This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34332e3234392e3231302e302f32342d3234203d3e203435323938.roa File: 34332e3234392e3231302e302f32342d3234203d3e203435323938.roa (raw, json) Hash identifier: UekkDKgU/YAhXJ6R9+NFWqKcbGGHHXyI8VU8wt8dut8= Subject key identifier: 64:1F:E4:97:82:C1:03:32:3A:43:82:23:2E:65:E3:A7:4B:92:63:4D Certificate issuer: /CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Certificate serial: 7A4116E1A9A20A3C7F763D07569354EE9BB1A017 Authority key identifier: 1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34332e3234392e3231302e302f32342d3234203d3e203435323938.roa Signing time: Wed 28 Jan 2026 02:00:03 +0000 ROA not before: Wed 28 Jan 2026 01:55:03 +0000 ROA not after: Wed 27 Jan 2027 02:00:03 +0000 asID: 45298 IP address blocks: 43.249.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 03:19:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:41:16:e1:a9:a2:0a:3c:7f:76:3d:07:56:93:54:ee:9b:b1:a0:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1AD597D3403FBD137C81429E3DE6D87BC886F1DE Validity Not Before: Jan 28 01:55:03 2026 GMT Not After : Jan 27 02:00:03 2027 GMT Subject: CN=641FE49782C103323A4382232E65E3A74B92634D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8e:1b:ef:e7:c4:8d:86:99:81:97:a8:b5:30: 4e:43:22:96:02:71:5f:a4:43:ea:67:8e:c3:08:7b: bd:e8:bc:21:80:9f:d7:e1:84:54:43:e6:da:8d:f5: ea:75:d3:b3:4f:d4:c2:49:8a:7e:99:fa:dc:5b:18: 48:48:f4:63:e7:d6:15:12:94:03:cf:3e:0b:2d:4b: e2:0a:3c:09:93:23:40:73:f0:f7:08:e8:b9:e0:d0: c3:55:14:08:f0:f8:b9:62:a5:2b:41:e9:ac:79:4c: e8:c4:ee:ed:74:26:19:10:8e:f5:df:64:97:1a:d4: 97:51:59:bf:e9:52:4b:e8:c4:74:57:3e:28:70:da: 0e:51:a5:30:0a:68:a5:7d:60:da:71:c5:65:d3:83: a2:13:81:9e:6e:61:dd:4c:70:c2:33:54:3e:8f:cb: e5:c3:8e:6b:b9:e0:dc:c3:7e:d5:64:d8:73:b0:7c: 1f:17:7d:6f:5a:7f:78:11:87:92:9e:38:cb:5d:87: b8:57:c0:a7:3f:54:2e:29:a4:32:4d:94:8f:a7:90: 75:d6:60:f2:d2:8c:d4:a4:f3:b9:6a:ba:fe:ea:e3: 9a:68:b9:a2:9e:a2:04:a5:60:a9:f2:dc:11:95:ef: 72:b3:02:18:fa:80:6e:d2:4d:3f:71:7e:e1:91:34: a3:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:1F:E4:97:82:C1:03:32:3A:43:82:23:2E:65:E3:A7:4B:92:63:4D X509v3 Authority Key Identifier: keyid:1A:D5:97:D3:40:3F:BD:13:7C:81:42:9E:3D:E6:D8:7B:C8:86:F1:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1AD597D3403FBD137C81429E3DE6D87BC886F1DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65ec25e4-9aa8-4bef-9097-c0bec0b266a7/0/34332e3234392e3231302e302f32342d3234203d3e203435323938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.249.210.0/24 Signature Algorithm: sha256WithRSAEncryption 07:01:17:a2:a5:a7:c1:8a:bb:ad:ce:27:d7:7a:83:69:6d:57: 4e:8a:72:c8:be:ef:9b:23:af:6b:9d:71:6b:43:71:b6:2e:19: 88:f2:03:8e:4b:93:30:f3:22:58:3a:f2:51:a9:0e:86:33:65: 66:1e:dc:fb:eb:86:22:d9:16:63:4d:49:67:5d:51:64:cb:8d: 7a:3a:f4:d0:bc:c7:4a:cc:49:a3:fc:ce:60:0b:86:3d:71:4f: 03:bd:51:50:3e:24:5e:81:e6:d4:6a:e1:e3:6e:82:e9:e3:3a: 35:c3:b8:2d:85:a2:9f:90:25:ab:ee:97:d2:d8:61:46:96:48: 75:5f:81:5b:f5:f3:6a:18:2a:2f:dd:e4:c3:9b:85:c5:54:88: 13:b3:2e:64:11:86:58:b8:cb:67:eb:3f:95:64:ab:5c:72:10: 7f:a6:84:dd:74:97:44:c3:f1:7b:9b:e9:40:73:4b:74:2d:1d: 4d:1f:ea:46:5c:ec:c0:80:63:13:94:38:3b:77:d6:94:29:a1: e0:e0:0a:de:cd:0c:55:64:ab:50:fc:69:9d:c4:fb:12:c8:e0: f5:3c:64:d7:3a:92:20:ca:95:21:44:b4:7b:53:02:e3:8b:39: 28:51:2d:45:74:75:9b:11:4d:7d:4f:31:44:f6:04:a9:7b:47: d9:2a:2e:55 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUekEW4amiCjx/dj0HVpNU7puxoBcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JD ODg2RjFERTAeFw0yNjAxMjgwMTU1MDNaFw0yNzAxMjcwMjAwMDNaMDMxMTAvBgNV BAMTKDY0MUZFNDk3ODJDMTAzMzIzQTQzODIyMzJFNjVFM0E3NEI5MjYzNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/jhvv58SNhpmBl6i1ME5DIpYC cV+kQ+pnjsMIe73ovCGAn9fhhFRD5tqN9ep107NP1MJJin6Z+txbGEhI9GPn1hUS lAPPPgstS+IKPAmTI0Bz8PcI6Lng0MNVFAjw+LlipStB6ax5TOjE7u10JhkQjvXf ZJca1JdRWb/pUkvoxHRXPihw2g5RpTAKaKV9YNpxxWXTg6ITgZ5uYd1McMIzVD6P y+XDjmu54NzDftVk2HOwfB8XfW9af3gRh5KeOMtdh7hXwKc/VC4ppDJNlI+nkHXW YPLSjNSk87lquv7q45pouaKeogSlYKny3BGV73KzAhj6gG7STT9xfuGRNKPbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZB/kl4LBAzI6Q4IjLmXjp0uSY00wHwYDVR0j BBgwFoAUGtWX00A/vRN8gUKePebYe8iG8d4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWVjMjVlNC05YWE4LTRiZWYtOTA5Ny1jMGJlYzBiMjY2YTcvMC8xQUQ1OTdEMzQw M0ZCRDEzN0M4MTQyOUUzREU2RDg3QkM4ODZGMURFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUFENTk3RDM0MDNGQkQxMzdDODE0MjlFM0RFNkQ4N0JDODg2 RjFERS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1ZWMyNWU0LTlhYTgtNGJlZi05 MDk3LWMwYmVjMGIyNjZhNy8wLzM0MzMyZTMyMzQzOTJlMzIzMTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNTMyMzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACv50jANBgkqhkiG 9w0BAQsFAAOCAQEABwEXoqWnwYq7rc4n13qDaW1XTopyyL7vmyOva51xa0Nxti4Z iPIDjkuTMPMiWDryUakOhjNlZh7c++uGItkWY01JZ11RZMuNejr00LzHSsxJo/zO YAuGPXFPA71RUD4kXoHm1Grh426C6eM6NcO4LYWin5Alq+6X0thhRpZIdV+BW/Xz ahgqL93kw5uFxVSIE7MuZBGGWLjLZ+s/lWSrXHIQf6aE3XSXRMPxe5vpQHNLdC0d TR/qRlzswIBjE5Q4O3fWlCmh4OAK3s0MVWSrUPxpncT7Esjg9Txk1zqSIMqVIUS0 e1MC44s5KFEtRXR1mxFNfU8xRPYEqXtH2SouVQ== -----END CERTIFICATE-----Generated at Mon Feb 2 13:02:25 2026 by rpki-client