This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/3230322e35302e3230302e302f32342d3234203d3e203535363936.roa File: 3230322e35302e3230302e302f32342d3234203d3e203535363936.roa (raw, json) Hash identifier: xDKJWikIXrjRI36b2TRMfKejTlJpDCcq9wjDc5XqCoc= Subject key identifier: C6:42:F6:36:D6:0C:54:13:B5:F9:2F:62:BE:40:19:30:6F:48:E4:75 Certificate issuer: /CN=B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B Certificate serial: 03B2E5FB89EEE50C15E18D913F2F070397A44877 Authority key identifier: B3:F1:DA:A6:77:09:A0:65:61:DC:9E:AC:5A:87:21:03:5E:EA:AB:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/3230322e35302e3230302e302f32342d3234203d3e203535363936.roa Signing time: Wed 26 Nov 2025 08:00:00 +0000 ROA not before: Wed 26 Nov 2025 07:55:00 +0000 ROA not after: Wed 25 Nov 2026 08:00:00 +0000 asID: 55696 IP address blocks: 202.50.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.crl rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 11:04:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:b2:e5:fb:89:ee:e5:0c:15:e1:8d:91:3f:2f:07:03:97:a4:48:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B Validity Not Before: Nov 26 07:55:00 2025 GMT Not After : Nov 25 08:00:00 2026 GMT Subject: CN=C642F636D60C5413B5F92F62BE4019306F48E475 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:68:39:38:8c:3e:e5:82:18:01:03:93:e3:96: 03:fe:7e:1e:f1:76:42:36:c2:a0:56:2e:f4:3f:ef: 8c:56:50:b9:e6:ef:a3:3a:a8:5f:74:1e:0a:f5:7e: 16:f6:57:71:8d:58:46:bf:72:65:99:a9:be:02:3f: fa:cd:c8:51:2c:18:ab:51:2c:1a:fe:ad:d1:48:23: 42:11:c8:fa:ef:c5:ca:e3:08:4b:11:5b:8a:d2:e4: 6c:7b:cb:68:45:a7:4b:3c:0a:02:ae:13:e7:8a:07: 3d:df:ae:0d:37:d3:2a:57:bb:f4:d3:36:a8:80:a5: 3f:e9:65:07:6f:0e:be:30:5b:5a:1f:16:a3:33:b9: b6:2b:c7:5a:dc:61:3c:32:e0:02:13:cc:14:89:6b: dd:26:1e:f7:1d:98:c1:5f:82:a7:e0:3b:a2:7c:f9: fd:c7:90:2c:d3:79:95:ed:01:1e:c2:93:99:72:e4: 82:29:7f:03:20:03:b7:23:4d:9d:75:8c:6a:79:f6: 8f:5f:6f:b3:88:1b:be:7f:e8:14:4a:f5:ac:34:03: d5:5a:6d:e8:bc:df:d8:bd:ed:81:7e:fe:b2:dc:ea: 69:3c:4d:90:11:03:6a:e0:ea:04:98:b4:b6:f1:fb: 66:f7:95:c6:92:47:6e:1f:05:4c:0e:9d:40:4c:13: 56:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:42:F6:36:D6:0C:54:13:B5:F9:2F:62:BE:40:19:30:6F:48:E4:75 X509v3 Authority Key Identifier: keyid:B3:F1:DA:A6:77:09:A0:65:61:DC:9E:AC:5A:87:21:03:5E:EA:AB:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/3230322e35302e3230302e302f32342d3234203d3e203535363936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.50.200.0/24 Signature Algorithm: sha256WithRSAEncryption 19:ee:f4:ce:15:1b:04:f1:f4:c5:6c:3c:45:ff:14:ec:86:97: 7b:45:39:4b:4d:96:b5:e0:ea:b2:ac:ad:75:02:17:ea:fe:70: 7d:a3:00:b5:99:c4:7d:fe:c7:8b:d4:5e:22:70:81:f1:b7:6c: 98:80:09:9b:5d:de:7e:7d:66:9a:ff:ee:59:4e:33:18:6a:43: f7:13:e3:51:9c:65:b9:0b:81:f3:29:cc:46:67:d5:7b:6f:35: 15:d6:94:10:19:57:6f:9c:ee:ba:2d:b6:f6:2d:2b:59:c0:d2: 9b:23:bf:67:61:88:6d:79:b2:20:78:0b:7f:3d:75:d7:4c:34: e5:dd:e7:e2:92:a9:f2:db:9c:7e:2e:11:36:f7:9a:9d:a1:ac: 91:82:db:9e:15:7c:a4:9d:a4:17:1f:55:3e:51:96:4a:6d:3d: 8e:0d:c2:a8:35:45:9d:63:95:e8:81:55:f4:3a:68:7c:90:33: 5b:22:e6:80:8a:c2:9d:48:8f:2b:ef:c6:35:8d:c6:13:43:c5: c8:bc:44:ff:6b:98:4c:16:29:50:ba:7a:9e:f4:14:3f:fa:b0: 75:91:0c:b3:52:93:ab:75:33:34:d9:5e:32:2c:66:1e:0b:93: 8e:cf:6e:39:75:25:9f:89:54:42:19:29:1a:91:5d:3d:86:7f: e3:69:4a:7a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUA7Ll+4nu5QwV4Y2RPy8HA5ekSHcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNGMURBQTY3NzA5QTA2NTYxREM5RUFDNUE4NzIxMDM1 RUVBQUI1QjAeFw0yNTExMjYwNzU1MDBaFw0yNjExMjUwODAwMDBaMDMxMTAvBgNV BAMTKEM2NDJGNjM2RDYwQzU0MTNCNUY5MkY2MkJFNDAxOTMwNkY0OEU0NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/aDk4jD7lghgBA5PjlgP+fh7x dkI2wqBWLvQ/74xWULnm76M6qF90Hgr1fhb2V3GNWEa/cmWZqb4CP/rNyFEsGKtR LBr+rdFII0IRyPrvxcrjCEsRW4rS5Gx7y2hFp0s8CgKuE+eKBz3frg030ypXu/TT NqiApT/pZQdvDr4wW1ofFqMzubYrx1rcYTwy4AITzBSJa90mHvcdmMFfgqfgO6J8 +f3HkCzTeZXtAR7Ck5ly5IIpfwMgA7cjTZ11jGp59o9fb7OIG75/6BRK9aw0A9Va bei839i97YF+/rLc6mk8TZARA2rg6gSYtLbx+2b3lcaSR24fBUwOnUBME1atAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxkL2NtYMVBO1+S9ivkAZMG9I5HUwHwYDVR0j BBgwFoAUs/HapncJoGVh3J6sWochA17qq1swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Mjg4MGRlZS03YWEyLTRiZTQtYmYzNS1jZGJkMTFkNzk1MDcvMC9CM0YxREFBNjc3 MDlBMDY1NjFEQzlFQUM1QTg3MjEwMzVFRUFBQjVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjNGMURBQTY3NzA5QTA2NTYxREM5RUFDNUE4NzIxMDM1RUVB QUI1Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyODgwZGVlLTdhYTItNGJlNC1i ZjM1LWNkYmQxMWQ3OTUwNy8wLzMyMzAzMjJlMzUzMDJlMzIzMDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoyyDANBgkqhkiG 9w0BAQsFAAOCAQEAGe70zhUbBPH0xWw8Rf8U7IaXe0U5S02WteDqsqytdQIX6v5w faMAtZnEff7Hi9ReInCB8bdsmIAJm13efn1mmv/uWU4zGGpD9xPjUZxluQuB8ynM RmfVe281FdaUEBlXb5zuui229i0rWcDSmyO/Z2GIbXmyIHgLfz1110w05d3n4pKp 8tucfi4RNveanaGskYLbnhV8pJ2kFx9VPlGWSm09jg3CqDVFnWOV6IFV9DpofJAz WyLmgIrCnUiPK+/GNY3GE0PFyLxE/2uYTBYpULp6nvQUP/qwdZEMs1KTq3UzNNle MixmHguTjs9uOXUln4lUQhkpGpFdPYZ/42lKeg== -----END CERTIFICATE-----Generated at Wed Dec 3 16:21:57 2025 by rpki-client