This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136322e302f32342d3234203d3e203536323432.roa File: 3133372e35392e3136322e302f32342d3234203d3e203536323432.roa (raw, json) Hash identifier: 1D1ZlBAXYS6NJNH/ZoxCjjMrhPg+zHK85QsUpRWH8Rk= Subject key identifier: 5F:B0:29:B1:56:49:54:69:90:22:9C:39:B4:FE:AD:C7:74:FA:00:88 Certificate issuer: /CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Certificate serial: 357210B3FD8142A353B0CED890A0A8E918E45439 Authority key identifier: 84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136322e302f32342d3234203d3e203536323432.roa Signing time: Sat 13 Dec 2025 09:00:00 +0000 ROA not before: Sat 13 Dec 2025 08:55:00 +0000 ROA not after: Sat 12 Dec 2026 09:00:00 +0000 asID: 56242 IP address blocks: 137.59.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 04:25:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:72:10:b3:fd:81:42:a3:53:b0:ce:d8:90:a0:a8:e9:18:e4:54:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Validity Not Before: Dec 13 08:55:00 2025 GMT Not After : Dec 12 09:00:00 2026 GMT Subject: CN=5FB029B15649546990229C39B4FEADC774FA0088 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:f1:36:2d:b3:85:42:50:b0:2c:46:c7:19:05: 37:77:f1:ea:78:b1:1b:f8:77:35:62:2c:c5:c1:b2: db:43:1e:78:19:c1:39:a4:6d:00:74:5e:c0:cf:c7: d5:7d:9a:67:83:39:6c:b5:fe:19:b1:e0:88:3a:f8: 63:83:f8:98:f8:b0:10:4a:f7:8a:68:1a:07:7c:1c: fe:c9:5d:1e:49:84:ae:a1:6f:ce:b5:11:08:9e:4d: d6:20:b1:6a:fc:92:00:31:c0:7a:22:38:1d:f0:f7: 1b:43:98:f2:79:96:80:48:0a:6b:95:d0:2d:c0:eb: 68:cf:19:b0:42:3b:59:1c:0c:03:e1:70:51:3b:3f: 5d:fd:b4:e8:c3:70:d9:fa:0e:6c:df:07:40:92:20: 38:9e:1a:b9:64:9d:ef:c1:f8:dc:66:50:b2:d1:d9: c1:a4:6a:64:3c:2e:5c:92:7c:0a:9c:6c:74:01:4c: 1f:90:0b:de:e8:2d:e9:1b:8b:53:58:e6:2b:5d:77: e8:20:1c:69:47:7c:b4:b5:2a:28:71:0b:6b:17:d6: 12:ed:12:ff:73:5c:0b:e0:16:3e:13:57:f6:c9:25: 39:70:35:64:14:0c:c4:34:b3:a5:8a:36:ec:71:52: ab:24:fe:86:a1:37:1a:b9:0f:91:a4:1a:74:8a:1b: 41:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:B0:29:B1:56:49:54:69:90:22:9C:39:B4:FE:AD:C7:74:FA:00:88 X509v3 Authority Key Identifier: keyid:84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/3133372e35392e3136322e302f32342d3234203d3e203536323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 137.59.162.0/24 Signature Algorithm: sha256WithRSAEncryption c2:7d:2b:37:cd:e8:3a:a7:b6:2c:fd:4d:dc:1b:d1:34:d3:75: 4f:4e:b6:de:7b:c4:88:8a:d0:5d:3a:2e:e3:6a:92:6d:44:8c: 1b:ff:d8:b2:91:35:4a:54:97:93:20:c3:06:4f:e1:e9:57:f4: fe:61:c9:4b:42:bf:33:cf:08:a9:8f:21:c1:43:c8:b1:02:35: c0:cc:c9:17:c3:b7:ef:9f:78:87:19:51:21:37:da:c1:54:c4: 2a:54:a4:1e:80:8d:34:df:98:72:bf:03:ea:07:59:b5:06:a1: 97:aa:4f:81:69:6f:b8:91:8b:a6:be:a7:e6:ff:aa:ba:21:3d: e7:d3:bf:ed:fc:94:a4:d0:88:58:66:ad:40:72:7b:4e:cc:81: fd:01:5e:55:c7:38:9a:0e:20:ef:7d:61:fe:74:f1:e7:8f:36: a7:f4:f8:19:80:a7:d1:16:67:e1:87:b6:87:24:bf:bd:a3:3b: 39:e4:42:6a:9d:60:46:9d:fe:fa:e7:cb:02:b6:e4:ce:22:7b: 11:21:44:5f:f1:d2:9d:fb:a0:ea:1f:34:31:cd:1c:2e:32:05: cb:a4:94:62:6d:f1:80:41:48:71:c5:57:c9:46:fd:b7:bc:c7: cf:71:ff:67:5b:8e:fd:98:07:b5:52:85:34:ba:5a:ab:7c:c5: 4e:7b:db:61 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNXIQs/2BQqNTsM7YkKCo6RjkVDkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0 ODUzMEU5RTAeFw0yNTEyMTMwODU1MDBaFw0yNjEyMTIwOTAwMDBaMDMxMTAvBgNV BAMTKDVGQjAyOUIxNTY0OTU0Njk5MDIyOUMzOUI0RkVBREM3NzRGQTAwODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD38TYts4VCULAsRscZBTd38ep4 sRv4dzViLMXBsttDHngZwTmkbQB0XsDPx9V9mmeDOWy1/hmx4Ig6+GOD+Jj4sBBK 94poGgd8HP7JXR5JhK6hb861EQieTdYgsWr8kgAxwHoiOB3w9xtDmPJ5loBICmuV 0C3A62jPGbBCO1kcDAPhcFE7P139tOjDcNn6DmzfB0CSIDieGrlkne/B+NxmULLR 2cGkamQ8LlySfAqcbHQBTB+QC97oLekbi1NY5itdd+ggHGlHfLS1KihxC2sX1hLt Ev9zXAvgFj4TV/bJJTlwNWQUDMQ0s6WKNuxxUqsk/oahNxq5D5GkGnSKG0F3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUX7ApsVZJVGmQIpw5tP6tx3T6AIgwHwYDVR0j BBgwFoAUhGmHSuJo4s1OmhN+3VWZx0hTDp4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2EyZDI1Yi1jYjE4LTQ1YmUtOWZhMS0xNTRjYTE1NzkyMjMvMC84NDY5ODc0QUUy NjhFMkNENEU5QTEzN0VERDU1OTlDNzQ4NTMwRTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0ODUz MEU5RS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3YTJkMjViLWNiMTgtNDViZS05 ZmExLTE1NGNhMTU3OTIyMy8wLzMxMzMzNzJlMzUzOTJlMzEzNjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAIk7ojANBgkqhkiG 9w0BAQsFAAOCAQEAwn0rN83oOqe2LP1N3BvRNNN1T0623nvEiIrQXTou42qSbUSM G//YspE1SlSXkyDDBk/h6Vf0/mHJS0K/M88IqY8hwUPIsQI1wMzJF8O37594hxlR ITfawVTEKlSkHoCNNN+Ycr8D6gdZtQahl6pPgWlvuJGLpr6n5v+quiE959O/7fyU pNCIWGatQHJ7TsyB/QFeVcc4mg4g731h/nTx5482p/T4GYCn0RZn4Ye2hyS/vaM7 OeRCap1gRp3++ufLArbkziJ7ESFEX/HSnfug6h80Mc0cLjIFy6SUYm3xgEFIccVX yUb9t7zHz3H/Z1uO/ZgHtVKFNLpaq3zFTnvbYQ== -----END CERTIFICATE-----Generated at Fri Dec 19 14:38:38 2025 by rpki-client