This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136302e302f32322d3234203d3e203539323831.roa File: 3133372e35392e3136302e302f32322d3234203d3e203539323831.roa (raw, json) Hash identifier: iYXHlXOp13oo14EwXL1yMlKhjy+K0NQq6QBKvwru8rQ= Subject key identifier: B9:54:1A:77:92:85:92:AE:41:6C:7F:6E:92:73:0E:DD:37:A7:79:89 Certificate issuer: /CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Certificate serial: 59B77D3EEAEDE66CA2515CA1EFBF25A193DF2708 Authority key identifier: 84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136302e302f32322d3234203d3e203539323831.roa Signing time: Mon 01 Dec 2025 09:00:00 +0000 ROA not before: Mon 01 Dec 2025 08:55:00 +0000 ROA not after: Mon 30 Nov 2026 09:00:00 +0000 asID: 59281 IP address blocks: 137.59.160.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 13:03:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:b7:7d:3e:ea:ed:e6:6c:a2:51:5c:a1:ef:bf:25:a1:93:df:27:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Validity Not Before: Dec 1 08:55:00 2025 GMT Not After : Nov 30 09:00:00 2026 GMT Subject: CN=B9541A77928592AE416C7F6E92730EDD37A77989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:31:cd:c9:04:11:80:27:9e:a6:04:98:2a:c5: 2c:c2:94:ba:32:bb:af:ce:58:0b:78:0d:96:6e:8c: e3:c2:e4:6e:5e:ac:4b:96:13:a1:9f:d6:ed:ed:fb: 8c:a3:ba:09:d1:48:55:1f:67:0c:20:42:c8:b1:5f: d4:f2:83:c2:69:31:de:f1:f6:9c:0c:c2:e5:57:49: 65:63:2f:da:5f:d3:c0:a5:de:21:04:2a:aa:2c:77: e8:21:41:b0:95:2c:28:2d:06:1f:69:20:2f:1d:6d: b1:57:df:05:05:21:ca:f8:b9:57:d0:41:cc:0d:81: 56:48:68:f5:e1:12:d3:42:84:f4:e6:bc:7e:cc:5e: f1:80:1e:05:ac:93:05:de:76:87:22:00:1d:81:f0: 5d:d1:2f:2c:78:98:67:e3:61:7c:47:94:be:62:16: 7c:c6:63:c9:71:0a:a5:8d:a5:ca:4a:3b:c6:84:02: b6:2f:ee:a8:75:3b:70:ff:39:fa:09:b0:50:d7:e3: fc:d5:55:c2:25:c6:ba:a7:fa:34:3b:86:3e:63:1c: 74:05:61:b7:4a:77:4f:9b:9e:a2:7e:3b:0f:e3:85: 5f:d6:38:04:32:82:f0:6b:5b:59:18:14:ab:d7:fe: 59:98:08:f6:e8:1e:f9:2b:68:08:a6:1f:aa:67:11: 9e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:54:1A:77:92:85:92:AE:41:6C:7F:6E:92:73:0E:DD:37:A7:79:89 X509v3 Authority Key Identifier: keyid:84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136302e302f32322d3234203d3e203539323831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 137.59.160.0/22 Signature Algorithm: sha256WithRSAEncryption 24:7f:e9:46:e0:f5:ec:1b:47:fc:a9:73:51:e8:4f:36:1a:01: dd:7f:25:ed:5e:e6:3b:95:e5:f3:a1:fa:ce:75:3f:29:62:46: 8d:d1:b2:0f:4c:17:44:61:c2:2e:29:af:21:1e:1f:cb:8a:a0: 9d:7b:ea:c8:54:ee:fd:6c:2e:d3:ca:81:e8:fb:b8:bd:15:d5: d6:dd:f9:32:c3:1a:8d:8a:88:d2:73:b8:a9:27:fe:ca:10:1f: b8:bf:f6:b3:60:56:28:c9:a7:3a:0b:e2:ed:d7:82:10:df:54: 16:fe:9a:04:ec:4a:7a:1d:6f:3f:93:88:fc:f5:1e:fe:1a:45: d8:30:39:85:96:90:85:3b:a4:97:2e:4f:7e:7b:7e:df:7f:82: 03:47:32:7f:6a:0b:b5:a4:00:e5:e2:e4:29:0e:45:44:c7:75: 09:75:ba:ef:f2:92:91:3b:44:d0:2f:10:4a:b3:02:9d:ee:02: f1:16:3e:1c:e5:20:8f:11:6e:ab:03:fc:d8:dc:79:4d:58:48: 25:7f:01:12:ce:9c:24:e3:be:b2:5e:9b:47:eb:47:70:b0:07: 96:0e:14:6a:6d:d9:ab:f0:ba:b1:da:7b:25:0b:15:55:98:d4: 03:0d:48:8f:17:5f:47:9c:75:c0:36:03:e8:3d:01:87:8d:07: 59:78:45:32 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUWbd9Purt5myiUVyh778loZPfJwgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0 ODUzMEU5RTAeFw0yNTEyMDEwODU1MDBaFw0yNjExMzAwOTAwMDBaMDMxMTAvBgNV BAMTKEI5NTQxQTc3OTI4NTkyQUU0MTZDN0Y2RTkyNzMwRUREMzdBNzc5ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbMc3JBBGAJ56mBJgqxSzClLoy u6/OWAt4DZZujOPC5G5erEuWE6Gf1u3t+4yjugnRSFUfZwwgQsixX9Tyg8JpMd7x 9pwMwuVXSWVjL9pf08Cl3iEEKqosd+ghQbCVLCgtBh9pIC8dbbFX3wUFIcr4uVfQ QcwNgVZIaPXhEtNChPTmvH7MXvGAHgWskwXedociAB2B8F3RLyx4mGfjYXxHlL5i FnzGY8lxCqWNpcpKO8aEArYv7qh1O3D/OfoJsFDX4/zVVcIlxrqn+jQ7hj5jHHQF YbdKd0+bnqJ+Ow/jhV/WOAQygvBrW1kYFKvX/lmYCPboHvkraAimH6pnEZ6/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUuVQad5KFkq5BbH9uknMO3TeneYkwHwYDVR0j BBgwFoAUhGmHSuJo4s1OmhN+3VWZx0hTDp4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2EyZDI1Yi1jYjE4LTQ1YmUtOWZhMS0xNTRjYTE1NzkyMjMvMC84NDY5ODc0QUUy NjhFMkNENEU5QTEzN0VERDU1OTlDNzQ4NTMwRTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0ODUz MEU5RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3YTJkMjViLWNiMTgtNDViZS05 ZmExLTE1NGNhMTU3OTIyMy8wLzMxMzMzNzJlMzUzOTJlMzEzNjMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzOTMyMzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAok7oDANBgkqhkiG 9w0BAQsFAAOCAQEAJH/pRuD17BtH/KlzUehPNhoB3X8l7V7mO5Xl86H6znU/KWJG jdGyD0wXRGHCLimvIR4fy4qgnXvqyFTu/Wwu08qB6Pu4vRXV1t35MsMajYqI0nO4 qSf+yhAfuL/2s2BWKMmnOgvi7deCEN9UFv6aBOxKeh1vP5OI/PUe/hpF2DA5hZaQ hTukly5Pfnt+33+CA0cyf2oLtaQA5eLkKQ5FRMd1CXW67/KSkTtE0C8QSrMCne4C 8RY+HOUgjxFuqwP82Nx5TVhIJX8BEs6cJOO+sl6bR+tHcLAHlg4Uam3Zq/C6sdp7 JQsVVZjUAw1IjxdfR5x1wDYD6D0Bh40HWXhFMg== -----END CERTIFICATE-----Generated at Wed Dec 3 16:41:00 2025 by rpki-client