This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38392e302f32342d3234203d3e20313532303832.roa File: 3135372e31302e38392e302f32342d3234203d3e20313532303832.roa (raw, json) Hash identifier: r0yQckJKHz7cgtDpBZ5DT3GZabnNshDA9NVYp4KqxPI= Subject key identifier: F2:BB:04:24:C9:B0:15:D5:A3:5E:76:2A:8F:ED:A9:B3:A8:35:74:F5 Certificate issuer: /CN=C88864DD3C1E6D0D5FA91467F03B266DF5F79255 Certificate serial: 76BCCE46ABF708E290505C71999829721439B73B Authority key identifier: C8:88:64:DD:3C:1E:6D:0D:5F:A9:14:67:F0:3B:26:6D:F5:F7:92:55 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer Subject info access: rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38392e302f32342d3234203d3e20313532303832.roa Signing time: Thu 13 Nov 2025 04:00:49 +0000 ROA not before: Thu 13 Nov 2025 03:55:49 +0000 ROA not after: Thu 12 Nov 2026 04:00:49 +0000 asID: 152082 IP address blocks: 157.10.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.crl rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 11:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:bc:ce:46:ab:f7:08:e2:90:50:5c:71:99:98:29:72:14:39:b7:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C88864DD3C1E6D0D5FA91467F03B266DF5F79255 Validity Not Before: Nov 13 03:55:49 2025 GMT Not After : Nov 12 04:00:49 2026 GMT Subject: CN=F2BB0424C9B015D5A35E762A8FEDA9B3A83574F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:be:e0:d7:56:85:53:63:fa:d3:19:6c:cd:8b: c5:ff:f0:5a:e2:ac:88:42:c6:30:26:bf:89:fb:70: f3:fc:cb:44:43:75:62:e1:ef:3e:fd:b1:0d:c2:8e: d8:2e:f5:07:e0:7e:d5:a5:0c:7e:b9:33:3d:f0:c6: fd:27:da:db:b9:b2:a1:93:9c:ec:8b:f6:91:22:ab: 54:cd:a1:c8:a9:ec:a3:f6:16:48:d7:7b:a0:ea:49: 19:7c:76:7a:42:99:54:c2:93:b6:49:b6:81:23:62: 86:f0:24:9a:ff:77:d8:70:4a:97:aa:85:9e:9d:99: 21:b5:88:3f:a0:76:40:76:8e:a2:74:60:d0:04:48: b1:e4:f5:c7:f2:c6:d7:22:ea:03:0c:d7:35:b1:1f: 9a:ed:9b:87:2c:c3:d0:64:7c:45:d1:56:bd:67:ea: 25:a3:f9:4c:d2:3e:02:f6:f8:e3:72:96:a5:36:a6: 5f:df:57:be:02:90:90:00:f3:a4:c4:c4:dc:03:53: 61:b6:70:d1:47:4b:80:47:1b:9b:f6:cf:35:c5:67: ed:b0:a3:56:79:0b:3d:88:16:f4:8e:79:93:db:6c: 8a:4a:27:bb:2d:2d:fe:d3:93:57:a8:87:ed:f5:07: 90:69:c3:8b:dc:36:7b:c5:35:b2:35:98:d9:9f:d9: b5:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:BB:04:24:C9:B0:15:D5:A3:5E:76:2A:8F:ED:A9:B3:A8:35:74:F5 X509v3 Authority Key Identifier: keyid:C8:88:64:DD:3C:1E:6D:0D:5F:A9:14:67:F0:3B:26:6D:F5:F7:92:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/C88864DD3C1E6D0D5FA91467F03B266DF5F79255.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/0/3135372e31302e38392e302f32342d3234203d3e20313532303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.89.0/24 Signature Algorithm: sha256WithRSAEncryption 38:3d:c8:86:ab:ae:97:0d:9e:56:e4:2e:77:3f:45:80:4a:f5: ec:26:65:9a:85:a5:a1:ac:7b:86:40:03:8f:e6:01:e8:0b:51: 4d:49:71:49:f3:00:ef:85:14:02:cb:d9:4d:aa:16:b7:a6:5b: a8:c7:83:a3:03:4f:c3:74:f3:12:cc:75:77:1e:8d:9e:80:f8: 8b:06:1a:4d:e0:f9:74:fe:f1:20:4a:7a:e3:32:89:54:c3:4f: 52:4d:fa:31:ea:46:53:18:5d:fe:eb:a7:d5:73:34:7b:5f:4c: 76:61:00:f0:3f:55:95:ab:d0:ac:7a:f7:b1:11:79:2e:8d:b0: 95:5c:f1:15:54:9d:50:a4:0c:ff:0c:7b:5f:b1:14:d5:2e:ff: b2:80:0e:70:60:3b:e5:ef:44:ee:90:ac:95:90:02:18:28:03: 65:32:3b:fb:3a:9a:85:b9:07:d6:68:0a:b5:9d:0d:fb:55:01: 1e:36:cb:0c:51:e8:8d:01:09:11:1f:8f:b9:7e:e3:36:95:1c: 00:77:05:96:5c:36:bb:6c:39:41:3b:18:c1:c2:19:54:62:e7: 87:fb:4a:1e:6c:85:39:a2:4e:eb:2f:d8:76:97:3b:98:c5:f2: dd:4b:43:ff:fa:1c:ca:4f:7b:70:2e:e0:a8:f6:66:94:71:2d: 7c:2d:1e:64 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdrzORqv3COKQUFxxmZgpchQ5tzswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzg4ODY0REQzQzFFNkQwRDVGQTkxNDY3RjAzQjI2NkRG NUY3OTI1NTAeFw0yNTExMTMwMzU1NDlaFw0yNjExMTIwNDAwNDlaMDMxMTAvBgNV BAMTKEYyQkIwNDI0QzlCMDE1RDVBMzVFNzYyQThGRURBOUIzQTgzNTc0RjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClvuDXVoVTY/rTGWzNi8X/8Fri rIhCxjAmv4n7cPP8y0RDdWLh7z79sQ3Cjtgu9QfgftWlDH65Mz3wxv0n2tu5sqGT nOyL9pEiq1TNocip7KP2FkjXe6DqSRl8dnpCmVTCk7ZJtoEjYobwJJr/d9hwSpeq hZ6dmSG1iD+gdkB2jqJ0YNAESLHk9cfyxtci6gMM1zWxH5rtm4csw9BkfEXRVr1n 6iWj+UzSPgL2+ONylqU2pl/fV74CkJAA86TExNwDU2G2cNFHS4BHG5v2zzXFZ+2w o1Z5Cz2IFvSOeZPbbIpKJ7stLf7Tk1eoh+31B5Bpw4vcNnvFNbI1mNmf2bVrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8rsEJMmwFdWjXnYqj+2ps6g1dPUwHwYDVR0j BBgwFoAUyIhk3TwebQ1fqRRn8DsmbfX3klUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MzJlNGY4Ni00OGU3LTQ4YzctYmE5MS1lMjU5NjgzNzhlOTUvMC9DODg4NjRERDND MUU2RDBENUZBOTE0NjdGMDNCMjY2REY1Rjc5MjU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQzg4ODY0REQzQzFFNkQwRDVGQTkxNDY3RjAzQjI2NkRGNUY3 OTI1NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczMmU0Zjg2LTQ4ZTctNDhjNy1i YTkxLWUyNTk2ODM3OGU5NS8wLzMxMzUzNzJlMzEzMDJlMzgzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0KWTANBgkqhkiG 9w0BAQsFAAOCAQEAOD3Ihquulw2eVuQudz9FgEr17CZlmoWloax7hkADj+YB6AtR TUlxSfMA74UUAsvZTaoWt6ZbqMeDowNPw3TzEsx1dx6NnoD4iwYaTeD5dP7xIEp6 4zKJVMNPUk36MepGUxhd/uun1XM0e19MdmEA8D9VlavQrHr3sRF5Lo2wlVzxFVSd UKQM/wx7X7EU1S7/soAOcGA75e9E7pCslZACGCgDZTI7+zqahbkH1mgKtZ0N+1UB HjbLDFHojQEJER+PuX7jNpUcAHcFllw2u2w5QTsYwcIZVGLnh/tKHmyFOaJO6y/Y dpc7mMXy3UtD//ocyk97cC7gqPZmlHEtfC0eZA== -----END CERTIFICATE-----Generated at Wed Dec 3 16:52:35 2025 by rpki-client