This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/9b8a7fa5-fda3-4a3e-92f7-fabfed05a95c/0/33362e35302e35362e302f32332d3233203d3e20313532303239.roa File: 33362e35302e35362e302f32332d3233203d3e20313532303239.roa (raw, json) Hash identifier: 9H86ukseSKR4BvGaN2rjW7zGpKtVglBN83OogNznu9k= Subject key identifier: 72:FD:4F:58:F3:CE:25:8C:63:44:16:76:03:7E:B6:E1:6D:4B:3C:39 Certificate issuer: /CN=9A97A919AD61446780D593589DED8D76DE76F83A Certificate serial: 758E5E91396B553F0CCD144B1ADF6D8B7FFF3835 Authority key identifier: 9A:97:A9:19:AD:61:44:67:80:D5:93:58:9D:ED:8D:76:DE:76:F8:3A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A97A919AD61446780D593589DED8D76DE76F83A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9b8a7fa5-fda3-4a3e-92f7-fabfed05a95c/0/33362e35302e35362e302f32332d3233203d3e20313532303239.roa Signing time: Thu 06 Nov 2025 08:02:25 +0000 ROA not before: Thu 06 Nov 2025 07:57:25 +0000 ROA not after: Thu 05 Nov 2026 08:02:25 +0000 asID: 152029 IP address blocks: 36.50.56.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9b8a7fa5-fda3-4a3e-92f7-fabfed05a95c/0/9A97A919AD61446780D593589DED8D76DE76F83A.crl rsync://repo-rpki.idnic.net/repo/9b8a7fa5-fda3-4a3e-92f7-fabfed05a95c/0/9A97A919AD61446780D593589DED8D76DE76F83A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A97A919AD61446780D593589DED8D76DE76F83A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 14:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:8e:5e:91:39:6b:55:3f:0c:cd:14:4b:1a:df:6d:8b:7f:ff:38:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A97A919AD61446780D593589DED8D76DE76F83A Validity Not Before: Nov 6 07:57:25 2025 GMT Not After : Nov 5 08:02:25 2026 GMT Subject: CN=72FD4F58F3CE258C63441676037EB6E16D4B3C39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:fa:ba:d2:eb:e9:40:7e:06:ff:6e:4b:36:da: 94:6c:0c:7a:e0:4b:ce:77:c8:bc:66:43:b9:bd:31: 75:2d:d2:9c:1a:9d:bf:bb:37:37:ad:97:7f:da:92: ac:bf:31:42:da:13:1d:4b:6f:50:4f:d8:c1:df:f2: 5c:36:07:b7:d6:24:bf:4c:b3:5b:22:2e:1b:e5:49: 1b:16:ac:af:06:f1:a3:e7:5d:07:4f:52:55:05:02: 3d:30:05:e0:db:17:cf:43:78:a6:a0:78:c4:8c:d5: 9d:d6:29:1e:1b:7e:af:b6:b3:fd:3f:ef:f5:e0:22: 7b:15:9a:3c:aa:cd:67:fd:93:d6:5f:1e:7d:61:58: 1d:b3:94:6a:5d:af:b7:f8:bc:fc:56:04:a8:b2:24: f4:60:d0:62:45:ee:1c:ea:bf:0c:44:c3:da:95:ed: 4a:8b:c5:14:11:52:05:f0:20:cf:4c:7e:4f:e8:ee: e5:5f:3b:fe:02:6f:e9:b1:f5:a3:c7:b5:39:9b:0d: 20:3d:9f:41:25:3e:f7:fc:4d:24:32:32:ff:d3:66: 5d:4b:ab:79:ae:5f:dd:e5:83:52:62:df:af:c2:d5: 5c:eb:2a:eb:b7:75:1f:98:80:e1:56:00:5a:a8:52: 86:50:cd:0c:bf:2f:45:fc:d4:6a:02:95:da:71:0d: 14:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:FD:4F:58:F3:CE:25:8C:63:44:16:76:03:7E:B6:E1:6D:4B:3C:39 X509v3 Authority Key Identifier: keyid:9A:97:A9:19:AD:61:44:67:80:D5:93:58:9D:ED:8D:76:DE:76:F8:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9b8a7fa5-fda3-4a3e-92f7-fabfed05a95c/0/9A97A919AD61446780D593589DED8D76DE76F83A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A97A919AD61446780D593589DED8D76DE76F83A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9b8a7fa5-fda3-4a3e-92f7-fabfed05a95c/0/33362e35302e35362e302f32332d3233203d3e20313532303239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.56.0/23 Signature Algorithm: sha256WithRSAEncryption 82:2d:d6:a6:3b:8e:58:5a:7e:95:f2:94:91:4d:97:53:78:ea: 0e:8f:72:b2:c4:e1:b8:c3:22:e8:2c:ad:f8:ef:22:cf:27:b4: cd:74:ea:5a:3e:20:0a:4b:d8:dc:9f:12:96:3b:90:ba:a4:a2: ca:66:85:1e:d8:11:93:d6:d3:db:dc:3f:c8:8e:b5:40:bd:5b: ca:16:83:17:e3:f3:e0:10:e0:83:63:00:a7:81:93:ed:21:37: 62:54:07:7d:db:98:07:62:e0:59:6e:7f:a4:58:7d:85:5d:c8: 81:27:4d:d7:87:6e:50:a9:78:be:02:76:02:7c:51:d8:6c:a3: 9e:eb:b3:52:74:50:e6:d1:48:4f:2f:8b:6e:92:d6:72:ef:2a: 98:42:34:17:45:76:09:cd:d8:22:85:ad:60:b9:f4:05:11:d9: 1a:05:15:89:d5:f8:18:08:d5:c1:f5:f2:f8:08:42:d4:03:5c: 0a:51:6d:41:e3:e1:63:2f:af:95:df:2a:14:57:c8:09:32:c1: fb:d9:89:6c:2d:1b:9e:36:15:8c:fd:b9:c8:1f:e6:e9:17:08: f9:77:04:39:36:14:63:f9:e3:ba:8e:ae:a6:f4:77:a0:d8:42: e4:ed:e5:f8:8c:ca:a0:ab:ea:09:53:26:d0:a6:fb:ed:4d:fc: 91:12:7a:42 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUdY5ekTlrVT8MzRRLGt9ti3//ODUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE5N0E5MTlBRDYxNDQ2NzgwRDU5MzU4OURFRDhENzZE RTc2RjgzQTAeFw0yNTExMDYwNzU3MjVaFw0yNjExMDUwODAyMjVaMDMxMTAvBgNV BAMTKDcyRkQ0RjU4RjNDRTI1OEM2MzQ0MTY3NjAzN0VCNkUxNkQ0QjNDMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK+rrS6+lAfgb/bks22pRsDHrg S853yLxmQ7m9MXUt0pwanb+7Nzetl3/akqy/MULaEx1Lb1BP2MHf8lw2B7fWJL9M s1siLhvlSRsWrK8G8aPnXQdPUlUFAj0wBeDbF89DeKageMSM1Z3WKR4bfq+2s/0/ 7/XgInsVmjyqzWf9k9ZfHn1hWB2zlGpdr7f4vPxWBKiyJPRg0GJF7hzqvwxEw9qV 7UqLxRQRUgXwIM9Mfk/o7uVfO/4Cb+mx9aPHtTmbDSA9n0ElPvf8TSQyMv/TZl1L q3muX93lg1Ji36/C1VzrKuu3dR+YgOFWAFqoUoZQzQy/L0X81GoCldpxDRSjAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUcv1PWPPOJYxjRBZ2A3624W1LPDkwHwYDVR0j BBgwFoAUmpepGa1hRGeA1ZNYne2Ndt52+DowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YjhhN2ZhNS1mZGEzLTRhM2UtOTJmNy1mYWJmZWQwNWE5NWMvMC85QTk3QTkxOUFE NjE0NDY3ODBENTkzNTg5REVEOEQ3NkRFNzZGODNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE5N0E5MTlBRDYxNDQ2NzgwRDU5MzU4OURFRDhENzZERTc2 RjgzQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzliOGE3ZmE1LWZkYTMtNGEzZS05 MmY3LWZhYmZlZDA1YTk1Yy8wLzMzMzYyZTM1MzAyZTM1MzYyZTMwMmYzMjMzMmQz MjMzMjAzZDNlMjAzMTM1MzIzMDMyMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEkMjgwDQYJKoZIhvcN AQELBQADggEBAIIt1qY7jlhafpXylJFNl1N46g6PcrLE4bjDIugsrfjvIs8ntM10 6lo+IApL2NyfEpY7kLqkospmhR7YEZPW09vcP8iOtUC9W8oWgxfj8+AQ4INjAKeB k+0hN2JUB33bmAdi4Fluf6RYfYVdyIEnTdeHblCpeL4CdgJ8Udhso57rs1J0UObR SE8vi26S1nLvKphCNBdFdgnN2CKFrWC59AUR2RoFFYnV+BgI1cH18vgIQtQDXApR bUHj4WMvr5XfKhRXyAkywfvZiWwtG542FYz9ucgf5ukXCPl3BDk2FGP547qOrqb0 d6DYQuTt5fiMyqCr6glTJtCm++1N/JESekI= -----END CERTIFICATE-----Generated at Wed Dec 3 14:58:10 2025 by rpki-client