This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/3230322e35302e3230322e302f32342d3234203d3e203535363936.roa File: 3230322e35302e3230322e302f32342d3234203d3e203535363936.roa (raw, json) Hash identifier: vBCBJKS7aCOhRSPKU9s9qcUQlRWVnHv7lYT5zRKMFaM= Subject key identifier: 8E:C5:2C:02:D6:74:55:99:56:8B:FE:5B:90:E1:F3:05:1C:8B:13:39 Certificate issuer: /CN=B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B Certificate serial: 16A0098928669CAFF399F8C7293BC4CFBCC34296 Authority key identifier: B3:F1:DA:A6:77:09:A0:65:61:DC:9E:AC:5A:87:21:03:5E:EA:AB:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/3230322e35302e3230322e302f32342d3234203d3e203535363936.roa Signing time: Wed 26 Nov 2025 06:00:00 +0000 ROA not before: Wed 26 Nov 2025 05:55:00 +0000 ROA not after: Wed 25 Nov 2026 06:00:00 +0000 asID: 55696 IP address blocks: 202.50.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.crl rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 11:04:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:a0:09:89:28:66:9c:af:f3:99:f8:c7:29:3b:c4:cf:bc:c3:42:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B Validity Not Before: Nov 26 05:55:00 2025 GMT Not After : Nov 25 06:00:00 2026 GMT Subject: CN=8EC52C02D6745599568BFE5B90E1F3051C8B1339 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c0:1f:6d:10:d1:52:09:f3:a0:08:66:a5:9f: 0c:04:e3:34:f3:ba:93:84:5f:38:c5:97:18:9d:0e: 52:dd:0e:a0:d1:e5:a1:ab:2a:ef:eb:50:b4:08:2f: fd:a2:86:8b:4f:cd:b4:f1:93:dd:1b:13:80:58:87: 0a:32:f2:79:30:8a:f3:86:a7:bc:27:12:ea:c5:29: 3a:7c:6b:8c:0f:0b:74:d3:c7:ed:f6:b3:be:b9:27: 08:b0:8e:8e:31:11:79:0b:f6:3c:32:c8:61:cc:63: a9:0b:2d:73:54:a9:c6:f2:50:d0:1f:cb:64:0c:6b: a1:a3:73:cf:eb:59:d3:92:3c:43:60:10:0d:1f:71: 37:f3:87:d7:8a:3a:c5:b9:c6:32:9a:c5:da:e2:22: 06:8a:c1:8b:e2:88:86:e5:87:50:f4:4c:16:07:11: b1:98:87:96:a1:c1:64:11:74:9b:4b:4a:c1:2f:fe: 0f:31:b9:49:9c:33:de:12:14:4a:f5:20:9d:ea:b5: c2:a1:57:11:ee:61:e0:29:72:90:12:d8:80:29:88: 5a:33:24:cc:18:89:89:f8:7b:4b:8e:91:0d:38:36: 2c:99:f2:cf:6a:e5:b9:2b:00:b5:9d:45:f7:b3:f2: be:f1:87:89:bd:0a:25:20:1d:ed:29:b0:ef:fd:0d: 9e:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:C5:2C:02:D6:74:55:99:56:8B:FE:5B:90:E1:F3:05:1C:8B:13:39 X509v3 Authority Key Identifier: keyid:B3:F1:DA:A6:77:09:A0:65:61:DC:9E:AC:5A:87:21:03:5E:EA:AB:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3F1DAA67709A06561DC9EAC5A8721035EEAAB5B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52880dee-7aa2-4be4-bf35-cdbd11d79507/0/3230322e35302e3230322e302f32342d3234203d3e203535363936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.50.202.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:39:5e:40:f8:fc:54:79:54:b0:e6:a1:18:17:91:1f:b3:9a: aa:1d:91:90:16:82:9a:a9:35:bb:0c:39:61:3a:58:22:f4:43: 4e:db:75:aa:e9:c2:b8:eb:f4:6c:35:c0:c8:fe:67:a0:90:44: 3a:09:2c:f8:55:ac:81:a4:60:87:5b:23:1a:fc:74:9d:e5:2f: 14:bb:17:06:39:87:5f:71:ce:3b:fa:54:c1:f2:54:62:db:3e: a0:9a:bd:f6:d7:3f:c7:b5:c0:09:68:6c:b0:83:00:51:01:91: f5:47:fe:76:05:f2:12:07:d5:1e:bf:45:35:54:b6:ee:17:cf: 5a:4e:57:41:8c:8b:e4:e8:47:71:4c:8d:4d:85:42:db:8e:22: 48:e0:97:bb:ab:c6:8b:32:87:dc:6e:b3:b1:8c:9c:87:a7:56: 45:7f:49:69:a2:aa:96:50:5e:67:43:04:e9:d3:27:fc:c0:fb: a7:0f:14:73:82:db:48:2d:00:d5:82:97:dc:64:3d:ae:99:53: a6:49:c0:34:a1:e1:a8:24:27:c1:e7:b4:f3:4c:63:33:90:2f: 2a:cc:f2:98:91:b0:79:9e:67:cd:12:00:4b:93:43:b3:df:53: 7d:ed:38:f5:f2:af:2f:cf:cb:d9:e5:86:42:ad:6f:7d:e1:38: ca:c1:ae:61 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFqAJiShmnK/zmfjHKTvEz7zDQpYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNGMURBQTY3NzA5QTA2NTYxREM5RUFDNUE4NzIxMDM1 RUVBQUI1QjAeFw0yNTExMjYwNTU1MDBaFw0yNjExMjUwNjAwMDBaMDMxMTAvBgNV BAMTKDhFQzUyQzAyRDY3NDU1OTk1NjhCRkU1QjkwRTFGMzA1MUM4QjEzMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqwB9tENFSCfOgCGalnwwE4zTz upOEXzjFlxidDlLdDqDR5aGrKu/rULQIL/2ihotPzbTxk90bE4BYhwoy8nkwivOG p7wnEurFKTp8a4wPC3TTx+32s765Jwiwjo4xEXkL9jwyyGHMY6kLLXNUqcbyUNAf y2QMa6Gjc8/rWdOSPENgEA0fcTfzh9eKOsW5xjKaxdriIgaKwYviiIblh1D0TBYH EbGYh5ahwWQRdJtLSsEv/g8xuUmcM94SFEr1IJ3qtcKhVxHuYeApcpAS2IApiFoz JMwYiYn4e0uOkQ04NiyZ8s9q5bkrALWdRfez8r7xh4m9CiUgHe0psO/9DZ53AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjsUsAtZ0VZlWi/5bkOHzBRyLEzkwHwYDVR0j BBgwFoAUs/HapncJoGVh3J6sWochA17qq1swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Mjg4MGRlZS03YWEyLTRiZTQtYmYzNS1jZGJkMTFkNzk1MDcvMC9CM0YxREFBNjc3 MDlBMDY1NjFEQzlFQUM1QTg3MjEwMzVFRUFBQjVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjNGMURBQTY3NzA5QTA2NTYxREM5RUFDNUE4NzIxMDM1RUVB QUI1Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyODgwZGVlLTdhYTItNGJlNC1i ZjM1LWNkYmQxMWQ3OTUwNy8wLzMyMzAzMjJlMzUzMDJlMzIzMDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMoyyjANBgkqhkiG 9w0BAQsFAAOCAQEAXDleQPj8VHlUsOahGBeRH7Oaqh2RkBaCmqk1uww5YTpYIvRD Ttt1qunCuOv0bDXAyP5noJBEOgks+FWsgaRgh1sjGvx0neUvFLsXBjmHX3HOO/pU wfJUYts+oJq99tc/x7XACWhssIMAUQGR9Uf+dgXyEgfVHr9FNVS27hfPWk5XQYyL 5OhHcUyNTYVC244iSOCXu6vGizKH3G6zsYych6dWRX9JaaKqllBeZ0ME6dMn/MD7 pw8Uc4LbSC0A1YKX3GQ9rplTpknANKHhqCQnwee080xjM5AvKszymJGweZ5nzRIA S5NDs99Tfe049fKvL8/L2eWGQq1vfeE4ysGuYQ== -----END CERTIFICATE-----Generated at Wed Dec 3 16:21:17 2025 by rpki-client