This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/3130332e3139312e3135322e302f32332d3233203d3e203338353234.roa File: 3130332e3139312e3135322e302f32332d3233203d3e203338353234.roa (raw, json) Hash identifier: nfbRSnlG//ZRSW6EOv/DCvXGN1H1XD0xJADQSEpFd9M= Subject key identifier: 9C:81:69:F6:AC:29:B0:5E:71:D3:68:16:49:39:C4:D3:04:48:E2:61 Certificate issuer: /CN=28ABF8522A43CF7CC7257905A5BA3E50431F0F47 Certificate serial: 1FD5D8CC68CA2F5D686DAA4CEE30E10F82F61529 Authority key identifier: 28:AB:F8:52:2A:43:CF:7C:C7:25:79:05:A5:BA:3E:50:43:1F:0F:47 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/3130332e3139312e3135322e302f32332d3233203d3e203338353234.roa Signing time: Tue 09 Dec 2025 16:38:27 +0000 ROA not before: Tue 09 Dec 2025 16:33:27 +0000 ROA not after: Tue 08 Dec 2026 16:38:27 +0000 asID: 38524 IP address blocks: 103.191.152.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.crl rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 17:55:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:d5:d8:cc:68:ca:2f:5d:68:6d:aa:4c:ee:30:e1:0f:82:f6:15:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28ABF8522A43CF7CC7257905A5BA3E50431F0F47 Validity Not Before: Dec 9 16:33:27 2025 GMT Not After : Dec 8 16:38:27 2026 GMT Subject: CN=9C8169F6AC29B05E71D368164939C4D30448E261 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e1:8f:85:0c:b3:4d:61:86:3e:32:d6:d7:47: 39:5c:36:ee:d8:b0:5e:31:1a:6b:00:1d:4a:fe:b9: bc:80:15:57:a4:91:22:d4:33:c2:6e:97:16:5d:11: 82:45:5d:9a:8f:c1:1c:e4:24:41:2d:91:66:f8:10: 53:1c:5f:30:f5:a0:ba:ed:29:d0:a1:d4:3f:47:91: e8:02:bb:df:ac:29:27:7d:5e:fe:53:4c:fe:ff:d4: 90:da:72:25:9c:49:01:a7:ea:d1:33:85:c1:f2:d1: 73:1d:e7:f6:ea:cb:ca:f1:65:62:7a:31:05:90:f5: a9:01:09:bc:4b:3a:87:3f:0c:f1:a7:6c:d2:31:1b: 3e:7c:83:86:12:64:60:2c:39:a6:cf:9d:8d:af:35: 1b:5d:69:5c:f1:1d:87:32:80:2d:9c:ff:49:0d:3b: 9a:1b:61:2f:3f:46:8d:be:43:5d:9b:f2:3d:2d:2b: e2:82:39:d9:e7:83:03:77:8a:22:9d:55:37:d4:f8: 07:7b:86:fa:31:74:f8:1c:86:19:e7:54:dc:36:7b: 1b:42:7f:49:41:98:97:41:df:6a:84:1c:36:d6:b7: 6a:bd:66:29:d1:ac:c2:7d:ba:d4:19:ea:5d:20:b0: 21:40:ef:ad:c8:94:9d:1f:da:9b:f0:6a:90:85:ff: e9:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:81:69:F6:AC:29:B0:5E:71:D3:68:16:49:39:C4:D3:04:48:E2:61 X509v3 Authority Key Identifier: keyid:28:AB:F8:52:2A:43:CF:7C:C7:25:79:05:A5:BA:3E:50:43:1F:0F:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28ABF8522A43CF7CC7257905A5BA3E50431F0F47.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26a6ca12-b287-4ac7-87b8-6cd73353e67f/0/3130332e3139312e3135322e302f32332d3233203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.152.0/23 Signature Algorithm: sha256WithRSAEncryption 21:2c:5c:ae:2d:cd:51:fb:d0:fb:e7:2a:d5:69:17:c3:16:f5: 1c:81:cd:21:eb:5d:c0:1e:c5:e5:eb:46:67:11:bc:8f:04:2e: cb:bd:92:27:49:fa:9a:fb:04:03:79:c1:88:fd:7c:fe:fd:41: 0f:8a:d1:c0:b4:75:38:cb:7a:3c:c4:ed:06:6d:f2:24:f7:57: 8f:c1:1f:6a:f6:16:b0:08:f2:f7:59:d8:6b:50:38:fd:dc:cb: d6:1e:4c:17:06:43:7b:8a:c3:64:e8:82:9a:57:5c:7c:59:36: 94:45:01:0a:df:48:61:bb:5b:ea:f7:05:12:27:a1:97:21:c9: 6f:13:0c:2b:93:80:ee:58:71:1c:e7:b4:6f:20:d1:5e:23:71: 2d:e4:d5:a8:65:4e:55:cc:58:e3:59:23:e9:c8:c7:ee:77:43: fe:3c:42:05:96:50:2d:43:ad:e8:2c:3c:4d:b0:c8:70:c6:93: f1:7f:58:fd:32:09:37:b3:f7:21:99:26:29:76:00:d3:1a:55: 38:dc:00:2a:58:a0:0d:2a:d9:11:ad:34:f5:07:2e:1f:31:fb: 17:3b:7f:2a:8a:bd:39:17:5a:e8:5a:95:f9:89:ce:e4:5b:0d: a7:c1:e5:2f:ed:f7:47:ee:9f:ed:fb:a1:ce:01:84:81:52:bb: 12:09:16:05 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUH9XYzGjKL11obapM7jDhD4L2FSkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhBQkY4NTIyQTQzQ0Y3Q0M3MjU3OTA1QTVCQTNFNTA0 MzFGMEY0NzAeFw0yNTEyMDkxNjMzMjdaFw0yNjEyMDgxNjM4MjdaMDMxMTAvBgNV BAMTKDlDODE2OUY2QUMyOUIwNUU3MUQzNjgxNjQ5MzlDNEQzMDQ0OEUyNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG4Y+FDLNNYYY+MtbXRzlcNu7Y sF4xGmsAHUr+ubyAFVekkSLUM8JulxZdEYJFXZqPwRzkJEEtkWb4EFMcXzD1oLrt KdCh1D9HkegCu9+sKSd9Xv5TTP7/1JDaciWcSQGn6tEzhcHy0XMd5/bqy8rxZWJ6 MQWQ9akBCbxLOoc/DPGnbNIxGz58g4YSZGAsOabPnY2vNRtdaVzxHYcygC2c/0kN O5obYS8/Ro2+Q12b8j0tK+KCOdnngwN3iiKdVTfU+Ad7hvoxdPgchhnnVNw2extC f0lBmJdB32qEHDbWt2q9ZinRrMJ9utQZ6l0gsCFA763IlJ0f2pvwapCF/+lrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnIFp9qwpsF5x02gWSTnE0wRI4mEwHwYDVR0j BBgwFoAUKKv4UipDz3zHJXkFpbo+UEMfD0cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmE2Y2ExMi1iMjg3LTRhYzctODdiOC02Y2Q3MzM1M2U2N2YvMC8yOEFCRjg1MjJB NDNDRjdDQzcyNTc5MDVBNUJBM0U1MDQzMUYwRjQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjhBQkY4NTIyQTQzQ0Y3Q0M3MjU3OTA1QTVCQTNFNTA0MzFG MEY0Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2YTZjYTEyLWIyODctNGFjNy04 N2I4LTZjZDczMzUzZTY3Zi8wLzMxMzAzMzJlMzEzOTMxMmUzMTM1MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7+YMA0GCSqG SIb3DQEBCwUAA4IBAQAhLFyuLc1R+9D75yrVaRfDFvUcgc0h613AHsXl60ZnEbyP BC7LvZInSfqa+wQDecGI/Xz+/UEPitHAtHU4y3o8xO0GbfIk91ePwR9q9hawCPL3 WdhrUDj93MvWHkwXBkN7isNk6IKaV1x8WTaURQEK30hhu1vq9wUSJ6GXIclvEwwr k4DuWHEc57RvINFeI3Et5NWoZU5VzFjjWSPpyMfud0P+PEIFllAtQ63oLDxNsMhw xpPxf1j9Mgk3s/chmSYpdgDTGlU43AAqWKANKtkRrTT1By4fMfsXO38qir05F1ro WpX5ic7kWw2nweUv7fdH7p/t+6HOAYSBUrsSCRYF -----END CERTIFICATE-----Generated at Sat Dec 20 15:59:34 2025 by rpki-client