This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3132302e38392e39302e302f32332d3234203d3e20313335343737.roa File: 3132302e38392e39302e302f32332d3234203d3e20313335343737.roa (raw, json) Hash identifier: zWk8nBtzJ5kCwr+alrHNTeusIWxyDqjAXquSFLRhyts= Subject key identifier: 92:55:77:81:68:A7:2B:7E:C2:D0:A4:45:DF:6A:13:28:BD:76:3B:43 Certificate issuer: /CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Certificate serial: 1A33D72BE5D6E29EF07BED6380BA6C1A8FE704FA Authority key identifier: 80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3132302e38392e39302e302f32332d3234203d3e20313335343737.roa Signing time: Thu 07 Aug 2025 17:00:01 +0000 ROA not before: Thu 07 Aug 2025 16:55:01 +0000 ROA not after: Thu 06 Aug 2026 17:00:01 +0000 asID: 135477 IP address blocks: 120.89.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 18:35:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:33:d7:2b:e5:d6:e2:9e:f0:7b:ed:63:80:ba:6c:1a:8f:e7:04:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Validity Not Before: Aug 7 16:55:01 2025 GMT Not After : Aug 6 17:00:01 2026 GMT Subject: CN=9255778168A72B7EC2D0A445DF6A1328BD763B43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:91:6f:02:8e:11:ca:32:49:47:4f:dd:c3:4c: 23:50:94:5c:e1:93:ba:69:e3:b2:55:5a:22:bc:87: 7d:ab:d8:db:10:03:cb:64:de:bf:af:0d:d5:21:cf: 4c:e1:0e:f6:5b:85:76:98:b5:0a:97:14:0b:76:45: 3c:a7:34:b2:06:26:05:42:56:f7:68:03:bc:22:92: a5:bd:b9:e6:41:8c:d5:60:c4:d7:f2:e7:60:7d:7a: ee:d1:cf:4c:7a:62:c9:53:e0:80:d2:09:22:77:43: c3:ad:01:bf:37:d3:6f:7b:ed:a9:e3:b9:de:1b:6b: c6:af:47:bf:75:fe:73:ac:96:81:1e:a3:30:b3:d2: 52:46:2b:7a:69:9f:b2:0e:bf:11:7b:23:e8:db:c3: 67:3b:ce:c7:86:b0:53:10:39:89:13:a4:f2:12:ef: dc:c6:6a:3d:c9:e8:91:4b:44:62:f8:18:9e:16:6c: 98:a0:3b:33:0c:4c:29:20:42:28:88:e1:16:7c:e0: a6:ba:d7:98:e3:b8:3c:b4:1f:d8:b8:92:89:09:55: d2:2f:56:f8:99:97:33:ab:ec:14:fd:40:12:d6:b0: f9:1f:61:2c:53:7d:20:45:48:60:4d:ff:ff:be:1e: 18:12:c4:a5:82:2c:cd:ec:3f:2b:1d:2d:b3:3b:09: 56:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:55:77:81:68:A7:2B:7E:C2:D0:A4:45:DF:6A:13:28:BD:76:3B:43 X509v3 Authority Key Identifier: keyid:80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/3132302e38392e39302e302f32332d3234203d3e20313335343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 120.89.90.0/23 Signature Algorithm: sha256WithRSAEncryption 23:c4:db:83:af:67:3b:03:00:66:1f:7b:cb:9d:d5:f4:fb:e0: 76:36:e1:14:52:3c:d0:83:48:92:21:e9:50:fc:15:f1:0b:a4: f0:f6:a8:75:c8:b0:14:ee:cc:e2:ae:c4:ad:02:e4:02:6e:29: 1f:c8:d7:c5:4a:a8:49:f0:b7:01:37:4a:9f:09:7f:59:3f:e8: 06:70:45:1f:ef:1f:88:d3:57:bb:ab:f0:f0:d1:25:4b:6d:0a: 41:64:4e:d9:b1:70:ec:95:7f:c5:f6:e8:69:64:98:fd:4b:3c: 7a:e5:59:87:24:0d:a5:14:71:e1:0e:dc:be:8a:09:c2:88:e0: 2c:16:1f:91:8d:ad:1f:9b:bc:b7:2a:dd:04:e4:bb:04:fd:c9: 4e:5b:e6:6b:a3:9e:74:de:b5:26:87:37:03:1d:83:94:d4:2d: 69:d8:f4:4d:f8:14:54:dc:2e:2e:f3:d2:2b:e7:65:fa:07:ce: 4e:bd:36:ab:d0:9a:c8:78:33:a4:12:d9:a5:c3:e3:b5:86:b3: 34:91:fd:39:a8:a8:5b:18:0e:65:0b:c7:0a:6c:a6:8b:c3:69: 4a:3a:ea:66:fe:d3:e4:a8:01:31:3f:7d:50:a9:91:23:02:2b: 32:99:b5:51:87:5a:39:13:fc:90:22:99:24:6b:f0:63:45:b8: 9b:11:bc:21 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGjPXK+XW4p7we+1jgLpsGo/nBPowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5 Qjk0MTBFOTAeFw0yNTA4MDcxNjU1MDFaFw0yNjA4MDYxNzAwMDFaMDMxMTAvBgNV BAMTKDkyNTU3NzgxNjhBNzJCN0VDMkQwQTQ0NURGNkExMzI4QkQ3NjNCNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDokW8CjhHKMklHT93DTCNQlFzh k7pp47JVWiK8h32r2NsQA8tk3r+vDdUhz0zhDvZbhXaYtQqXFAt2RTynNLIGJgVC VvdoA7wikqW9ueZBjNVgxNfy52B9eu7Rz0x6YslT4IDSCSJ3Q8OtAb8302977anj ud4ba8avR791/nOsloEeozCz0lJGK3ppn7IOvxF7I+jbw2c7zseGsFMQOYkTpPIS 79zGaj3J6JFLRGL4GJ4WbJigOzMMTCkgQiiI4RZ84Ka615jjuDy0H9i4kokJVdIv VviZlzOr7BT9QBLWsPkfYSxTfSBFSGBN//++HhgSxKWCLM3sPysdLbM7CVYpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUklV3gWinK37C0KRF32oTKL12O0MwHwYDVR0j BBgwFoAUgKV9krjUw/8X5xwDBdmtgpuUEOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h N2ZkZjQzZS00YTRjLTRkYmMtYjc4NS1kZDdjYmYxYTY3YjcvMC84MEE1N0Q5MkI4 RDRDM0ZGMTdFNzFDMDMwNUQ5QUQ4MjlCOTQxMEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5Qjk0 MTBFOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3ZmRmNDNlLTRhNGMtNGRiYy1i Nzg1LWRkN2NiZjFhNjdiNy8wLzMxMzIzMDJlMzgzOTJlMzkzMDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAXhZWjANBgkqhkiG 9w0BAQsFAAOCAQEAI8Tbg69nOwMAZh97y53V9PvgdjbhFFI80INIkiHpUPwV8Quk 8PaodciwFO7M4q7ErQLkAm4pH8jXxUqoSfC3ATdKnwl/WT/oBnBFH+8fiNNXu6vw 8NElS20KQWRO2bFw7JV/xfboaWSY/Us8euVZhyQNpRRx4Q7cvooJwojgLBYfkY2t H5u8tyrdBOS7BP3JTlvma6OedN61Joc3Ax2DlNQtadj0TfgUVNwuLvPSK+dl+gfO Tr02q9CayHgzpBLZpcPjtYazNJH9OaioWxgOZQvHCmymi8NpSjrqZv7T5KgBMT99 UKmRIwIrMpm1UYdaORP8kCKZJGvwY0W4mxG8IQ== -----END CERTIFICATE-----Generated at Wed Dec 3 15:28:20 2025 by rpki-client