This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130342e302f32322d3232203d3e203633343937.roa File: 3130332e3133342e3130342e302f32322d3232203d3e203633343937.roa (raw, json) Hash identifier: JYyU73FxSsbah75XLPK5+70mS+1BuWT1qs954OCbSn8= Subject key identifier: 88:5C:69:85:66:AC:48:84:97:15:BC:AC:20:31:E3:FE:9D:88:92:AD Certificate issuer: /CN=95E800EBFF64709892CB5741D9EDC75EE74E2A6D Certificate serial: 1062A1D74194AA0EE39AA806C557E94185B4B645 Authority key identifier: 95:E8:00:EB:FF:64:70:98:92:CB:57:41:D9:ED:C7:5E:E7:4E:2A:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130342e302f32322d3232203d3e203633343937.roa Signing time: Mon 02 Jun 2025 02:04:35 +0000 ROA not before: Mon 02 Jun 2025 01:59:35 +0000 ROA not after: Mon 01 Jun 2026 02:04:35 +0000 asID: 63497 IP address blocks: 103.134.104.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.crl rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 09:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:62:a1:d7:41:94:aa:0e:e3:9a:a8:06:c5:57:e9:41:85:b4:b6:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95E800EBFF64709892CB5741D9EDC75EE74E2A6D Validity Not Before: Jun 2 01:59:35 2025 GMT Not After : Jun 1 02:04:35 2026 GMT Subject: CN=885C698566AC48849715BCAC2031E3FE9D8892AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a4:f3:b1:59:64:fb:ce:e3:6b:d6:8b:87:8f: 5b:bd:2c:85:c2:9c:4a:32:44:7e:18:23:c5:82:24: 14:ad:b1:96:ad:ad:00:ca:a3:5c:1b:28:b8:29:3d: e0:86:fc:b4:3b:12:3e:6a:81:e4:56:5b:30:ee:27: 6c:bb:c1:8f:db:dd:41:cc:8d:02:0c:b8:be:58:db: dc:7e:eb:e9:a2:ab:8b:bc:e8:6f:07:12:95:35:40: 5e:04:08:31:f6:fc:3c:51:d7:23:d0:be:19:a5:6e: 44:99:5d:88:89:86:74:17:fe:c2:eb:13:8c:7d:2c: 00:e0:29:70:a9:11:f0:ef:4b:18:bb:ed:49:a8:31: f0:83:0a:20:e8:e6:1e:fd:02:3c:99:44:08:05:7b: 36:d2:a8:92:3e:9a:30:e1:8b:60:a2:e9:e2:e9:a5: d0:36:07:d1:7a:52:31:5e:cd:49:57:40:4f:38:a9: aa:b9:75:46:25:76:26:6a:92:be:4d:60:e1:7f:e8: 48:fe:70:b6:c0:7e:65:ed:c8:b2:2a:a7:54:37:38: ef:11:96:06:ef:a9:a9:61:64:e0:92:49:03:92:bb: e2:21:42:7d:02:7d:26:b1:da:f9:51:ae:48:52:e4: 7b:69:78:40:28:f1:63:c8:e0:75:ad:0b:cd:94:4e: c6:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:5C:69:85:66:AC:48:84:97:15:BC:AC:20:31:E3:FE:9D:88:92:AD X509v3 Authority Key Identifier: keyid:95:E8:00:EB:FF:64:70:98:92:CB:57:41:D9:ED:C7:5E:E7:4E:2A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130342e302f32322d3232203d3e203633343937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.104.0/22 Signature Algorithm: sha256WithRSAEncryption 12:5f:f1:9d:8b:e5:64:32:38:4e:b8:63:d9:33:2a:57:ba:bf: 8c:85:1c:c3:95:bb:dd:3b:3b:78:b4:94:16:b7:88:f2:28:ed: 9f:51:76:b6:81:72:a4:d6:51:4f:3e:a9:a5:5e:14:9d:8a:d3: c7:7b:73:26:22:9c:25:83:bd:bc:2d:ee:ac:15:ca:fd:1d:d7: 5a:9f:8e:3b:e1:2b:e6:47:c9:5f:14:cb:ab:80:af:5b:94:68: 64:bb:fc:ed:93:2d:1f:36:79:b3:4e:59:94:55:2d:76:08:db: 80:36:bd:eb:5b:65:1f:1c:e4:0c:55:ac:5d:e8:2c:1e:0b:4d: 5b:9c:a0:c8:8c:fc:fc:1e:71:90:83:9e:86:83:9c:eb:d4:08: 4a:a6:49:33:25:06:0d:52:50:35:a3:ba:30:f3:c1:7d:80:29: 59:5e:37:a3:67:fb:ae:f8:e5:47:91:b0:f8:e9:23:3c:6e:85: f0:3e:d9:db:62:0d:28:7e:e1:d4:5d:c9:4a:8d:a7:5d:5e:de: d8:95:d1:27:34:9c:fd:6a:44:52:7b:07:c0:2d:c6:ca:c4:e7: 7b:76:25:58:63:0c:c1:d3:20:f9:27:ce:a5:1c:9b:c0:9c:ae: 86:c1:32:1f:d3:48:a0:20:ca:fc:9c:b4:0c:fa:25:07:28:78: 84:ab:2e:d8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEGKh10GUqg7jmqgGxVfpQYW0tkUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVFODAwRUJGRjY0NzA5ODkyQ0I1NzQxRDlFREM3NUVF NzRFMkE2RDAeFw0yNTA2MDIwMTU5MzVaFw0yNjA2MDEwMjA0MzVaMDMxMTAvBgNV BAMTKDg4NUM2OTg1NjZBQzQ4ODQ5NzE1QkNBQzIwMzFFM0ZFOUQ4ODkyQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzpPOxWWT7zuNr1ouHj1u9LIXC nEoyRH4YI8WCJBStsZatrQDKo1wbKLgpPeCG/LQ7Ej5qgeRWWzDuJ2y7wY/b3UHM jQIMuL5Y29x+6+miq4u86G8HEpU1QF4ECDH2/DxR1yPQvhmlbkSZXYiJhnQX/sLr E4x9LADgKXCpEfDvSxi77UmoMfCDCiDo5h79AjyZRAgFezbSqJI+mjDhi2Ci6eLp pdA2B9F6UjFezUlXQE84qaq5dUYldiZqkr5NYOF/6Ej+cLbAfmXtyLIqp1Q3OO8R lgbvqalhZOCSSQOSu+IhQn0CfSax2vlRrkhS5HtpeEAo8WPI4HWtC82UTsZRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUiFxphWasSISXFbysIDHj/p2Ikq0wHwYDVR0j BBgwFoAUlegA6/9kcJiSy1dB2e3HXudOKm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NmI1YWUxZS1iZTY2LTRhMzAtYTk0OC03ZDQ3OGMyMmVhMmIvMC85NUU4MDBFQkZG NjQ3MDk4OTJDQjU3NDFEOUVEQzc1RUU3NEUyQTZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVFODAwRUJGRjY0NzA5ODkyQ0I1NzQxRDlFREM3NUVFNzRF MkE2RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y2YjVhZTFlLWJlNjYtNGEzMC1h OTQ4LTdkNDc4YzIyZWEyYi8wLzMxMzAzMzJlMzEzMzM0MmUzMTMwMzQyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzNjMzMzQzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ4ZoMA0GCSqG SIb3DQEBCwUAA4IBAQASX/Gdi+VkMjhOuGPZMypXur+MhRzDlbvdOzt4tJQWt4jy KO2fUXa2gXKk1lFPPqmlXhSditPHe3MmIpwlg728Le6sFcr9Hddan4474SvmR8lf FMurgK9blGhku/ztky0fNnmzTlmUVS12CNuANr3rW2UfHOQMVaxd6CweC01bnKDI jPz8HnGQg56Gg5zr1AhKpkkzJQYNUlA1o7ow88F9gClZXjejZ/uu+OVHkbD46SM8 boXwPtnbYg0ofuHUXclKjaddXt7YldEnNJz9akRSewfALcbKxOd7diVYYwzB0yD5 J86lHJvAnK6GwTIf00igIMr8nLQM+iUHKHiEqy7Y -----END CERTIFICATE-----Generated at Wed Dec 3 16:53:07 2025 by rpki-client