This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa File: 3135372e31302e38382e302f32342d3234203d3e20313532303832.roa (raw, json) Hash identifier: iu1Dc54YlpkWXrRrlgFt9MyI1bbMWnH2lViKwPc2SC4= Subject key identifier: 4B:7E:6F:C3:04:A7:94:D5:CE:3C:EF:B0:DB:96:D7:26:CB:7A:B7:5A Certificate issuer: /CN=C88864DD3C1E6D0D5FA91467F03B266DF5F79255 Certificate serial: 4A50CA5D882F23FF06BBA4C217244F0B7A5D5511 Authority key identifier: C8:88:64:DD:3C:1E:6D:0D:5F:A9:14:67:F0:3B:26:6D:F5:F7:92:55 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer Subject info access: rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa Signing time: Thu 13 Nov 2025 04:00:49 +0000 ROA not before: Thu 13 Nov 2025 03:55:49 +0000 ROA not after: Thu 12 Nov 2026 04:00:49 +0000 asID: 152082 IP address blocks: 157.10.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.crl rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 11:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:50:ca:5d:88:2f:23:ff:06:bb:a4:c2:17:24:4f:0b:7a:5d:55:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C88864DD3C1E6D0D5FA91467F03B266DF5F79255 Validity Not Before: Nov 13 03:55:49 2025 GMT Not After : Nov 12 04:00:49 2026 GMT Subject: CN=4B7E6FC304A794D5CE3CEFB0DB96D726CB7AB75A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:56:6b:fe:95:60:d3:53:35:76:c6:7c:6f:79: d2:1a:6f:fe:7c:4b:c8:99:84:a7:b3:1b:96:be:09: 23:a3:7b:5c:b1:01:33:87:20:8a:5c:e7:7d:c3:a0: 20:8d:fc:de:87:bb:fd:3d:dd:7d:03:49:74:fb:62: 58:f9:93:d3:d7:b1:78:83:74:59:b7:e3:d2:65:42: 2a:13:57:2c:5e:44:76:b8:c4:dd:8b:b0:fe:ef:0f: 00:41:06:0c:20:78:a4:aa:14:89:01:03:58:97:6c: 86:4d:78:55:c3:09:a7:e7:2c:9b:de:e8:00:4c:8a: b4:50:9c:c6:c8:e5:73:f3:43:08:07:42:f5:d2:d8: 3e:52:28:61:f7:d7:c0:22:6b:6c:c6:3b:d3:4e:75: 22:f0:9e:68:c9:25:74:97:1a:9c:b8:74:72:bc:80: 15:ba:3c:7d:4a:68:8d:6a:91:49:ed:e3:88:8a:6c: 35:d5:ee:b7:41:a5:ba:cf:61:87:bc:f5:f9:24:fa: 71:a6:18:ce:09:fb:53:23:c5:7a:bb:a7:60:98:0c: d4:d7:a1:93:90:86:0b:45:70:7d:9e:02:ed:fd:e5: b5:f8:27:60:40:72:f7:8f:15:ab:fb:a4:7c:19:36: 53:ce:b1:b2:d1:62:96:ae:fc:40:07:4f:2c:8d:47: ef:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:7E:6F:C3:04:A7:94:D5:CE:3C:EF:B0:DB:96:D7:26:CB:7A:B7:5A X509v3 Authority Key Identifier: keyid:C8:88:64:DD:3C:1E:6D:0D:5F:A9:14:67:F0:3B:26:6D:F5:F7:92:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38382e302f32342d3234203d3e20313532303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.88.0/24 Signature Algorithm: sha256WithRSAEncryption 57:ce:e1:db:d0:71:22:42:33:2b:58:ab:78:8a:15:9d:2c:4d: 19:7a:27:8b:78:24:50:bb:19:c3:fd:c3:9f:fe:3c:33:dc:0c: 94:3f:ba:58:6b:35:da:37:7f:de:d4:f7:d9:95:d3:7b:83:43: 3b:e6:a6:cf:41:a5:fb:59:78:0d:c4:e6:6c:e4:ed:38:26:fb: 71:fd:f5:c9:c8:56:f5:50:34:10:f9:6a:c5:85:b3:fb:e5:a9: 40:8f:ff:59:04:f5:58:85:76:87:59:d5:5f:0d:b9:25:e2:11: 3d:bc:95:5c:8d:cc:24:0b:15:d5:2f:4d:bb:bc:fa:2c:0c:ee: 83:68:8a:f8:93:05:15:35:56:74:45:5b:43:05:96:fb:bf:f8: b1:5d:8f:c0:e7:34:a0:69:1f:6b:66:a2:94:c6:61:7a:ce:4f: f4:1a:d3:0a:b5:d4:31:b9:c8:aa:61:b3:05:21:40:dd:11:73: df:f6:9b:ea:2f:ac:e1:86:99:1f:7e:11:2f:3e:9f:f5:8b:12: 0b:ed:19:85:e9:18:44:5e:8a:d2:2c:71:ec:a5:30:21:04:b8: 5b:b8:91:99:97:10:81:4e:e9:d4:5c:7d:eb:ca:2b:05:07:a2: 89:ad:e0:e0:b1:37:84:12:72:1e:73:cc:d6:f1:91:88:52:53: 1c:d6:fd:7a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSlDKXYgvI/8Gu6TCFyRPC3pdVREwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzg4ODY0REQzQzFFNkQwRDVGQTkxNDY3RjAzQjI2NkRG NUY3OTI1NTAeFw0yNTExMTMwMzU1NDlaFw0yNjExMTIwNDAwNDlaMDMxMTAvBgNV BAMTKDRCN0U2RkMzMDRBNzk0RDVDRTNDRUZCMERCOTZENzI2Q0I3QUI3NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZVmv+lWDTUzV2xnxvedIab/58 S8iZhKezG5a+CSOje1yxATOHIIpc533DoCCN/N6Hu/093X0DSXT7Ylj5k9PXsXiD dFm349JlQioTVyxeRHa4xN2LsP7vDwBBBgwgeKSqFIkBA1iXbIZNeFXDCafnLJve 6ABMirRQnMbI5XPzQwgHQvXS2D5SKGH318Aia2zGO9NOdSLwnmjJJXSXGpy4dHK8 gBW6PH1KaI1qkUnt44iKbDXV7rdBpbrPYYe89fkk+nGmGM4J+1MjxXq7p2CYDNTX oZOQhgtFcH2eAu395bX4J2BAcvePFav7pHwZNlPOsbLRYpau/EAHTyyNR+8XAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUS35vwwSnlNXOPO+w25bXJst6t1owHwYDVR0j BBgwFoAUyIhk3TwebQ1fqRRn8DsmbfX3klUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MzJlNGY4Ni00OGU3LTQ4YzctYmE5MS1lMjU5NjgzNzhlOTUvMC9DODg4NjRERDND MUU2RDBENUZBOTE0NjdGMDNCMjY2REY1Rjc5MjU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzg4ODY0REQzQzFFNkQwRDVGQTkxNDY3RjAzQjI2NkRGNUY3 OTI1NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczMmU0Zjg2LTQ4ZTctNDhjNy1i YTkxLWUyNTk2ODM3OGU5NS8wLzMxMzUzNzJlMzEzMDJlMzgzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0KWDANBgkqhkiG 9w0BAQsFAAOCAQEAV87h29BxIkIzK1ireIoVnSxNGXoni3gkULsZw/3Dn/48M9wM lD+6WGs12jd/3tT32ZXTe4NDO+amz0Gl+1l4DcTmbOTtOCb7cf31ychW9VA0EPlq xYWz++WpQI//WQT1WIV2h1nVXw25JeIRPbyVXI3MJAsV1S9Nu7z6LAzug2iK+JMF FTVWdEVbQwWW+7/4sV2PwOc0oGkfa2ailMZhes5P9BrTCrXUMbnIqmGzBSFA3RFz 3/ab6i+s4YaZH34RLz6f9YsSC+0ZhekYRF6K0ixx7KUwIQS4W7iRmZcQgU7p1Fx9 68orBQeiia3g4LE3hBJyHnPM1vGRiFJTHNb9eg== -----END CERTIFICATE-----Generated at Wed Dec 3 16:52:39 2025 by rpki-client