This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/3230322e34332e3131362e302f32332d3234203d3e203435373037.roa File: 3230322e34332e3131362e302f32332d3234203d3e203435373037.roa (raw, json) Hash identifier: HCZA2Dkaf0AYhdHhm+/ujp4EakaURfA1i4HAbOdk6Co= Subject key identifier: CB:4B:69:82:28:6D:2F:31:9D:7E:7C:43:F4:1F:1C:77:10:24:95:1B Certificate issuer: /CN=754BC04892430632A8C965AF4C5B71C59B2A3CCB Certificate serial: 04B147345495F0B7AA6ED62689DF02B777332F84 Authority key identifier: 75:4B:C0:48:92:43:06:32:A8:C9:65:AF:4C:5B:71:C5:9B:2A:3C:CB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/754BC04892430632A8C965AF4C5B71C59B2A3CCB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/3230322e34332e3131362e302f32332d3234203d3e203435373037.roa Signing time: Fri 28 Nov 2025 08:02:30 +0000 ROA not before: Fri 28 Nov 2025 07:57:30 +0000 ROA not after: Fri 27 Nov 2026 08:02:30 +0000 asID: 45707 IP address blocks: 202.43.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/754BC04892430632A8C965AF4C5B71C59B2A3CCB.crl rsync://repo-rpki.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/754BC04892430632A8C965AF4C5B71C59B2A3CCB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/754BC04892430632A8C965AF4C5B71C59B2A3CCB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 00:13:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:b1:47:34:54:95:f0:b7:aa:6e:d6:26:89:df:02:b7:77:33:2f:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=754BC04892430632A8C965AF4C5B71C59B2A3CCB Validity Not Before: Nov 28 07:57:30 2025 GMT Not After : Nov 27 08:02:30 2026 GMT Subject: CN=CB4B6982286D2F319D7E7C43F41F1C771024951B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:dc:c6:f8:f7:3d:0b:eb:16:76:ba:e4:97:7d: fc:6d:ff:10:80:fd:a5:e9:cf:38:6f:7f:1e:a6:2a: 64:26:45:0f:93:d7:11:1d:24:94:0d:5b:4c:1f:e1: b9:75:ce:e0:1f:24:79:39:08:47:d1:1b:fe:34:a1: cb:52:ba:15:45:1d:f7:80:f1:5a:09:4b:ff:9a:7c: f6:1a:4c:3e:18:5f:94:a7:c1:18:e4:f6:1c:03:ad: 11:e1:cb:48:86:6f:2e:c4:7c:d7:f5:8b:11:83:d7: 20:0b:31:58:71:45:61:09:ce:91:13:af:b4:4d:0f: 93:61:da:16:65:ab:cb:65:4f:46:d5:54:05:57:bd: 67:61:4e:29:95:bf:1b:bf:8e:cc:2a:74:8d:85:33: 7b:91:57:d9:a9:f5:b3:57:e0:32:d0:2b:c3:57:59: 08:38:6b:a7:3a:29:f1:45:7c:cc:9c:7e:cb:49:4c: c4:5c:a7:c0:dc:51:bd:ca:8e:93:44:22:93:41:6b: 1f:f1:64:9e:29:7c:01:48:0d:04:a3:38:0d:fe:68: ff:4b:4e:04:bb:94:a4:a5:bc:05:09:37:78:f2:64: 27:d8:3f:55:79:be:09:3b:49:1f:fb:64:fb:e9:70: 7e:34:2f:89:54:1e:f0:03:c9:05:4e:d9:21:fb:9c: 66:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:4B:69:82:28:6D:2F:31:9D:7E:7C:43:F4:1F:1C:77:10:24:95:1B X509v3 Authority Key Identifier: keyid:75:4B:C0:48:92:43:06:32:A8:C9:65:AF:4C:5B:71:C5:9B:2A:3C:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/754BC04892430632A8C965AF4C5B71C59B2A3CCB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/754BC04892430632A8C965AF4C5B71C59B2A3CCB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20d2bde4-056b-45c6-80bf-f5d4d277336b/0/3230322e34332e3131362e302f32332d3234203d3e203435373037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.116.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:75:6a:2e:ab:4c:ad:67:06:42:19:a7:96:77:4e:40:0d:1f: 4b:d9:30:27:d4:42:a7:b5:88:5e:bb:90:f9:ba:2f:2a:9f:81: e1:11:98:0e:6e:5c:bf:c1:e9:67:68:16:2a:06:0a:02:1a:81: e4:63:7a:87:f2:fe:70:4c:a8:ff:e3:57:18:04:b8:09:33:a9: 11:b1:5e:77:ac:b7:b1:32:83:0c:41:4e:a3:b9:fa:28:5d:3e: 92:8d:91:47:de:6c:d7:71:89:bc:cf:b8:f2:36:1b:83:dd:cb: 03:ab:a0:9c:8c:b2:be:4b:32:63:1c:a0:c7:3e:7b:b4:3c:89: c2:d0:e5:03:86:41:56:17:1d:c0:8d:ed:68:8a:ae:6e:20:1f: 1e:b7:67:21:68:25:92:65:f8:d2:91:6a:97:ff:91:ee:d8:7e: 84:a6:65:0e:8e:8d:7f:7c:9e:9b:43:be:d0:f9:e0:44:ab:14: 6e:5e:c6:41:4c:c8:51:57:be:40:de:2f:df:b5:bf:d2:4d:6b: 34:b3:0e:a2:c2:d0:1e:40:1f:1b:55:93:a4:0f:dd:48:04:70: 4e:d6:18:0d:26:8d:ae:7c:c5:ea:b7:87:1b:85:db:0b:b0:ac: 2e:a2:20:b9:a7:c2:12:20:b1:0d:2c:03:fd:7e:b2:67:67:55: e8:5f:90:23 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBLFHNFSV8LeqbtYmid8Ct3czL4QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzU0QkMwNDg5MjQzMDYzMkE4Qzk2NUFGNEM1QjcxQzU5 QjJBM0NDQjAeFw0yNTExMjgwNzU3MzBaFw0yNjExMjcwODAyMzBaMDMxMTAvBgNV BAMTKENCNEI2OTgyMjg2RDJGMzE5RDdFN0M0M0Y0MUYxQzc3MTAyNDk1MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi3Mb49z0L6xZ2uuSXffxt/xCA /aXpzzhvfx6mKmQmRQ+T1xEdJJQNW0wf4bl1zuAfJHk5CEfRG/40octSuhVFHfeA 8VoJS/+afPYaTD4YX5SnwRjk9hwDrRHhy0iGby7EfNf1ixGD1yALMVhxRWEJzpET r7RND5Nh2hZlq8tlT0bVVAVXvWdhTimVvxu/jswqdI2FM3uRV9mp9bNX4DLQK8NX WQg4a6c6KfFFfMycfstJTMRcp8DcUb3KjpNEIpNBax/xZJ4pfAFIDQSjOA3+aP9L TgS7lKSlvAUJN3jyZCfYP1V5vgk7SR/7ZPvpcH40L4lUHvADyQVO2SH7nGbtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUy0tpgihtLzGdfnxD9B8cdxAklRswHwYDVR0j BBgwFoAUdUvASJJDBjKoyWWvTFtxxZsqPMswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGQyYmRlNC0wNTZiLTQ1YzYtODBiZi1mNWQ0ZDI3NzMzNmIvMC83NTRCQzA0ODky NDMwNjMyQThDOTY1QUY0QzVCNzFDNTlCMkEzQ0NCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzU0QkMwNDg5MjQzMDYzMkE4Qzk2NUFGNEM1QjcxQzU5QjJB M0NDQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwZDJiZGU0LTA1NmItNDVjNi04 MGJmLWY1ZDRkMjc3MzM2Yi8wLzMyMzAzMjJlMzQzMzJlMzEzMTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNTM3MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcordDANBgkqhkiG 9w0BAQsFAAOCAQEAX3VqLqtMrWcGQhmnlndOQA0fS9kwJ9RCp7WIXruQ+bovKp+B 4RGYDm5cv8HpZ2gWKgYKAhqB5GN6h/L+cEyo/+NXGAS4CTOpEbFed6y3sTKDDEFO o7n6KF0+ko2RR95s13GJvM+48jYbg93LA6ugnIyyvksyYxygxz57tDyJwtDlA4ZB VhcdwI3taIqubiAfHrdnIWglkmX40pFql/+R7th+hKZlDo6Nf3yem0O+0PngRKsU bl7GQUzIUVe+QN4v37W/0k1rNLMOosLQHkAfG1WTpA/dSARwTtYYDSaNrnzF6reH G4XbC7CsLqIguafCEiCxDSwD/X6yZ2dV6F+QIw== -----END CERTIFICATE-----Generated at Wed Dec 3 15:30:42 2025 by rpki-client