This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232332e302f32342d3234203d3e203338313432.roa File: 3231302e35372e3232332e302f32342d3234203d3e203338313432.roa (raw, json) Hash identifier: lpKbOrbrhT2vlvAJL98reUqD6vC4IeP7PUgmebV+YgY= Subject key identifier: 55:BE:D3:CF:31:B3:DA:DD:C1:E3:1B:ED:03:B5:FD:9A:A8:C5:54:9C Certificate issuer: /CN=29A4AE587F980E73A344FD1ED55C47566E609511 Certificate serial: 10DE54D5C05441F30C2877548A318A73069F4D01 Authority key identifier: 29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232332e302f32342d3234203d3e203338313432.roa Signing time: Mon 22 Sep 2025 14:00:00 +0000 ROA not before: Mon 22 Sep 2025 13:55:00 +0000 ROA not after: Mon 21 Sep 2026 14:00:00 +0000 asID: 38142 IP address blocks: 210.57.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 18:53:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:de:54:d5:c0:54:41:f3:0c:28:77:54:8a:31:8a:73:06:9f:4d:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29A4AE587F980E73A344FD1ED55C47566E609511 Validity Not Before: Sep 22 13:55:00 2025 GMT Not After : Sep 21 14:00:00 2026 GMT Subject: CN=55BED3CF31B3DADDC1E31BED03B5FD9AA8C5549C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:27:ce:59:7f:82:ca:6a:07:87:d8:c8:bf:7b: 16:78:48:bc:d3:15:c3:6d:d1:7b:e0:f4:af:c2:5a: 3a:70:fa:a3:02:87:32:cf:5e:e7:51:cb:56:e0:5c: 8a:9d:0f:36:0e:d8:6e:74:bb:c8:24:ee:76:dc:57: 79:fe:83:fe:89:95:d8:e3:00:39:9c:27:db:34:35: 00:ef:5e:bf:fe:7e:92:cd:d5:95:54:58:6f:70:44: d7:c6:24:00:18:fd:80:5a:75:95:3a:aa:28:e1:19: bb:b8:f9:20:f8:be:a4:13:82:2d:15:37:51:68:d8: 4b:9c:e9:6e:ee:1b:40:87:d2:1d:44:04:01:62:6f: f8:f1:ae:63:ad:c2:e1:9e:0c:7a:be:63:ad:97:e3: 9b:0b:69:62:20:20:a1:2a:0e:c0:97:ca:63:2c:54: 70:e1:1d:af:e1:4d:81:30:0e:f3:ef:60:4b:77:86: a5:57:4f:34:e6:5e:7c:3b:aa:f0:90:54:62:fe:ec: b7:11:fb:3f:10:75:3d:77:6f:a2:9e:cb:05:e1:dc: 22:44:79:bf:06:2e:40:2a:fd:e3:66:ac:26:10:d3: f6:28:dd:23:46:d8:ce:27:82:b5:69:34:9b:c1:d4: c4:2c:cc:47:02:bc:97:75:e6:66:97:1c:d6:63:b1: 75:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:BE:D3:CF:31:B3:DA:DD:C1:E3:1B:ED:03:B5:FD:9A:A8:C5:54:9C X509v3 Authority Key Identifier: keyid:29:A4:AE:58:7F:98:0E:73:A3:44:FD:1E:D5:5C:47:56:6E:60:95:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/29A4AE587F980E73A344FD1ED55C47566E609511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29A4AE587F980E73A344FD1ED55C47566E609511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/608b2959-1c25-46a0-89d1-f77d5c474691/0/3231302e35372e3232332e302f32342d3234203d3e203338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.57.223.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:cb:b1:44:e2:e7:c0:dd:a5:07:33:dd:47:3f:e2:fe:a6:d7: ac:ba:a8:68:cf:1f:9e:c3:ea:48:ed:79:61:88:97:c4:fe:c0: 0a:02:28:2a:de:7b:30:21:a9:be:5f:b0:91:c7:97:aa:d1:64: 81:9e:33:9e:24:35:f9:59:69:27:ca:47:b7:33:ef:2f:1d:af: 01:79:f9:4a:32:01:25:bc:2c:cd:51:9c:e3:ad:ab:67:0e:b2: c1:3b:5c:90:f6:ac:1e:04:16:b0:37:ac:b9:76:fd:9e:49:60: f1:00:14:90:e5:73:c1:a0:88:40:38:05:89:7f:7c:57:67:76: f2:5a:b0:b1:54:c6:41:04:15:7e:74:4d:07:0e:3d:43:7d:04: 1b:1a:ec:ef:8e:be:b0:3b:c6:be:13:49:50:75:9b:e4:8e:b8: b1:38:aa:f1:d6:10:f7:b8:40:88:44:aa:58:9e:fa:84:47:4a: c0:06:f0:ce:56:9e:22:8d:12:f4:87:7a:f6:90:f0:93:71:a3: f7:f7:e5:b0:d9:e1:58:6d:b3:d7:a3:d4:f0:d2:99:bb:b3:ea: 13:55:14:42:38:17:c7:17:99:0c:7b:f3:87:cb:ad:06:fb:82: dc:44:c5:56:96:44:e7:4e:42:bd:81:75:01:10:54:9a:77:a2: 7a:16:27:c0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEN5U1cBUQfMMKHdUijGKcwafTQEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2 RTYwOTUxMTAeFw0yNTA5MjIxMzU1MDBaFw0yNjA5MjExNDAwMDBaMDMxMTAvBgNV BAMTKDU1QkVEM0NGMzFCM0RBRERDMUUzMUJFRDAzQjVGRDlBQThDNTU0OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2J85Zf4LKageH2Mi/exZ4SLzT FcNt0Xvg9K/CWjpw+qMChzLPXudRy1bgXIqdDzYO2G50u8gk7nbcV3n+g/6Jldjj ADmcJ9s0NQDvXr/+fpLN1ZVUWG9wRNfGJAAY/YBadZU6qijhGbu4+SD4vqQTgi0V N1Fo2Euc6W7uG0CH0h1EBAFib/jxrmOtwuGeDHq+Y62X45sLaWIgIKEqDsCXymMs VHDhHa/hTYEwDvPvYEt3hqVXTzTmXnw7qvCQVGL+7LcR+z8QdT13b6KeywXh3CJE eb8GLkAq/eNmrCYQ0/Yo3SNG2M4ngrVpNJvB1MQszEcCvJd15maXHNZjsXVnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVb7TzzGz2t3B4xvtA7X9mqjFVJwwHwYDVR0j BBgwFoAUKaSuWH+YDnOjRP0e1VxHVm5glREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDhiMjk1OS0xYzI1LTQ2YTAtODlkMS1mNzdkNWM0NzQ2OTEvMC8yOUE0QUU1ODdG OTgwRTczQTM0NEZEMUVENTVDNDc1NjZFNjA5NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlBNEFFNTg3Rjk4MEU3M0EzNDRGRDFFRDU1QzQ3NTY2RTYw OTUxMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwOGIyOTU5LTFjMjUtNDZhMC04 OWQxLWY3N2Q1YzQ3NDY5MS8wLzMyMzEzMDJlMzUzNzJlMzIzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODMxMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI53zANBgkqhkiG 9w0BAQsFAAOCAQEAL8uxROLnwN2lBzPdRz/i/qbXrLqoaM8fnsPqSO15YYiXxP7A CgIoKt57MCGpvl+wkceXqtFkgZ4zniQ1+VlpJ8pHtzPvLx2vAXn5SjIBJbwszVGc 462rZw6ywTtckPasHgQWsDesuXb9nklg8QAUkOVzwaCIQDgFiX98V2d28lqwsVTG QQQVfnRNBw49Q30EGxrs746+sDvGvhNJUHWb5I64sTiq8dYQ97hAiESqWJ76hEdK wAbwzlaeIo0S9Id69pDwk3Gj9/flsNnhWG2z16PU8NKZu7PqE1UUQjgXxxeZDHvz h8utBvuC3ETFVpZE505CvYF1ARBUmneiehYnwA== -----END CERTIFICATE-----Generated at Wed Dec 3 15:32:32 2025 by rpki-client