This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3132342e3130392e32332e302f32342d3234203d3e203538333738.roa File: 3132342e3130392e32332e302f32342d3234203d3e203538333738.roa (raw, json) Hash identifier: E8p39FK+OhNYyY8SwwTjQ8JEs2K6blfiyf4IMTEJdyY= Subject key identifier: D3:03:F6:0A:23:A4:08:F9:99:56:AA:A5:67:23:39:20:EB:3A:F1:7A Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Certificate serial: 5E696C250B51A1865F423A13394BD976E20C4F8D Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3132342e3130392e32332e302f32342d3234203d3e203538333738.roa Signing time: Thu 06 Nov 2025 05:16:14 +0000 ROA not before: Thu 06 Nov 2025 05:11:14 +0000 ROA not after: Thu 05 Nov 2026 05:16:14 +0000 asID: 58378 IP address blocks: 124.109.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:05:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:69:6c:25:0b:51:a1:86:5f:42:3a:13:39:4b:d9:76:e2:0c:4f:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Validity Not Before: Nov 6 05:11:14 2025 GMT Not After : Nov 5 05:16:14 2026 GMT Subject: CN=D303F60A23A408F99956AAA567233920EB3AF17A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:3f:72:5d:a5:17:2f:6a:4b:24:64:a4:08:52: be:bd:b2:1f:18:ed:75:ae:2b:38:7a:04:89:01:5b: 47:34:71:7d:2a:0e:ef:2b:22:84:82:ec:23:47:3b: 87:fa:cc:66:b9:a4:12:0b:fd:d3:a9:65:53:51:f3: b7:49:c9:54:13:f6:b6:77:b3:50:ea:a5:84:32:aa: 5d:38:10:98:7e:e2:b9:31:86:e3:55:0d:d5:fa:5a: 96:5e:b9:da:ef:db:be:2f:4a:6c:7f:5c:a9:3c:d3: 6a:64:7a:e9:8a:47:90:23:f8:07:7b:dc:98:6c:9f: 46:fb:4e:48:07:e9:13:28:97:99:32:0a:99:35:69: ee:4f:1c:bb:e4:e9:3d:ac:ae:c0:2f:74:b9:6b:33: 44:14:90:e6:48:1e:e1:d5:d8:62:60:fa:6f:53:56: 15:86:f8:bb:6e:ee:06:1a:99:8c:7c:cb:cf:a0:62: d3:17:dd:73:6f:7b:ed:54:26:32:77:22:0c:6e:b6: 47:cc:0f:20:d5:8a:81:80:22:35:eb:62:7d:03:93: 0f:f6:cf:bc:2f:e0:59:fe:19:05:3c:8d:d1:d8:dd: d5:f4:63:04:fb:5e:50:8a:50:81:3b:58:7d:a9:95: e8:0f:f4:b3:a8:80:b6:89:b4:19:09:35:22:a1:13: a1:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:03:F6:0A:23:A4:08:F9:99:56:AA:A5:67:23:39:20:EB:3A:F1:7A X509v3 Authority Key Identifier: keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/3132342e3130392e32332e302f32342d3234203d3e203538333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.109.23.0/24 Signature Algorithm: sha256WithRSAEncryption 74:9f:3d:cc:15:ee:82:53:de:99:53:d4:65:69:97:60:fe:d9: e7:2d:22:63:e4:02:cd:c0:75:59:d4:34:17:c4:3f:cd:27:fb: 19:79:57:0c:84:6f:9a:67:df:21:e6:0c:b6:7d:f0:e7:6f:ca: d6:5a:c0:28:d8:63:3e:1f:e2:04:a0:8c:27:39:84:e5:be:f3: 27:e6:82:1f:8e:cc:a9:5e:97:bb:99:02:b1:43:b8:d6:63:27: c2:96:ea:4e:02:a3:67:e0:60:73:13:3b:81:e8:d6:9d:ea:77: 20:e0:97:df:8a:5b:5a:d4:e3:9b:42:db:94:a7:1c:2f:dc:63: c2:b0:3c:44:46:f5:d0:ea:81:69:b7:93:e6:a3:cc:6d:be:d1: 04:a2:2b:1f:cb:c2:72:03:e2:07:47:fc:ec:c5:bb:2a:db:39: 55:cf:62:89:d4:2e:66:a6:9d:bc:35:6f:99:4d:d9:ed:c2:c8: ae:75:dd:29:65:df:af:49:b5:10:ef:a3:ca:42:1e:7d:82:b4: e9:93:bf:d8:c0:24:a3:c6:96:bb:35:85:a4:11:ff:01:83:d5: c0:14:c0:7f:d6:f3:eb:41:59:aa:7d:24:e4:90:be:8f:b3:9e: ad:6d:6a:fa:67:df:27:ce:d4:dc:fc:6b:43:e1:67:28:0f:a9: ee:00:09:c5 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXmlsJQtRoYZfQjoTOUvZduIMT40wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBD RjlBNjQ3MzAeFw0yNTExMDYwNTExMTRaFw0yNjExMDUwNTE2MTRaMDMxMTAvBgNV BAMTKEQzMDNGNjBBMjNBNDA4Rjk5OTU2QUFBNTY3MjMzOTIwRUIzQUYxN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRP3JdpRcvakskZKQIUr69sh8Y 7XWuKzh6BIkBW0c0cX0qDu8rIoSC7CNHO4f6zGa5pBIL/dOpZVNR87dJyVQT9rZ3 s1DqpYQyql04EJh+4rkxhuNVDdX6WpZeudrv274vSmx/XKk802pkeumKR5Aj+Ad7 3Jhsn0b7TkgH6RMol5kyCpk1ae5PHLvk6T2srsAvdLlrM0QUkOZIHuHV2GJg+m9T VhWG+Ltu7gYamYx8y8+gYtMX3XNve+1UJjJ3IgxutkfMDyDVioGAIjXrYn0Dkw/2 z7wv4Fn+GQU8jdHY3dX0YwT7XlCKUIE7WH2plegP9LOogLaJtBkJNSKhE6GpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0wP2CiOkCPmZVqqlZyM5IOs68XowHwYDVR0j BBgwFoAUIo51K7+4wWs7RvPTiOztUM+aZHMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MTdlZmQyYS0wMmFiLTQyMDItOTcwZi1mNjk5ZGZmOTdkZTUvMC8yMjhFNzUyQkJG QjhDMTZCM0I0NkYzRDM4OEVDRUQ1MENGOUE2NDczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBDRjlB NjQ3My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxN2VmZDJhLTAyYWItNDIwMi05 NzBmLWY2OTlkZmY5N2RlNS8wLzMxMzIzNDJlMzEzMDM5MmUzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHxtFzANBgkqhkiG 9w0BAQsFAAOCAQEAdJ89zBXuglPemVPUZWmXYP7Z5y0iY+QCzcB1WdQ0F8Q/zSf7 GXlXDIRvmmffIeYMtn3w52/K1lrAKNhjPh/iBKCMJzmE5b7zJ+aCH47MqV6Xu5kC sUO41mMnwpbqTgKjZ+BgcxM7gejWnep3IOCX34pbWtTjm0LblKccL9xjwrA8REb1 0OqBabeT5qPMbb7RBKIrH8vCcgPiB0f87MW7Kts5Vc9iidQuZqadvDVvmU3Z7cLI rnXdKWXfr0m1EO+jykIefYK06ZO/2MAko8aWuzWFpBH/AYPVwBTAf9bz60FZqn0k 5JC+j7OerW1q+mffJ87U3PxrQ+FnKA+p7gAJxQ== -----END CERTIFICATE-----Generated at Wed Dec 3 16:19:35 2025 by rpki-client