This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33362e302f32342d3234203d3e20313430343730.roa File: 3135372e32302e33362e302f32342d3234203d3e20313430343730.roa (raw, json) Hash identifier: WZyPn+mq0I+eE3vcXNaLpwRID4wqkE6/jQ3zY3AffcI= Subject key identifier: CC:36:15:D6:0E:B0:72:74:58:32:90:AD:C3:BF:7D:C9:52:DE:DE:3E Certificate issuer: /CN=B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46 Certificate serial: 1A5C4965A20F9C25005ADF40A5924DE4675212C6 Authority key identifier: B5:AB:E8:6E:BB:2A:02:C5:83:92:74:9A:92:FE:A6:8F:BA:FC:5C:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33362e302f32342d3234203d3e20313430343730.roa Signing time: Wed 14 Jan 2026 08:02:35 +0000 ROA not before: Wed 14 Jan 2026 07:57:35 +0000 ROA not after: Wed 13 Jan 2027 08:02:35 +0000 asID: 140470 IP address blocks: 157.20.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.crl rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 09:47:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:5c:49:65:a2:0f:9c:25:00:5a:df:40:a5:92:4d:e4:67:52:12:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46 Validity Not Before: Jan 14 07:57:35 2026 GMT Not After : Jan 13 08:02:35 2027 GMT Subject: CN=CC3615D60EB07274583290ADC3BF7DC952DEDE3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:93:fd:ac:e6:07:3f:7c:30:ac:b7:b3:a3:a8: 62:8c:03:81:99:5c:67:ba:74:c2:79:f8:9c:ac:8c: a4:39:45:cc:7e:01:0f:09:c8:27:1b:26:1b:ae:36: 36:53:94:2a:13:19:e7:18:78:7e:77:d1:4e:70:10: fe:2f:6a:24:7b:fc:cf:8a:c0:49:0b:51:d7:74:0f: 31:d9:b5:f5:d6:d8:35:98:f0:aa:16:e5:1d:52:ec: b1:80:40:24:e1:6f:94:20:43:44:c6:fa:21:d4:ac: 09:18:f9:76:d0:ef:85:b5:ed:07:05:88:56:76:a7: 18:97:91:d3:dc:64:74:ab:48:9c:48:5c:06:be:c2: 99:79:a1:09:2c:90:0a:9f:44:5e:cf:fc:01:9e:f3: 70:77:b6:5b:47:e7:6c:63:98:17:86:09:23:3b:e4: 9b:44:dc:97:c9:eb:a4:fc:96:be:5f:db:b2:87:4d: 37:f4:45:57:06:20:77:21:b8:af:2d:4d:ca:da:7a: f1:01:15:89:9d:3d:84:c4:4c:0b:af:fd:a9:14:5b: 9b:97:6b:24:c9:d2:75:b1:62:f9:86:f4:7c:d3:1f: 03:74:6a:51:51:b7:b7:4f:ce:15:77:92:4f:dd:4b: f1:80:e4:87:cb:bf:b8:b6:11:4d:d8:5e:b6:06:74: 0a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:36:15:D6:0E:B0:72:74:58:32:90:AD:C3:BF:7D:C9:52:DE:DE:3E X509v3 Authority Key Identifier: keyid:B5:AB:E8:6E:BB:2A:02:C5:83:92:74:9A:92:FE:A6:8F:BA:FC:5C:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33362e302f32342d3234203d3e20313430343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.36.0/24 Signature Algorithm: sha256WithRSAEncryption c3:4c:8b:37:33:9d:31:a0:9e:c2:e6:03:3d:64:68:13:09:e9: be:71:ba:d4:3a:76:11:bf:38:d4:97:73:32:2f:19:25:68:06: 9e:ba:22:f7:70:89:4c:e4:28:a0:de:aa:30:07:8f:e8:d0:5c: eb:2c:20:8f:4e:ac:99:55:39:53:98:81:2a:66:09:2f:6c:1c: fe:8b:66:d0:98:50:26:44:b5:75:8b:13:48:8a:09:e4:35:ef: f2:cb:9e:3c:43:62:3e:be:c4:f3:95:62:3c:19:c6:4a:fe:f0: 9d:83:b7:7a:0d:ef:c4:b5:55:4f:6e:38:61:40:4b:6c:31:2d: ef:94:4a:a3:f3:a7:69:a9:10:1b:ae:a0:70:96:fc:31:1a:80: dc:7d:13:f8:1e:10:13:5f:12:ca:40:2c:47:5d:f1:3a:dc:d9: e0:8d:e8:e7:fc:82:b5:38:06:e6:3d:eb:db:18:bd:25:22:cf: 23:ac:ef:41:a0:22:b9:c4:c2:51:d2:10:01:ff:3a:2f:ab:a4: 97:da:be:26:2d:e7:f4:5e:ff:7f:27:95:d6:6a:83:44:ef:37: 20:22:8d:62:3e:7e:5f:6c:d2:fb:1d:6c:59:6a:f9:bd:76:e2: 66:1c:a6:b1:af:ab:b9:8c:83:b2:12:e2:79:ca:fc:5a:ec:ef: 66:77:a9:18 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGlxJZaIPnCUAWt9ApZJN5GdSEsYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVBQkU4NkVCQjJBMDJDNTgzOTI3NDlBOTJGRUE2OEZC QUZDNUM0NjAeFw0yNjAxMTQwNzU3MzVaFw0yNzAxMTMwODAyMzVaMDMxMTAvBgNV BAMTKENDMzYxNUQ2MEVCMDcyNzQ1ODMyOTBBREMzQkY3REM5NTJERURFM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/k/2s5gc/fDCst7OjqGKMA4GZ XGe6dMJ5+JysjKQ5Rcx+AQ8JyCcbJhuuNjZTlCoTGecYeH530U5wEP4vaiR7/M+K wEkLUdd0DzHZtfXW2DWY8KoW5R1S7LGAQCThb5QgQ0TG+iHUrAkY+XbQ74W17QcF iFZ2pxiXkdPcZHSrSJxIXAa+wpl5oQkskAqfRF7P/AGe83B3tltH52xjmBeGCSM7 5JtE3JfJ66T8lr5f27KHTTf0RVcGIHchuK8tTcraevEBFYmdPYTETAuv/akUW5uX ayTJ0nWxYvmG9HzTHwN0alFRt7dPzhV3kk/dS/GA5IfLv7i2EU3YXrYGdAq7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzDYV1g6wcnRYMpCtw799yVLe3j4wHwYDVR0j BBgwFoAUtavobrsqAsWDknSakv6mj7r8XEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MGJkN2Q2Yy1lYTVhLTRjNDUtOTU1OC03MTc5OTRhYjY4MGUvMC9CNUFCRTg2RUJC MkEwMkM1ODM5Mjc0OUE5MkZFQTY4RkJBRkM1QzQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjVBQkU4NkVCQjJBMDJDNTgzOTI3NDlBOTJGRUE2OEZCQUZD NUM0Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwYmQ3ZDZjLWVhNWEtNGM0NS05 NTU4LTcxNzk5NGFiNjgwZS8wLzMxMzUzNzJlMzIzMDJlMzMzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDM0MzczMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0UJDANBgkqhkiG 9w0BAQsFAAOCAQEAw0yLNzOdMaCewuYDPWRoEwnpvnG61Dp2Eb841JdzMi8ZJWgG nroi93CJTOQooN6qMAeP6NBc6ywgj06smVU5U5iBKmYJL2wc/otm0JhQJkS1dYsT SIoJ5DXv8suePENiPr7E85ViPBnGSv7wnYO3eg3vxLVVT244YUBLbDEt75RKo/On aakQG66gcJb8MRqA3H0T+B4QE18SykAsR13xOtzZ4I3o5/yCtTgG5j3r2xi9JSLP I6zvQaAiucTCUdIQAf86L6ukl9q+Ji3n9F7/fyeV1mqDRO83ICKNYj5+X2zS+x1s WWr5vXbiZhymsa+ruYyDshLiecr8WuzvZnepGA== -----END CERTIFICATE-----Generated at Wed Jan 21 13:23:26 2026 by rpki-client