This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e362e302f32342d3234203d3e203234323030.roa File: 3230322e3133332e362e302f32342d3234203d3e203234323030.roa (raw, json) Hash identifier: NPtGQfnjNiCvn81mxs4KeV6zEFVnWZPCAxC6gItEmqo= Subject key identifier: 72:EA:3C:50:B3:FE:11:D3:77:BA:2C:52:EF:7D:25:05:30:39:5D:FE Certificate issuer: /CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40 Certificate serial: 3D1ADAA2B94280C5D0AF05D3E1F7DF267B51B608 Authority key identifier: D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e362e302f32342d3234203d3e203234323030.roa Signing time: Mon 24 Nov 2025 09:02:11 +0000 ROA not before: Mon 24 Nov 2025 08:57:11 +0000 ROA not after: Mon 23 Nov 2026 09:02:11 +0000 asID: 24200 IP address blocks: 202.133.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 16:10:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:1a:da:a2:b9:42:80:c5:d0:af:05:d3:e1:f7:df:26:7b:51:b6:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40 Validity Not Before: Nov 24 08:57:11 2025 GMT Not After : Nov 23 09:02:11 2026 GMT Subject: CN=72EA3C50B3FE11D377BA2C52EF7D250530395DFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:12:ac:23:39:a2:9d:6b:22:d9:cb:f7:93:c1: be:ad:72:2f:22:f6:06:c3:d6:89:b8:e2:6e:6b:02: 57:b6:df:4a:47:4d:94:b7:86:99:0f:6a:9d:f7:42: 97:33:c1:2c:8c:eb:bb:ad:26:8a:7b:52:9a:b2:ec: 5f:6e:de:e2:f7:1a:47:68:4e:ad:7d:db:86:f8:48: b8:c0:11:4c:01:d3:6a:e7:b4:61:0a:8a:fa:13:d1: f2:4a:a7:23:c9:b3:51:5c:23:df:b4:67:df:b7:9a: 7c:59:da:f6:59:69:bc:cf:fc:95:5b:45:2b:28:2e: b8:d0:37:fc:60:a0:7c:6c:99:5e:24:01:f0:64:fc: 9d:95:e5:d8:75:51:ae:6d:a9:d8:63:df:49:b0:d6: 4d:e6:04:de:a9:e9:cb:21:12:72:ee:35:9c:8f:d4: 39:d0:00:f9:cd:2a:3f:aa:39:80:23:6f:9c:b9:5a: 58:de:46:68:9f:f4:a7:14:4a:6d:2b:99:4f:49:34: 27:32:9f:9f:cc:d4:6c:f4:c7:6e:54:16:46:59:48: 5e:1c:57:ea:04:4d:a7:ad:dc:3d:42:d9:c3:59:f2: bf:4d:42:fa:ed:c9:d7:74:36:58:ae:6c:1a:55:06: 71:8e:8f:31:ac:4c:23:92:c5:9b:0f:25:56:6c:2f: 10:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:EA:3C:50:B3:FE:11:D3:77:BA:2C:52:EF:7D:25:05:30:39:5D:FE X509v3 Authority Key Identifier: keyid:D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e362e302f32342d3234203d3e203234323030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.133.6.0/24 Signature Algorithm: sha256WithRSAEncryption 01:23:fa:52:c4:4a:2c:77:f2:fd:2f:b3:fd:88:2c:27:7c:59: c4:ef:a8:39:fc:2b:74:cf:cc:e5:fb:00:f0:0c:e0:3e:53:b9: da:63:d3:a6:be:e4:0a:1d:06:42:19:7f:26:7d:7b:a2:b3:3c: 9b:73:cc:3b:aa:57:87:03:7a:18:53:77:05:be:3f:db:b7:b0: 6b:03:8c:5e:4e:27:b0:90:f0:65:5a:2c:a5:53:54:76:e1:6e: c6:a4:40:c6:c9:d4:20:42:e4:62:9e:e8:54:49:1b:3d:d3:df: 51:af:fd:3e:5d:b3:68:e6:fb:a3:99:b5:b7:94:c9:78:06:4d: 89:00:9f:39:41:1f:1b:a3:1e:bd:08:19:88:d5:c0:2c:a2:60: 76:bf:2e:00:5a:f5:60:57:05:ce:0b:f6:5a:42:16:50:27:ea: 1f:5a:c1:e3:32:63:96:69:fb:2a:f5:0d:b1:d5:4e:cc:cd:58: 17:4e:21:85:05:50:b5:41:18:0f:83:02:9e:56:60:f6:63:70: c2:bc:7f:8d:e9:fe:20:11:12:19:cf:dd:14:b8:36:a3:aa:fe: 9e:ce:89:0e:c1:11:a7:23:b5:b8:f0:e8:fd:9c:72:c4:e0:49: 6e:ef:26:f8:e0:b1:75:b5:9a:17:c9:41:8e:9a:7e:08:b9:da: 83:ee:05:b7 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUPRraorlCgMXQrwXT4fffJntRtggwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVGQUI4 QkE3QkU0MDAeFw0yNTExMjQwODU3MTFaFw0yNjExMjMwOTAyMTFaMDMxMTAvBgNV BAMTKDcyRUEzQzUwQjNGRTExRDM3N0JBMkM1MkVGN0QyNTA1MzAzOTVERkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAEqwjOaKdayLZy/eTwb6tci8i 9gbD1om44m5rAle230pHTZS3hpkPap33QpczwSyM67utJop7Upqy7F9u3uL3Gkdo Tq1924b4SLjAEUwB02rntGEKivoT0fJKpyPJs1FcI9+0Z9+3mnxZ2vZZabzP/JVb RSsoLrjQN/xgoHxsmV4kAfBk/J2V5dh1Ua5tqdhj30mw1k3mBN6p6cshEnLuNZyP 1DnQAPnNKj+qOYAjb5y5WljeRmif9KcUSm0rmU9JNCcyn5/M1Gz0x25UFkZZSF4c V+oETaet3D1C2cNZ8r9NQvrtydd0NliubBpVBnGOjzGsTCOSxZsPJVZsLxBhAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUcuo8ULP+EdN3uixS730lBTA5Xf4wHwYDVR0j BBgwFoAU0MbXXDw0fVsnx4kR9ixfq4unvkAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzY2OWVhNC1lODJmLTQ2YzMtOGRkMy0yZTk4ODE1OWIyMDIvMC9EMEM2RDc1QzND MzQ3RDVCMjdDNzg5MTFGNjJDNUZBQjhCQTdCRTQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVGQUI4QkE3 QkU0MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNjY5ZWE0LWU4MmYtNDZjMy04 ZGQzLTJlOTg4MTU5YjIwMi8wLzMyMzAzMjJlMzEzMzMzMmUzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzMjMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKhQYwDQYJKoZIhvcN AQELBQADggEBAAEj+lLESix38v0vs/2ILCd8WcTvqDn8K3TPzOX7APAM4D5Tudpj 06a+5AodBkIZfyZ9e6KzPJtzzDuqV4cDehhTdwW+P9u3sGsDjF5OJ7CQ8GVaLKVT VHbhbsakQMbJ1CBC5GKe6FRJGz3T31Gv/T5ds2jm+6OZtbeUyXgGTYkAnzlBHxuj Hr0IGYjVwCyiYHa/LgBa9WBXBc4L9lpCFlAn6h9aweMyY5Zp+yr1DbHVTszNWBdO IYUFULVBGA+DAp5WYPZjcMK8f43p/iAREhnP3RS4NqOq/p7OiQ7BEacjtbjw6P2c csTgSW7vJvjgsXW1mhfJQY6afgi52oPuBbc= -----END CERTIFICATE-----Generated at Wed Dec 3 15:29:00 2025 by rpki-client