This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34332e3234392e3230392e302f32342d3234203d3e203435323938.roa File: 34332e3234392e3230392e302f32342d3234203d3e203435323938.roa (raw, json) Hash identifier: HKEFlGd3fuMjLaak9jaJVW3JC6xTjvu6XpG5EhM3CNI= Subject key identifier: A5:22:D4:E1:82:5B:34:55:7C:6D:A1:45:00:33:CD:4D:20:9D:3C:48 Certificate issuer: /CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Certificate serial: 02E005F576B59C3921F1C42FEDF19042F98B2324 Authority key identifier: 1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34332e3234392e3230392e302f32342d3234203d3e203435323938.roa Signing time: Wed 26 Feb 2025 01:00:02 +0000 ROA not before: Wed 26 Feb 2025 00:55:02 +0000 ROA not after: Wed 25 Feb 2026 01:00:02 +0000 asID: 45298 IP address blocks: 43.249.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 11:29:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:e0:05:f5:76:b5:9c:39:21:f1:c4:2f:ed:f1:90:42:f9:8b:23:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Validity Not Before: Feb 26 00:55:02 2025 GMT Not After : Feb 25 01:00:02 2026 GMT Subject: CN=A522D4E1825B34557C6DA1450033CD4D209D3C48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:84:f0:d1:e5:07:ff:32:04:c0:61:0c:1f:2c: d6:92:3a:6e:b9:ef:d2:03:de:39:5c:65:34:39:40: c8:88:d0:e2:6b:62:d6:e5:9f:7e:b6:e7:54:7d:07: 0d:78:d2:4d:30:a3:a3:4a:12:d6:3f:06:5c:55:70: 10:69:29:dd:f5:ba:2c:6c:40:8b:0e:c9:8d:20:f8: 54:2d:b3:1e:38:84:8d:09:1b:c3:1c:dd:cf:1c:18: 0e:ee:22:0a:ce:fe:f3:c7:9c:0a:a9:d5:65:84:48: 5c:ca:34:50:8a:5d:70:79:79:06:41:b1:7f:31:3e: cf:7c:db:c3:5a:c8:35:ab:a4:f9:a9:ae:1e:93:8c: e1:92:5d:45:1e:66:ae:ea:3d:d0:aa:2b:de:dc:5c: 97:9d:d5:8a:76:f1:13:51:4e:15:04:cc:02:31:ff: c2:15:57:85:48:75:c5:e2:60:fe:e2:f9:11:78:39: 24:a6:b4:46:4c:07:11:8e:52:3f:40:18:08:63:c7: a5:d2:d8:9d:c9:e2:75:f4:b1:46:9f:cd:35:73:ca: 4e:96:a8:6f:21:17:43:76:95:6b:e6:83:9a:af:f6: 1c:88:de:52:22:e9:62:42:a1:cc:27:a8:fc:ef:ef: b5:02:db:24:b5:91:ad:6a:96:1c:17:ed:d0:16:8b: 6b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:22:D4:E1:82:5B:34:55:7C:6D:A1:45:00:33:CD:4D:20:9D:3C:48 X509v3 Authority Key Identifier: keyid:1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34332e3234392e3230392e302f32342d3234203d3e203435323938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.249.209.0/24 Signature Algorithm: sha256WithRSAEncryption 80:4e:f5:cb:f7:86:60:8f:ba:4b:d0:57:39:2d:55:97:a4:55: c0:be:7b:f1:60:6d:c4:5c:9c:80:61:b1:43:b2:26:49:a9:f0: 9c:15:86:0e:d9:95:ee:b3:33:e5:c9:e4:a9:61:f5:ca:a3:d4: 01:f8:a7:e3:f5:56:44:af:06:6d:3c:ae:a6:c7:6d:86:c6:60: 41:c5:a3:09:88:16:27:f5:57:55:60:54:78:f4:50:5a:e2:e6: b1:55:6c:85:4a:85:4c:ac:af:09:50:9d:0d:e6:04:88:d7:11: a2:69:fb:e4:a3:b3:47:fa:42:f6:19:28:ae:cb:57:0a:ed:cb: b7:aa:f9:c9:1d:83:57:ae:47:a9:59:bb:cc:23:91:53:f2:de: 9f:11:26:b9:e3:21:b8:89:e1:44:6a:10:bb:98:62:12:3a:cb: d6:61:ef:f6:5d:3a:78:6b:e9:bf:84:f4:d9:88:12:41:0f:0e: 46:da:85:ae:1c:11:26:53:4b:4c:40:be:ef:6c:f0:93:3c:79: 2f:81:31:7e:7c:62:a9:93:ee:23:b5:b1:b4:66:8a:d3:3b:ec: d0:b1:8c:35:d4:a6:68:6b:c9:60:e6:45:73:7c:e0:5b:49:6c: 86:e2:1b:64:d8:ce:78:2f:a1:8f:d3:fa:60:65:ec:52:7c:dd: 4a:8a:a6:65 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAuAF9Xa1nDkh8cQv7fGQQvmLIyQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JD ODg2RjFERTAeFw0yNTAyMjYwMDU1MDJaFw0yNjAyMjUwMTAwMDJaMDMxMTAvBgNV BAMTKEE1MjJENEUxODI1QjM0NTU3QzZEQTE0NTAwMzNDRDREMjA5RDNDNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClhPDR5Qf/MgTAYQwfLNaSOm65 79ID3jlcZTQ5QMiI0OJrYtbln36251R9Bw140k0wo6NKEtY/BlxVcBBpKd31uixs QIsOyY0g+FQtsx44hI0JG8Mc3c8cGA7uIgrO/vPHnAqp1WWESFzKNFCKXXB5eQZB sX8xPs9828NayDWrpPmprh6TjOGSXUUeZq7qPdCqK97cXJed1Yp28RNRThUEzAIx /8IVV4VIdcXiYP7i+RF4OSSmtEZMBxGOUj9AGAhjx6XS2J3J4nX0sUafzTVzyk6W qG8hF0N2lWvmg5qv9hyI3lIi6WJCocwnqPzv77UC2yS1ka1qlhwX7dAWi2vDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUpSLU4YJbNFV8baFFADPNTSCdPEgwHwYDVR0j BBgwFoAUGtWX00A/vRN8gUKePebYe8iG8d4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWVjMjVlNC05YWE4LTRiZWYtOTA5Ny1jMGJlYzBiMjY2YTcvMC8xQUQ1OTdEMzQw M0ZCRDEzN0M4MTQyOUUzREU2RDg3QkM4ODZGMURFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JDODg2 RjFERS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1ZWMyNWU0LTlhYTgtNGJlZi05 MDk3LWMwYmVjMGIyNjZhNy8wLzM0MzMyZTMyMzQzOTJlMzIzMDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMyMzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv50TANBgkqhkiG 9w0BAQsFAAOCAQEAgE71y/eGYI+6S9BXOS1Vl6RVwL578WBtxFycgGGxQ7ImSanw nBWGDtmV7rMz5cnkqWH1yqPUAfin4/VWRK8GbTyupsdthsZgQcWjCYgWJ/VXVWBU ePRQWuLmsVVshUqFTKyvCVCdDeYEiNcRomn75KOzR/pC9hkorstXCu3Lt6r5yR2D V65HqVm7zCORU/LenxEmueMhuInhRGoQu5hiEjrL1mHv9l06eGvpv4T02YgSQQ8O RtqFrhwRJlNLTEC+72zwkzx5L4ExfnxiqZPuI7WxtGaK0zvs0LGMNdSmaGvJYOZF c3zgW0lshuIbZNjOeC+hj9P6YGXsUnzdSoqmZQ== -----END CERTIFICATE-----Generated at Wed Dec 3 15:51:11 2025 by rpki-client