This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32332d3233203d3e20313532303832.roa File: 3135372e31302e38382e302f32332d3233203d3e20313532303832.roa (raw, json) Hash identifier: 2xXRATtqKTFJTL45kpKCrmgQ+OKbp2ZlcGtRfjkIZUg= Subject key identifier: C5:E7:23:F7:DD:8C:16:72:81:5E:9A:56:9C:4B:BD:69:08:92:30:BB Certificate issuer: /CN=C88864DD3C1E6D0D5FA91467F03B266DF5F79255 Certificate serial: 05CB85B1CA7726CA7841B116E9B406E4C5D367B8 Authority key identifier: C8:88:64:DD:3C:1E:6D:0D:5F:A9:14:67:F0:3B:26:6D:F5:F7:92:55 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer Subject info access: rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32332d3233203d3e20313532303832.roa Signing time: Thu 13 Nov 2025 04:00:49 +0000 ROA not before: Thu 13 Nov 2025 03:55:49 +0000 ROA not after: Thu 12 Nov 2026 04:00:49 +0000 asID: 152082 IP address blocks: 157.10.88.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.crl rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 11:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:cb:85:b1:ca:77:26:ca:78:41:b1:16:e9:b4:06:e4:c5:d3:67:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C88864DD3C1E6D0D5FA91467F03B266DF5F79255 Validity Not Before: Nov 13 03:55:49 2025 GMT Not After : Nov 12 04:00:49 2026 GMT Subject: CN=C5E723F7DD8C1672815E9A569C4BBD69089230BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:48:a3:0b:bd:f2:00:39:20:e5:64:ef:b9:52: 1c:90:7e:a1:2d:cc:67:0a:4b:8c:af:8c:ad:a6:78: 9a:1f:e6:af:cc:60:62:97:15:1c:40:2e:dc:3b:c4: db:33:95:0e:19:a6:3d:96:89:6d:06:ee:2b:65:93: d7:64:1d:c4:32:0a:9c:de:d5:76:ef:b1:06:1e:eb: 0d:6b:24:5e:90:64:2c:5b:10:60:38:7e:f2:19:29: df:c0:85:d8:71:d8:01:53:93:5e:65:12:9c:46:4f: c4:11:18:89:bf:e9:85:7a:6d:59:8f:02:c9:ad:7c: 20:d8:1f:b8:11:24:2b:77:5a:72:51:22:49:b8:d5: d8:4e:42:8e:b2:b7:cb:93:bb:e6:0e:14:0f:fd:5c: 30:84:6f:41:9b:41:5c:2a:b1:45:fd:00:f4:6d:0c: 6b:0a:e7:c9:d9:c7:ba:11:af:b7:8f:95:cc:d9:86: a4:9e:14:8b:0d:68:05:66:46:75:43:9b:44:0b:14: 1c:2d:97:c7:4a:cc:80:95:6f:20:36:f2:07:46:a5: 76:8f:88:21:8c:71:a0:5a:f5:97:b4:80:48:aa:d7: a5:bb:7b:9e:b0:36:0f:73:c3:b4:fb:82:53:cb:ce: ba:ff:61:e8:e0:3b:a7:55:96:50:89:04:ae:80:cf: f6:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:E7:23:F7:DD:8C:16:72:81:5E:9A:56:9C:4B:BD:69:08:92:30:BB X509v3 Authority Key Identifier: keyid:C8:88:64:DD:3C:1E:6D:0D:5F:A9:14:67:F0:3B:26:6D:F5:F7:92:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32332d3233203d3e20313532303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.88.0/23 Signature Algorithm: sha256WithRSAEncryption 86:a7:a5:0e:ee:cd:d7:c6:a1:5c:44:4d:b3:81:cc:c5:05:37: 77:09:31:bc:85:bd:a3:95:b8:ce:3a:7e:f8:eb:5f:82:ef:8c: 25:10:2d:50:5d:15:4e:70:cd:9a:86:ad:bb:1d:49:23:b7:d2: 8e:2e:3c:80:49:f1:9d:51:8d:d9:62:1b:f9:17:ff:93:16:dd: 79:de:09:4f:c3:97:a7:9f:e7:5b:d0:dd:0f:83:5b:fe:6d:6f: 02:b9:68:8b:e7:23:30:e2:92:1e:62:9f:aa:af:ec:d9:65:9b: 93:6c:e9:62:4e:42:65:25:49:98:3e:bb:e7:53:84:cb:11:81: 56:83:c0:e4:e3:55:61:75:47:b2:ee:3e:6e:56:42:4a:f9:a3: fa:1e:c9:17:31:36:5c:ab:e3:0c:11:28:e7:b3:8a:ae:dc:3b: e0:83:d0:3e:e1:b4:95:3a:ed:6c:4a:93:a0:56:0d:5a:56:6a: 41:58:aa:ad:a0:08:65:72:1f:61:6b:86:ba:67:48:be:a3:fe: 65:fc:da:7f:67:3a:05:47:83:7b:17:f9:4d:a2:e6:2a:b2:a0: 29:10:f9:07:17:29:18:3e:e4:c6:d5:ee:c7:73:1c:b0:34:69: ed:c7:bf:b9:b1:cd:29:00:d3:7f:c0:c7:5a:71:86:c5:36:b3: f0:0c:36:38 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBcuFscp3Jsp4QbEW6bQG5MXTZ7gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzg4ODY0REQzQzFFNkQwRDVGQTkxNDY3RjAzQjI2NkRG NUY3OTI1NTAeFw0yNTExMTMwMzU1NDlaFw0yNjExMTIwNDAwNDlaMDMxMTAvBgNV BAMTKEM1RTcyM0Y3REQ4QzE2NzI4MTVFOUE1NjlDNEJCRDY5MDg5MjMwQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXSKMLvfIAOSDlZO+5UhyQfqEt zGcKS4yvjK2meJof5q/MYGKXFRxALtw7xNszlQ4Zpj2WiW0G7itlk9dkHcQyCpze 1XbvsQYe6w1rJF6QZCxbEGA4fvIZKd/Ahdhx2AFTk15lEpxGT8QRGIm/6YV6bVmP AsmtfCDYH7gRJCt3WnJRIkm41dhOQo6yt8uTu+YOFA/9XDCEb0GbQVwqsUX9APRt DGsK58nZx7oRr7ePlczZhqSeFIsNaAVmRnVDm0QLFBwtl8dKzICVbyA28gdGpXaP iCGMcaBa9Ze0gEiq16W7e56wNg9zw7T7glPLzrr/YejgO6dVllCJBK6Az/btAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxecj992MFnKBXppWnEu9aQiSMLswHwYDVR0j BBgwFoAUyIhk3TwebQ1fqRRn8DsmbfX3klUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MzJlNGY4Ni00OGU3LTQ4YzctYmE5MS1lMjU5NjgzNzhlOTUvMC9DODg4NjRERDND MUU2RDBENUZBOTE0NjdGMDNCMjY2REY1Rjc5MjU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzg4ODY0REQzQzFFNkQwRDVGQTkxNDY3RjAzQjI2NkRGNUY3 OTI1NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczMmU0Zjg2LTQ4ZTctNDhjNy1i YTkxLWUyNTk2ODM3OGU5NS8wLzMxMzUzNzJlMzEzMDJlMzgzODJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMjMwMzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0KWDANBgkqhkiG 9w0BAQsFAAOCAQEAhqelDu7N18ahXERNs4HMxQU3dwkxvIW9o5W4zjp++Otfgu+M JRAtUF0VTnDNmoatux1JI7fSji48gEnxnVGN2WIb+Rf/kxbded4JT8OXp5/nW9Dd D4Nb/m1vArloi+cjMOKSHmKfqq/s2WWbk2zpYk5CZSVJmD6751OEyxGBVoPA5ONV YXVHsu4+blZCSvmj+h7JFzE2XKvjDBEo57OKrtw74IPQPuG0lTrtbEqToFYNWlZq QViqraAIZXIfYWuGumdIvqP+Zfzaf2c6BUeDexf5TaLmKrKgKRD5BxcpGD7kxtXu x3McsDRp7ce/ubHNKQDTf8DHWnGGxTaz8Aw2OA== -----END CERTIFICATE-----Generated at Wed Dec 3 16:51:15 2025 by rpki-client