This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131392e322e34382e302f32332d3234203d3e20313439373436.roa File: 3131392e322e34382e302f32332d3234203d3e20313439373436.roa (raw, json) Hash identifier: RMDQ4JU1W8jQ/y6PzJZSI8HHgybbgbJ49cw97ZP5E8k= Subject key identifier: C4:2E:8D:8E:6C:EB:E5:02:60:2C:A6:95:75:00:42:E7:EE:7D:F0:DE Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 3C1949ABA488B25C57C105813E875EEC9CC37AC8 Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131392e322e34382e302f32332d3234203d3e20313439373436.roa Signing time: Sat 22 Nov 2025 18:01:10 +0000 ROA not before: Sat 22 Nov 2025 17:56:10 +0000 ROA not after: Sat 21 Nov 2026 18:01:10 +0000 asID: 149746 IP address blocks: 119.2.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 16:38:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:19:49:ab:a4:88:b2:5c:57:c1:05:81:3e:87:5e:ec:9c:c3:7a:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Nov 22 17:56:10 2025 GMT Not After : Nov 21 18:01:10 2026 GMT Subject: CN=C42E8D8E6CEBE502602CA695750042E7EE7DF0DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7c:9a:a8:27:68:b1:56:1a:4c:8e:21:80:2e: 56:d9:79:8f:70:5a:31:42:57:7c:66:5b:9d:9b:41: 78:cb:3e:a3:96:31:e4:ac:5b:56:7a:74:9e:61:d7: 00:da:5d:fa:52:48:35:33:08:b6:f6:db:f5:6f:06: 4c:92:55:2a:c5:08:03:17:87:f9:5c:8b:a1:fd:df: 7c:14:be:cd:66:9a:f0:66:e3:cc:8f:1e:bf:1d:77: 99:7f:28:f5:ca:16:b1:0a:d0:ad:65:b3:2e:5b:e2: cf:0e:a9:44:87:c3:6a:ba:8b:c1:ba:6f:7c:e1:d8: b9:65:98:51:fe:52:82:f3:fe:a9:6f:4e:bd:90:2f: 98:1e:9b:67:c7:e9:8c:0e:c2:e4:70:94:ab:df:73: 3e:e2:8c:2a:29:78:02:b4:ef:b0:e6:8c:f7:96:52: 45:84:0c:89:99:d7:c7:12:f8:3d:56:75:b5:d1:a6: 19:b2:2b:27:ce:a8:03:d2:24:fe:c2:ba:20:72:f3: c2:6c:24:b8:0b:0c:8e:b5:25:87:03:5c:dc:c4:7e: 35:a8:7d:f1:fc:27:c9:dc:33:ed:f8:f8:f4:8d:2f: ab:65:6f:44:84:8d:23:4a:92:d3:91:47:75:d3:39: ca:9e:d8:7c:b9:c4:2d:b4:de:77:2e:7d:87:56:0f: 65:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:2E:8D:8E:6C:EB:E5:02:60:2C:A6:95:75:00:42:E7:EE:7D:F0:DE X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3131392e322e34382e302f32332d3234203d3e20313439373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.48.0/23 Signature Algorithm: sha256WithRSAEncryption 87:94:a2:6a:0e:ec:90:1e:3a:76:99:dd:7e:74:e9:73:46:62: 80:5f:d7:98:7a:26:dd:a9:0f:06:30:01:cd:f4:a8:04:02:8e: 08:d8:7d:ff:dc:50:40:f9:16:b4:55:2b:17:0c:da:64:55:b7: ca:4d:55:71:b1:2c:2e:66:db:5e:98:e5:30:44:fb:a5:f1:9a: 0f:73:dc:11:cb:1c:8c:3b:5a:31:93:9d:47:07:d8:5b:5b:23: d7:bb:63:49:24:dd:83:74:df:d4:b3:a4:ed:4e:d3:9b:e4:65: cc:1e:e2:fb:d3:6d:66:7e:5b:bb:f1:19:d3:2b:f8:58:9b:e1: 1d:fb:4b:d9:cf:ad:d3:a4:3c:83:2d:15:62:83:b8:97:7c:fa: bf:29:9b:0e:06:9d:ab:76:15:4c:28:92:81:1c:f4:20:b2:d2: 49:1f:c8:ad:04:3a:bf:f0:d0:f3:8d:39:a2:f6:15:eb:a9:18: 87:38:f0:54:b1:85:74:10:d2:dd:0e:f8:be:6d:7f:f0:8e:3b: a5:ff:f7:8d:8e:cd:6c:36:0d:c9:75:92:8b:2c:ff:49:9e:9e: 16:4a:6d:6c:90:3f:87:94:14:35:09:21:af:80:82:3b:d2:74: 4c:53:c2:0c:bb:de:32:96:0b:dc:b8:2b:ea:c1:cf:d4:96:5d: 7c:01:03:5b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUPBlJq6SIslxXwQWBPode7JzDesgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNTExMjIxNzU2MTBaFw0yNjExMjExODAxMTBaMDMxMTAvBgNV BAMTKEM0MkU4RDhFNkNFQkU1MDI2MDJDQTY5NTc1MDA0MkU3RUU3REYwREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9fJqoJ2ixVhpMjiGALlbZeY9w WjFCV3xmW52bQXjLPqOWMeSsW1Z6dJ5h1wDaXfpSSDUzCLb22/VvBkySVSrFCAMX h/lci6H933wUvs1mmvBm48yPHr8dd5l/KPXKFrEK0K1lsy5b4s8OqUSHw2q6i8G6 b3zh2LllmFH+UoLz/qlvTr2QL5gem2fH6YwOwuRwlKvfcz7ijCopeAK077DmjPeW UkWEDImZ18cS+D1WdbXRphmyKyfOqAPSJP7CuiBy88JsJLgLDI61JYcDXNzEfjWo ffH8J8ncM+34+PSNL6tlb0SEjSNKktORR3XTOcqe2Hy5xC203ncufYdWD2WJAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUxC6Njmzr5QJgLKaVdQBC5+598N4wHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzEzOTJlMzIyZTM0MzgyZTMwMmYzMjMzMmQz MjM0MjAzZDNlMjAzMTM0MzkzNzM0MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF3AjAwDQYJKoZIhvcN AQELBQADggEBAIeUomoO7JAeOnaZ3X506XNGYoBf15h6Jt2pDwYwAc30qAQCjgjY ff/cUED5FrRVKxcM2mRVt8pNVXGxLC5m216Y5TBE+6Xxmg9z3BHLHIw7WjGTnUcH 2FtbI9e7Y0kk3YN039SzpO1O05vkZcwe4vvTbWZ+W7vxGdMr+Fib4R37S9nPrdOk PIMtFWKDuJd8+r8pmw4Gnat2FUwokoEc9CCy0kkfyK0EOr/w0PONOaL2FeupGIc4 8FSxhXQQ0t0O+L5tf/COO6X/942OzWw2Dcl1koss/0menhZKbWyQP4eUFDUJIa+A gjvSdExTwgy73jKWC9y4K+rBz9SWXXwBA1s= -----END CERTIFICATE-----Generated at Wed Dec 3 16:51:12 2025 by rpki-client