This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e302e302f32312d3231203d3e203234323030.roa File: 3230322e3133332e302e302f32312d3231203d3e203234323030.roa (raw, json) Hash identifier: Ngb3LnXQ11YHQrKg5E3aodFpuV+UGL7buohqyUmiTrA= Subject key identifier: 6D:BD:11:18:33:1C:FF:13:9F:A0:D4:FA:67:CF:87:58:F1:D8:09:A3 Certificate issuer: /CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40 Certificate serial: 06715D4E16EC7720232AE18BFB99B23DA5914CB3 Authority key identifier: D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e302e302f32312d3231203d3e203234323030.roa Signing time: Mon 24 Nov 2025 09:02:12 +0000 ROA not before: Mon 24 Nov 2025 08:57:12 +0000 ROA not after: Mon 23 Nov 2026 09:02:12 +0000 asID: 24200 IP address blocks: 202.133.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 16:10:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:71:5d:4e:16:ec:77:20:23:2a:e1:8b:fb:99:b2:3d:a5:91:4c:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40 Validity Not Before: Nov 24 08:57:12 2025 GMT Not After : Nov 23 09:02:12 2026 GMT Subject: CN=6DBD1118331CFF139FA0D4FA67CF8758F1D809A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:6e:27:08:a3:32:bb:dc:3c:fd:a7:13:7c:e2: a7:cc:44:01:0e:d4:1a:a1:2d:e2:44:88:f6:55:57: 8a:b8:ff:3e:79:1a:8c:80:06:6f:79:85:bd:bd:41: 61:50:e0:d2:b7:b7:f1:5b:5a:71:57:f8:53:a4:0c: 8a:24:5d:83:d2:82:db:ce:9b:bd:da:24:4d:7d:1b: 8c:2d:41:26:67:58:b7:d5:7f:0f:6a:9b:30:c1:67: d0:81:fd:00:1f:d0:f3:5f:f3:5b:ca:70:0b:c7:79: e9:5f:ec:a4:fc:9d:e6:b5:30:1e:d4:02:b7:20:de: ab:a9:8d:bd:fd:3e:b6:ff:6f:c5:6f:5d:a9:cb:cd: fc:99:40:a4:f5:29:f6:48:8f:15:9e:18:52:67:00: ec:7e:49:5f:d1:39:e9:75:19:b9:c8:9c:78:eb:4c: 6c:3b:dc:e7:36:6e:a8:1f:04:d6:40:4a:cb:6b:4e: 1d:7e:86:de:23:e1:b8:17:0f:0d:f0:82:3e:49:e2: 5a:0b:da:29:42:81:64:ba:f0:2c:62:bd:09:ec:cc: 85:0b:62:c8:e0:63:29:0d:c3:dd:1f:db:90:24:68: c7:1d:04:df:16:18:b0:f0:8d:1d:d0:b5:7e:4c:ce: d6:d7:1d:d3:f0:a5:c7:ec:b8:68:60:f0:c5:b3:0e: f4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:BD:11:18:33:1C:FF:13:9F:A0:D4:FA:67:CF:87:58:F1:D8:09:A3 X509v3 Authority Key Identifier: keyid:D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e302e302f32312d3231203d3e203234323030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.133.0.0/21 Signature Algorithm: sha256WithRSAEncryption 78:e3:db:20:ee:61:1c:47:2d:98:92:1c:5e:ab:14:1c:8a:37: 19:b3:69:a5:89:11:43:b1:1e:96:f1:66:4b:9d:15:10:fe:44: 5c:af:e7:0e:ef:50:84:99:5e:8e:41:b2:40:13:8b:d2:ec:d5: 3e:91:2d:fb:1e:88:c1:4f:ec:a5:f1:97:dd:af:70:d4:fd:49: 25:92:04:84:21:1b:6a:be:a9:6e:fe:01:51:c5:fb:07:38:91: a1:d5:aa:7b:78:52:f7:a9:db:03:27:0a:57:34:ab:6c:ee:f6: f2:b2:67:56:d8:65:23:2a:87:8f:d1:f3:c9:c5:9a:6a:b6:4e: e6:cf:fd:26:70:e7:45:b3:01:8a:eb:ae:2c:fb:2f:ae:cb:77: 19:ef:d6:8c:ec:46:17:aa:7f:ef:39:d8:0c:1a:15:ab:aa:64: 68:e0:bd:d2:55:5b:b6:8f:ae:03:b0:a3:fb:19:51:fc:0a:68: 22:c5:bf:a2:9f:eb:34:41:a3:ec:b4:9f:bf:2e:73:c0:05:c1: c4:1c:f0:23:ac:5f:bb:ed:ec:b5:ac:24:f9:db:3d:e4:c9:9a: f1:88:52:ed:c6:7f:5b:b6:4b:ca:ea:7a:7c:f3:5c:b7:bc:ce: 3c:43:b7:5e:30:66:cb:fd:e3:70:5b:e0:7f:f3:c0:b8:61:d0: a5:8c:f3:32 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUBnFdThbsdyAjKuGL+5myPaWRTLMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVGQUI4 QkE3QkU0MDAeFw0yNTExMjQwODU3MTJaFw0yNjExMjMwOTAyMTJaMDMxMTAvBgNV BAMTKDZEQkQxMTE4MzMxQ0ZGMTM5RkEwRDRGQTY3Q0Y4NzU4RjFEODA5QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNbicIozK73Dz9pxN84qfMRAEO 1BqhLeJEiPZVV4q4/z55GoyABm95hb29QWFQ4NK3t/FbWnFX+FOkDIokXYPSgtvO m73aJE19G4wtQSZnWLfVfw9qmzDBZ9CB/QAf0PNf81vKcAvHeelf7KT8nea1MB7U Arcg3qupjb39Prb/b8VvXanLzfyZQKT1KfZIjxWeGFJnAOx+SV/ROel1GbnInHjr TGw73Oc2bqgfBNZASstrTh1+ht4j4bgXDw3wgj5J4loL2ilCgWS68CxivQnszIUL YsjgYykNw90f25AkaMcdBN8WGLDwjR3QtX5MztbXHdPwpcfsuGhg8MWzDvS3AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUbb0RGDMc/xOfoNT6Z8+HWPHYCaMwHwYDVR0j BBgwFoAU0MbXXDw0fVsnx4kR9ixfq4unvkAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzY2OWVhNC1lODJmLTQ2YzMtOGRkMy0yZTk4ODE1OWIyMDIvMC9EMEM2RDc1QzND MzQ3RDVCMjdDNzg5MTFGNjJDNUZBQjhCQTdCRTQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVGQUI4QkE3 QkU0MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNjY5ZWE0LWU4MmYtNDZjMy04 ZGQzLTJlOTg4MTU5YjIwMi8wLzMyMzAzMjJlMzEzMzMzMmUzMDJlMzAyZjMyMzEy ZDMyMzEyMDNkM2UyMDMyMzQzMjMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPKhQAwDQYJKoZIhvcN AQELBQADggEBAHjj2yDuYRxHLZiSHF6rFByKNxmzaaWJEUOxHpbxZkudFRD+RFyv 5w7vUISZXo5BskATi9Ls1T6RLfseiMFP7KXxl92vcNT9SSWSBIQhG2q+qW7+AVHF +wc4kaHVqnt4Uvep2wMnClc0q2zu9vKyZ1bYZSMqh4/R88nFmmq2TubP/SZw50Wz AYrrriz7L67Ldxnv1ozsRheqf+852AwaFauqZGjgvdJVW7aPrgOwo/sZUfwKaCLF v6Kf6zRBo+y0n78uc8AFwcQc8COsX7vt7LWsJPnbPeTJmvGIUu3Gf1u2S8rqenzz XLe8zjxDt14wZsv943Bb4H/zwLhh0KWM8zI= -----END CERTIFICATE-----Generated at Wed Dec 3 15:29:02 2025 by rpki-client