This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33372e302f32342d3234203d3e20313430343730.roa File: 3135372e32302e33372e302f32342d3234203d3e20313430343730.roa (raw, json) Hash identifier: cFu5nteBBzan5faf9I4u2CSs1idRr42+5NP3IOF4DXY= Subject key identifier: 6C:9E:6B:EF:46:44:F4:75:2B:1E:4F:FA:9A:7F:C4:01:B7:EA:14:11 Certificate issuer: /CN=B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46 Certificate serial: 33403E771D58EFB69E2C341B6A56AA2E355D0BDD Authority key identifier: B5:AB:E8:6E:BB:2A:02:C5:83:92:74:9A:92:FE:A6:8F:BA:FC:5C:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33372e302f32342d3234203d3e20313430343730.roa Signing time: Wed 14 Jan 2026 08:02:34 +0000 ROA not before: Wed 14 Jan 2026 07:57:34 +0000 ROA not after: Wed 13 Jan 2027 08:02:34 +0000 asID: 140470 IP address blocks: 157.20.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.crl rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 09:47:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:40:3e:77:1d:58:ef:b6:9e:2c:34:1b:6a:56:aa:2e:35:5d:0b:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46 Validity Not Before: Jan 14 07:57:34 2026 GMT Not After : Jan 13 08:02:34 2027 GMT Subject: CN=6C9E6BEF4644F4752B1E4FFA9A7FC401B7EA1411 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f3:51:f7:32:2a:51:5b:9b:2f:29:62:f5:06: 49:1d:5f:ff:4c:26:bd:c8:c5:e3:60:54:2f:48:63: 7b:e9:8a:20:bf:90:ba:69:c6:ed:62:04:d0:3a:40: 89:cc:05:cc:53:b7:21:36:3b:7c:7a:cb:d6:e5:e5: 6e:00:0d:9c:aa:5b:50:45:aa:f2:51:ce:3f:c1:25: ec:42:11:70:0f:4d:62:e4:dd:11:42:46:1a:dc:3a: f2:76:be:c5:65:5a:45:2f:5c:5c:86:3c:4e:2c:e4: 04:63:aa:c8:3a:03:b2:a5:8e:05:ad:b2:0e:64:cc: 67:4a:ed:ba:d0:70:42:db:3b:14:2a:2d:8f:ba:df: 65:87:41:b0:84:46:d4:ee:82:40:59:a7:fe:e2:20: 5b:c6:89:7a:35:df:1d:8b:dc:fa:0b:82:a1:b9:a7: f8:1b:66:0b:df:21:09:0b:61:32:25:23:ca:0b:87: f7:21:28:f2:1a:1d:53:48:de:6c:ad:fa:af:be:59: 5d:cd:6a:44:d6:1f:29:68:ba:98:6a:75:3e:09:11: ab:50:26:58:73:5f:6f:17:c1:a4:ec:47:83:ae:25: 0a:2a:20:9a:66:0f:79:26:59:fd:b0:0d:20:5e:a8: 00:c1:5c:78:0e:11:a1:86:ce:bb:df:fe:10:2e:e1: d8:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:9E:6B:EF:46:44:F4:75:2B:1E:4F:FA:9A:7F:C4:01:B7:EA:14:11 X509v3 Authority Key Identifier: keyid:B5:AB:E8:6E:BB:2A:02:C5:83:92:74:9A:92:FE:A6:8F:BA:FC:5C:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/B5ABE86EBB2A02C58392749A92FEA68FBAFC5C46.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b0bd7d6c-ea5a-4c45-9558-717994ab680e/0/3135372e32302e33372e302f32342d3234203d3e20313430343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.37.0/24 Signature Algorithm: sha256WithRSAEncryption 25:5c:64:24:05:6d:0f:c2:22:b7:b9:db:bd:d2:ea:46:e0:dc: 8f:85:c9:7d:dd:83:a3:70:09:c1:f0:8b:97:54:8c:e2:b4:76: 97:29:07:28:0d:d1:0b:c7:03:eb:ae:e1:ad:54:e8:20:56:b3: 87:19:cd:23:50:2f:7b:f8:e8:d1:a0:23:35:1a:b9:6c:63:5a: 1c:0e:27:c3:47:49:50:6f:b3:ee:0f:f5:fe:1e:58:b3:c9:ce: 48:4e:0a:2b:a4:3a:64:26:92:8d:e8:6a:5f:b3:f6:b1:47:0a: 8f:f3:04:17:35:dd:6f:43:68:c0:c3:92:b5:dd:25:0f:5e:dd: 71:d5:2b:8d:51:64:78:62:96:e5:6e:c5:37:03:3f:fd:19:59: 91:7d:be:88:bc:67:39:9d:f8:00:82:aa:4e:d1:69:82:0a:43: 17:6d:af:75:52:74:1f:9d:3c:50:ca:bd:19:5a:7e:98:e7:56: 7f:ab:8b:1e:4a:88:75:1e:59:e3:d9:53:27:fa:5a:03:49:cb: 3d:c3:6a:de:1e:d1:23:fd:5b:88:a3:0b:51:0d:bf:88:3c:f8: c0:a6:73:b4:c5:81:95:b9:08:37:27:5f:9f:32:76:53:6a:01: 3d:7b:aa:fd:67:24:13:f1:43:b4:f2:78:c3:c5:df:b0:4c:b6: 18:f4:ac:dd -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUM0A+dx1Y77aeLDQbalaqLjVdC90wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVBQkU4NkVCQjJBMDJDNTgzOTI3NDlBOTJGRUE2OEZC QUZDNUM0NjAeFw0yNjAxMTQwNzU3MzRaFw0yNzAxMTMwODAyMzRaMDMxMTAvBgNV BAMTKDZDOUU2QkVGNDY0NEY0NzUyQjFFNEZGQTlBN0ZDNDAxQjdFQTE0MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA81H3MipRW5svKWL1BkkdX/9M Jr3IxeNgVC9IY3vpiiC/kLppxu1iBNA6QInMBcxTtyE2O3x6y9bl5W4ADZyqW1BF qvJRzj/BJexCEXAPTWLk3RFCRhrcOvJ2vsVlWkUvXFyGPE4s5ARjqsg6A7KljgWt sg5kzGdK7brQcELbOxQqLY+632WHQbCERtTugkBZp/7iIFvGiXo13x2L3PoLgqG5 p/gbZgvfIQkLYTIlI8oLh/chKPIaHVNI3myt+q++WV3NakTWHylouphqdT4JEatQ JlhzX28XwaTsR4OuJQoqIJpmD3kmWf2wDSBeqADBXHgOEaGGzrvf/hAu4difAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUbJ5r70ZE9HUrHk/6mn/EAbfqFBEwHwYDVR0j BBgwFoAUtavobrsqAsWDknSakv6mj7r8XEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MGJkN2Q2Yy1lYTVhLTRjNDUtOTU1OC03MTc5OTRhYjY4MGUvMC9CNUFCRTg2RUJC MkEwMkM1ODM5Mjc0OUE5MkZFQTY4RkJBRkM1QzQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQjVBQkU4NkVCQjJBMDJDNTgzOTI3NDlBOTJGRUE2OEZCQUZD NUM0Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwYmQ3ZDZjLWVhNWEtNGM0NS05 NTU4LTcxNzk5NGFiNjgwZS8wLzMxMzUzNzJlMzIzMDJlMzMzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDM0MzczMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0UJTANBgkqhkiG 9w0BAQsFAAOCAQEAJVxkJAVtD8Iit7nbvdLqRuDcj4XJfd2Do3AJwfCLl1SM4rR2 lykHKA3RC8cD667hrVToIFazhxnNI1Ave/jo0aAjNRq5bGNaHA4nw0dJUG+z7g/1 /h5Ys8nOSE4KK6Q6ZCaSjehqX7P2sUcKj/MEFzXdb0NowMOStd0lD17dcdUrjVFk eGKW5W7FNwM//RlZkX2+iLxnOZ34AIKqTtFpggpDF22vdVJ0H508UMq9GVp+mOdW f6uLHkqIdR5Z49lTJ/paA0nLPcNq3h7RI/1biKMLUQ2/iDz4wKZztMWBlbkINydf nzJ2U2oBPXuq/WckE/FDtPJ4w8XfsEy2GPSs3Q== -----END CERTIFICATE-----Generated at Wed Jan 21 13:22:33 2026 by rpki-client