This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e32322e302f32342d3234203d3e203538383136.roa File: 3230322e37332e32322e302f32342d3234203d3e203538383136.roa (raw, json) Hash identifier: 8OfgAbNQVhDJJTxQBxc34yWofgtcid4J/JQSeq4njCk= Subject key identifier: 2D:53:CF:1D:C1:71:F4:56:78:34:DC:C4:62:76:E7:48:B1:58:A8:12 Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 3A118F78679E28062036A3BB0650C33F12FADA4A Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e32322e302f32342d3234203d3e203538383136.roa Signing time: Thu 13 Mar 2025 11:01:37 +0000 ROA not before: Thu 13 Mar 2025 10:56:37 +0000 ROA not after: Thu 12 Mar 2026 11:01:37 +0000 asID: 58816 IP address blocks: 202.73.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:11:8f:78:67:9e:28:06:20:36:a3:bb:06:50:c3:3f:12:fa:da:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Mar 13 10:56:37 2025 GMT Not After : Mar 12 11:01:37 2026 GMT Subject: CN=2D53CF1DC171F4567834DCC46276E748B158A812 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:15:2e:05:b5:ec:63:c9:5e:3d:b2:5b:4e:3b: bc:c9:35:db:0d:2f:bf:30:2f:30:34:70:c2:a5:a3: cf:12:24:1b:88:8f:4e:00:5a:54:00:c0:6a:0f:18: b6:7d:d3:dd:28:d4:0d:52:21:3f:19:5b:6f:79:4a: c2:6f:f7:60:ca:6d:8f:7c:8c:c4:96:73:14:33:44: 5b:48:a4:29:fb:1a:5a:ff:4e:8d:c9:16:f2:03:4c: 12:eb:d6:31:ad:aa:7d:5c:28:a0:3a:7d:cb:58:36: d5:08:80:fa:02:dd:36:a3:4b:cf:54:7e:aa:51:b5: 1a:85:3e:ae:14:aa:38:3a:76:ed:d3:4e:20:6e:5a: 6b:12:40:75:1d:50:8f:28:23:44:95:da:4a:19:f8: 13:b1:c6:84:e6:6e:1e:19:56:4f:15:31:25:81:f3: 6b:11:c5:b3:90:48:4d:42:a0:c1:99:e8:d2:60:f7: 6f:9f:97:78:ec:05:c8:40:75:f8:98:b7:d4:30:bd: eb:0e:34:89:e8:e2:a8:dc:aa:9e:cd:83:aa:53:90: 3e:19:2e:17:ec:12:ab:eb:fb:cd:65:13:fc:0c:47: e0:79:95:ab:52:54:dd:83:cb:8e:7e:d9:12:b6:c3: cf:75:d4:29:db:62:fa:e0:43:06:c4:04:7b:ac:c6: 4f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:53:CF:1D:C1:71:F4:56:78:34:DC:C4:62:76:E7:48:B1:58:A8:12 X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3230322e37332e32322e302f32342d3234203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.73.22.0/24 Signature Algorithm: sha256WithRSAEncryption 46:9e:74:16:78:70:0e:96:60:a9:01:9f:fd:31:e1:d3:80:df: 6c:12:57:66:d3:e9:8a:8c:17:6b:c6:1e:7f:71:a0:3a:f6:9e: 91:cd:00:95:88:83:f7:9b:a2:52:09:f9:8d:6f:f8:2a:39:46: d0:38:f6:b3:89:3e:1d:65:24:22:46:4e:3a:31:d1:46:ce:cc: ce:19:48:d8:a7:ee:b5:78:cb:53:01:5f:9b:ad:5a:a4:db:8f: f5:b6:d4:29:3c:f9:0e:27:08:ec:a7:cd:d9:84:c5:6a:ba:67: f9:6b:28:2f:ac:dd:24:ea:a8:ca:74:b5:2a:72:4b:26:03:d2: f0:b9:f4:5f:69:44:0c:07:ad:80:8a:65:3d:91:9a:3f:aa:bc: 3e:d7:4d:e6:2d:ff:62:a0:e4:43:d4:7e:a1:de:fc:3b:75:8b: 99:31:fc:78:75:f2:78:26:42:ae:52:56:8f:ec:18:80:4d:92: 58:5d:2f:ef:fb:b1:30:40:00:1d:3c:51:8e:9b:c8:71:15:98: 26:17:be:55:21:68:4a:2d:61:97:e6:54:60:1a:13:05:e3:2f: 6f:de:18:40:e1:14:96:d3:bd:82:ee:14:c3:d0:2b:e8:61:99: dc:07:eb:d4:5c:16:b5:99:00:21:d9:0f:f4:4a:38:52:81:c5: bf:75:76:c6 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUOhGPeGeeKAYgNqO7BlDDPxL62kowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNTAzMTMxMDU2MzdaFw0yNjAzMTIxMTAxMzdaMDMxMTAvBgNV BAMTKDJENTNDRjFEQzE3MUY0NTY3ODM0RENDNDYyNzZFNzQ4QjE1OEE4MTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzFS4FtexjyV49sltOO7zJNdsN L78wLzA0cMKlo88SJBuIj04AWlQAwGoPGLZ9090o1A1SIT8ZW295SsJv92DKbY98 jMSWcxQzRFtIpCn7Glr/To3JFvIDTBLr1jGtqn1cKKA6fctYNtUIgPoC3TajS89U fqpRtRqFPq4Uqjg6du3TTiBuWmsSQHUdUI8oI0SV2koZ+BOxxoTmbh4ZVk8VMSWB 82sRxbOQSE1CoMGZ6NJg92+fl3jsBchAdfiYt9QwvesONIno4qjcqp7Ng6pTkD4Z LhfsEqvr+81lE/wMR+B5latSVN2Dy45+2RK2w8911CnbYvrgQwbEBHusxk+tAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQULVPPHcFx9FZ4NNzEYnbnSLFYqBIwHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzMyMzAzMjJlMzczMzJlMzIzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzODMxMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKSRYwDQYJKoZIhvcN AQELBQADggEBAEaedBZ4cA6WYKkBn/0x4dOA32wSV2bT6YqMF2vGHn9xoDr2npHN AJWIg/ebolIJ+Y1v+Co5RtA49rOJPh1lJCJGTjox0UbOzM4ZSNin7rV4y1MBX5ut WqTbj/W21Ck8+Q4nCOynzdmExWq6Z/lrKC+s3STqqMp0tSpySyYD0vC59F9pRAwH rYCKZT2Rmj+qvD7XTeYt/2Kg5EPUfqHe/Dt1i5kx/Hh18ngmQq5SVo/sGIBNklhd L+/7sTBAAB08UY6byHEVmCYXvlUhaEotYZfmVGAaEwXjL2/eGEDhFJbTvYLuFMPQ K+hhmdwH69RcFrWZACHZD/RKOFKBxb91dsY= -----END CERTIFICATE-----Generated at Wed Dec 3 14:44:13 2025 by rpki-client