This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31362e302f32312d3231203d3e203538383136.roa File: 3230322e37332e31362e302f32312d3231203d3e203538383136.roa (raw, json) Hash identifier: UTxUdswuTF+ox6a5oV05W2D3Jcdyj/c1haTTHi/3q+U= Subject key identifier: B4:57:3A:F7:3D:8B:52:97:76:5F:E6:C9:28:D6:92:95:B4:84:EE:3B Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 73C254B7F397C71E6DAD60BFBBAB6B45AACA1F8B Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31362e302f32312d3231203d3e203538383136.roa Signing time: Wed 03 Dec 2025 11:00:01 +0000 ROA not before: Wed 03 Dec 2025 10:55:01 +0000 ROA not after: Wed 02 Dec 2026 11:00:01 +0000 asID: 58816 IP address blocks: 202.73.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:c2:54:b7:f3:97:c7:1e:6d:ad:60:bf:bb:ab:6b:45:aa:ca:1f:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Dec 3 10:55:01 2025 GMT Not After : Dec 2 11:00:01 2026 GMT Subject: CN=B4573AF73D8B5297765FE6C928D69295B484EE3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8a:02:46:c7:b6:6c:bc:b4:70:24:de:f2:79: 60:13:65:08:f2:f4:54:c0:c1:3b:11:a2:2e:84:c8: 71:3d:45:25:fb:fe:20:1b:34:fc:dd:8c:98:34:df: 8d:da:2a:4e:bd:38:17:67:36:ac:2b:ee:18:02:b4: 81:1a:3e:f0:da:5e:43:35:91:85:82:d0:8d:32:0e: a1:4f:7e:c5:86:b0:ba:d1:e8:46:73:3f:3b:e9:0f: 71:3e:8b:15:93:b1:48:6d:3e:12:4c:b9:cc:19:b6: c2:dc:09:a7:e2:bf:0d:88:7b:19:e6:72:4a:a3:2e: 62:db:f3:14:af:4c:a9:04:48:35:af:20:f4:ff:ea: 32:d5:b2:d6:56:f8:3f:0b:e7:b7:8d:2f:df:23:66: 67:a5:4a:00:ef:ca:1a:da:28:64:ba:ed:16:aa:3a: a8:43:b8:86:46:17:74:ae:73:c0:78:73:8e:c7:a9: 2b:30:39:88:54:00:28:1b:bd:18:ed:bd:55:d2:b9: 81:7e:b7:2e:5a:f6:4d:78:bb:5b:d8:b8:9a:4b:f1: 45:49:61:45:c6:d6:4f:10:42:77:17:45:1b:e2:c3: 81:d0:f5:41:8b:44:66:b8:68:57:8d:7b:e2:5f:de: 19:a5:0d:65:92:02:59:3a:da:ad:20:3e:13:ad:63: 27:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:57:3A:F7:3D:8B:52:97:76:5F:E6:C9:28:D6:92:95:B4:84:EE:3B X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e31362e302f32312d3231203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.16.0/21 Signature Algorithm: sha256WithRSAEncryption 5c:ff:49:55:a5:cf:e9:b2:dc:51:4c:f1:1b:37:db:63:09:c1: 27:6b:78:8f:43:90:b8:f2:1d:fc:af:5a:df:7b:57:43:be:9a: d1:20:07:74:b4:12:5f:fc:cf:2b:ef:28:1c:71:31:ea:b9:a1: 6f:4a:5d:e7:68:05:78:5b:96:c4:6b:c9:88:01:72:99:c6:28: 66:27:89:38:18:48:a8:d5:c3:ec:bb:b7:d3:bc:7b:e7:76:62: 0c:cb:a6:43:6c:06:92:a7:a0:76:f7:98:1e:12:af:ef:7d:fa: 22:89:74:a8:03:ad:da:a1:8d:5c:f0:9b:15:b1:3a:8c:a4:97: 8d:91:0d:b4:65:52:4b:3a:16:60:60:c7:29:1b:da:a4:f2:cf: 0e:ff:0c:fa:1a:d5:9a:e2:72:1f:09:51:b0:c6:0a:7f:fa:19: 7e:08:30:7f:a1:bb:98:c4:b5:79:c5:a8:51:7e:74:79:79:aa: e4:cb:62:fa:6c:99:95:1c:c3:cb:cd:ef:16:49:9f:b5:f2:8b: 86:95:a5:5b:c4:8d:05:88:cb:ea:b3:65:9b:6c:b4:35:81:22: 50:e0:2f:94:b1:34:37:19:c9:7e:7a:17:1c:7b:65:99:67:6e: 03:79:1a:5f:fc:1d:1c:db:35:b5:51:5d:5b:85:1f:b5:fd:7e: 02:e8:02:b9 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUc8JUt/OXxx5trWC/u6trRarKH4swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNTEyMDMxMDU1MDFaFw0yNjEyMDIxMTAwMDFaMDMxMTAvBgNV BAMTKEI0NTczQUY3M0Q4QjUyOTc3NjVGRTZDOTI4RDY5Mjk1QjQ4NEVFM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwigJGx7ZsvLRwJN7yeWATZQjy 9FTAwTsRoi6EyHE9RSX7/iAbNPzdjJg0343aKk69OBdnNqwr7hgCtIEaPvDaXkM1 kYWC0I0yDqFPfsWGsLrR6EZzPzvpD3E+ixWTsUhtPhJMucwZtsLcCafivw2Iexnm ckqjLmLb8xSvTKkESDWvIPT/6jLVstZW+D8L57eNL98jZmelSgDvyhraKGS67Raq OqhDuIZGF3Suc8B4c47HqSswOYhUACgbvRjtvVXSuYF+ty5a9k14u1vYuJpL8UVJ YUXG1k8QQncXRRviw4HQ9UGLRGa4aFeNe+Jf3hmlDWWSAlk62q0gPhOtYyf/AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUtFc69z2LUpd2X+bJKNaSlbSE7jswHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzMyMzAzMjJlMzczMzJlMzEzNjJlMzAyZjMyMzEy ZDMyMzEyMDNkM2UyMDM1MzgzODMxMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPKSRAwDQYJKoZIhvcN AQELBQADggEBAFz/SVWlz+my3FFM8Rs322MJwSdreI9DkLjyHfyvWt97V0O+mtEg B3S0El/8zyvvKBxxMeq5oW9KXedoBXhblsRryYgBcpnGKGYniTgYSKjVw+y7t9O8 e+d2YgzLpkNsBpKnoHb3mB4Sr+99+iKJdKgDrdqhjVzwmxWxOoykl42RDbRlUks6 FmBgxykb2qTyzw7/DPoa1Zrich8JUbDGCn/6GX4IMH+hu5jEtXnFqFF+dHl5quTL YvpsmZUcw8vN7xZJn7Xyi4aVpVvEjQWIy+qzZZtstDWBIlDgL5SxNDcZyX56Fxx7 ZZlnbgN5Gl/8HRzbNbVRXVuFH7X9fgLoArk= -----END CERTIFICATE-----Generated at Wed Dec 3 14:44:36 2025 by rpki-client