This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/74e1f370-f31f-47ed-8a41-b28bc8daf435/0/3230322e39302e3139392e302f32342d3234203d3e203338373739.roa File: 3230322e39302e3139392e302f32342d3234203d3e203338373739.roa (raw, json) Hash identifier: v6LmFd/T+Q18hViAVgo7YGWsfgbS5BdFapubty8W4rc= Subject key identifier: 6C:36:57:5A:57:63:13:5B:A5:88:59:D4:50:49:E1:C0:36:2C:BE:DE Certificate issuer: /CN=9C11A28FECE27B65C7E6475906C6CCB974C04C40 Certificate serial: 3DA41EC9191A4140CD10B5A7B072260F7AB02F1C Authority key identifier: 9C:11:A2:8F:EC:E2:7B:65:C7:E6:47:59:06:C6:CC:B9:74:C0:4C:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9C11A28FECE27B65C7E6475906C6CCB974C04C40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/74e1f370-f31f-47ed-8a41-b28bc8daf435/0/3230322e39302e3139392e302f32342d3234203d3e203338373739.roa Signing time: Mon 01 Dec 2025 19:00:01 +0000 ROA not before: Mon 01 Dec 2025 18:55:01 +0000 ROA not after: Mon 30 Nov 2026 19:00:01 +0000 asID: 38779 IP address blocks: 202.90.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/74e1f370-f31f-47ed-8a41-b28bc8daf435/0/9C11A28FECE27B65C7E6475906C6CCB974C04C40.crl rsync://repo-rpki.idnic.net/repo/74e1f370-f31f-47ed-8a41-b28bc8daf435/0/9C11A28FECE27B65C7E6475906C6CCB974C04C40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9C11A28FECE27B65C7E6475906C6CCB974C04C40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 20:51:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:a4:1e:c9:19:1a:41:40:cd:10:b5:a7:b0:72:26:0f:7a:b0:2f:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C11A28FECE27B65C7E6475906C6CCB974C04C40 Validity Not Before: Dec 1 18:55:01 2025 GMT Not After : Nov 30 19:00:01 2026 GMT Subject: CN=6C36575A5763135BA58859D45049E1C0362CBEDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ab:a9:ee:eb:a5:e2:9d:04:0d:ce:04:f6:63: 6b:b1:62:75:28:8c:45:cc:06:7b:f1:aa:f0:3b:40: 30:2f:58:81:0f:05:c3:9c:9f:5e:ed:73:da:5a:3d: 71:5e:7e:47:bf:39:c6:9d:08:5c:63:cc:aa:c9:0c: 28:9f:82:88:8d:f0:7d:7a:9e:0d:b6:53:1a:24:3d: 63:23:45:0c:81:65:f0:b4:04:27:db:95:4a:5b:23: 08:21:8a:9f:ae:b6:f8:7a:13:42:2a:24:73:1e:94: af:ab:e5:aa:4b:be:1d:5f:51:c1:b3:06:06:c8:32: db:cb:76:7a:60:53:a6:b9:1d:72:0b:34:4e:2a:47: c4:3e:79:d7:06:82:3b:38:19:fc:6c:8b:3a:99:f3: 90:51:02:06:21:2b:15:bb:2c:df:c6:aa:a8:13:e7: bd:2d:e9:f4:36:7a:89:4e:f5:01:1e:35:66:13:3b: 6f:a1:f0:83:70:9c:cf:31:bc:2b:ba:61:ef:0c:6c: 75:82:c5:48:62:41:82:09:bc:d9:74:09:b0:c4:60: 5d:a2:24:d1:f9:22:33:0a:d6:a7:08:3c:71:76:39: 28:06:16:ee:f1:17:bc:2f:98:8f:01:24:e3:e5:2f: c9:79:91:fd:1a:f5:c4:c5:ae:e7:e2:07:40:ff:05: dd:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:36:57:5A:57:63:13:5B:A5:88:59:D4:50:49:E1:C0:36:2C:BE:DE X509v3 Authority Key Identifier: keyid:9C:11:A2:8F:EC:E2:7B:65:C7:E6:47:59:06:C6:CC:B9:74:C0:4C:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/74e1f370-f31f-47ed-8a41-b28bc8daf435/0/9C11A28FECE27B65C7E6475906C6CCB974C04C40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9C11A28FECE27B65C7E6475906C6CCB974C04C40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/74e1f370-f31f-47ed-8a41-b28bc8daf435/0/3230322e39302e3139392e302f32342d3234203d3e203338373739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.90.199.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:cb:dc:cb:e4:ce:2f:73:58:21:d8:1c:e0:3b:14:fe:94:15: 6d:90:b7:af:bc:ae:fa:c6:78:6f:c7:76:14:1c:54:7c:a9:b5: ee:34:a3:bd:3a:c0:10:2c:e8:81:95:b0:1b:b8:6e:a9:4c:0e: 84:4b:97:4e:c6:dc:c8:71:61:ce:8d:90:88:83:64:82:91:07: 61:9a:0e:2d:c6:e7:1b:36:30:d1:2e:df:57:70:e1:f8:86:7a: 1b:81:9f:5f:cc:3b:2f:c0:bb:86:c6:f3:37:b8:18:7a:44:5e: f0:5a:65:e6:85:3a:fb:cc:52:c2:ee:06:5c:bd:f2:d8:ff:5c: 54:fb:ae:4e:fa:e6:2d:6f:07:d9:61:32:7d:ff:45:e5:09:0a: 62:5f:22:42:0e:7a:e7:d8:1f:f0:76:7e:8b:54:05:ec:25:6b: 3f:2a:6c:21:80:96:88:84:08:b7:2b:cd:79:8d:b6:9a:01:ca: 78:d4:af:3b:54:a8:31:03:69:77:b3:7f:10:4a:e1:8b:62:06: ec:19:65:8b:a3:b4:45:19:69:07:ba:69:b3:3c:0d:93:0e:bf: 39:f2:da:c6:d6:7e:33:ec:dc:23:7a:8b:76:ac:56:9f:39:78: 4e:2a:8a:d4:ed:3c:a5:53:3b:44:9e:82:05:05:06:5c:58:22: 1c:b4:38:d3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPaQeyRkaQUDNELWnsHImD3qwLxwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUMxMUEyOEZFQ0UyN0I2NUM3RTY0NzU5MDZDNkNDQjk3 NEMwNEM0MDAeFw0yNTEyMDExODU1MDFaFw0yNjExMzAxOTAwMDFaMDMxMTAvBgNV BAMTKDZDMzY1NzVBNTc2MzEzNUJBNTg4NTlENDUwNDlFMUMwMzYyQ0JFREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkq6nu66XinQQNzgT2Y2uxYnUo jEXMBnvxqvA7QDAvWIEPBcOcn17tc9paPXFefke/OcadCFxjzKrJDCifgoiN8H16 ng22UxokPWMjRQyBZfC0BCfblUpbIwghip+utvh6E0IqJHMelK+r5apLvh1fUcGz BgbIMtvLdnpgU6a5HXILNE4qR8Q+edcGgjs4GfxsizqZ85BRAgYhKxW7LN/GqqgT 570t6fQ2eolO9QEeNWYTO2+h8INwnM8xvCu6Ye8MbHWCxUhiQYIJvNl0CbDEYF2i JNH5IjMK1qcIPHF2OSgGFu7xF7wvmI8BJOPlL8l5kf0a9cTFrufiB0D/Bd0tAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbDZXWldjE1uliFnUUEnhwDYsvt4wHwYDVR0j BBgwFoAUnBGij+zie2XH5kdZBsbMuXTATEAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NGUxZjM3MC1mMzFmLTQ3ZWQtOGE0MS1iMjhiYzhkYWY0MzUvMC85QzExQTI4RkVD RTI3QjY1QzdFNjQ3NTkwNkM2Q0NCOTc0QzA0QzQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUMxMUEyOEZFQ0UyN0I2NUM3RTY0NzU5MDZDNkNDQjk3NEMw NEM0MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc0ZTFmMzcwLWYzMWYtNDdlZC04 YTQxLWIyOGJjOGRhZjQzNS8wLzMyMzAzMjJlMzkzMDJlMzEzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpaxzANBgkqhkiG 9w0BAQsFAAOCAQEATcvcy+TOL3NYIdgc4DsU/pQVbZC3r7yu+sZ4b8d2FBxUfKm1 7jSjvTrAECzogZWwG7huqUwOhEuXTsbcyHFhzo2QiINkgpEHYZoOLcbnGzYw0S7f V3Dh+IZ6G4GfX8w7L8C7hsbzN7gYekRe8Fpl5oU6+8xSwu4GXL3y2P9cVPuuTvrm LW8H2WEyff9F5QkKYl8iQg5659gf8HZ+i1QF7CVrPypsIYCWiIQItyvNeY22mgHK eNSvO1SoMQNpd7N/EErhi2IG7Blli6O0RRlpB7ppszwNkw6/OfLaxtZ+M+zcI3qL dqxWnzl4TiqK1O08pVM7RJ6CBQUGXFgiHLQ40w== -----END CERTIFICATE-----Generated at Wed Dec 3 15:31:37 2025 by rpki-client