This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e32302e302f32342d3234203d3e20313333383430.roa File: 3230332e3136312e32302e302f32342d3234203d3e20313333383430.roa (raw, json) Hash identifier: ktK7VrYEys3H6ncneU3NBjUF7vxf2BroaSqM38frKnY= Subject key identifier: 1A:7F:9D:A4:06:88:07:40:93:00:13:34:0D:DB:C7:54:3A:48:0A:87 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 12CADD3108D5BCD46AD9780EBDC5BB0634D219C4 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e32302e302f32342d3234203d3e20313333383430.roa Signing time: Thu 27 Nov 2025 09:02:32 +0000 ROA not before: Thu 27 Nov 2025 08:57:32 +0000 ROA not after: Thu 26 Nov 2026 09:02:32 +0000 asID: 133840 IP address blocks: 203.161.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 20:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:ca:dd:31:08:d5:bc:d4:6a:d9:78:0e:bd:c5:bb:06:34:d2:19:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Nov 27 08:57:32 2025 GMT Not After : Nov 26 09:02:32 2026 GMT Subject: CN=1A7F9DA406880740930013340DDBC7543A480A87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:21:3a:5a:ab:06:41:84:8a:f5:b0:0b:fa:61: 5c:99:ec:21:d0:d2:db:ec:2e:75:2c:ca:d1:f5:be: cb:d9:be:96:f8:5d:58:f7:e6:d8:08:f8:b6:9d:7c: 9b:b0:60:27:b1:1b:0a:13:b0:9f:36:64:ee:66:46: 5a:6b:f8:5d:40:e6:47:75:4f:c8:e3:3c:13:09:21: f4:b7:aa:85:c1:7e:63:d7:f6:83:9e:a2:d2:e4:b3: fd:43:92:0f:84:ea:1d:66:36:69:1e:fa:fa:4b:01: 46:0e:9d:f6:10:3c:4a:7b:69:62:2c:50:44:e3:cf: 02:ca:11:52:b1:4f:13:ae:23:9d:3a:f0:f3:c5:94: 00:03:6d:1d:da:d0:6e:4e:ce:c9:79:76:26:36:9f: 8c:d7:d7:0f:16:ba:13:ce:b1:ee:1c:f2:17:29:e9: cf:ee:36:b0:8c:62:9a:74:03:e6:cf:3e:88:18:27: 7d:42:b6:af:e6:71:55:a0:42:e8:f2:d0:cf:78:c6: 30:22:47:cc:09:01:87:0d:78:25:9e:0d:09:ff:56: a6:dd:16:48:95:4f:d7:40:42:00:93:65:a7:24:65: da:fb:68:fd:61:b9:0c:e1:8b:36:a1:e0:13:52:a8: ae:32:1e:39:e1:99:7f:57:70:09:90:6d:b9:ad:d5: 9c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:7F:9D:A4:06:88:07:40:93:00:13:34:0D:DB:C7:54:3A:48:0A:87 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3230332e3136312e32302e302f32342d3234203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.161.20.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:5e:fb:ab:1f:db:bd:9e:99:02:c7:23:f3:b4:0b:ac:46:9b: 26:7b:a3:ab:19:87:6f:b2:92:33:30:8a:93:f2:04:d7:d4:ea: 8b:cd:50:70:67:b1:60:2b:6d:ad:c9:ab:35:a8:34:35:7d:d6: 65:50:cc:58:42:ad:08:23:23:49:dd:8f:33:02:9f:d0:15:c9: c9:6b:1e:ed:5d:c4:98:51:84:98:64:33:07:57:70:20:75:41: 96:3e:a6:7f:e2:4c:19:26:20:8f:4f:24:4e:65:66:78:c6:b6: e6:a5:c4:ae:d6:9a:86:55:0e:ea:13:09:43:b5:98:bc:64:bb: 28:fc:f0:6b:de:47:dd:6e:6a:6a:2f:a7:89:fd:32:39:fd:b6: 9b:b1:df:1f:be:8d:66:c1:32:cb:ed:98:18:65:19:48:1e:fc: 45:ce:40:2b:f3:0b:b7:13:77:de:3b:20:ef:88:53:0f:85:e2: 0f:2e:6e:2a:12:0c:47:07:54:1c:f2:5b:dd:9e:08:9b:24:e4: 89:d7:fe:13:44:d8:b6:c4:5e:9f:bc:2c:64:6c:02:1b:2c:38: 25:3b:54:e9:6a:30:71:c0:44:00:4f:f7:7b:d9:19:23:32:82: ea:14:92:93:5b:3f:6f:a0:f6:84:ac:93:72:58:52:91:30:e5: 63:a4:51:59 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEsrdMQjVvNRq2XgOvcW7BjTSGcQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTExMjcwODU3MzJaFw0yNjExMjYwOTAyMzJaMDMxMTAvBgNV BAMTKDFBN0Y5REE0MDY4ODA3NDA5MzAwMTMzNDBEREJDNzU0M0E0ODBBODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzITpaqwZBhIr1sAv6YVyZ7CHQ 0tvsLnUsytH1vsvZvpb4XVj35tgI+LadfJuwYCexGwoTsJ82ZO5mRlpr+F1A5kd1 T8jjPBMJIfS3qoXBfmPX9oOeotLks/1Dkg+E6h1mNmke+vpLAUYOnfYQPEp7aWIs UETjzwLKEVKxTxOuI5068PPFlAADbR3a0G5Ozsl5diY2n4zX1w8WuhPOse4c8hcp 6c/uNrCMYpp0A+bPPogYJ31Ctq/mcVWgQujy0M94xjAiR8wJAYcNeCWeDQn/Vqbd FkiVT9dAQgCTZackZdr7aP1huQzhizah4BNSqK4yHjnhmX9XcAmQbbmt1ZzJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGn+dpAaIB0CTABM0DdvHVDpICocwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzAzMzJlMzEzNjMxMmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy6EUMA0GCSqG SIb3DQEBCwUAA4IBAQB8XvurH9u9npkCxyPztAusRpsme6OrGYdvspIzMIqT8gTX 1OqLzVBwZ7FgK22tyas1qDQ1fdZlUMxYQq0IIyNJ3Y8zAp/QFcnJax7tXcSYUYSY ZDMHV3AgdUGWPqZ/4kwZJiCPTyROZWZ4xrbmpcSu1pqGVQ7qEwlDtZi8ZLso/PBr 3kfdbmpqL6eJ/TI5/babsd8fvo1mwTLL7ZgYZRlIHvxFzkAr8wu3E3feOyDviFMP heIPLm4qEgxHB1Qc8lvdngibJOSJ1/4TRNi2xF6fvCxkbAIbLDglO1TpajBxwEQA T/d72RkjMoLqFJKTWz9voPaErJNyWFKRMOVjpFFZ -----END CERTIFICATE-----Generated at Wed Dec 3 16:11:53 2025 by rpki-client