d:14:09:bd:91:24:02: 56:08:e4:1d:3f:72:5e:74:78:f6:5f:0f:5a:67:1a: 13:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:4C:BB:51:89:5F:EC:ED:5F:EE:1A:52:1F:29:78:E5:73:91:F1:CF X509v3 Authority Key Identifier: keyid:D8:5B:24:E8:18:A4:DA:C3:88:41:5F:B8:C9:69:05:DF:03:C8:D6:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e2f6a39f-2940-4ccc-8c1f-9d559c47a79b/0/D85B24E818A4DAC388415FB8C96905DF03C8D6EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85B24E818A4DAC388415FB8C96905DF03C8D6EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e2f6a39f-2940-4ccc-8c1f-9d559c47a79b/0/3130332e3131382e3132312e302f32342d3234203d3e20313530323033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.118.121.0/24 Signature Algorithm: sha256WithRSAEncryption 54:aa:53:b4:20:76:20:5b:95:72:4b:52:94:46:5a:2a:92:97: d1:3f:55:a1:e8:1a:7f:ea:38:97:87:79:33:42:29:9c:cd:c8: 19:3f:70:ff:b0:3a:18:15:d4:b9:2d:b2:a7:49:67:95:a7:46: 6c:b6:18:a0:f7:79:06:f3:a1:4b:1a:da:1b:2e:32:cc:8b:4e: d1:1f:ad:de:cd:51:8f:c6:f5:f4:9d:01:d8:81:80:d5:67:8f: 58:0d:9a:96:7e:10:db:cf:27:47:d1:2c:f1:8f:54:3f:05:fc: 85:48:24:b7:81:26:00:45:b1:dd:37:4b:59:73:ad:c6:30:cb: 03:90:12:10:b2:a2:9e:83:c7:9c:11:08:59:56:dd:5c:68:5c: 1e:aa:68:b3:e8:10:d1:c9:9c:1d:75:17:c5:0f:da:63:94:25: 9e:61:ee:d9:f8:a2:07:70:9b:d3:97:c3:ff:63:d2:0d:6b:03: ff:be:90:73:1c:8c:6c:2f:49:0e:e8:83:7d:c9:1c:8a:e7:14: 9d:bf:de:b8:b2:23:ff:fa:fe:6e:45:04:17:3d:6f:4c:89:d9: 83:11:d8:b3:14:ad:24:f7:9c:95:22:73:90:cb:80:f9:7a:1f: ba:b9:7c:2c:e4:b3:46:4a:69:9c:2f:a7:1a:86:dd:6a:75:6c: 35:53:df:1d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUX5D9DQ4+J/wbMxuIlMjIW6S9DsIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1QjI0RTgxOEE0REFDMzg4NDE1RkI4Qzk2OTA1REYw M0M4RDZFQTAeFw0yNTExMjQwODU1MDJaFw0yNjExMjMwOTAwMDJaMDMxMTAvBgNV BAMTKENENENCQjUxODk1RkVDRUQ1RkVFMUE1MjFGMjk3OEU1NzM5MUYxQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS/vy+bFsXQBkrxZsQ7g8I6Xig /rNUr6Kb6mlh3aEeDE9+sjVBiKTjcUUO2yrN1VtGl4sesI3kv29q66+E8L2wvPWR SH4xpjwXr+YcWvzPduDzRPHx1uTwOc0aUuB/X+9bWh8CDRfWo1QldcfiONHMwYNO OHBfLJVBERjisyTVuW3kSiLsZrM0ZStiBaRiR4JadxAcat5GldbbbrgtD++J137P QTYDR1wcpbSsVRfmcsVJWUxhQn7fzWpCHhwRi54vHZUDtRWx12AUASpGZF8wVtX2 0xhSIad4ilPR2rpShb9pOQwIGtY4nRQJvZEkAlYI5B0/cl50ePZfD1pnGhO/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUzUy7UYlf7O1f7hpSHyl45XOR8c8wHwYDVR0j BBgwFoAU2Fsk6Bik2sOIQV+4yWkF3wPI1uowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MmY2YTM5Zi0yOTQwLTRjY2MtOGMxZi05ZDU1OWM0N2E3OWIvMC9EODVCMjRFODE4 QTREQUMzODg0MTVGQjhDOTY5MDVERjAzQzhENkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDg1QjI0RTgxOEE0REFDMzg4NDE1RkI4Qzk2OTA1REYwM0M4 RDZFQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UyZjZhMzlmLTI5NDAtNGNjYy04 YzFmLTlkNTU5YzQ3YTc5Yi8wLzMxMzAzMzJlMzEzMTM4MmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzMjMwMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABndnkwDQYJ KoZIhvcNAQELBQADggEBAFSqU7QgdiBblXJLUpRGWiqSl9E/VaHoGn/qOJeHeTNC KZzNyBk/cP+wOhgV1LktsqdJZ5WnRmy2GKD3eQbzoUsa2hsuMsyLTtEfrd7NUY/G 9fSdAdiBgNVnj1gNmpZ+ENvPJ0fRLPGPVD8F/IVIJLeBJgBFsd03S1lzrcYwywOQ EhCyop6Dx5wRCFlW3VxoXB6qaLPoENHJnB11F8UP2mOUJZ5h7tn4ogdwm9OXw/9j 0g1rA/++kHMcjGwvSQ7og33JHIrnFJ2/3riyI//6/m5FBBc9b0yJ2YMR2LMUrST3 nJUic5DLgPl6H7q5fCzks0ZKaZwvpxqG3Wp1bDVT3x0= -----END CERTIFICATE-----Generated at Wed Dec 3 16:07:13 2025 by rpki-client