This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e352e302f32342d3234203d3e203234323030.roa File: 3230322e3133332e352e302f32342d3234203d3e203234323030.roa (raw, json) Hash identifier: 3ZpfdTtxXj52cP2nsv6kg1TUa5J+9S8J6u9CtjkNgCU= Subject key identifier: B5:E3:54:86:78:1E:BB:C2:04:74:D1:C1:4A:D5:9E:D6:30:01:D1:46 Certificate issuer: /CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40 Certificate serial: 0FCCBE096F8957F1B4D0D209831D25F894C40977 Authority key identifier: D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e352e302f32342d3234203d3e203234323030.roa Signing time: Mon 24 Nov 2025 09:02:12 +0000 ROA not before: Mon 24 Nov 2025 08:57:12 +0000 ROA not after: Mon 23 Nov 2026 09:02:12 +0000 asID: 24200 IP address blocks: 202.133.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 16:10:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:cc:be:09:6f:89:57:f1:b4:d0:d2:09:83:1d:25:f8:94:c4:09:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40 Validity Not Before: Nov 24 08:57:12 2025 GMT Not After : Nov 23 09:02:12 2026 GMT Subject: CN=B5E35486781EBBC20474D1C14AD59ED63001D146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:60:e0:83:39:34:33:f7:95:61:08:4a:19:fd: fe:64:64:7d:93:4a:a9:5b:80:fc:ef:71:43:ef:8a: 1a:f7:fb:ce:92:e1:62:00:25:01:bb:af:4a:e1:01: 08:bc:99:43:02:30:60:0c:26:cf:87:0c:d8:8c:e9: da:ef:64:78:20:25:d7:4f:4e:ff:2f:9e:d3:5b:1b: 0c:7c:5e:6d:b4:52:77:ec:0f:ba:42:e6:06:37:0e: 0e:ed:6c:e1:05:04:52:17:9f:3f:9f:22:9d:6a:83: d1:41:09:dc:36:dc:b8:12:c7:83:8b:0b:b2:69:fe: cf:3e:40:e3:d9:cd:9b:63:ea:78:c1:00:c4:66:99: 60:e0:f4:e2:87:a3:4f:16:5b:fc:a2:30:e6:1d:39: 34:8f:44:c1:56:f8:75:89:8c:20:c9:b8:8b:24:60: bb:c9:f1:3f:57:97:d7:d7:95:38:b8:99:c1:30:41: 7c:17:3f:3d:2b:35:94:0b:64:da:28:e7:ec:7d:42: 47:e8:3b:64:ff:03:f3:59:45:bb:68:7e:b1:5b:70: 67:a3:4a:63:00:b5:72:83:1f:8e:09:13:0f:65:b2: 87:a7:92:bf:69:21:a4:65:75:14:8d:d7:6a:43:c0: 1d:92:7a:c1:0b:13:80:d5:98:54:47:f2:c8:9e:4c: d1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:E3:54:86:78:1E:BB:C2:04:74:D1:C1:4A:D5:9E:D6:30:01:D1:46 X509v3 Authority Key Identifier: keyid:D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e352e302f32342d3234203d3e203234323030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.133.5.0/24 Signature Algorithm: sha256WithRSAEncryption 62:b8:91:4d:79:8c:94:f0:41:9a:de:cc:2c:82:0b:94:1d:57: 22:4f:8c:6a:2f:1a:f7:91:85:27:ba:e1:d3:cb:ab:a2:7a:6e: d9:f1:06:ac:83:bf:c2:a3:b4:da:1e:3e:93:fa:d6:92:be:03: ec:6a:62:5c:bc:88:63:53:26:8d:8b:c2:4b:c6:8e:87:8f:2a: fc:a7:4e:4a:c8:e8:f0:0d:5b:bc:90:61:52:9b:ab:bf:13:8d: 28:47:99:e5:b5:00:89:5a:b1:b4:db:de:29:af:b0:8c:fe:04: 74:f6:81:ab:06:c8:f6:4e:b6:4e:d0:ed:9b:25:1b:ef:b2:02: 39:3c:80:17:e8:a0:c7:19:06:57:5f:26:da:2c:45:0b:19:21: 8b:8c:fa:9b:f2:c5:f8:44:21:cf:a8:67:b9:66:f1:1b:cd:d5: e6:ba:4d:ae:cc:bc:4c:7b:d1:3d:79:f8:7b:3e:c8:b8:3d:8b: 43:84:8e:d7:2b:e7:6a:b8:16:1c:c8:57:29:c1:80:76:88:5a: f8:e9:8f:c8:99:7a:13:84:f4:df:20:46:84:5f:ba:df:42:d5: c6:a3:2b:33:47:df:d7:89:53:b9:5c:0c:d2:4d:06:80:e5:5d: 3c:09:16:94:5d:52:97:0e:e7:12:7b:5d:3f:5c:a7:9c:3a:91: 66:c2:01:ec -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUD8y+CW+JV/G00NIJgx0l+JTECXcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVGQUI4 QkE3QkU0MDAeFw0yNTExMjQwODU3MTJaFw0yNjExMjMwOTAyMTJaMDMxMTAvBgNV BAMTKEI1RTM1NDg2NzgxRUJCQzIwNDc0RDFDMTRBRDU5RUQ2MzAwMUQxNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrYOCDOTQz95VhCEoZ/f5kZH2T SqlbgPzvcUPvihr3+86S4WIAJQG7r0rhAQi8mUMCMGAMJs+HDNiM6drvZHggJddP Tv8vntNbGwx8Xm20UnfsD7pC5gY3Dg7tbOEFBFIXnz+fIp1qg9FBCdw23LgSx4OL C7Jp/s8+QOPZzZtj6njBAMRmmWDg9OKHo08WW/yiMOYdOTSPRMFW+HWJjCDJuIsk YLvJ8T9Xl9fXlTi4mcEwQXwXPz0rNZQLZNoo5+x9QkfoO2T/A/NZRbtofrFbcGej SmMAtXKDH44JEw9lsoenkr9pIaRldRSN12pDwB2SesELE4DVmFRH8sieTNFfAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUteNUhngeu8IEdNHBStWe1jAB0UYwHwYDVR0j BBgwFoAU0MbXXDw0fVsnx4kR9ixfq4unvkAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzY2OWVhNC1lODJmLTQ2YzMtOGRkMy0yZTk4ODE1OWIyMDIvMC9EMEM2RDc1QzND MzQ3RDVCMjdDNzg5MTFGNjJDNUZBQjhCQTdCRTQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVGQUI4QkE3 QkU0MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNjY5ZWE0LWU4MmYtNDZjMy04 ZGQzLTJlOTg4MTU5YjIwMi8wLzMyMzAzMjJlMzEzMzMzMmUzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzMjMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKhQUwDQYJKoZIhvcN AQELBQADggEBAGK4kU15jJTwQZrezCyCC5QdVyJPjGovGveRhSe64dPLq6J6btnx BqyDv8KjtNoePpP61pK+A+xqYly8iGNTJo2LwkvGjoePKvynTkrI6PANW7yQYVKb q78TjShHmeW1AIlasbTb3imvsIz+BHT2gasGyPZOtk7Q7ZslG++yAjk8gBfooMcZ BldfJtosRQsZIYuM+pvyxfhEIc+oZ7lm8RvN1ea6Ta7MvEx70T15+Hs+yLg9i0OE jtcr52q4FhzIVynBgHaIWvjpj8iZehOE9N8gRoRfut9C1cajKzNH39eJU7lcDNJN BoDlXTwJFpRdUpcO5xJ7XT9cp5w6kWbCAew= -----END CERTIFICATE-----Generated at Wed Dec 3 15:28:55 2025 by rpki-client