This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e312e302f32342d3234203d3e203234323030.roa File: 3230322e3133332e312e302f32342d3234203d3e203234323030.roa (raw, json) Hash identifier: q0yJUvBcjd2NEtr8e4z3fwmDmV4NBgtGO2qntKq/f+g= Subject key identifier: E5:29:71:80:1D:43:4D:96:A8:F3:34:22:E4:1C:3D:C2:28:17:A4:14 Certificate issuer: /CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40 Certificate serial: 2AF3AA9AE1B800CA7BF5B48A3112044C9D4187E4 Authority key identifier: D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e312e302f32342d3234203d3e203234323030.roa Signing time: Mon 24 Nov 2025 09:02:11 +0000 ROA not before: Mon 24 Nov 2025 08:57:11 +0000 ROA not after: Mon 23 Nov 2026 09:02:11 +0000 asID: 24200 IP address blocks: 202.133.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 16:10:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:f3:aa:9a:e1:b8:00:ca:7b:f5:b4:8a:31:12:04:4c:9d:41:87:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40 Validity Not Before: Nov 24 08:57:11 2025 GMT Not After : Nov 23 09:02:11 2026 GMT Subject: CN=E52971801D434D96A8F33422E41C3DC22817A414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:01:a6:c6:dd:d8:be:dc:a3:08:46:3e:d0:cc: 00:70:a0:e5:c5:63:40:bf:56:ed:b8:c6:2f:ae:b1: 3f:45:69:88:0b:41:dd:29:a1:47:3e:73:c2:b2:aa: da:85:34:0d:1a:dc:81:a2:8e:35:22:f6:ed:7d:07: fe:63:88:35:cf:c3:cd:8f:21:e2:17:f5:55:b5:1f: e6:7b:f0:dd:2b:21:8f:64:76:96:bf:6c:14:30:fd: 70:9a:d7:4c:aa:3b:bf:b0:d6:6e:c6:37:a7:fe:5b: b9:73:1b:7f:e2:87:3d:26:66:66:5f:30:0f:c9:93: 46:77:cf:85:34:9b:6f:9c:7a:b8:5b:16:74:5f:cc: 04:20:b3:97:20:cc:62:c9:c4:c4:c4:b4:ee:e8:c2: 78:78:6d:60:6c:81:18:d3:a0:6a:2e:fd:af:47:52: fa:13:97:0a:4d:a7:d6:8c:d1:7a:d8:b8:3a:a5:7d: 15:5c:7e:59:7b:c1:8d:d0:3a:88:30:49:4d:5c:f4: 6a:ba:e2:be:cf:78:e6:eb:35:d7:c9:9c:76:82:7b: c8:e0:7f:94:9f:29:e7:27:2f:b5:d6:fd:1f:9d:f7: f1:0e:fc:4e:ba:16:7d:41:7a:73:f4:27:98:ca:2f: 86:e9:02:61:8c:be:f5:73:b6:3a:83:a2:08:39:6e: 13:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:29:71:80:1D:43:4D:96:A8:F3:34:22:E4:1C:3D:C2:28:17:A4:14 X509v3 Authority Key Identifier: keyid:D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e312e302f32342d3234203d3e203234323030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.133.1.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:81:2f:8d:53:30:d0:f3:eb:0f:30:9d:d1:ed:19:51:5e:be: 9e:0f:3c:79:51:a1:f7:aa:d5:5a:76:00:0d:81:28:53:cf:2e: 30:a4:25:8d:39:82:52:4f:72:60:4b:53:28:a4:17:c6:d3:a2: 5d:f9:0c:46:81:2e:e5:d1:1e:09:07:e7:3a:5f:4b:15:99:a1: f0:5f:b4:88:43:fb:1a:b4:03:c4:87:8a:5e:fa:31:34:f7:08: 88:15:af:c1:d2:6e:58:e2:62:e0:ff:fe:c8:10:ae:ab:f3:38: 55:c1:74:20:94:03:33:0c:4f:9c:6f:fd:a0:ee:f8:03:5a:54: dc:7b:ef:e7:d5:a2:9d:7c:44:10:8d:4f:fe:57:47:56:2c:f9: 8a:54:11:3c:e4:ee:5c:c7:5d:95:a6:35:0e:61:f2:81:1e:47: 55:da:dc:2b:68:7a:46:94:c7:56:e8:bf:e3:4f:02:ba:69:d8: 9c:22:c7:83:e1:af:c0:13:5f:2d:71:fb:ff:f3:6f:4e:b9:53: 06:94:a1:e8:8b:53:a0:3a:18:a4:05:b0:c8:63:37:3e:a3:87: 87:2c:9d:5f:53:69:8e:f5:5b:ad:26:6b:5d:70:e8:72:17:40: 3e:b2:91:47:88:c4:c3:7d:a7:41:e8:83:73:94:d7:f7:3b:ed: 3e:55:d6:fd -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUKvOqmuG4AMp79bSKMRIETJ1Bh+QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVGQUI4 QkE3QkU0MDAeFw0yNTExMjQwODU3MTFaFw0yNjExMjMwOTAyMTFaMDMxMTAvBgNV BAMTKEU1Mjk3MTgwMUQ0MzREOTZBOEYzMzQyMkU0MUMzREMyMjgxN0E0MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQAabG3di+3KMIRj7QzABwoOXF Y0C/Vu24xi+usT9FaYgLQd0poUc+c8KyqtqFNA0a3IGijjUi9u19B/5jiDXPw82P IeIX9VW1H+Z78N0rIY9kdpa/bBQw/XCa10yqO7+w1m7GN6f+W7lzG3/ihz0mZmZf MA/Jk0Z3z4U0m2+cerhbFnRfzAQgs5cgzGLJxMTEtO7ownh4bWBsgRjToGou/a9H UvoTlwpNp9aM0XrYuDqlfRVcfll7wY3QOogwSU1c9Gq64r7PeObrNdfJnHaCe8jg f5SfKecnL7XW/R+d9/EO/E66Fn1BenP0J5jKL4bpAmGMvvVztjqDogg5bhMpAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU5SlxgB1DTZao8zQi5Bw9wigXpBQwHwYDVR0j BBgwFoAU0MbXXDw0fVsnx4kR9ixfq4unvkAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzY2OWVhNC1lODJmLTQ2YzMtOGRkMy0yZTk4ODE1OWIyMDIvMC9EMEM2RDc1QzND MzQ3RDVCMjdDNzg5MTFGNjJDNUZBQjhCQTdCRTQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVGQUI4QkE3 QkU0MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNjY5ZWE0LWU4MmYtNDZjMy04 ZGQzLTJlOTg4MTU5YjIwMi8wLzMyMzAzMjJlMzEzMzMzMmUzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzMjMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKhQEwDQYJKoZIhvcN AQELBQADggEBAI2BL41TMNDz6w8wndHtGVFevp4PPHlRofeq1Vp2AA2BKFPPLjCk JY05glJPcmBLUyikF8bTol35DEaBLuXRHgkH5zpfSxWZofBftIhD+xq0A8SHil76 MTT3CIgVr8HSbljiYuD//sgQrqvzOFXBdCCUAzMMT5xv/aDu+ANaVNx77+fVop18 RBCNT/5XR1Ys+YpUETzk7lzHXZWmNQ5h8oEeR1Xa3CtoekaUx1bov+NPArpp2Jwi x4Phr8ATXy1x+//zb065UwaUoeiLU6A6GKQFsMhjNz6jh4csnV9TaY71W60ma11w 6HIXQD6ykUeIxMN9p0Hog3OU1/c77T5V1v0= -----END CERTIFICATE-----Generated at Wed Dec 3 15:28:45 2025 by rpki-client