This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3233312e302f32342d3234203d3e203538353532.roa File: 34332e3234302e3233312e302f32342d3234203d3e203538353532.roa (raw, json) Hash identifier: x+x3RR2i8z5LQnR4hQ5kX6v0h+jVnwDBKYiN/kNrm1w= Subject key identifier: 69:94:FC:A8:F3:5C:4F:4F:19:24:32:9B:7A:36:88:6A:B4:29:61:02 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 3D73F621FAADD1113E70AFDAE322EEA1C76D4D32 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3233312e302f32342d3234203d3e203538353532.roa Signing time: Tue 11 Nov 2025 01:43:50 +0000 ROA not before: Tue 11 Nov 2025 01:38:50 +0000 ROA not after: Tue 10 Nov 2026 01:43:50 +0000 asID: 58552 IP address blocks: 43.240.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 05:17:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:73:f6:21:fa:ad:d1:11:3e:70:af:da:e3:22:ee:a1:c7:6d:4d:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Nov 11 01:38:50 2025 GMT Not After : Nov 10 01:43:50 2026 GMT Subject: CN=6994FCA8F35C4F4F1924329B7A36886AB4296102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:64:f1:ed:8a:67:7b:ae:aa:d8:e0:c7:33:ad: f1:ad:d5:fa:99:44:8d:c5:21:b7:09:5e:31:13:cc: 7a:76:dd:8f:41:bc:1f:fd:77:1a:ba:3e:22:0f:dc: c5:02:f9:aa:dc:e5:a0:68:d9:b0:2b:2a:75:90:be: 48:41:ff:83:6e:7b:53:27:14:88:ae:b5:b1:18:8c: b8:6b:a5:6f:94:00:1e:f0:c8:86:98:45:46:8a:a3: cb:a9:fe:7c:b0:69:a3:5e:bd:97:86:d0:5a:9a:af: e3:bf:8d:91:4e:1a:f6:e6:ff:1c:8f:bc:ce:ee:f3: 8b:ed:e7:d1:f9:7e:43:88:36:19:d6:a3:0f:29:52: 6d:6b:dd:03:cb:66:39:70:5c:68:2b:0e:61:87:8f: 52:44:85:52:ac:23:78:be:f7:13:89:3a:1f:62:49: 31:4b:5f:8b:03:96:00:36:c7:ce:2a:24:87:c9:cc: 8e:6e:42:fe:7b:1e:f6:87:8d:c3:b6:3d:5b:50:d1: f6:e1:fb:a2:6e:0a:7b:87:4b:86:fe:ce:0c:b4:ae: 8e:09:fd:9e:78:a0:6f:66:81:be:43:4c:38:b2:40: 9f:c1:ad:01:1a:1f:0a:18:69:86:cc:25:9f:ec:c9: e3:f8:68:7c:bb:3f:9f:f1:e6:aa:d7:37:d8:74:02: c2:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:94:FC:A8:F3:5C:4F:4F:19:24:32:9B:7A:36:88:6A:B4:29:61:02 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3233312e302f32342d3234203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.240.231.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:17:ba:f0:2c:66:27:88:94:85:ce:96:76:4f:ea:32:2c:b4: 57:48:ff:a4:3f:49:48:b8:5f:15:9b:49:78:69:31:79:bc:6d: b1:65:69:9e:0f:cd:f5:23:de:46:b4:f6:57:09:e7:91:22:31: 8d:63:fd:da:10:12:74:78:07:9e:88:9e:e8:b9:d2:d8:2e:1c: 13:f0:1c:90:2f:1f:14:7d:e5:e0:92:d8:f2:ef:de:b6:65:1a: af:bf:da:7d:9d:43:ec:b0:98:2c:53:b9:8b:ca:00:12:83:ca: 71:eb:3a:dc:44:38:d3:c4:85:6c:aa:5e:20:32:ab:ee:b4:3d: 93:c0:70:38:e4:c5:3c:fe:f8:be:1f:30:2a:1f:ea:56:53:e8: 20:f4:44:82:62:7e:1b:57:d7:9c:82:87:36:07:5a:fb:ec:ae: b2:2e:ac:96:f8:fd:2c:ff:d3:9c:dd:6e:3c:a1:cd:b5:57:cb: 30:1a:79:66:a6:50:9d:cc:2b:e3:2c:38:09:52:ac:0d:a3:9b: fe:ac:b8:69:70:f6:bf:30:ee:c9:b4:41:08:eb:c2:0d:18:e7: cb:dd:f5:8f:b3:f6:e1:8f:63:eb:e8:e3:7e:d6:52:4b:58:1e: 93:8f:b2:bd:12:db:fe:0c:19:1e:ab:86:49:50:e7:a9:a9:f3: 99:26:a4:e9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPXP2Ifqt0RE+cK/a4yLuocdtTTIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTExMTEwMTM4NTBaFw0yNjExMTAwMTQzNTBaMDMxMTAvBgNV BAMTKDY5OTRGQ0E4RjM1QzRGNEYxOTI0MzI5QjdBMzY4ODZBQjQyOTYxMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBZPHtimd7rqrY4MczrfGt1fqZ RI3FIbcJXjETzHp23Y9BvB/9dxq6PiIP3MUC+arc5aBo2bArKnWQvkhB/4Nue1Mn FIiutbEYjLhrpW+UAB7wyIaYRUaKo8up/nywaaNevZeG0Fqar+O/jZFOGvbm/xyP vM7u84vt59H5fkOINhnWow8pUm1r3QPLZjlwXGgrDmGHj1JEhVKsI3i+9xOJOh9i STFLX4sDlgA2x84qJIfJzI5uQv57HvaHjcO2PVtQ0fbh+6JuCnuHS4b+zgy0ro4J /Z54oG9mgb5DTDiyQJ/BrQEaHwoYaYbMJZ/syeP4aHy7P5/x5qrXN9h0AsJzAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUaZT8qPNcT08ZJDKbejaIarQpYQIwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzM0MzMyZTMyMzQzMDJlMzIzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM1MzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvw5zANBgkqhkiG 9w0BAQsFAAOCAQEATRe68CxmJ4iUhc6Wdk/qMiy0V0j/pD9JSLhfFZtJeGkxebxt sWVpng/N9SPeRrT2VwnnkSIxjWP92hASdHgHnoie6LnS2C4cE/AckC8fFH3l4JLY 8u/etmUar7/afZ1D7LCYLFO5i8oAEoPKces63EQ408SFbKpeIDKr7rQ9k8BwOOTF PP74vh8wKh/qVlPoIPREgmJ+G1fXnIKHNgda++yusi6slvj9LP/TnN1uPKHNtVfL MBp5ZqZQncwr4yw4CVKsDaOb/qy4aXD2vzDuybRBCOvCDRjny931j7P24Y9j6+jj ftZSS1gek4+yvRLb/gwZHquGSVDnqanzmSak6Q== -----END CERTIFICATE-----Generated at Fri Dec 19 23:06:16 2025 by rpki-client