This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232302e302f32322d3234203d3e203538333639.roa File: 32372e3132332e3232302e302f32322d3234203d3e203538333639.roa (raw, json) Hash identifier: 8RCIlTof8OpzWRVugWkrTy6fDmkuN2ThrfY4FIyZbR8= Subject key identifier: 45:01:34:6E:4F:2F:5C:D2:E1:A2:AF:AD:13:71:45:FC:23:0A:7D:95 Certificate issuer: /CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Certificate serial: 23B9AD2D717E1097BC054F5F088A5DC05F235281 Authority key identifier: A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232302e302f32322d3234203d3e203538333639.roa Signing time: Mon 22 Dec 2025 01:32:17 +0000 ROA not before: Mon 22 Dec 2025 01:27:17 +0000 ROA not after: Mon 21 Dec 2026 01:32:17 +0000 asID: 58369 IP address blocks: 27.123.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 Jan 2026 00:14:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:b9:ad:2d:71:7e:10:97:bc:05:4f:5f:08:8a:5d:c0:5f:23:52:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Validity Not Before: Dec 22 01:27:17 2025 GMT Not After : Dec 21 01:32:17 2026 GMT Subject: CN=4501346E4F2F5CD2E1A2AFAD137145FC230A7D95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c6:fe:93:f8:c0:ff:ed:b6:1b:99:d2:e9:cb: 19:40:df:a2:44:a8:94:39:da:f5:3d:c2:35:b2:76: 05:a6:09:88:d6:76:d6:52:ae:82:c7:e3:4e:a6:20: 1e:46:30:5c:d4:cb:2e:97:2c:10:00:88:48:77:cb: f6:03:99:62:c1:1d:f1:18:a5:e0:2d:4f:72:5e:2a: d6:6c:8a:2f:0a:97:5f:7f:63:b9:74:d7:c2:c8:12: 2e:fb:e5:50:ad:37:2e:5e:84:7c:27:6b:cb:e0:98: 68:bb:cf:07:77:03:b5:3b:15:ee:34:de:13:47:db: 9a:7c:3e:41:bd:b1:60:a0:02:24:68:28:dd:0c:f1: 79:1d:c8:6c:dc:5a:2f:f3:0c:53:b5:ae:b3:47:2b: d7:af:7f:d3:a4:b2:4c:ae:7d:1e:0e:2e:1f:c4:33: 0d:e0:6c:97:e6:f6:05:e0:36:83:b7:4d:c5:0d:9c: f3:a1:91:63:95:ee:d0:c3:0b:25:0b:70:45:2d:3b: d4:a6:f2:ad:30:29:6b:8e:a3:d6:d5:19:18:c3:d8: f2:26:d8:49:50:17:51:0f:f6:7a:64:08:31:89:b6: 9b:54:eb:15:48:b9:d9:08:fe:98:66:36:f7:07:ae: 8e:3a:e3:5f:d9:4a:7a:6a:6b:47:b4:1d:26:46:b3: 52:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:01:34:6E:4F:2F:5C:D2:E1:A2:AF:AD:13:71:45:FC:23:0A:7D:95 X509v3 Authority Key Identifier: keyid:A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/32372e3132332e3232302e302f32322d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.123.220.0/22 Signature Algorithm: sha256WithRSAEncryption a3:19:29:59:0a:6e:b8:6c:b2:06:5a:b9:2a:ef:15:17:6b:a7: 10:92:57:08:c7:9e:d6:76:47:57:c7:b8:76:b6:1e:bd:d5:a7: be:b4:87:5c:8d:ec:eb:c7:5e:fd:8e:fc:0f:fa:79:4a:56:ee: f3:ce:9f:46:13:20:d2:ac:b0:a2:da:52:3b:f5:0f:96:2e:74: b3:90:b7:ae:73:cd:ec:e2:dd:d4:1e:da:81:fe:a2:70:e3:5e: dd:05:c7:72:be:4a:a1:5f:96:99:ad:75:ac:38:ca:15:69:a9: 45:40:19:a5:95:2a:01:b4:81:c4:c9:34:db:cd:77:d1:c7:f8: e5:ce:f2:bd:db:bf:20:17:70:b2:f3:88:a7:63:1f:97:52:8a: 6d:23:b3:d3:1c:fa:56:06:7a:89:c4:26:d6:58:b8:ca:46:d8: 7f:e0:7c:4d:97:85:4e:f0:29:8e:0a:f3:6d:15:9e:30:19:eb: 85:ea:c1:a0:b5:3f:8d:0b:59:a9:e4:00:de:bd:ff:a9:d1:c3: bf:cc:61:9a:e7:30:85:00:26:0f:c2:07:4c:75:b5:5e:cc:2e: 5a:9f:13:df:99:e5:f5:1d:bc:27:3a:5f:eb:22:43:90:b4:74: 44:73:69:d6:59:2a:60:5b:fc:24:15:ea:8a:3f:74:d0:1a:b3: d5:c8:dc:a8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUI7mtLXF+EJe8BU9fCIpdwF8jUoEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNE MjJEMDRCODAeFw0yNTEyMjIwMTI3MTdaFw0yNjEyMjEwMTMyMTdaMDMxMTAvBgNV BAMTKDQ1MDEzNDZFNEYyRjVDRDJFMUEyQUZBRDEzNzE0NUZDMjMwQTdEOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvxv6T+MD/7bYbmdLpyxlA36JE qJQ52vU9wjWydgWmCYjWdtZSroLH406mIB5GMFzUyy6XLBAAiEh3y/YDmWLBHfEY peAtT3JeKtZsii8Kl19/Y7l018LIEi775VCtNy5ehHwna8vgmGi7zwd3A7U7Fe40 3hNH25p8PkG9sWCgAiRoKN0M8XkdyGzcWi/zDFO1rrNHK9evf9OkskyufR4OLh/E Mw3gbJfm9gXgNoO3TcUNnPOhkWOV7tDDCyULcEUtO9Sm8q0wKWuOo9bVGRjD2PIm 2ElQF1EP9npkCDGJtptU6xVIudkI/phmNvcHro4641/ZSnpqa0e0HSZGs1JVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURQE0bk8vXNLhoq+tE3FF/CMKfZUwHwYDVR0j BBgwFoAUoJWppxgGlWyQXVz3y3l4Q9ItBLgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmE4MTE4Mi03Y2ViLTQ2NWMtYTViNS1hMTRlYzczOWJmOTkvMC9BMDk1QTlBNzE4 MDY5NTZDOTA1RDVDRjdDQjc5Nzg0M0QyMkQwNEI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNEMjJE MDRCOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMyMzcyZTMxMzIzMzJlMzIzMjMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzODMzMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAht73DANBgkqhkiG 9w0BAQsFAAOCAQEAoxkpWQpuuGyyBlq5Ku8VF2unEJJXCMee1nZHV8e4drYevdWn vrSHXI3s68de/Y78D/p5Slbu886fRhMg0qywotpSO/UPli50s5C3rnPN7OLd1B7a gf6icONe3QXHcr5KoV+Wma11rDjKFWmpRUAZpZUqAbSBxMk028130cf45c7yvdu/ IBdwsvOIp2Mfl1KKbSOz0xz6VgZ6icQm1li4ykbYf+B8TZeFTvApjgrzbRWeMBnr herBoLU/jQtZqeQA3r3/qdHDv8xhmucwhQAmD8IHTHW1XswuWp8T35nl9R28Jzpf 6yJDkLR0RHNp1lkqYFv8JBXqij900Bqz1cjcqA== -----END CERTIFICATE-----Generated at Wed Dec 31 18:37:41 2025 by rpki-client