This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131392e302f32342d3234203d3e203338353233.roa File: 3131372e37342e3131392e302f32342d3234203d3e203338353233.roa (raw, json) Hash identifier: xNJ7kcT79xuTCgJoNY2LlV0p8gctQ3BS6QaupCIi9OQ= Subject key identifier: 08:EB:B1:9E:48:08:6A:D4:9E:C1:1F:EB:E8:D2:44:3E:74:07:63:0C Certificate issuer: /CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F Certificate serial: 38A3203E2BF09C8D60EC99FCD826E85726157215 Authority key identifier: 1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131392e302f32342d3234203d3e203338353233.roa Signing time: Fri 04 Jul 2025 15:00:02 +0000 ROA not before: Fri 04 Jul 2025 14:55:02 +0000 ROA not after: Fri 03 Jul 2026 15:00:02 +0000 asID: 38523 IP address blocks: 117.74.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 01:46:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:a3:20:3e:2b:f0:9c:8d:60:ec:99:fc:d8:26:e8:57:26:15:72:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F Validity Not Before: Jul 4 14:55:02 2025 GMT Not After : Jul 3 15:00:02 2026 GMT Subject: CN=08EBB19E48086AD49EC11FEBE8D2443E7407630C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:79:d6:62:e8:7f:0b:a8:4d:a0:7a:10:12:29: 26:a8:19:bf:1a:35:64:af:18:c1:3c:5d:1c:92:b7: dd:8a:1a:0a:d5:26:ab:ca:ce:fd:18:3c:d2:be:c4: 08:7c:a4:e8:4a:2d:26:a0:4a:0f:38:df:c0:92:0b: 4b:27:a1:69:d8:2f:3b:3c:7c:6f:c0:1b:ae:bd:60: fa:28:4d:6c:16:12:c1:a3:c9:b9:f0:b4:a5:f9:b9: 71:90:a5:64:4b:83:d5:3d:cb:b0:ec:6b:09:cd:bb: a4:97:64:f8:f4:16:7a:48:ea:fb:bd:6a:ac:d2:1f: 83:9f:18:72:df:94:a1:98:a8:af:8c:69:b0:fe:9d: 87:f5:d5:12:d0:8f:35:9e:43:d8:f3:16:20:a2:22: af:ec:97:2e:8f:1c:98:29:85:9f:f4:ed:9e:82:3e: a2:b3:10:19:64:47:fd:e1:8c:f1:d5:75:53:57:be: 78:49:c3:97:ff:f6:5b:8c:d6:80:5b:5e:6b:85:fb: 2d:74:ef:72:e0:96:39:88:e1:85:8c:06:3d:ba:0c: 12:59:ca:ce:dc:53:1c:94:c8:39:57:45:d5:42:b1: f3:03:5e:41:8d:08:ae:45:3d:ed:54:c3:a9:36:d3: 1e:7e:a3:70:7a:39:12:b7:9a:30:b9:2b:2b:50:c6: cf:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:EB:B1:9E:48:08:6A:D4:9E:C1:1F:EB:E8:D2:44:3E:74:07:63:0C X509v3 Authority Key Identifier: keyid:1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/3131372e37342e3131392e302f32342d3234203d3e203338353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.74.119.0/24 Signature Algorithm: sha256WithRSAEncryption 24:68:db:df:12:80:9e:69:9f:c0:87:fb:34:ce:8b:43:9e:f1: bb:ab:59:b2:c7:1a:de:d5:84:99:c2:df:cc:e8:b4:c1:1e:db: f0:0a:63:ac:86:7d:1d:71:ad:b6:09:0e:fc:7b:b5:f2:e7:80: a7:a2:25:c4:b7:06:dc:5f:d9:48:44:66:24:ae:b2:28:57:d1: 84:f9:89:b7:37:35:61:6e:e3:ca:3c:e4:15:7c:32:7f:8e:99: 85:0b:58:e6:90:2d:83:a3:6c:8b:42:b9:7d:5c:7a:69:b5:dc: a6:c9:4a:3f:37:2a:41:1d:2d:ea:22:53:e1:21:8a:9f:5c:22: df:9b:3e:2d:69:d6:3d:73:c5:46:c2:cb:c0:c5:12:56:bd:f2: 83:97:13:90:cc:e2:fb:54:47:5c:33:6c:c9:34:71:c5:aa:c2: 03:e7:52:bf:ce:57:52:68:d9:87:9e:9f:a4:f9:c7:1a:23:85: e4:84:4d:b4:8a:24:d3:57:0f:75:8a:bc:77:db:d0:92:e9:5c: b8:0c:5e:e1:9b:06:9f:cc:69:8a:a5:f1:e7:59:06:ec:4d:af: e3:bc:92:94:c1:96:6d:0f:0e:93:a6:02:8f:f6:5a:bd:8f:95: e4:8d:55:86:88:c9:b8:5a:e8:d0:d3:e5:35:5f:be:97:fc:53: 43:bd:e8:85 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOKMgPivwnI1g7Jn82CboVyYVchUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJDNDk3RDBBRDBBREE4MDY4M0E0QUQxN0M2MEI4N0I2 MDM5NDQ4RjAeFw0yNTA3MDQxNDU1MDJaFw0yNjA3MDMxNTAwMDJaMDMxMTAvBgNV BAMTKDA4RUJCMTlFNDgwODZBRDQ5RUMxMUZFQkU4RDI0NDNFNzQwNzYzMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxedZi6H8LqE2gehASKSaoGb8a NWSvGME8XRySt92KGgrVJqvKzv0YPNK+xAh8pOhKLSagSg8438CSC0snoWnYLzs8 fG/AG669YPooTWwWEsGjybnwtKX5uXGQpWRLg9U9y7DsawnNu6SXZPj0FnpI6vu9 aqzSH4OfGHLflKGYqK+MabD+nYf11RLQjzWeQ9jzFiCiIq/sly6PHJgphZ/07Z6C PqKzEBlkR/3hjPHVdVNXvnhJw5f/9luM1oBbXmuF+y1073LgljmI4YWMBj26DBJZ ys7cUxyUyDlXRdVCsfMDXkGNCK5FPe1Uw6k20x5+o3B6ORK3mjC5KytQxs81AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUCOuxnkgIatSewR/r6NJEPnQHYwwwHwYDVR0j BBgwFoAUG8SX0K0K2oBoOkrRfGC4e2A5RI8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NTVhMWE0NC0zMzdkLTRkYjQtOTBkNy01YmQ0ZjM3MjE0YjgvMC8xQkM0OTdEMEFE MEFEQTgwNjgzQTRBRDE3QzYwQjg3QjYwMzk0NDhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJDNDk3RDBBRDBBREE4MDY4M0E0QUQxN0M2MEI4N0I2MDM5 NDQ4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1NWExYTQ0LTMzN2QtNGRiNC05 MGQ3LTViZDRmMzcyMTRiOC8wLzMxMzEzNzJlMzczNDJlMzEzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHVKdzANBgkqhkiG 9w0BAQsFAAOCAQEAJGjb3xKAnmmfwIf7NM6LQ57xu6tZssca3tWEmcLfzOi0wR7b 8ApjrIZ9HXGttgkO/Hu18ueAp6IlxLcG3F/ZSERmJK6yKFfRhPmJtzc1YW7jyjzk FXwyf46ZhQtY5pAtg6Nsi0K5fVx6abXcpslKPzcqQR0t6iJT4SGKn1wi35s+LWnW PXPFRsLLwMUSVr3yg5cTkMzi+1RHXDNsyTRxxarCA+dSv85XUmjZh56fpPnHGiOF 5IRNtIok01cPdYq8d9vQkulcuAxe4ZsGn8xpiqXx51kG7E2v47ySlMGWbQ8Ok6YC j/ZavY+V5I1VhojJuFro0NPlNV++l/xTQ73ohQ== -----END CERTIFICATE-----Generated at Wed Dec 3 16:50:54 2025 by rpki-client