This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e372e302f32342d3234203d3e203234323030.roa File: 3230322e3133332e372e302f32342d3234203d3e203234323030.roa (raw, json) Hash identifier: /GwhlBmTeqRQ0qTqfr/7dYrst12Hg3GNSY71ebWYL0A= Subject key identifier: CC:75:10:6B:C7:08:9B:19:B3:47:C9:15:D7:44:CA:20:27:84:FF:F8 Certificate issuer: /CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40 Certificate serial: 2469123548429E3BD7F6BA9D2CB2814AEFBFA8C9 Authority key identifier: D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e372e302f32342d3234203d3e203234323030.roa Signing time: Mon 24 Nov 2025 09:02:11 +0000 ROA not before: Mon 24 Nov 2025 08:57:11 +0000 ROA not after: Mon 23 Nov 2026 09:02:11 +0000 asID: 24200 IP address blocks: 202.133.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 16:10:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:69:12:35:48:42:9e:3b:d7:f6:ba:9d:2c:b2:81:4a:ef:bf:a8:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40 Validity Not Before: Nov 24 08:57:11 2025 GMT Not After : Nov 23 09:02:11 2026 GMT Subject: CN=CC75106BC7089B19B347C915D744CA202784FFF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f6:26:21:88:8e:1a:60:67:40:eb:25:74:15: 4a:e2:cb:67:9f:fd:99:05:6f:13:cc:22:d8:fb:c4: f3:7f:d6:7e:12:1a:f2:41:c9:56:58:18:92:6b:06: 67:72:fd:e9:03:8f:e7:4c:ea:0a:8c:c3:dc:80:28: 04:cb:2e:08:14:dc:e8:a5:14:c6:65:13:1f:13:d1: 4a:87:c5:31:f2:64:71:04:a1:1c:ae:97:73:d1:cc: 00:b0:63:36:97:ae:21:74:1e:f6:37:84:25:5f:42: 7e:dc:3c:72:42:f3:b2:66:49:10:dd:e2:4f:52:f0: 73:f4:19:3a:fc:a4:c3:96:87:1b:c3:8e:51:7f:d4: 79:c6:23:ec:dc:eb:17:3a:19:4b:bd:68:da:b7:70: 5a:10:0d:af:6f:98:83:75:93:c8:15:00:b3:a7:fb: 8b:a4:cc:7a:8b:49:63:3b:78:02:ad:fa:bc:ef:9c: d2:10:20:3f:3c:e7:60:e4:0d:eb:1d:98:fa:78:6e: 19:b0:df:24:d8:2f:92:ef:a2:3c:8c:35:50:c9:23: d5:90:10:1c:2b:a2:93:78:cc:5c:eb:cb:c7:55:30: cf:4d:12:21:35:62:c5:b3:24:ec:01:c0:a0:7c:e5: da:40:99:24:77:0e:a1:35:6c:21:2f:27:50:fe:44: c0:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:75:10:6B:C7:08:9B:19:B3:47:C9:15:D7:44:CA:20:27:84:FF:F8 X509v3 Authority Key Identifier: keyid:D0:C6:D7:5C:3C:34:7D:5B:27:C7:89:11:F6:2C:5F:AB:8B:A7:BE:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C6D75C3C347D5B27C78911F62C5FAB8BA7BE40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/63669ea4-e82f-46c3-8dd3-2e988159b202/0/3230322e3133332e372e302f32342d3234203d3e203234323030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.133.7.0/24 Signature Algorithm: sha256WithRSAEncryption d9:38:f3:71:39:56:27:24:9e:37:3f:ef:b0:e5:29:2d:9f:68: ed:8f:65:84:57:a1:0e:18:7d:8b:6c:48:2b:71:3a:77:94:9f: 64:4b:70:c0:f0:b4:57:a3:e5:b0:60:b0:c3:dc:0e:2b:4d:fb: 93:88:49:a5:bb:6c:95:cf:52:5b:92:94:98:27:c4:a6:e8:5e: 24:90:dd:10:17:45:bc:5c:37:e6:b6:08:f4:0e:58:b1:db:eb: f3:61:b8:85:24:a8:cc:36:d3:93:fd:7b:0c:29:0f:23:91:92: 1a:1d:fe:93:d9:75:be:1b:9d:71:df:59:10:00:b8:23:5f:ab: 68:95:38:b4:f6:c7:3b:0d:05:f4:61:29:65:58:c4:3b:23:ae: de:5d:59:51:9d:49:b0:3d:7f:ec:49:f6:ec:fc:be:36:9d:84: 58:3d:8b:d1:3c:4a:ec:e7:c9:67:08:e0:8b:d1:a5:b9:b5:f8: d5:c1:8e:0f:78:dd:34:8b:c1:0c:3c:3e:82:d9:39:e3:3d:7c: 9b:52:55:d1:ea:34:09:16:9f:a0:b7:85:59:fc:4e:25:35:77: 8e:5b:88:79:ee:f3:f6:ca:2c:5b:9c:59:72:17:09:af:bf:73: fe:e0:dd:52:2b:86:41:8f:71:63:b9:96:3a:1e:40:ca:76:f6: 53:0c:e2:28 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUJGkSNUhCnjvX9rqdLLKBSu+/qMkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVGQUI4 QkE3QkU0MDAeFw0yNTExMjQwODU3MTFaFw0yNjExMjMwOTAyMTFaMDMxMTAvBgNV BAMTKENDNzUxMDZCQzcwODlCMTlCMzQ3QzkxNUQ3NDRDQTIwMjc4NEZGRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD9iYhiI4aYGdA6yV0FUriy2ef /ZkFbxPMItj7xPN/1n4SGvJByVZYGJJrBmdy/ekDj+dM6gqMw9yAKATLLggU3Oil FMZlEx8T0UqHxTHyZHEEoRyul3PRzACwYzaXriF0HvY3hCVfQn7cPHJC87JmSRDd 4k9S8HP0GTr8pMOWhxvDjlF/1HnGI+zc6xc6GUu9aNq3cFoQDa9vmIN1k8gVALOn +4ukzHqLSWM7eAKt+rzvnNIQID8852DkDesdmPp4bhmw3yTYL5LvojyMNVDJI9WQ EBwropN4zFzry8dVMM9NEiE1YsWzJOwBwKB85dpAmSR3DqE1bCEvJ1D+RMCrAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUzHUQa8cImxmzR8kV10TKICeE//gwHwYDVR0j BBgwFoAU0MbXXDw0fVsnx4kR9ixfq4unvkAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzY2OWVhNC1lODJmLTQ2YzMtOGRkMy0yZTk4ODE1OWIyMDIvMC9EMEM2RDc1QzND MzQ3RDVCMjdDNzg5MTFGNjJDNUZBQjhCQTdCRTQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDNkQ3NUMzQzM0N0Q1QjI3Qzc4OTExRjYyQzVGQUI4QkE3 QkU0MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNjY5ZWE0LWU4MmYtNDZjMy04 ZGQzLTJlOTg4MTU5YjIwMi8wLzMyMzAzMjJlMzEzMzMzMmUzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzQzMjMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKhQcwDQYJKoZIhvcN AQELBQADggEBANk483E5Vicknjc/77DlKS2faO2PZYRXoQ4YfYtsSCtxOneUn2RL cMDwtFej5bBgsMPcDitN+5OISaW7bJXPUluSlJgnxKboXiSQ3RAXRbxcN+a2CPQO WLHb6/NhuIUkqMw205P9ewwpDyORkhod/pPZdb4bnXHfWRAAuCNfq2iVOLT2xzsN BfRhKWVYxDsjrt5dWVGdSbA9f+xJ9uz8vjadhFg9i9E8SuznyWcI4IvRpbm1+NXB jg943TSLwQw8PoLZOeM9fJtSVdHqNAkWn6C3hVn8TiU1d45biHnu8/bKLFucWXIX Ca+/c/7g3VIrhkGPcWO5ljoeQMp29lMM4ig= -----END CERTIFICATE-----Generated at Wed Dec 3 15:28:57 2025 by rpki-client