This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33362e302f32332d3233203d3e20313430343730.roa File: 3135372e32302e33362e302f32332d3233203d3e20313430343730.roa (raw, json) Hash identifier: P+lInV3ols6ftIxSpMHmtBDcdqTmvL+gkgGsnZZSjLQ= Subject key identifier: 57:92:4D:FB:91:CD:BB:AC:25:94:B6:7F:81:73:41:1A:69:A1:49:5D Certificate issuer: /CN=B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46 Certificate serial: 2C016D287876F39BB9F44E0C7911C4F5757ED10D Authority key identifier: B5:AB:E8:6E:BB:2A:02:C5:83:92:74:9A:92:FE:A6:8F:BA:FC:5C:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33362e302f32332d3233203d3e20313430343730.roa Signing time: Wed 14 Jan 2026 08:02:34 +0000 ROA not before: Wed 14 Jan 2026 07:57:34 +0000 ROA not after: Wed 13 Jan 2027 08:02:34 +0000 asID: 140470 IP address blocks: 157.20.36.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.crl rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 09:47:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:01:6d:28:78:76:f3:9b:b9:f4:4e:0c:79:11:c4:f5:75:7e:d1:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46 Validity Not Before: Jan 14 07:57:34 2026 GMT Not After : Jan 13 08:02:34 2027 GMT Subject: CN=57924DFB91CDBBAC2594B67F8173411A69A1495D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:28:98:d9:4d:a7:e9:fe:1c:06:d7:65:6b:f4: c2:a0:0e:b0:aa:22:20:c3:05:e3:c0:19:fa:e4:c8: 69:17:00:2a:31:40:30:39:86:13:76:96:78:ae:f0: ac:53:e7:d6:e0:42:19:ca:50:ed:de:f2:d9:33:a2: ab:15:4e:ad:38:e7:23:a7:d2:87:a2:c0:a0:c2:c5: b7:84:e4:f7:ef:a8:4e:1e:bf:52:2a:75:1d:fb:59: 4a:ea:e4:ef:16:29:70:9e:d9:df:8b:5a:8e:8e:1a: a0:36:28:89:c9:69:3b:9e:48:fd:0b:a6:f4:81:a0: d6:9a:da:eb:e3:e3:7b:39:00:e9:b7:31:21:2b:c7: 90:d2:9c:16:17:e1:13:86:c1:eb:27:ac:1d:18:c6: c6:7c:bc:09:ab:a1:c8:76:65:cb:d2:47:0f:f0:d5: fe:1e:92:3a:c2:2d:b0:46:5f:73:ca:3f:c1:8e:4b: 8b:23:93:92:f3:fd:c8:91:cc:31:69:95:52:ca:62: 67:10:42:4f:0e:1d:7b:22:48:f8:b7:70:66:61:d0: 27:d6:12:d8:61:5b:b6:d4:dd:78:a4:d3:91:cf:7d: eb:6e:3f:bc:dd:d1:e5:70:c8:a6:b7:9c:28:5a:fd: 99:9b:3c:e7:7f:6e:7f:d8:e7:80:4a:1a:15:c8:85: 30:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:92:4D:FB:91:CD:BB:AC:25:94:B6:7F:81:73:41:1A:69:A1:49:5D X509v3 Authority Key Identifier: keyid:B5:AB:E8:6E:BB:2A:02:C5:83:92:74:9A:92:FE:A6:8F:BA:FC:5C:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33362e302f32332d3233203d3e20313430343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.36.0/23 Signature Algorithm: sha256WithRSAEncryption 97:f9:76:e9:4e:3f:57:6b:6c:e2:dd:ea:ba:75:cf:6d:3e:2b: 14:81:0b:ee:88:64:1c:38:f8:ee:49:89:48:ba:2c:69:17:4d: b7:88:61:be:12:fd:8a:f8:03:cd:f8:ad:cf:75:56:15:99:24: 4c:c1:79:68:52:f5:15:d5:56:44:10:fc:32:bd:da:f0:ad:1a: 51:5f:6e:a3:3d:6a:11:3c:13:9d:f1:e3:f9:10:3b:2b:22:4b: 53:ba:79:1c:2c:dc:6d:e3:03:12:a0:d2:2a:28:d9:de:c1:2b: a5:ac:3f:be:2b:3e:5f:5f:76:4a:38:98:ef:34:2b:be:df:52: c9:f1:02:8a:e7:20:61:ba:24:1f:68:1b:da:ba:ea:eb:c5:77: 48:5d:eb:7d:b8:a7:6d:2d:20:9d:dc:d5:97:c8:b0:23:02:ff: ec:6c:31:ac:bc:eb:eb:ad:ad:08:36:a7:56:f9:8f:78:58:32: 1c:bc:b9:eb:79:04:57:0d:ce:d8:06:94:dd:c5:e7:4c:d4:6d: 27:04:9d:a3:f8:56:63:35:d2:49:a6:9f:7a:39:eb:a6:ac:de: 02:d8:e5:58:ab:23:2e:db:2a:71:14:36:d6:be:8d:9f:7d:ea: a5:33:80:75:6b:8b:7b:96:30:1e:ff:06:d0:3b:ad:6b:ff:7c: a9:e2:4c:62 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULAFtKHh285u59E4MeRHE9XV+0Q0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVBQkU4NkVCQjJBMDJDNTgzOTI3NDlBOTJGRUE2OEZC QUZDNUM0NjAeFw0yNjAxMTQwNzU3MzRaFw0yNzAxMTMwODAyMzRaMDMxMTAvBgNV BAMTKDU3OTI0REZCOTFDREJCQUMyNTk0QjY3RjgxNzM0MTFBNjlBMTQ5NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrKJjZTafp/hwG12Vr9MKgDrCq IiDDBePAGfrkyGkXACoxQDA5hhN2lniu8KxT59bgQhnKUO3e8tkzoqsVTq045yOn 0oeiwKDCxbeE5PfvqE4ev1IqdR37WUrq5O8WKXCe2d+LWo6OGqA2KInJaTueSP0L pvSBoNaa2uvj43s5AOm3MSErx5DSnBYX4ROGwesnrB0YxsZ8vAmroch2ZcvSRw/w 1f4ekjrCLbBGX3PKP8GOS4sjk5Lz/ciRzDFplVLKYmcQQk8OHXsiSPi3cGZh0CfW EthhW7bU3Xik05HPfetuP7zd0eVwyKa3nCha/ZmbPOd/bn/Y54BKGhXIhTC9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUV5JN+5HNu6wllLZ/gXNBGmmhSV0wHwYDVR0j BBgwFoAUtavobrsqAsWDknSakv6mj7r8XEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MGJkN2Q2Yy1lYTVhLTRjNDUtOTU1OC03MTc5OTRhYjY4MGUvMC9CNUFCRTg2RUJC MkEwMkM1ODM5Mjc0OUE5MkZFQTY4RkJBRkM1QzQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjVBQkU4NkVCQjJBMDJDNTgzOTI3NDlBOTJGRUE2OEZCQUZD NUM0Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwYmQ3ZDZjLWVhNWEtNGM0NS05 NTU4LTcxNzk5NGFiNjgwZS8wLzMxMzUzNzJlMzIzMDJlMzMzNjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzQzMDM0MzczMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZ0UJDANBgkqhkiG 9w0BAQsFAAOCAQEAl/l26U4/V2ts4t3qunXPbT4rFIEL7ohkHDj47kmJSLosaRdN t4hhvhL9ivgDzfitz3VWFZkkTMF5aFL1FdVWRBD8Mr3a8K0aUV9uoz1qETwTnfHj +RA7KyJLU7p5HCzcbeMDEqDSKijZ3sErpaw/vis+X192SjiY7zQrvt9SyfECiucg YbokH2gb2rrq68V3SF3rfbinbS0gndzVl8iwIwL/7GwxrLzr662tCDanVvmPeFgy HLy563kEVw3O2AaU3cXnTNRtJwSdo/hWYzXSSaafejnrpqzeAtjlWKsjLtsqcRQ2 1r6Nn33qpTOAdWuLe5YwHv8G0Duta/98qeJMYg== -----END CERTIFICATE-----Generated at Wed Jan 21 13:22:11 2026 by rpki-client