This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138342e302f32322d3232203d3e203538383136.roa File: 34332e3235322e3138342e302f32322d3232203d3e203538383136.roa (raw, json) Hash identifier: SEJtrFMzCIxaL5HsTowHqKeGBeSHdUF6h109MbSr1hY= Subject key identifier: C0:B9:8D:4C:A4:07:6F:CF:7D:A2:37:DB:F7:3B:11:4E:19:9E:F2:5E Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 7EE63D3A9C4F0841BCBADAF42E7F19E39409B6B5 Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138342e302f32322d3232203d3e203538383136.roa Signing time: Wed 03 Dec 2025 11:00:00 +0000 ROA not before: Wed 03 Dec 2025 10:55:00 +0000 ROA not after: Wed 02 Dec 2026 11:00:00 +0000 asID: 58816 IP address blocks: 43.252.184.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:e6:3d:3a:9c:4f:08:41:bc:ba:da:f4:2e:7f:19:e3:94:09:b6:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Dec 3 10:55:00 2025 GMT Not After : Dec 2 11:00:00 2026 GMT Subject: CN=C0B98D4CA4076FCF7DA237DBF73B114E199EF25E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:39:63:e4:82:9d:b6:6f:9c:be:e5:ca:c9:42: aa:c2:37:3b:91:68:04:1c:b4:7f:c6:d1:3e:fe:ac: 34:a2:58:0c:21:d7:52:ca:0c:cb:be:98:dd:ae:1d: 2b:3b:b1:67:c8:24:c8:dd:21:aa:35:12:e1:15:4c: a4:03:6b:6d:57:1b:31:2c:41:bc:d6:db:c6:f4:54: 02:3e:de:7e:45:62:84:21:a9:e5:fa:58:b4:79:28: 5e:51:c7:42:5d:23:88:7d:48:2a:5f:0a:59:cb:42: fa:82:f8:41:b3:55:44:8f:07:2e:f9:41:bb:08:c6: 18:31:f8:9e:24:c9:60:70:c2:09:06:a6:b2:54:d3: 69:4c:4b:f6:7c:61:62:b4:9c:04:d8:49:10:6d:03: 12:4c:82:f3:25:4b:de:98:f7:02:3b:4a:92:fa:f1: 17:18:b9:36:9c:30:e2:08:2e:d2:7e:0f:06:a2:22: fe:8a:0a:97:c8:b1:38:92:67:ca:39:5f:ad:45:22: 65:80:36:f4:0e:08:c6:16:e6:67:53:86:b3:a9:19: c3:52:b3:c8:ed:b3:a0:df:53:c9:2d:d8:82:8a:90: 13:c1:5c:2b:55:c2:0f:4f:e4:35:e9:ed:4a:0b:cf: d7:27:84:4a:13:65:f0:db:ed:7b:03:48:79:44:fc: 1a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:B9:8D:4C:A4:07:6F:CF:7D:A2:37:DB:F7:3B:11:4E:19:9E:F2:5E X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/34332e3235322e3138342e302f32322d3232203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.184.0/22 Signature Algorithm: sha256WithRSAEncryption a7:94:a9:d2:dd:05:d7:34:5c:2e:60:03:57:10:e3:1c:ef:c3: f3:3d:84:aa:48:0c:f6:7c:f8:38:86:39:20:33:db:42:3f:25: 6f:3a:76:8a:b7:55:9b:9d:59:4f:93:91:85:97:ac:5f:04:b1: 7d:de:b3:28:1a:dd:50:41:e9:8a:14:81:7e:7e:6c:ff:2d:d8: aa:5b:40:fa:82:33:35:9f:78:af:09:06:da:68:de:ef:84:04: 5c:b3:15:05:da:57:c5:e3:d7:09:70:91:eb:64:53:b0:ef:c9: 8e:91:7a:12:24:11:4a:ab:3e:8e:90:e7:90:5e:82:a1:2d:8f: ca:4f:63:c7:bb:5f:31:f2:01:f3:94:13:9b:cc:60:1c:fd:3d: 84:6e:82:cc:8a:73:46:c9:23:e0:e7:8a:66:73:29:35:61:a3: 28:b8:cf:5e:f4:d4:56:88:f4:c9:41:fb:03:fd:91:3b:40:ac: c1:77:ef:ce:d1:35:27:78:3d:cb:c9:98:53:4c:1c:de:01:2a: f8:1c:00:b4:9d:c4:4b:67:c7:05:f1:0c:0f:c0:63:14:df:b8: 01:a6:e6:bc:77:13:50:b8:eb:c3:c3:07:b5:f6:93:6d:76:79: 37:2e:47:48:20:9f:2b:f5:da:0a:df:b8:a4:92:86:7f:50:08: 4c:55:fa:11 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfuY9OpxPCEG8utr0Ln8Z45QJtrUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNTEyMDMxMDU1MDBaFw0yNjEyMDIxMTAwMDBaMDMxMTAvBgNV BAMTKEMwQjk4RDRDQTQwNzZGQ0Y3REEyMzdEQkY3M0IxMTRFMTk5RUYyNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrOWPkgp22b5y+5crJQqrCNzuR aAQctH/G0T7+rDSiWAwh11LKDMu+mN2uHSs7sWfIJMjdIao1EuEVTKQDa21XGzEs QbzW28b0VAI+3n5FYoQhqeX6WLR5KF5Rx0JdI4h9SCpfClnLQvqC+EGzVUSPBy75 QbsIxhgx+J4kyWBwwgkGprJU02lMS/Z8YWK0nATYSRBtAxJMgvMlS96Y9wI7SpL6 8RcYuTacMOIILtJ+DwaiIv6KCpfIsTiSZ8o5X61FImWANvQOCMYW5mdThrOpGcNS s8jts6DfU8kt2IKKkBPBXCtVwg9P5DXp7UoLz9cnhEoTZfDb7XsDSHlE/Bp1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwLmNTKQHb899ojfb9zsRThme8l4wHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzM0MzMyZTMyMzUzMjJlMzEzODM0MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzUzODM4MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAiv8uDANBgkqhkiG 9w0BAQsFAAOCAQEAp5Sp0t0F1zRcLmADVxDjHO/D8z2EqkgM9nz4OIY5IDPbQj8l bzp2irdVm51ZT5ORhZesXwSxfd6zKBrdUEHpihSBfn5s/y3YqltA+oIzNZ94rwkG 2mje74QEXLMVBdpXxePXCXCR62RTsO/JjpF6EiQRSqs+jpDnkF6CoS2Pyk9jx7tf MfIB85QTm8xgHP09hG6CzIpzRskj4OeKZnMpNWGjKLjPXvTUVoj0yUH7A/2RO0Cs wXfvztE1J3g9y8mYU0wc3gEq+BwAtJ3ES2fHBfEMD8BjFN+4AabmvHcTULjrw8MH tfaTbXZ5Ny5HSCCfK/XaCt+4pJKGf1AITFX6EQ== -----END CERTIFICATE-----Generated at Wed Dec 3 14:44:26 2025 by rpki-client