This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34392e3132382e3137382e302f32342d3234203d3e20313439373436.roa File: 34392e3132382e3137382e302f32342d3234203d3e20313439373436.roa (raw, json) Hash identifier: WjUo8uQ6z2o8xHjo7VhYk2FONtSF96fbL4VpKiZUe3M= Subject key identifier: ED:39:26:4C:78:41:F9:23:67:79:7C:51:42:97:28:F9:A9:72:11:8F Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 5097CB3259497A4C98105482A5CB86D3F796BFCF Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34392e3132382e3137382e302f32342d3234203d3e20313439373436.roa Signing time: Sat 22 Nov 2025 18:01:09 +0000 ROA not before: Sat 22 Nov 2025 17:56:09 +0000 ROA not after: Sat 21 Nov 2026 18:01:09 +0000 asID: 149746 IP address blocks: 49.128.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 16:38:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:97:cb:32:59:49:7a:4c:98:10:54:82:a5:cb:86:d3:f7:96:bf:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Nov 22 17:56:09 2025 GMT Not After : Nov 21 18:01:09 2026 GMT Subject: CN=ED39264C7841F92367797C51429728F9A972118F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8a:f5:38:de:b5:3c:96:86:1a:3f:b0:d0:4f: 11:b0:87:bf:84:18:b8:79:01:af:e7:a2:d1:ec:ff: 27:ed:61:c6:a7:7e:e4:cd:a4:43:ad:ba:b7:9b:b5: 6f:af:c2:6e:b6:8f:12:bd:38:19:5a:a4:0c:86:cb: 33:06:e7:49:c7:b8:8c:b0:05:71:fa:d9:b1:35:f3: 24:e0:14:06:55:6d:af:65:32:ac:fc:59:bc:45:ed: a0:bc:60:6d:36:ae:25:7a:72:f5:1e:0c:f4:7e:10: 18:7e:0f:56:84:ca:97:0e:03:16:a0:23:3f:8a:11: 74:90:10:64:40:a2:5f:45:1b:63:95:6a:d3:c5:1a: 5a:09:fe:4d:7f:91:a9:13:e7:09:17:c9:68:db:3e: 37:b9:ee:d7:3d:24:5e:f8:40:17:3e:62:0b:b8:93: d7:30:36:87:65:61:14:67:48:5b:27:05:b2:4a:5f: da:d6:7a:39:59:87:82:92:cd:5b:1d:15:0e:42:12: 9a:34:19:10:5c:b3:3f:75:e1:c5:fe:80:09:7f:42: e8:7e:2b:4b:7b:91:40:80:4c:53:34:0c:9b:b2:00: b2:03:da:ef:3e:df:95:0e:74:54:f0:0d:d6:75:66: e4:ec:fc:c9:b1:fb:ea:9a:95:ca:e8:30:eb:c1:e0: 13:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:39:26:4C:78:41:F9:23:67:79:7C:51:42:97:28:F9:A9:72:11:8F X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/34392e3132382e3137382e302f32342d3234203d3e20313439373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 49.128.178.0/24 Signature Algorithm: sha256WithRSAEncryption b8:2b:7c:b8:bd:95:4d:f5:1b:a6:0c:da:ea:c0:5d:3d:27:0e: 6f:51:e5:b5:f6:51:b4:f5:21:9e:b8:b7:84:ec:82:46:89:2e: 8c:a5:3e:10:b6:97:06:e3:46:b4:94:bf:0d:88:c7:b8:f5:b1: 4b:96:d4:8c:3a:eb:2f:24:47:d2:98:38:b0:a1:0b:15:24:af: 3e:3a:af:3e:c7:ea:44:ba:bb:45:ae:07:4d:e0:a2:5a:a8:3c: 3a:d1:77:b5:ac:46:90:9c:79:f6:b7:0a:68:ba:8d:e6:9d:79: b6:42:4c:d3:99:7b:c3:f8:9e:4d:e7:87:42:4c:f8:91:39:67: 85:4a:84:22:a5:9b:40:4f:9a:e5:d3:dd:98:57:60:57:bf:98: aa:f4:af:f8:67:37:48:58:66:af:ff:44:01:c6:77:b7:dc:a9: 08:97:19:be:85:5e:a3:38:6a:39:98:de:64:8b:8d:2b:0c:e5: 29:88:7c:74:be:a4:b5:79:93:19:ab:3d:94:f3:8b:c7:a9:5b: d9:67:11:2c:5a:a6:e9:4b:be:cd:41:33:b7:f2:00:7d:79:38: 39:a7:0a:c8:29:0e:2c:21:2c:d0:24:26:5e:f2:00:08:f3:7f: f2:22:7e:a7:cd:4f:21:38:a0:00:d9:9d:6d:0b:11:54:be:8f: 3f:67:2b:88 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUJfLMllJekyYEFSCpcuG0/eWv88wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNTExMjIxNzU2MDlaFw0yNjExMjExODAxMDlaMDMxMTAvBgNV BAMTKEVEMzkyNjRDNzg0MUY5MjM2Nzc5N0M1MTQyOTcyOEY5QTk3MjExOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBivU43rU8loYaP7DQTxGwh7+E GLh5Aa/notHs/yftYcanfuTNpEOturebtW+vwm62jxK9OBlapAyGyzMG50nHuIyw BXH62bE18yTgFAZVba9lMqz8WbxF7aC8YG02riV6cvUeDPR+EBh+D1aEypcOAxag Iz+KEXSQEGRAol9FG2OVatPFGloJ/k1/kakT5wkXyWjbPje57tc9JF74QBc+Ygu4 k9cwNodlYRRnSFsnBbJKX9rWejlZh4KSzVsdFQ5CEpo0GRBcsz914cX+gAl/Quh+ K0t7kUCATFM0DJuyALID2u8+35UOdFTwDdZ1ZuTs/Mmx++qalcroMOvB4BMXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7TkmTHhB+SNneXxRQpco+alyEY8wHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzM0MzkyZTMxMzIzODJlMzEzNzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAMYCyMA0GCSqG SIb3DQEBCwUAA4IBAQC4K3y4vZVN9RumDNrqwF09Jw5vUeW19lG09SGeuLeE7IJG iS6MpT4QtpcG40a0lL8NiMe49bFLltSMOusvJEfSmDiwoQsVJK8+Oq8+x+pEurtF rgdN4KJaqDw60Xe1rEaQnHn2twpouo3mnXm2QkzTmXvD+J5N54dCTPiROWeFSoQi pZtAT5rl092YV2BXv5iq9K/4ZzdIWGav/0QBxne33KkIlxm+hV6jOGo5mN5ki40r DOUpiHx0vqS1eZMZqz2U84vHqVvZZxEsWqbpS77NQTO38gB9eTg5pwrIKQ4sISzQ JCZe8gAI83/yIn6nzU8hOKAA2Z1tCxFUvo8/ZyuI -----END CERTIFICATE-----Generated at Wed Dec 3 16:09:06 2025 by rpki-client