This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/3230322e3134392e3132382e302f31392d3234203d3e2034383333.roa File: 3230322e3134392e3132382e302f31392d3234203d3e2034383333.roa (raw, json) Hash identifier: GlWUtSBkPZfVhJyvyIrXhbA2GkDfMaWv4thV636jVK8= Subject key identifier: CB:6E:09:B9:51:ED:A5:FD:AC:C5:C4:20:26:DB:9B:F2:61:6B:1E:00 Certificate issuer: /CN=CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9 Certificate serial: 63A3DFF43BB9B9D84E78F1CCBABCDC3C774A3A81 Authority key identifier: CD:68:1E:40:6D:2E:CD:8A:CA:28:E4:F0:7B:9A:FA:9D:F6:48:C4:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/3230322e3134392e3132382e302f31392d3234203d3e2034383333.roa Signing time: Mon 02 Jun 2025 02:03:26 +0000 ROA not before: Mon 02 Jun 2025 01:58:26 +0000 ROA not after: Mon 01 Jun 2026 02:03:26 +0000 asID: 4833 IP address blocks: 202.149.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.crl rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 00:03:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:a3:df:f4:3b:b9:b9:d8:4e:78:f1:cc:ba:bc:dc:3c:77:4a:3a:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9 Validity Not Before: Jun 2 01:58:26 2025 GMT Not After : Jun 1 02:03:26 2026 GMT Subject: CN=CB6E09B951EDA5FDACC5C42026DB9BF2616B1E00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:16:15:48:1b:1d:c6:61:d5:ab:a7:ed:d6:66: 7b:53:85:a6:c7:f5:0b:eb:5a:46:40:15:ef:c8:1d: 82:8e:db:e9:27:c7:03:c9:1f:b9:0f:c6:ef:51:5a: 50:98:0d:0d:2a:fc:87:15:be:ee:2b:30:95:88:14: f7:55:ca:d0:b9:64:7b:d5:f3:46:e5:46:1a:86:9f: 64:a7:d8:fc:3b:24:70:76:fe:a1:ce:47:b8:37:c4: 1c:f9:c2:25:e4:5d:fc:50:0f:f6:78:eb:2f:95:bc: c9:1a:7b:b0:20:2f:08:38:74:bd:31:9e:78:23:de: 05:c3:03:46:78:40:8a:b0:45:49:d1:b2:37:ad:7d: a4:0d:a4:c5:65:c1:ad:b0:9f:44:cb:a9:6a:18:e3: 6d:da:44:b7:2b:81:c8:a9:c6:78:6b:73:57:bb:ed: 94:1f:e8:a7:c9:e2:c3:bc:b1:ce:d4:68:38:22:e9: be:3d:3f:11:95:91:99:df:10:3a:b5:e3:f3:da:c4: c5:27:2f:92:3f:d0:c0:1d:fc:da:81:90:18:60:70: d3:aa:b3:57:6d:0e:76:2f:d3:d8:55:43:89:44:7c: 77:5d:17:02:36:37:98:b5:e3:94:f9:0c:9e:99:13: f8:2f:0b:63:87:00:29:9c:e7:35:f8:d6:52:94:56: 5d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:6E:09:B9:51:ED:A5:FD:AC:C5:C4:20:26:DB:9B:F2:61:6B:1E:00 X509v3 Authority Key Identifier: keyid:CD:68:1E:40:6D:2E:CD:8A:CA:28:E4:F0:7B:9A:FA:9D:F6:48:C4:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD681E406D2ECD8ACA28E4F07B9AFA9DF648C4E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66c1f51a-8645-4eb1-a2ff-e27c24c8e0c8/0/3230322e3134392e3132382e302f31392d3234203d3e2034383333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.149.128.0/19 Signature Algorithm: sha256WithRSAEncryption 46:3e:0e:68:44:57:d1:e6:02:0a:bc:b3:20:0d:e1:2b:28:c2: b8:d3:9d:7f:00:5b:e2:36:21:aa:fe:e2:ca:c7:f3:fc:a7:e3: 13:9d:e4:9f:8d:56:f7:f1:13:d3:71:f9:be:14:60:dc:0e:56: 2e:c8:23:d3:db:35:9e:e9:08:ce:98:c9:9a:df:44:a8:87:70: 55:67:94:24:f8:81:ab:ff:be:b6:69:5b:48:73:3d:48:7b:9a: a3:ec:fc:41:6c:15:c7:14:34:e1:40:82:8a:7f:8b:c8:a1:b4: 74:3f:12:9e:6d:ba:eb:9b:09:e5:c1:a4:d8:c8:6c:64:17:3f: c4:70:8b:c8:31:d0:29:8d:47:41:ff:74:71:77:fe:5b:1d:81: c4:d9:0e:33:2c:a3:48:ff:54:27:4f:6b:6f:ce:66:11:c3:d0: 64:0a:50:b8:dd:11:9a:91:aa:c1:40:64:dc:ce:1a:e3:08:5d: 39:5a:f8:4e:63:e8:e3:07:9a:8d:8f:48:5a:8d:78:c6:fd:2c: 75:d5:a4:8c:7b:3a:3c:8c:60:d1:0e:66:bf:7e:82:6a:d7:f9: 85:57:6e:8b:5f:db:f2:93:12:30:3e:1d:fe:13:ca:6f:41:5c: 44:f0:03:7c:56:4e:df:7f:1f:43:a5:56:2b:57:fe:5e:88:f4: 35:00:0c:cc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUY6Pf9Du5udhOePHMurzcPHdKOoEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0Q2ODFFNDA2RDJFQ0Q4QUNBMjhFNEYwN0I5QUZBOURG NjQ4QzRFOTAeFw0yNTA2MDIwMTU4MjZaFw0yNjA2MDEwMjAzMjZaMDMxMTAvBgNV BAMTKENCNkUwOUI5NTFFREE1RkRBQ0M1QzQyMDI2REI5QkYyNjE2QjFFMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKFhVIGx3GYdWrp+3WZntThabH 9QvrWkZAFe/IHYKO2+knxwPJH7kPxu9RWlCYDQ0q/IcVvu4rMJWIFPdVytC5ZHvV 80blRhqGn2Sn2Pw7JHB2/qHOR7g3xBz5wiXkXfxQD/Z46y+VvMkae7AgLwg4dL0x nngj3gXDA0Z4QIqwRUnRsjetfaQNpMVlwa2wn0TLqWoY423aRLcrgcipxnhrc1e7 7ZQf6KfJ4sO8sc7UaDgi6b49PxGVkZnfEDq14/PaxMUnL5I/0MAd/NqBkBhgcNOq s1dtDnYv09hVQ4lEfHddFwI2N5i145T5DJ6ZE/gvC2OHACmc5zX41lKUVl2VAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUy24JuVHtpf2sxcQgJtub8mFrHgAwHwYDVR0j BBgwFoAUzWgeQG0uzYrKKOTwe5r6nfZIxOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmMxZjUxYS04NjQ1LTRlYjEtYTJmZi1lMjdjMjRjOGUwYzgvMC9DRDY4MUU0MDZE MkVDRDhBQ0EyOEU0RjA3QjlBRkE5REY2NDhDNEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0Q2ODFFNDA2RDJFQ0Q4QUNBMjhFNEYwN0I5QUZBOURGNjQ4 QzRFOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY2YzFmNTFhLTg2NDUtNGViMS1h MmZmLWUyN2MyNGM4ZTBjOC8wLzMyMzAzMjJlMzEzNDM5MmUzMTMyMzgyZTMwMmYz MTM5MmQzMjM0MjAzZDNlMjAzNDM4MzMzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcqVgDANBgkqhkiG 9w0BAQsFAAOCAQEARj4OaERX0eYCCryzIA3hKyjCuNOdfwBb4jYhqv7iysfz/Kfj E53kn41W9/ET03H5vhRg3A5WLsgj09s1nukIzpjJmt9EqIdwVWeUJPiBq/++tmlb SHM9SHuao+z8QWwVxxQ04UCCin+LyKG0dD8Snm2665sJ5cGk2MhsZBc/xHCLyDHQ KY1HQf90cXf+Wx2BxNkOMyyjSP9UJ09rb85mEcPQZApQuN0RmpGqwUBk3M4a4whd OVr4TmPo4weajY9IWo14xv0sddWkjHs6PIxg0Q5mv36Catf5hVdui1/b8pMSMD4d /hPKb0FcRPADfFZO338fQ6VWK1f+Xoj0NQAMzA== -----END CERTIFICATE-----Generated at Wed Dec 3 17:37:08 2025 by rpki-client