This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/3135372e36362e3132392e302f32342d3234203d3e20313336383733.roa File: 3135372e36362e3132392e302f32342d3234203d3e20313336383733.roa (raw, json) Hash identifier: FOCno4gbHCAnLnmHobD1PWQDcUoK6xzxe9dzOJ2yOWg= Subject key identifier: 83:51:A6:03:CA:C9:BE:7F:7B:89:0F:EF:1F:B0:B4:FC:15:CB:D9:29 Certificate issuer: /CN=63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D Certificate serial: 1353C615B436E3026CE721AE438065484FEAC043 Authority key identifier: 63:C4:BF:4B:1C:27:C3:40:5E:E7:CA:1D:54:3C:1F:03:BE:F1:2F:7D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/3135372e36362e3132392e302f32342d3234203d3e20313336383733.roa Signing time: Tue 02 Dec 2025 04:08:08 +0000 ROA not before: Tue 02 Dec 2025 04:03:08 +0000 ROA not after: Tue 01 Dec 2026 04:08:08 +0000 asID: 136873 IP address blocks: 157.66.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.crl rsync://repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 19:04:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:53:c6:15:b4:36:e3:02:6c:e7:21:ae:43:80:65:48:4f:ea:c0:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D Validity Not Before: Dec 2 04:03:08 2025 GMT Not After : Dec 1 04:08:08 2026 GMT Subject: CN=8351A603CAC9BE7F7B890FEF1FB0B4FC15CBD929 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a0:70:55:e8:c3:da:22:8a:07:13:4a:c6:c9: 29:41:2d:91:4d:97:96:f7:e8:66:62:a5:24:4d:9b: 06:7f:09:0c:14:ca:97:41:ce:b5:9b:aa:22:41:00: 28:07:bc:1a:19:c1:78:c9:85:f2:4b:b1:20:36:d8: 1a:09:98:8e:9e:94:a0:27:b6:b9:fc:77:a9:eb:01: f1:4a:94:23:fa:cd:26:d7:65:a7:83:ca:42:56:5b: cf:c7:eb:eb:ed:35:27:fa:cc:eb:bf:15:15:02:6b: dd:35:89:b1:6a:6a:c9:9c:99:d1:ab:9f:7f:b5:d4: 77:8d:8a:d6:a5:09:e2:a1:b3:18:00:71:eb:36:86: 1d:b6:10:12:af:5c:4d:db:53:61:51:69:8e:cc:c0: fb:53:2d:66:b7:4c:5f:1e:2d:45:a4:fd:70:44:54: c4:9c:cd:50:29:97:8f:c5:2c:8a:06:d5:21:b3:94: 0f:3a:bf:6c:79:6c:91:a5:4a:5e:c4:e0:4a:0e:d0: 24:0b:9d:20:db:29:85:b3:b5:f4:9b:2c:b4:d3:cf: a0:0a:88:ad:1b:b3:46:a3:43:b0:83:06:c0:6c:6c: 16:27:5b:bc:d4:f4:d8:3b:96:f9:8f:e6:72:89:19: 53:e3:58:f3:c6:9f:c0:23:aa:fb:c3:58:61:e5:13: 3f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:51:A6:03:CA:C9:BE:7F:7B:89:0F:EF:1F:B0:B4:FC:15:CB:D9:29 X509v3 Authority Key Identifier: keyid:63:C4:BF:4B:1C:27:C3:40:5E:E7:CA:1D:54:3C:1F:03:BE:F1:2F:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/63C4BF4B1C27C3405EE7CA1D543C1F03BEF12F7D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/824d1ebb-aeeb-4945-9ef2-32ad9bfdeb19/0/3135372e36362e3132392e302f32342d3234203d3e20313336383733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.129.0/24 Signature Algorithm: sha256WithRSAEncryption a9:b2:b2:21:6d:55:97:0c:54:b5:39:5c:48:72:48:0f:ea:56: e7:a9:5b:ee:a6:b4:e4:d8:99:23:f8:69:76:35:74:d3:48:86: 65:fa:32:39:be:c7:72:03:10:c6:30:74:d5:52:e7:df:50:d5: 6f:22:29:92:71:92:6b:e8:ee:5a:86:f3:53:c6:71:ba:87:02: 9f:c5:b8:15:e0:7c:03:1a:4d:f8:8e:89:52:4b:59:ca:d9:01: 35:fc:c3:a4:5e:7a:26:fc:40:e6:5a:76:94:77:15:d3:d2:56: 48:fe:6b:35:e6:e7:7c:c3:a4:1d:75:90:4f:1a:52:60:ff:7f: 56:38:49:6e:73:f1:db:43:59:91:e8:df:ae:e6:a3:ff:07:d9: 96:e4:c9:a3:60:64:ae:5c:29:41:94:15:c9:92:4b:49:a1:00: f4:16:09:a0:5b:ab:d4:5f:8d:1e:18:d2:06:f3:45:d2:b7:f6: 9c:40:3e:be:2f:37:18:8a:7a:fd:12:eb:5c:11:29:d7:91:d1: 46:ea:74:28:14:dc:33:92:68:9e:0f:15:30:4e:61:5f:89:17: ff:17:35:3b:1e:35:10:ad:4d:f4:ed:85:61:a9:69:9f:91:1b: fe:dd:fa:30:82:d8:95:9a:5e:83:e2:ab:84:7a:31:89:d4:3b: a9:dc:1f:ef -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUE1PGFbQ24wJs5yGuQ4BlSE/qwEMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjNDNEJGNEIxQzI3QzM0MDVFRTdDQTFENTQzQzFGMDNC RUYxMkY3RDAeFw0yNTEyMDIwNDAzMDhaFw0yNjEyMDEwNDA4MDhaMDMxMTAvBgNV BAMTKDgzNTFBNjAzQ0FDOUJFN0Y3Qjg5MEZFRjFGQjBCNEZDMTVDQkQ5MjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5oHBV6MPaIooHE0rGySlBLZFN l5b36GZipSRNmwZ/CQwUypdBzrWbqiJBACgHvBoZwXjJhfJLsSA22BoJmI6elKAn trn8d6nrAfFKlCP6zSbXZaeDykJWW8/H6+vtNSf6zOu/FRUCa901ibFqasmcmdGr n3+11HeNitalCeKhsxgAces2hh22EBKvXE3bU2FRaY7MwPtTLWa3TF8eLUWk/XBE VMSczVApl4/FLIoG1SGzlA86v2x5bJGlSl7E4EoO0CQLnSDbKYWztfSbLLTTz6AK iK0bs0ajQ7CDBsBsbBYnW7zU9Ng7lvmP5nKJGVPjWPPGn8AjqvvDWGHlEz+zAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUg1GmA8rJvn97iQ/vH7C0/BXL2SkwHwYDVR0j BBgwFoAUY8S/Sxwnw0Be58odVDwfA77xL30wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MjRkMWViYi1hZWViLTQ5NDUtOWVmMi0zMmFkOWJmZGViMTkvMC82M0M0QkY0QjFD MjdDMzQwNUVFN0NBMUQ1NDNDMUYwM0JFRjEyRjdELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNjNDNEJGNEIxQzI3QzM0MDVFRTdDQTFENTQzQzFGMDNCRUYx MkY3RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyNGQxZWJiLWFlZWItNDk0NS05 ZWYyLTMyYWQ5YmZkZWIxOS8wLzMxMzUzNzJlMzYzNjJlMzEzMjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnUKBMA0GCSqG SIb3DQEBCwUAA4IBAQCpsrIhbVWXDFS1OVxIckgP6lbnqVvuprTk2Jkj+Gl2NXTT SIZl+jI5vsdyAxDGMHTVUuffUNVvIimScZJr6O5ahvNTxnG6hwKfxbgV4HwDGk34 jolSS1nK2QE1/MOkXnom/EDmWnaUdxXT0lZI/ms15ud8w6QddZBPGlJg/39WOElu c/HbQ1mR6N+u5qP/B9mW5MmjYGSuXClBlBXJkktJoQD0FgmgW6vUX40eGNIG80XS t/acQD6+LzcYinr9EutcESnXkdFG6nQoFNwzkmieDxUwTmFfiRf/FzU7HjUQrU30 7YVhqWmfkRv+3fowgtiVml6D4quEejGJ1Dup3B/v -----END CERTIFICATE-----Generated at Mon Dec 8 06:25:32 2025 by rpki-client