This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3131392e34372e39302e302f32342d3234203d3e203338353237.roa File: 3131392e34372e39302e302f32342d3234203d3e203338353237.roa (raw, json) Hash identifier: I3DXvvonrBchTQI06S4LkT6TVSxWcWBTNXL8OzRmw6c= Subject key identifier: 48:29:A4:CE:45:B0:9D:DE:12:9D:37:B1:F1:3B:2A:43:9C:71:93:06 Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Certificate serial: 3362D8DE94CFAA5FEE0E0772255C3DD8670D019B Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3131392e34372e39302e302f32342d3234203d3e203338353237.roa Signing time: Mon 26 Jan 2026 11:00:02 +0000 ROA not before: Mon 26 Jan 2026 10:55:02 +0000 ROA not after: Mon 25 Jan 2027 11:00:02 +0000 asID: 38527 IP address blocks: 119.47.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 05:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:62:d8:de:94:cf:aa:5f:ee:0e:07:72:25:5c:3d:d8:67:0d:01:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Validity Not Before: Jan 26 10:55:02 2026 GMT Not After : Jan 25 11:00:02 2027 GMT Subject: CN=4829A4CE45B09DDE129D37B1F13B2A439C719306 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f6:f5:ee:74:df:16:5e:2c:f9:73:32:b4:1e: 18:1f:ac:f0:85:24:2d:b7:57:3d:9e:8e:85:50:81: bf:f7:04:94:af:4f:80:8f:cc:35:3f:b5:88:25:8a: ed:00:53:16:95:4f:fd:37:79:c1:ed:0c:9a:02:64: 43:0a:8c:4b:e5:c3:6b:90:10:aa:92:02:c6:82:2d: 2c:e5:d2:da:af:7e:96:67:e3:a3:73:49:1d:cf:7e: ba:48:10:a1:9d:32:3d:86:8b:13:5f:2f:55:87:47: 58:c7:83:d8:5d:58:23:d7:9a:11:41:97:58:bf:2f: a0:4f:39:3b:e9:94:19:ae:7a:e5:a1:d9:91:fc:67: 66:8b:cf:fc:05:f0:a9:42:dc:00:80:88:ff:4c:47: 53:1d:a1:e0:9e:a8:00:eb:34:58:4d:e8:ad:14:b0: f9:42:d0:0f:fd:15:db:7d:cb:fa:fc:2a:16:e1:49: 2b:9a:01:19:0e:f2:99:d7:42:a3:2b:ba:ff:d7:c2: 3e:63:a3:88:28:0e:07:7a:3e:39:0c:c9:19:49:92: 9f:6f:98:a1:14:96:9f:9e:9a:f8:47:ad:de:07:e1: aa:6e:79:44:a5:3e:bc:b7:05:1c:76:25:0c:95:42: 1c:4a:6d:49:f9:29:31:ee:68:c8:52:5b:c2:a2:ed: 03:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:29:A4:CE:45:B0:9D:DE:12:9D:37:B1:F1:3B:2A:43:9C:71:93:06 X509v3 Authority Key Identifier: keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3131392e34372e39302e302f32342d3234203d3e203338353237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.47.90.0/24 Signature Algorithm: sha256WithRSAEncryption 13:3d:a4:aa:86:a0:0a:bd:d6:a9:74:ed:f5:bb:c7:08:7a:1c: 8f:fe:e2:2c:4f:c2:20:20:56:f9:80:83:eb:bf:16:e5:24:06: b9:90:64:06:20:43:b4:2a:39:ed:5c:5d:00:2d:08:58:a9:77: 90:d6:2c:cd:a9:19:66:fb:d3:04:58:20:37:82:e5:fb:bb:e4: 80:a8:3e:cf:87:11:d9:e3:47:98:9c:ae:db:f3:09:95:46:f1: d3:c2:fb:bb:bf:8f:78:ff:00:fa:0b:4c:74:ca:0c:05:c7:69: 5e:e7:4a:41:b3:9e:7e:16:f6:97:04:d8:ce:83:fa:8f:fe:c2: 5c:be:c8:88:55:3b:81:6d:c3:f1:60:a8:47:7f:10:87:02:34: 52:e8:8a:c3:3c:a0:71:6a:07:48:42:e2:0a:98:e0:76:c3:71: 92:86:54:f7:d8:30:12:ea:fa:fc:a6:15:b7:88:35:36:c0:c7: 31:10:32:17:f8:44:62:22:c0:5d:b2:12:54:d1:79:2e:51:d7: 0c:aa:a1:82:46:52:b2:41:db:e9:60:83:d6:5a:d7:d1:33:dd: b6:2c:f1:5c:5f:17:e3:cb:58:7f:37:f7:02:bd:ae:0b:e1:79: 3d:9e:21:8f:69:82:17:1d:99:70:40:67:d7:7c:b6:b4:bb:0f: 17:51:fe:2c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUM2LY3pTPql/uDgdyJVw92GcNAZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBD RjlBNjQ3MzAeFw0yNjAxMjYxMDU1MDJaFw0yNzAxMjUxMTAwMDJaMDMxMTAvBgNV BAMTKDQ4MjlBNENFNDVCMDlEREUxMjlEMzdCMUYxM0IyQTQzOUM3MTkzMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS9vXudN8WXiz5czK0HhgfrPCF JC23Vz2ejoVQgb/3BJSvT4CPzDU/tYgliu0AUxaVT/03ecHtDJoCZEMKjEvlw2uQ EKqSAsaCLSzl0tqvfpZn46NzSR3PfrpIEKGdMj2GixNfL1WHR1jHg9hdWCPXmhFB l1i/L6BPOTvplBmueuWh2ZH8Z2aLz/wF8KlC3ACAiP9MR1MdoeCeqADrNFhN6K0U sPlC0A/9Fdt9y/r8KhbhSSuaARkO8pnXQqMruv/Xwj5jo4goDgd6PjkMyRlJkp9v mKEUlp+emvhHrd4H4apueUSlPry3BRx2JQyVQhxKbUn5KTHuaMhSW8Ki7QN5AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUSCmkzkWwnd4SnTex8TsqQ5xxkwYwHwYDVR0j BBgwFoAUIo51K7+4wWs7RvPTiOztUM+aZHMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MTdlZmQyYS0wMmFiLTQyMDItOTcwZi1mNjk5ZGZmOTdkZTUvMC8yMjhFNzUyQkJG QjhDMTZCM0I0NkYzRDM4OEVDRUQ1MENGOUE2NDczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBDRjlB NjQ3My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxN2VmZDJhLTAyYWItNDIwMi05 NzBmLWY2OTlkZmY5N2RlNS8wLzMxMzEzOTJlMzQzNzJlMzkzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzNTMyMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3L1owDQYJKoZIhvcN AQELBQADggEBABM9pKqGoAq91ql07fW7xwh6HI/+4ixPwiAgVvmAg+u/FuUkBrmQ ZAYgQ7QqOe1cXQAtCFipd5DWLM2pGWb70wRYIDeC5fu75ICoPs+HEdnjR5icrtvz CZVG8dPC+7u/j3j/APoLTHTKDAXHaV7nSkGznn4W9pcE2M6D+o/+wly+yIhVO4Ft w/FgqEd/EIcCNFLoisM8oHFqB0hC4gqY4HbDcZKGVPfYMBLq+vymFbeINTbAxzEQ Mhf4RGIiwF2yElTReS5R1wyqoYJGUrJB2+lgg9Za19Ez3bYs8VxfF+PLWH839wK9 rgvheT2eIY9pghcdmXBAZ9d8trS7DxdR/iw= -----END CERTIFICATE-----Generated at Mon Feb 2 13:03:25 2026 by rpki-client