This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e322e302f32342d3234203d3e203234323030.roa File: 3230322e3133332e322e302f32342d3234203d3e203234323030.roa (raw, json) Hash identifier: wnaZXzJu/9XYkLWvstgZSpRMBHg1zffk2A9AEFHpANM= Subject key identifier: 56:7A:32:93:48:9E:43:55:4A:21:B8:E5:A4:B8:93:C1:E3:74:4B:29 Certificate issuer: /CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40 Certificate serial: 62489AEF547D45010863FB020EEF530903D438AC Authority key identifier: D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e322e302f32342d3234203d3e203234323030.roa Signing time: Mon 24 Nov 2025 09:02:11 +0000 ROA not before: Mon 24 Nov 2025 08:57:11 +0000 ROA not after: Mon 23 Nov 2026 09:02:11 +0000 asID: 24200 IP address blocks: 202.133.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 16:10:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:48:9a:ef:54:7d:45:01:08:63:fb:02:0e:ef:53:09:03:d4:38:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40 Validity Not Before: Nov 24 08:57:11 2025 GMT Not After : Nov 23 09:02:11 2026 GMT Subject: CN=567A3293489E43554A21B8E5A4B893C1E3744B29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c4:e0:a2:cf:0c:dc:e0:10:b1:51:9c:73:71: b5:42:06:22:f8:dc:cf:a7:a9:3b:5a:2e:93:b1:16: 1a:5b:d9:74:14:b5:83:2d:6c:d7:af:6c:c3:02:b7: ba:2b:c8:f6:58:15:eb:bb:6b:b9:51:99:06:46:ed: 58:af:07:d5:d8:0f:90:f8:da:b5:3a:d2:52:64:37: 28:c0:b6:bb:1b:8e:14:8c:6d:41:50:c4:0a:fe:69: dc:03:21:c0:09:9f:b8:0e:ad:03:69:a1:dd:8c:8f: b5:dd:26:8a:d1:a9:63:d8:43:52:79:38:69:95:be: a7:a3:5f:f2:6f:50:3f:b0:18:df:9c:2f:e1:f1:72: 5d:f9:5f:d9:95:b8:2b:6c:4c:c2:77:d9:8b:a1:a0: 90:ab:bf:c6:27:7b:11:d4:1a:52:c9:12:f2:f1:b0: 8f:2c:37:cc:2b:ab:0d:d9:fa:35:98:08:87:b9:8b: 02:57:5a:b5:b9:4e:bb:80:13:40:a5:40:a5:67:35: 5c:92:14:74:51:85:2d:a6:3c:12:17:50:04:37:ab: 1a:66:f0:31:48:8c:91:75:37:e8:dc:17:f3:e4:02: 47:8f:5d:e2:09:ea:ef:22:bd:0b:f7:d4:90:6f:8b: 1d:d6:b5:c5:2a:e5:3c:2a:a4:cb:27:ef:33:60:41: 70:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:7A:32:93:48:9E:43:55:4A:21:B8:E5:A4:B8:93:C1:E3:74:4B:29 X509v3 Authority Key Identifier: keyid:D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e322e302f32342d3234203d3e203234323030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.133.2.0/24 Signature Algorithm: sha256WithRSAEncryption 54:45:dd:1f:55:50:40:9b:fa:5a:ee:b6:0a:e6:33:7b:57:18: 00:89:27:b0:a0:6f:22:46:6f:53:6a:57:7b:97:4f:a5:34:a1: 82:2e:2a:87:78:4e:88:dd:88:2d:2e:38:24:98:6c:26:26:0b: 5b:66:82:f1:6b:75:fb:ed:8f:91:f5:e7:e4:c2:5e:cb:e6:6a: 12:7c:19:83:ff:0a:23:46:80:e6:be:a3:09:1e:9f:f0:4d:70: 40:7d:6b:21:f2:cb:0a:4c:7c:b2:13:86:52:66:1f:21:cc:6d: 69:c6:57:54:28:2b:44:21:80:b6:d0:d1:b6:06:aa:38:ff:ed: 3e:1f:35:83:9d:72:ba:c7:2e:27:6f:b5:2f:30:aa:e0:f4:ce: 00:0b:e8:c7:29:82:ff:35:ee:91:e0:57:19:a1:bf:67:02:cf: 89:ec:2a:77:35:85:cc:cb:e9:af:86:e8:9e:10:4a:19:0e:12: b2:04:b7:f9:5a:aa:57:8d:83:15:d1:e5:7a:4d:51:e0:9b:72: 26:d2:a1:f1:5f:29:e6:99:54:c4:03:45:42:2f:ae:3a:21:a7: c9:6b:a1:27:22:f8:af:15:d0:82:00:9e:f3:ee:70:76:da:71: c1:e9:25:2c:0c:0d:68:b6:af:52:a8:c8:26:22:3e:4c:81:f8: da:84:83:8a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUYkia71R9RQEIY/sCDu9TCQPUOKwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVGQUI4 QkE3QkU0MDAeFw0yNTExMjQwODU3MTFaFw0yNjExMjMwOTAyMTFaMDMxMTAvBgNV BAMTKDU2N0EzMjkzNDg5RTQzNTU0QTIxQjhFNUE0Qjg5M0MxRTM3NDRCMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpxOCizwzc4BCxUZxzcbVCBiL4 3M+nqTtaLpOxFhpb2XQUtYMtbNevbMMCt7oryPZYFeu7a7lRmQZG7VivB9XYD5D4 2rU60lJkNyjAtrsbjhSMbUFQxAr+adwDIcAJn7gOrQNpod2Mj7XdJorRqWPYQ1J5 OGmVvqejX/JvUD+wGN+cL+Hxcl35X9mVuCtsTMJ32YuhoJCrv8YnexHUGlLJEvLx sI8sN8wrqw3Z+jWYCIe5iwJXWrW5TruAE0ClQKVnNVySFHRRhS2mPBIXUAQ3qxpm 8DFIjJF1N+jcF/PkAkePXeIJ6u8ivQv31JBvix3WtcUq5TwqpMsn7zNgQXD/AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUVnoyk0ieQ1VKIbjlpLiTweN0SykwHwYDVR0j BBgwFoAU0MbXXDw0fVsnx4kR9ixfq4unvkAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzY2OWVhNC1lODJmLTQ2YzMtOGRkMy0yZTk4ODE1OWIyMDIvMC9EMEM2RDc1QzND MzQ3RDVCMjdDNzg5MTFGNjJDNUZBQjhCQTdCRTQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVGQUI4QkE3 QkU0MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNjY5ZWE0LWU4MmYtNDZjMy04 ZGQzLTJlOTg4MTU5YjIwMi8wLzMyMzAzMjJlMzEzMzMzMmUzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzMjMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKhQIwDQYJKoZIhvcN AQELBQADggEBAFRF3R9VUECb+lrutgrmM3tXGACJJ7CgbyJGb1NqV3uXT6U0oYIu Kod4TojdiC0uOCSYbCYmC1tmgvFrdfvtj5H15+TCXsvmahJ8GYP/CiNGgOa+owke n/BNcEB9ayHyywpMfLIThlJmHyHMbWnGV1QoK0QhgLbQ0bYGqjj/7T4fNYOdcrrH LidvtS8wquD0zgAL6Mcpgv817pHgVxmhv2cCz4nsKnc1hczL6a+G6J4QShkOErIE t/laqleNgxXR5XpNUeCbcibSofFfKeaZVMQDRUIvrjohp8lroSci+K8V0IIAnvPu cHbaccHpJSwMDWi2r1KoyCYiPkyB+NqEg4o= -----END CERTIFICATE-----Generated at Wed Dec 3 15:29:06 2025 by rpki-client