This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/3231302e38372e3132342e302f32332d3234203d3e20313532303539.roa File: 3231302e38372e3132342e302f32332d3234203d3e20313532303539.roa (raw, json) Hash identifier: EWhTaEy0kSyTN6Oh9f79SCw3rvXkaSbLCftfTIrzMKE= Subject key identifier: 1F:86:5E:68:C5:76:E7:40:8E:AE:1F:0A:66:2A:E6:0D:20:3F:97:FC Certificate issuer: /CN=843FDF32A52D11795BBFB0918ABF926E0A210870 Certificate serial: 349C12BF4C126C36F7C020C6FF1A985CBE9DE66B Authority key identifier: 84:3F:DF:32:A5:2D:11:79:5B:BF:B0:91:8A:BF:92:6E:0A:21:08:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/843FDF32A52D11795BBFB0918ABF926E0A210870.cer Subject info access: rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/3231302e38372e3132342e302f32332d3234203d3e20313532303539.roa Signing time: Thu 18 Dec 2025 10:00:02 +0000 ROA not before: Thu 18 Dec 2025 09:55:02 +0000 ROA not after: Thu 17 Dec 2026 10:00:02 +0000 asID: 152059 IP address blocks: 210.87.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.crl rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/843FDF32A52D11795BBFB0918ABF926E0A210870.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 10:57:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:9c:12:bf:4c:12:6c:36:f7:c0:20:c6:ff:1a:98:5c:be:9d:e6:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=843FDF32A52D11795BBFB0918ABF926E0A210870 Validity Not Before: Dec 18 09:55:02 2025 GMT Not After : Dec 17 10:00:02 2026 GMT Subject: CN=1F865E68C576E7408EAE1F0A662AE60D203F97FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ad:c3:57:7f:47:33:77:a2:64:69:5d:e7:f4: de:c4:67:f1:bd:3f:97:50:57:99:bc:a7:74:a6:d1: 9b:bc:11:db:87:be:83:40:0d:13:a8:4f:ca:8f:ce: 31:96:51:c1:5e:ce:cf:05:69:0e:dc:22:d9:5c:51: b4:b4:00:41:3d:d7:1e:1f:79:00:5e:1c:06:15:80: 3a:b3:59:b1:c4:ff:e3:0a:3a:66:cf:4b:4d:69:1d: 8b:42:dc:98:62:69:73:a6:83:1e:55:e9:60:e3:23: 95:18:a8:00:25:93:d8:2e:57:9a:36:a6:73:17:6b: 98:c8:f3:8f:91:d7:66:e9:f4:58:ad:b9:cb:d8:77: 80:d9:61:91:81:30:9d:4f:69:02:ce:c1:81:17:5a: 29:fa:94:6f:e5:b2:e1:cd:23:ad:47:a7:24:ac:7b: 42:7e:9e:d0:cc:11:f2:5f:de:38:f2:72:d4:41:da: 4e:6b:26:a5:5f:11:a1:2b:8d:9f:1f:98:6b:a2:12: 70:72:22:5d:ac:78:44:bc:e3:7f:fc:f7:f0:cf:1e: 79:c1:78:44:ba:66:16:e8:3f:20:c4:ee:ed:85:80: cc:f4:02:b5:1d:aa:e5:7a:90:43:31:1c:21:ad:0f: 75:7a:a4:36:74:23:f6:77:f8:e7:25:47:2a:5c:2a: 75:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:86:5E:68:C5:76:E7:40:8E:AE:1F:0A:66:2A:E6:0D:20:3F:97:FC X509v3 Authority Key Identifier: keyid:84:3F:DF:32:A5:2D:11:79:5B:BF:B0:91:8A:BF:92:6E:0A:21:08:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/843FDF32A52D11795BBFB0918ABF926E0A210870.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/3231302e38372e3132342e302f32332d3234203d3e20313532303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.87.124.0/23 Signature Algorithm: sha256WithRSAEncryption 09:fd:e0:fb:79:99:73:79:3a:70:1d:70:a0:60:f0:43:34:0d: d2:eb:de:73:36:49:9d:c1:92:09:3c:d3:ed:38:ec:53:db:12: eb:32:e9:65:6a:a4:d1:21:9b:cb:9a:b9:f0:6b:02:79:32:ff: 94:17:50:19:6e:7d:86:b4:c0:6c:20:d8:5f:b6:ba:d8:84:5d: 87:f1:d7:f8:ff:bf:b0:67:e2:95:08:00:45:c9:b8:7d:ad:7b: 78:4a:fa:f8:11:08:25:9e:12:ce:5a:36:78:0f:9d:3f:a6:e5: 30:8d:ee:60:b7:ff:bb:32:94:ec:bb:71:9a:2d:6e:6f:04:b3: c9:00:94:09:0f:3c:3f:06:f8:97:11:1c:d6:ae:f4:35:95:45: e6:4a:09:0b:0f:af:75:7e:7a:46:99:11:ed:91:45:8a:13:7e: 65:8f:ca:50:da:cd:f5:6f:cb:51:eb:35:fc:48:cd:61:a0:24: 8a:a2:f9:bd:1f:3b:98:ed:de:2c:0e:15:1b:cb:da:5d:61:2e: 6b:0a:34:19:1a:06:e4:aa:f8:68:4d:a1:ed:30:ca:49:ac:33: 57:cd:7c:3d:0e:a8:5b:72:8f:af:35:0f:6e:04:5a:3a:79:4b: 82:d3:57:35:25:af:3d:fb:a1:4f:44:24:64:c8:7d:5b:07:c8: 59:85:a4:f3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNJwSv0wSbDb3wCDG/xqYXL6d5mswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQzRkRGMzJBNTJEMTE3OTVCQkZCMDkxOEFCRjkyNkUw QTIxMDg3MDAeFw0yNTEyMTgwOTU1MDJaFw0yNjEyMTcxMDAwMDJaMDMxMTAvBgNV BAMTKDFGODY1RTY4QzU3NkU3NDA4RUFFMUYwQTY2MkFFNjBEMjAzRjk3RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDErcNXf0czd6JkaV3n9N7EZ/G9 P5dQV5m8p3Sm0Zu8EduHvoNADROoT8qPzjGWUcFezs8FaQ7cItlcUbS0AEE91x4f eQBeHAYVgDqzWbHE/+MKOmbPS01pHYtC3JhiaXOmgx5V6WDjI5UYqAAlk9guV5o2 pnMXa5jI84+R12bp9FitucvYd4DZYZGBMJ1PaQLOwYEXWin6lG/lsuHNI61HpySs e0J+ntDMEfJf3jjyctRB2k5rJqVfEaErjZ8fmGuiEnByIl2seES843/89/DPHnnB eES6ZhboPyDE7u2FgMz0ArUdquV6kEMxHCGtD3V6pDZ0I/Z3+OclRypcKnVXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUH4ZeaMV250COrh8KZirmDSA/l/wwHwYDVR0j BBgwFoAUhD/fMqUtEXlbv7CRir+SbgohCHAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 N2JlOGI3Yy0yMzJmLTQ3ZTgtOWNkZC04ODE3ZDM5YjcwZWEvMC84NDNGREYzMkE1 MkQxMTc5NUJCRkIwOTE4QUJGOTI2RTBBMjEwODcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQzRkRGMzJBNTJEMTE3OTVCQkZCMDkxOEFCRjkyNkUwQTIx MDg3MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3YmU4YjdjLTIzMmYtNDdlOC05 Y2RkLTg4MTdkMzliNzBlYS8wLzMyMzEzMDJlMzgzNzJlMzEzMjM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB0ld8MA0GCSqG SIb3DQEBCwUAA4IBAQAJ/eD7eZlzeTpwHXCgYPBDNA3S695zNkmdwZIJPNPtOOxT 2xLrMullaqTRIZvLmrnwawJ5Mv+UF1AZbn2GtMBsINhftrrYhF2H8df4/7+wZ+KV CABFybh9rXt4Svr4EQglnhLOWjZ4D50/puUwje5gt/+7MpTsu3GaLW5vBLPJAJQJ Dzw/BviXERzWrvQ1lUXmSgkLD691fnpGmRHtkUWKE35lj8pQ2s31b8tR6zX8SM1h oCSKovm9HzuY7d4sDhUby9pdYS5rCjQZGgbkqvhoTaHtMMpJrDNXzXw9Dqhbco+v NQ9uBFo6eUuC01c1Ja89+6FPRCRkyH1bB8hZhaTz -----END CERTIFICATE-----Generated at Fri Dec 19 00:57:13 2025 by rpki-client