This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/3230322e34332e3131342e302f32332d3234203d3e20313339393338.roa File: 3230322e34332e3131342e302f32332d3234203d3e20313339393338.roa (raw, json) Hash identifier: UzutzzrLFTEOaJSDZubuLTcQodPgB9vcpIjcaAdh8AA= Subject key identifier: 68:52:33:84:C9:39:55:C2:AF:86:07:0B:99:4B:AD:26:30:77:84:5A Certificate issuer: /CN=490B3FBCC6F0FC65785096A153DC87BC5057ACE5 Certificate serial: 32BA5CC09E711F59EE180CE35D0405D6A30240BF Authority key identifier: 49:0B:3F:BC:C6:F0:FC:65:78:50:96:A1:53:DC:87:BC:50:57:AC:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/3230322e34332e3131342e302f32332d3234203d3e20313339393338.roa Signing time: Wed 05 Nov 2025 05:00:02 +0000 ROA not before: Wed 05 Nov 2025 04:55:02 +0000 ROA not after: Wed 04 Nov 2026 05:00:02 +0000 asID: 139938 IP address blocks: 202.43.114.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.crl rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 23:07:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:ba:5c:c0:9e:71:1f:59:ee:18:0c:e3:5d:04:05:d6:a3:02:40:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=490B3FBCC6F0FC65785096A153DC87BC5057ACE5 Validity Not Before: Nov 5 04:55:02 2025 GMT Not After : Nov 4 05:00:02 2026 GMT Subject: CN=68523384C93955C2AF86070B994BAD263077845A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f4:8e:e3:5c:38:b3:b6:cb:6e:5f:0e:bc:e4: fa:1f:93:e1:8c:cd:66:75:29:13:62:9b:c2:53:05: d9:81:01:d0:a5:06:ff:5c:49:02:5c:43:28:c4:4b: 3e:4c:b3:51:e0:c1:fd:46:d8:10:5a:b3:76:98:bd: 95:46:ba:37:52:06:2b:ef:9a:70:cb:10:fe:40:75: de:bc:17:f1:25:f6:b4:e1:9f:35:b8:be:09:62:23: 8a:e7:16:92:6c:72:0c:df:09:d5:45:e7:9b:6b:a1: 33:ed:84:05:8e:7d:4f:bf:0a:98:63:47:3a:cd:1f: 02:89:fc:17:87:b7:1b:05:30:58:c2:71:6a:bd:79: 96:03:e2:78:a3:0d:0c:40:b9:b4:44:f1:7b:2e:86: 65:1e:b7:67:07:3c:bf:46:26:54:ce:39:89:a9:97: b5:eb:bd:e3:7d:29:ba:a0:c9:c8:f2:a7:17:9a:9b: 92:88:f4:47:07:73:f9:1e:51:9b:58:f3:18:89:28: e1:ed:f8:95:c4:e8:39:95:c7:84:c3:ca:8d:11:87: fe:b8:88:68:a3:8f:92:76:40:56:cb:bc:9b:f9:c9: 59:ba:bb:c4:04:76:7a:fd:e5:21:64:23:dd:24:94: 24:32:ca:88:8b:5c:17:cc:bb:7c:31:f9:18:6f:49: f4:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:52:33:84:C9:39:55:C2:AF:86:07:0B:99:4B:AD:26:30:77:84:5A X509v3 Authority Key Identifier: keyid:49:0B:3F:BC:C6:F0:FC:65:78:50:96:A1:53:DC:87:BC:50:57:AC:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/3230322e34332e3131342e302f32332d3234203d3e20313339393338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.43.114.0/23 Signature Algorithm: sha256WithRSAEncryption ca:e7:2f:ba:7b:1d:32:3a:39:52:9d:c5:b0:dd:05:fb:ba:12: f7:bf:ed:60:82:2d:e2:ca:75:4d:4e:43:f3:b2:0e:3a:20:23: 06:58:9f:7e:75:7d:c5:d2:71:bc:42:4e:53:c4:d6:bd:ad:fb: 26:2c:6b:53:c9:7f:66:3a:a7:1b:bd:de:7f:da:fc:b7:b9:2c: 64:2a:d0:72:c3:51:53:92:2c:1d:1f:e0:f7:6d:27:6b:aa:46: 6f:14:51:60:6f:fc:e9:ae:b3:94:32:0a:b2:ec:51:57:68:f8: 49:10:d3:3b:66:07:7b:94:c5:ce:64:85:37:9e:57:8a:a8:1f: d1:92:f9:8b:fb:47:d1:12:c0:32:19:e9:2a:5f:5c:8d:14:72: bd:95:7b:81:0a:9a:86:ac:c5:10:07:98:7d:55:64:ab:8d:ca: d4:d0:ae:5e:b9:91:8f:03:50:b8:da:3a:d0:81:89:f9:ae:57: af:e9:03:dd:ad:00:da:ff:58:3d:7e:ae:c1:23:ae:d5:88:ee: a0:07:0b:c7:8a:f5:83:d9:82:5b:7a:62:cc:5a:37:f4:a8:4e: c2:52:3d:d2:64:ad:7e:52:4f:b6:2f:9d:10:74:f5:dd:73:5e: 76:ad:13:05:08:74:0f:bd:6b:1d:f7:24:21:cc:10:9e:27:61: 41:a5:79:bf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMrpcwJ5xH1nuGAzjXQQF1qMCQL8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkwQjNGQkNDNkYwRkM2NTc4NTA5NkExNTNEQzg3QkM1 MDU3QUNFNTAeFw0yNTExMDUwNDU1MDJaFw0yNjExMDQwNTAwMDJaMDMxMTAvBgNV BAMTKDY4NTIzMzg0QzkzOTU1QzJBRjg2MDcwQjk5NEJBRDI2MzA3Nzg0NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ9I7jXDiztstuXw685Pofk+GM zWZ1KRNim8JTBdmBAdClBv9cSQJcQyjESz5Ms1Hgwf1G2BBas3aYvZVGujdSBivv mnDLEP5Add68F/El9rThnzW4vgliI4rnFpJscgzfCdVF55troTPthAWOfU+/Cphj RzrNHwKJ/BeHtxsFMFjCcWq9eZYD4nijDQxAubRE8XsuhmUet2cHPL9GJlTOOYmp l7XrveN9Kbqgycjypxeam5KI9EcHc/keUZtY8xiJKOHt+JXE6DmVx4TDyo0Rh/64 iGijj5J2QFbLvJv5yVm6u8QEdnr95SFkI90klCQyyoiLXBfMu3wx+RhvSfRtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaFIzhMk5VcKvhgcLmUutJjB3hFowHwYDVR0j BBgwFoAUSQs/vMbw/GV4UJahU9yHvFBXrOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 N2NkNjhmNC02OWE1LTQ3NWYtYWVlNC0zZWY0YjhkMzAyZGQvMC80OTBCM0ZCQ0M2 RjBGQzY1Nzg1MDk2QTE1M0RDODdCQzUwNTdBQ0U1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkwQjNGQkNDNkYwRkM2NTc4NTA5NkExNTNEQzg3QkM1MDU3 QUNFNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc3Y2Q2OGY0LTY5YTUtNDc1Zi1h ZWU0LTNlZjRiOGQzMDJkZC8wLzMyMzAzMjJlMzQzMzJlMzEzMTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQByityMA0GCSqG SIb3DQEBCwUAA4IBAQDK5y+6ex0yOjlSncWw3QX7uhL3v+1ggi3iynVNTkPzsg46 ICMGWJ9+dX3F0nG8Qk5TxNa9rfsmLGtTyX9mOqcbvd5/2vy3uSxkKtByw1FTkiwd H+D3bSdrqkZvFFFgb/zprrOUMgqy7FFXaPhJENM7Zgd7lMXOZIU3nleKqB/RkvmL +0fREsAyGekqX1yNFHK9lXuBCpqGrMUQB5h9VWSrjcrU0K5euZGPA1C42jrQgYn5 rlev6QPdrQDa/1g9fq7BI67ViO6gBwvHivWD2YJbemLMWjf0qE7CUj3SZK1+Uk+2 L50QdPXdc152rRMFCHQPvWsd9yQhzBCeJ2FBpXm/ -----END CERTIFICATE-----Generated at Wed Dec 3 14:45:50 2025 by rpki-client