This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3230322e312e3233362e302f32342d3234203d3e203435373233.roa File: 3230322e312e3233362e302f32342d3234203d3e203435373233.roa (raw, json) Hash identifier: BHHFTjLTNMFtSq5idTfwLT9M3wuRjM3mExKv2SVRdKc= Subject key identifier: B9:E5:CE:64:7C:1A:95:42:8F:EB:BF:1B:C2:6A:D3:B5:91:68:18:E7 Certificate issuer: /CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25 Certificate serial: 02A1A287A0EB02914AF828198E00710E4FAD765D Authority key identifier: 3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3230322e312e3233362e302f32342d3234203d3e203435373233.roa Signing time: Fri 28 Nov 2025 04:00:00 +0000 ROA not before: Fri 28 Nov 2025 03:55:00 +0000 ROA not after: Fri 27 Nov 2026 04:00:00 +0000 asID: 45723 IP address blocks: 202.1.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 03:51:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:a1:a2:87:a0:eb:02:91:4a:f8:28:19:8e:00:71:0e:4f:ad:76:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25 Validity Not Before: Nov 28 03:55:00 2025 GMT Not After : Nov 27 04:00:00 2026 GMT Subject: CN=B9E5CE647C1A95428FEBBF1BC26AD3B5916818E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:43:0f:d9:d5:4c:ef:fb:f8:50:92:3e:77:8e: 0b:52:2a:67:5b:4c:e8:6a:8b:37:e0:84:f4:ff:70: 11:ff:b6:26:6f:28:0d:9f:79:6f:8f:8c:50:02:a9: 73:33:fd:73:98:90:69:17:01:6f:55:11:9b:40:53: 58:45:87:fb:4f:73:1a:07:bb:88:9b:d6:46:0e:18: 77:29:c0:24:f5:7f:72:18:a7:78:cb:19:27:d7:fc: b6:56:61:33:a0:5f:cc:9c:6e:1e:73:95:36:12:12: 66:53:47:e9:17:f3:25:6a:fd:74:92:e4:5c:45:3f: 9e:9a:1c:87:69:9a:77:1c:55:e9:73:23:e0:07:31: 83:0d:87:26:7e:19:95:10:95:13:ad:76:c6:ed:ab: 2c:67:68:4a:28:e6:af:0c:83:f2:d9:75:65:3f:1a: df:ce:b5:82:25:b5:03:76:12:98:ad:cb:5a:1b:18: be:8c:30:21:d8:83:82:7d:41:67:26:a1:4a:88:4e: a0:97:67:9f:01:18:ac:3f:dc:5b:d4:40:82:2b:79: b5:35:81:0a:75:4c:e7:ab:40:b6:60:e0:5c:f2:a1: 10:89:3a:63:4d:3e:1f:d4:75:81:1c:a1:9e:05:00: f2:47:6f:46:bd:45:71:a9:f9:72:09:f1:d0:02:6a: a7:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:E5:CE:64:7C:1A:95:42:8F:EB:BF:1B:C2:6A:D3:B5:91:68:18:E7 X509v3 Authority Key Identifier: keyid:3F:6E:9B:C5:F1:6F:1C:3A:B5:FD:63:6E:7D:E0:6F:DD:64:89:2C:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3F6E9BC5F16F1C3AB5FD636E7DE06FDD64892C25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41db3730-f499-449f-b6f2-7a5deb532b0c/0/3230322e312e3233362e302f32342d3234203d3e203435373233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.1.236.0/24 Signature Algorithm: sha256WithRSAEncryption 08:50:c8:35:f8:e2:80:12:9a:80:a2:fc:53:b7:48:2b:f5:c5: 0e:d4:ed:59:3c:02:f1:2f:b9:ae:55:2a:4e:33:50:54:4c:b3: 3f:35:de:7e:97:45:72:a6:72:33:25:b9:51:1f:0e:72:25:0e: 02:85:87:5f:e3:89:a1:9f:df:0f:df:21:32:b4:3d:b0:dc:05: 5f:5d:c8:69:d8:dc:81:9d:b8:2e:c5:a4:61:86:18:bc:41:2a: 67:33:67:22:e5:37:9c:84:0d:0b:08:bf:3b:97:ee:b2:38:20: 71:f9:b4:f8:f0:18:0f:c0:35:14:86:f5:56:76:6e:48:a4:1f: 28:39:22:cd:6b:0e:11:79:81:31:26:18:c5:05:f0:c8:8c:c1: 27:9d:c6:0c:0e:4e:90:ef:c9:57:98:e2:c8:6e:c3:8a:1d:6d: fd:3e:0b:b3:4d:66:11:50:67:d5:30:d4:8e:b6:95:c9:2b:1c: bc:c3:ed:04:1f:c2:40:8d:0e:37:df:e5:1f:fc:0f:f6:85:e3: 24:52:6a:33:2a:f4:4b:16:89:a2:ef:a9:6e:f9:5e:3b:67:33: 25:88:af:e0:ca:70:8c:d5:0c:cb:47:51:dd:5b:50:7c:f0:db: d2:78:a2:d0:73:47:1f:d7:64:7f:a8:c9:92:f5:87:3d:54:48: 46:6d:9c:d3 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUAqGih6DrApFK+CgZjgBxDk+tdl0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Y2RTlCQzVGMTZGMUMzQUI1RkQ2MzZFN0RFMDZGREQ2 NDg5MkMyNTAeFw0yNTExMjgwMzU1MDBaFw0yNjExMjcwNDAwMDBaMDMxMTAvBgNV BAMTKEI5RTVDRTY0N0MxQTk1NDI4RkVCQkYxQkMyNkFEM0I1OTE2ODE4RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Qw/Z1Uzv+/hQkj53jgtSKmdb TOhqizfghPT/cBH/tiZvKA2feW+PjFACqXMz/XOYkGkXAW9VEZtAU1hFh/tPcxoH u4ib1kYOGHcpwCT1f3IYp3jLGSfX/LZWYTOgX8ycbh5zlTYSEmZTR+kX8yVq/XSS 5FxFP56aHIdpmnccVelzI+AHMYMNhyZ+GZUQlROtdsbtqyxnaEoo5q8Mg/LZdWU/ Gt/OtYIltQN2Epity1obGL6MMCHYg4J9QWcmoUqITqCXZ58BGKw/3FvUQIIrebU1 gQp1TOerQLZg4FzyoRCJOmNNPh/UdYEcoZ4FAPJHb0a9RXGp+XIJ8dACaqdpAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUueXOZHwalUKP678bwmrTtZFoGOcwHwYDVR0j BBgwFoAUP26bxfFvHDq1/WNufeBv3WSJLCUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MWRiMzczMC1mNDk5LTQ0OWYtYjZmMi03YTVkZWI1MzJiMGMvMC8zRjZFOUJDNUYx NkYxQzNBQjVGRDYzNkU3REUwNkZERDY0ODkyQzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Y2RTlCQzVGMTZGMUMzQUI1RkQ2MzZFN0RFMDZGREQ2NDg5 MkMyNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQxZGIzNzMwLWY0OTktNDQ5Zi1i NmYyLTdhNWRlYjUzMmIwYy8wLzMyMzAzMjJlMzEyZTMyMzMzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzNzMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKAewwDQYJKoZIhvcN AQELBQADggEBAAhQyDX44oASmoCi/FO3SCv1xQ7U7Vk8AvEvua5VKk4zUFRMsz81 3n6XRXKmcjMluVEfDnIlDgKFh1/jiaGf3w/fITK0PbDcBV9dyGnY3IGduC7FpGGG GLxBKmczZyLlN5yEDQsIvzuX7rI4IHH5tPjwGA/ANRSG9VZ2bkikHyg5Is1rDhF5 gTEmGMUF8MiMwSedxgwOTpDvyVeY4shuw4odbf0+C7NNZhFQZ9Uw1I62lckrHLzD 7QQfwkCNDjff5R/8D/aF4yRSajMq9EsWiaLvqW75XjtnMyWIr+DKcIzVDMtHUd1b UHzw29J4otBzRx/XZH+oyZL1hz1USEZtnNM= -----END CERTIFICATE-----Generated at Wed Dec 3 15:48:38 2025 by rpki-client