This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e31382e302f32342d3234203d3e20313333383430.roa File: 3230332e3136312e31382e302f32342d3234203d3e20313333383430.roa (raw, json) Hash identifier: O37rl7oMI4as9WLeCz7qTfdOE9t8nCbYP2+r+lOv4jg= Subject key identifier: F4:33:E8:69:10:DB:B7:18:2E:59:0E:AB:FA:FE:94:78:33:74:C0:96 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 17CAE51EB0018683F1C6FF134D8E3DEF91762BAF Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e31382e302f32342d3234203d3e20313333383430.roa Signing time: Thu 27 Nov 2025 09:02:32 +0000 ROA not before: Thu 27 Nov 2025 08:57:32 +0000 ROA not after: Thu 26 Nov 2026 09:02:32 +0000 asID: 133840 IP address blocks: 203.161.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 18:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:ca:e5:1e:b0:01:86:83:f1:c6:ff:13:4d:8e:3d:ef:91:76:2b:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Nov 27 08:57:32 2025 GMT Not After : Nov 26 09:02:32 2026 GMT Subject: CN=F433E86910DBB7182E590EABFAFE94783374C096 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:02:8b:08:f2:e1:30:d5:b5:86:91:cb:0c:77: 02:cc:c2:f0:3c:fd:e0:b2:68:d6:fc:89:77:df:9e: 8d:53:13:c4:f0:05:37:76:32:86:2c:59:5e:86:ed: e3:35:59:b7:ec:e2:1b:42:92:19:b5:47:7d:a0:b8: 7b:55:2c:4b:7f:10:80:54:31:c3:25:b3:98:e8:15: bb:38:65:cb:93:c6:ba:c0:82:1a:2e:6e:e3:12:c0: 59:ea:19:c1:eb:75:90:fa:12:ce:5a:4c:a6:e5:68: 68:9a:a3:9c:61:ba:6c:33:e0:89:9c:f9:e8:32:e7: 05:03:de:48:f3:4d:aa:d4:14:b1:63:c2:01:91:70: 87:dc:64:b3:32:90:84:99:cf:43:67:67:1b:2d:45: 05:5d:b1:d2:f4:2b:ab:25:fd:77:3d:89:69:65:f3: 5e:90:d3:78:f9:3b:e8:e0:ce:50:ab:3a:b0:4c:d4: c3:ef:c9:9c:c9:74:79:32:ea:ae:17:02:47:5f:35: b6:30:6c:6a:e6:aa:80:e5:d6:4d:5f:57:93:e3:87: 2b:a9:75:6d:46:ca:c7:93:03:53:0f:08:84:2f:20: e8:b7:1e:5f:e2:ee:eb:76:bf:af:c2:36:bb:d7:51: 36:a3:83:80:67:51:29:99:f5:25:80:43:9b:36:fc: 87:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:33:E8:69:10:DB:B7:18:2E:59:0E:AB:FA:FE:94:78:33:74:C0:96 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e31382e302f32342d3234203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.161.18.0/24 Signature Algorithm: sha256WithRSAEncryption 31:e1:80:9f:65:00:61:8a:3c:2c:af:d4:b3:32:2c:32:5c:7c: bd:42:c4:29:13:1c:97:98:61:ea:30:b3:2b:4d:17:01:a7:29: 9a:22:dd:34:8a:73:00:d7:d7:85:e0:42:30:0f:6d:fa:a0:b7: 2c:c8:eb:01:98:4d:18:37:b8:81:cb:bc:4a:fd:60:68:10:46: 05:e2:de:f3:63:1a:e1:e9:43:28:b4:ee:be:7c:ed:b4:5a:90: 6d:0d:61:58:68:4a:42:24:c2:80:1f:2d:dc:ce:e9:87:d9:8a: 62:0f:d8:29:2d:46:a7:9a:58:ad:5d:1f:39:54:2b:b3:e6:d2: d2:3a:c1:2e:aa:f9:ff:20:5c:32:5a:ab:75:a3:87:49:fb:e9: 52:29:23:86:c9:7a:8d:7f:5c:e6:4f:52:12:8b:44:27:9d:59: ff:4e:dc:d0:8c:74:ab:1b:a8:41:64:6a:f0:9f:86:0b:76:e4: 22:48:e4:56:1d:a0:48:61:9a:6f:56:92:8e:42:60:8a:37:b6: 26:e2:ac:2d:3c:de:2d:f0:d5:81:94:c9:6d:11:01:f6:1b:12: 76:15:0a:e3:bd:7a:19:ae:c3:d5:26:8b:70:0b:31:86:09:bd: 1c:d2:11:8b:8e:a2:13:23:d1:96:3f:a4:80:4e:61:06:e9:9f: 6f:70:12:05 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUF8rlHrABhoPxxv8TTY4975F2K68wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTExMjcwODU3MzJaFw0yNjExMjYwOTAyMzJaMDMxMTAvBgNV BAMTKEY0MzNFODY5MTBEQkI3MTgyRTU5MEVBQkZBRkU5NDc4MzM3NEMwOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3AosI8uEw1bWGkcsMdwLMwvA8 /eCyaNb8iXffno1TE8TwBTd2MoYsWV6G7eM1Wbfs4htCkhm1R32guHtVLEt/EIBU McMls5joFbs4ZcuTxrrAghoubuMSwFnqGcHrdZD6Es5aTKblaGiao5xhumwz4Imc +egy5wUD3kjzTarUFLFjwgGRcIfcZLMykISZz0NnZxstRQVdsdL0K6sl/Xc9iWll 816Q03j5O+jgzlCrOrBM1MPvyZzJdHky6q4XAkdfNbYwbGrmqoDl1k1fV5Pjhyup dW1GyseTA1MPCIQvIOi3Hl/i7ut2v6/CNrvXUTajg4BnUSmZ9SWAQ5s2/IeLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU9DPoaRDbtxguWQ6r+v6UeDN0wJYwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzAzMzJlMzEzNjMxMmUzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy6ESMA0GCSqG SIb3DQEBCwUAA4IBAQAx4YCfZQBhijwsr9SzMiwyXHy9QsQpExyXmGHqMLMrTRcB pymaIt00inMA19eF4EIwD236oLcsyOsBmE0YN7iBy7xK/WBoEEYF4t7zYxrh6UMo tO6+fO20WpBtDWFYaEpCJMKAHy3czumH2YpiD9gpLUanmlitXR85VCuz5tLSOsEu qvn/IFwyWqt1o4dJ++lSKSOGyXqNf1zmT1ISi0QnnVn/TtzQjHSrG6hBZGrwn4YL duQiSORWHaBIYZpvVpKOQmCKN7Ym4qwtPN4t8NWBlMltEQH2GxJ2FQrjvXoZrsPV JotwCzGGCb0c0hGLjqITI9GWP6SATmEG6Z9vcBIF -----END CERTIFICATE-----Generated at Wed Dec 3 15:30:50 2025 by rpki-client