This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34332e3234392e3230392e302f32342d3234203d3e203435323938.roa File: 34332e3234392e3230392e302f32342d3234203d3e203435323938.roa (raw, json) Hash identifier: i7hFR9y7ZN9Dd4gezE+BspWILKeKEoVfjSa55Gcaris= Subject key identifier: 25:35:53:19:A0:74:4B:DF:3E:9C:34:4A:25:4C:B7:9E:66:93:F2:BD Certificate issuer: /CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Certificate serial: 7007A7FF0F93E28003773C50922A3B352AA053F9 Authority key identifier: 1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34332e3234392e3230392e302f32342d3234203d3e203435323938.roa Signing time: Wed 28 Jan 2026 02:00:02 +0000 ROA not before: Wed 28 Jan 2026 01:55:02 +0000 ROA not after: Wed 27 Jan 2027 02:00:02 +0000 asID: 45298 IP address blocks: 43.249.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 03:19:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:07:a7:ff:0f:93:e2:80:03:77:3c:50:92:2a:3b:35:2a:a0:53:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Validity Not Before: Jan 28 01:55:02 2026 GMT Not After : Jan 27 02:00:02 2027 GMT Subject: CN=25355319A0744BDF3E9C344A254CB79E6693F2BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d4:20:5b:37:b6:fc:28:18:01:cc:12:3d:73: 5c:97:07:e1:4d:bd:3a:8d:bd:f7:d0:97:c6:9f:a5: 20:3d:fc:68:b2:c8:01:77:06:7e:31:82:b1:89:95: 7e:2e:12:b4:fd:60:7b:1a:24:d0:e7:5a:65:dd:26: 25:5b:7a:ca:56:7c:6a:81:93:9b:b9:99:ba:c5:7a: 3b:26:96:3b:a7:c9:5e:8a:09:f4:24:87:de:5f:b5: 46:09:ca:df:8e:12:0b:f5:62:ba:29:4a:51:07:27: e8:47:be:e5:e6:e4:8b:cf:0e:1f:2f:fd:96:3c:93: 4a:f0:ca:71:72:4c:e4:61:95:9a:98:fb:aa:39:18: 8d:df:45:7f:2d:dd:79:63:6d:8e:78:71:85:e6:85: e0:d2:10:4e:e6:68:d6:cc:d7:db:ba:df:99:61:8c: d6:bc:19:43:2c:a2:09:2d:2b:df:f5:2d:89:78:17: b4:84:07:f0:5b:6f:44:91:dc:71:4d:68:49:87:ab: f9:26:ca:db:60:d3:a5:0d:56:eb:14:4a:b7:a8:98: b7:27:5b:77:d6:37:f7:17:46:2d:e5:ed:7d:7a:a7: 3f:e1:57:3c:80:82:67:11:4e:2d:b3:1e:9b:05:ab: d4:29:e0:96:21:aa:3e:38:1e:92:9a:71:39:08:6e: 8a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:35:53:19:A0:74:4B:DF:3E:9C:34:4A:25:4C:B7:9E:66:93:F2:BD X509v3 Authority Key Identifier: keyid:1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34332e3234392e3230392e302f32342d3234203d3e203435323938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.249.209.0/24 Signature Algorithm: sha256WithRSAEncryption 35:a0:32:a8:bc:e6:e7:9f:1c:3f:1c:ca:98:b6:04:54:b6:c2: 21:69:fb:84:45:97:b8:cf:bf:33:5c:cd:f0:44:ba:fd:c4:8b: 97:0a:e7:64:b1:2d:db:cc:47:55:35:e6:d2:cb:d4:4e:79:d1: 46:86:d9:4e:c9:6e:8e:b6:cd:3a:a9:85:de:8b:fb:84:05:67: 31:92:53:20:54:7e:8f:6a:fe:b7:4c:e1:45:5a:99:57:cb:52: 8d:5e:f3:00:e0:f3:9f:31:eb:5e:c9:7f:0e:09:ff:3f:b4:55: 02:d3:4d:c6:67:06:f0:63:0f:9c:36:16:fe:14:72:b8:7d:97: 2f:53:b3:c1:88:13:59:31:d1:4b:94:78:37:6a:d2:5c:38:e9: ad:e2:7c:ec:44:7a:d9:93:28:58:41:4a:c0:18:45:4a:c4:37: 0d:6d:06:93:7d:54:a7:f0:27:6e:db:31:8f:5d:20:b2:28:76: 2d:fa:22:c2:87:8e:bb:29:4e:06:ff:63:1d:03:6d:eb:50:a8: fd:b5:9c:2c:8e:81:59:f9:a6:f0:b7:01:ba:40:0a:4a:44:38: 52:45:f4:3b:91:3a:6f:0a:35:d9:ad:62:44:1c:c1:16:a9:c5: ce:36:fe:b1:7b:d4:d3:9a:56:2b:49:df:f8:1f:6f:88:77:c5: 3c:8e:49:13 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcAen/w+T4oADdzxQkio7NSqgU/kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JD ODg2RjFERTAeFw0yNjAxMjgwMTU1MDJaFw0yNzAxMjcwMjAwMDJaMDMxMTAvBgNV BAMTKDI1MzU1MzE5QTA3NDRCREYzRTlDMzQ0QTI1NENCNzlFNjY5M0YyQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC01CBbN7b8KBgBzBI9c1yXB+FN vTqNvffQl8afpSA9/GiyyAF3Bn4xgrGJlX4uErT9YHsaJNDnWmXdJiVbespWfGqB k5u5mbrFejsmljunyV6KCfQkh95ftUYJyt+OEgv1YropSlEHJ+hHvuXm5IvPDh8v /ZY8k0rwynFyTORhlZqY+6o5GI3fRX8t3XljbY54cYXmheDSEE7maNbM19u635lh jNa8GUMsogktK9/1LYl4F7SEB/Bbb0SR3HFNaEmHq/kmyttg06UNVusUSreomLcn W3fWN/cXRi3l7X16pz/hVzyAgmcRTi2zHpsFq9Qp4JYhqj44HpKacTkIboo9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJTVTGaB0S98+nDRKJUy3nmaT8r0wHwYDVR0j BBgwFoAUGtWX00A/vRN8gUKePebYe8iG8d4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWVjMjVlNC05YWE4LTRiZWYtOTA5Ny1jMGJlYzBiMjY2YTcvMC8xQUQ1OTdEMzQw M0ZCRDEzN0M4MTQyOUUzREU2RDg3QkM4ODZGMURFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JDODg2 RjFERS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1ZWMyNWU0LTlhYTgtNGJlZi05 MDk3LWMwYmVjMGIyNjZhNy8wLzM0MzMyZTMyMzQzOTJlMzIzMDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMyMzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv50TANBgkqhkiG 9w0BAQsFAAOCAQEANaAyqLzm558cPxzKmLYEVLbCIWn7hEWXuM+/M1zN8ES6/cSL lwrnZLEt28xHVTXm0svUTnnRRobZTslujrbNOqmF3ov7hAVnMZJTIFR+j2r+t0zh RVqZV8tSjV7zAODznzHrXsl/Dgn/P7RVAtNNxmcG8GMPnDYW/hRyuH2XL1OzwYgT WTHRS5R4N2rSXDjpreJ87ER62ZMoWEFKwBhFSsQ3DW0Gk31Up/Anbtsxj10gsih2 LfoiwoeOuylOBv9jHQNt61Co/bWcLI6BWfmm8LcBukAKSkQ4UkX0O5E6bwo12a1i RBzBFqnFzjb+sXvU05pWK0nf+B9viHfFPI5JEw== -----END CERTIFICATE-----Generated at Mon Feb 2 14:14:42 2026 by rpki-client