This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3232312e302f32342d3234203d3e203535363638.roa File: 34392e3233362e3232312e302f32342d3234203d3e203535363638.roa (raw, json) Hash identifier: M2pyi/IMF/9bDLHyO64naWXcT6UxKr+6hMI7b6iDcRY= Subject key identifier: 5E:A9:A5:98:09:E0:C6:F5:D2:69:08:92:C0:E6:12:F4:B6:90:5D:35 Certificate issuer: /CN=6DA2B28F4391C01434B7229FD4D68E661BF13061 Certificate serial: 66E0290B6705DCCD3ED3D7D9ABB33DC8C67CD15F Authority key identifier: 6D:A2:B2:8F:43:91:C0:14:34:B7:22:9F:D4:D6:8E:66:1B:F1:30:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3232312e302f32342d3234203d3e203535363638.roa Signing time: Fri 10 Oct 2025 05:00:01 +0000 ROA not before: Fri 10 Oct 2025 04:55:01 +0000 ROA not after: Fri 09 Oct 2026 05:00:01 +0000 asID: 55668 IP address blocks: 49.236.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.crl rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 03:27:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:e0:29:0b:67:05:dc:cd:3e:d3:d7:d9:ab:b3:3d:c8:c6:7c:d1:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DA2B28F4391C01434B7229FD4D68E661BF13061 Validity Not Before: Oct 10 04:55:01 2025 GMT Not After : Oct 9 05:00:01 2026 GMT Subject: CN=5EA9A59809E0C6F5D2690892C0E612F4B6905D35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:da:15:f1:b9:3f:b9:f0:f0:1c:36:a1:41:2b: fc:73:3a:a3:27:65:6c:9f:ee:20:31:23:43:60:c4: b4:ec:7d:99:07:b5:36:1c:21:a4:ab:e2:61:ac:e8: 27:d9:2e:f0:bb:e4:a4:ee:da:33:45:ef:3c:7e:7a: 4e:4f:62:77:ea:d7:ae:f9:32:13:b1:24:9f:43:96: c7:d7:d3:57:f2:8f:76:19:19:1d:9d:b5:bd:7a:1d: 13:ac:ff:c4:ab:be:fe:76:7e:82:e3:27:d1:1a:9a: 8f:62:61:ee:40:5b:db:20:bf:9f:c7:e0:22:fb:bb: 64:7e:1d:13:76:a3:61:68:b1:c8:7e:c1:64:58:09: e3:b7:e0:2e:b7:8b:bb:15:1d:cf:a0:5a:f9:bc:c2: 2d:df:55:64:75:a1:a4:7a:8b:a5:ab:23:66:4c:a6: 29:32:b7:b9:37:23:c7:5c:23:8c:46:90:84:a9:c1: 8e:73:dd:3b:63:16:97:22:13:5d:41:5b:a8:e2:8a: 5c:e4:43:94:92:09:65:8b:ee:54:88:c8:1a:2d:51: 41:9f:2e:19:f1:2e:d6:23:26:6f:b5:0c:2f:86:74: 2f:13:4c:d9:cb:dd:43:e0:99:71:27:d0:1b:2c:bc: 2b:86:a7:d7:70:35:61:08:0b:2d:3f:e2:60:be:16: 07:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:A9:A5:98:09:E0:C6:F5:D2:69:08:92:C0:E6:12:F4:B6:90:5D:35 X509v3 Authority Key Identifier: keyid:6D:A2:B2:8F:43:91:C0:14:34:B7:22:9F:D4:D6:8E:66:1B:F1:30:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/6DA2B28F4391C01434B7229FD4D68E661BF13061.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DA2B28F4391C01434B7229FD4D68E661BF13061.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d0f99c3-e567-41ae-aa00-26cb9781fbe9/0/34392e3233362e3232312e302f32342d3234203d3e203535363638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.236.221.0/24 Signature Algorithm: sha256WithRSAEncryption a0:90:0c:4a:52:fe:6d:04:2e:60:b5:d4:34:22:de:09:da:a6: ea:cb:03:3a:28:f2:53:7e:8f:11:be:71:38:c9:58:30:8c:5a: e7:88:a0:c7:27:ba:44:f7:b5:65:ca:40:63:76:9c:c1:8c:3e: fd:bd:ed:f3:b8:b6:e2:95:dd:14:0b:e7:8a:1c:27:21:80:9d: 6d:a8:fa:f6:62:68:71:be:f1:92:9d:63:e6:58:ae:ce:8a:b2: 0b:83:98:68:9e:c6:66:a8:44:92:02:fe:0b:13:8a:10:1d:6e: a9:77:af:5a:43:2c:67:b9:8d:ac:a6:1a:cb:8c:9d:a5:87:33: 65:45:ae:aa:ff:fa:7d:8c:3c:8b:4b:49:a0:4d:75:50:44:1a: 59:cf:bc:25:6d:2b:e5:db:a6:1f:8e:fe:d9:03:10:c2:45:4e: ec:71:9a:d7:13:f7:3a:83:b0:f5:f1:e8:0c:ab:57:c5:5f:41: 2c:99:05:8b:e9:94:48:89:e6:74:3b:ed:2d:0a:ec:d7:70:40: ab:c2:94:28:6a:07:33:70:b5:21:97:8d:6f:ce:4d:5c:d3:8d: 3c:4e:fd:fe:37:5c:57:60:c5:e5:fa:cf:49:4c:e4:24:f5:46: 0f:cc:75:82:42:66:b9:65:b9:9c:c5:ab:15:2d:d2:c3:b7:6b: e9:e2:40:a7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZuApC2cF3M0+09fZq7M9yMZ80V8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRBMkIyOEY0MzkxQzAxNDM0QjcyMjlGRDRENjhFNjYx QkYxMzA2MTAeFw0yNTEwMTAwNDU1MDFaFw0yNjEwMDkwNTAwMDFaMDMxMTAvBgNV BAMTKDVFQTlBNTk4MDlFMEM2RjVEMjY5MDg5MkMwRTYxMkY0QjY5MDVEMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv2hXxuT+58PAcNqFBK/xzOqMn ZWyf7iAxI0NgxLTsfZkHtTYcIaSr4mGs6CfZLvC75KTu2jNF7zx+ek5PYnfq1675 MhOxJJ9DlsfX01fyj3YZGR2dtb16HROs/8Srvv52foLjJ9Eamo9iYe5AW9sgv5/H 4CL7u2R+HRN2o2Fosch+wWRYCeO34C63i7sVHc+gWvm8wi3fVWR1oaR6i6WrI2ZM pikyt7k3I8dcI4xGkISpwY5z3TtjFpciE11BW6jiilzkQ5SSCWWL7lSIyBotUUGf LhnxLtYjJm+1DC+GdC8TTNnL3UPgmXEn0BssvCuGp9dwNWEICy0/4mC+Fgf5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUXqmlmAngxvXSaQiSwOYS9LaQXTUwHwYDVR0j BBgwFoAUbaKyj0ORwBQ0tyKf1NaOZhvxMGEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDBmOTljMy1lNTY3LTQxYWUtYWEwMC0yNmNiOTc4MWZiZTkvMC82REEyQjI4RjQz OTFDMDE0MzRCNzIyOUZENEQ2OEU2NjFCRjEzMDYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRBMkIyOEY0MzkxQzAxNDM0QjcyMjlGRDRENjhFNjYxQkYx MzA2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkMGY5OWMzLWU1NjctNDFhZS1h YTAwLTI2Y2I5NzgxZmJlOS8wLzM0MzkyZTMyMzMzNjJlMzIzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzYzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADHs3TANBgkqhkiG 9w0BAQsFAAOCAQEAoJAMSlL+bQQuYLXUNCLeCdqm6ssDOijyU36PEb5xOMlYMIxa 54igxye6RPe1ZcpAY3acwYw+/b3t87i24pXdFAvnihwnIYCdbaj69mJocb7xkp1j 5liuzoqyC4OYaJ7GZqhEkgL+CxOKEB1uqXevWkMsZ7mNrKYay4ydpYczZUWuqv/6 fYw8i0tJoE11UEQaWc+8JW0r5dumH47+2QMQwkVO7HGa1xP3OoOw9fHoDKtXxV9B LJkFi+mUSInmdDvtLQrs13BAq8KUKGoHM3C1IZeNb85NXNONPE79/jdcV2DF5frP SUzkJPVGD8x1gkJmuWW5nMWrFS3Sw7dr6eJApw== -----END CERTIFICATE-----Generated at Wed Dec 3 16:09:22 2025 by rpki-client