This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3235302e302f32342d3234203d3e20313333373938.roa File: 3230332e3132382e3235302e302f32342d3234203d3e20313333373938.roa (raw, json) Hash identifier: 6g0LKwYxR4myohd5ZVpOVLOjxvxrdcuURdPoBT1UkOA= Subject key identifier: B8:4A:4E:8D:AE:4B:17:FA:EB:09:95:BB:0E:93:12:03:67:A4:F5:4F Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 67FB3DC5A28EC8E5D2B9399320832E3312798A8A Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3235302e302f32342d3234203d3e20313333373938.roa Signing time: Wed 10 Dec 2025 04:02:33 +0000 ROA not before: Wed 10 Dec 2025 03:57:33 +0000 ROA not after: Wed 09 Dec 2026 04:02:33 +0000 asID: 133798 IP address blocks: 203.128.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 00:30:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:fb:3d:c5:a2:8e:c8:e5:d2:b9:39:93:20:83:2e:33:12:79:8a:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Dec 10 03:57:33 2025 GMT Not After : Dec 9 04:02:33 2026 GMT Subject: CN=B84A4E8DAE4B17FAEB0995BB0E93120367A4F54F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:71:be:49:77:f0:bc:60:d5:62:a0:0a:f3:55: f9:32:3b:40:39:b6:d3:75:4d:71:4b:d9:5a:a2:7b: ed:f2:00:4c:3e:d9:08:4d:55:72:80:33:a2:3c:6b: 21:f0:ae:2e:8c:cc:7d:d3:9f:62:3a:e2:5e:12:d7: e2:f0:e5:b6:ab:1b:84:79:d1:58:ae:41:ec:d4:d1: c6:13:23:6e:bd:f6:85:79:5b:0e:5b:1c:7d:14:c4: 35:95:d6:46:95:e8:d9:38:f7:b9:bc:cf:63:70:40: 26:63:1d:8c:4c:92:20:99:48:61:ce:57:42:26:aa: 7a:4f:14:2e:1a:5c:4c:fc:2a:cf:6b:17:95:f2:ff: 2e:e6:6a:3e:60:81:36:35:81:7b:a2:c0:76:ed:94: 8a:bd:0b:fb:6e:21:ee:71:9d:34:32:36:8a:11:ec: 71:f3:cd:62:27:af:df:7c:27:4d:8a:9c:02:d5:b5: 99:e3:b4:a5:b5:b1:e4:ef:aa:d0:ac:f6:7a:d4:d0: 75:96:d1:c3:fe:34:b2:1a:a2:64:bb:2b:16:35:e9: e5:16:73:51:2b:db:26:18:37:01:b3:1d:07:cf:82: 32:9f:48:fe:e9:26:fb:bf:d5:4d:b2:98:e3:2d:fa: f7:21:d0:2a:be:35:d2:46:83:f4:a0:68:39:65:9f: 47:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:4A:4E:8D:AE:4B:17:FA:EB:09:95:BB:0E:93:12:03:67:A4:F5:4F X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/3230332e3132382e3235302e302f32342d3234203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.128.250.0/24 Signature Algorithm: sha256WithRSAEncryption 08:3c:97:06:25:99:d5:3b:60:c1:30:de:b9:06:4e:f6:b9:aa: 1a:2d:a8:1b:be:5b:8b:4b:75:e0:2a:fe:f0:8f:62:05:49:b9: f2:00:73:b5:a3:ac:89:cd:9a:9d:3e:27:ef:ca:9a:1d:ac:d5: c3:19:c1:13:ab:cd:8a:a4:3a:d8:e5:19:ed:1e:3b:19:3b:20: 25:2c:6e:17:5c:c4:e7:07:30:95:04:c4:5d:cf:c7:cc:71:2b: 54:f2:ca:e5:c3:70:fa:22:a7:b5:c4:21:b7:4e:6e:ab:c1:22: 67:d5:ed:5d:79:dd:df:63:21:94:19:ce:9b:c7:65:2e:6b:18: 7c:f6:45:0c:1e:02:cd:06:6f:e5:e3:af:56:1a:03:ab:de:60: de:66:f4:68:69:f6:bd:b2:39:7c:0f:96:dd:8d:03:af:55:70: 61:75:85:84:15:00:0c:c6:0e:01:6c:c7:67:55:6e:89:00:5b: 16:0c:a6:71:88:9d:19:64:1e:61:41:6a:72:8e:53:13:2a:4c: d9:97:85:c3:e9:cc:54:90:04:80:a1:cb:b4:a7:49:5d:b7:bc: 4f:b9:7e:9e:f3:bf:8f:da:33:06:96:10:f0:d3:26:f3:6f:35: e5:96:ab:02:b6:c3:9e:96:b1:52:65:03:d5:51:25:b5:50:35: 50:01:11:ad -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZ/s9xaKOyOXSuTmTIIMuMxJ5ioowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTEyMTAwMzU3MzNaFw0yNjEyMDkwNDAyMzNaMDMxMTAvBgNV BAMTKEI4NEE0RThEQUU0QjE3RkFFQjA5OTVCQjBFOTMxMjAzNjdBNEY1NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCicb5Jd/C8YNVioArzVfkyO0A5 ttN1TXFL2Vqie+3yAEw+2QhNVXKAM6I8ayHwri6MzH3Tn2I64l4S1+Lw5barG4R5 0ViuQezU0cYTI2699oV5Ww5bHH0UxDWV1kaV6Nk497m8z2NwQCZjHYxMkiCZSGHO V0ImqnpPFC4aXEz8Ks9rF5Xy/y7maj5ggTY1gXuiwHbtlIq9C/tuIe5xnTQyNooR 7HHzzWInr998J02KnALVtZnjtKW1seTvqtCs9nrU0HWW0cP+NLIaomS7KxY16eUW c1Er2yYYNwGzHQfPgjKfSP7pJvu/1U2ymOMt+vch0Cq+NdJGg/SgaDlln0cXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUuEpOja5LF/rrCZW7DpMSA2ek9U8wHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzAzMzJlMzEzMjM4MmUzMjM1MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLgPowDQYJ KoZIhvcNAQELBQADggEBAAg8lwYlmdU7YMEw3rkGTva5qhotqBu+W4tLdeAq/vCP YgVJufIAc7WjrInNmp0+J+/Kmh2s1cMZwROrzYqkOtjlGe0eOxk7ICUsbhdcxOcH MJUExF3Px8xxK1TyyuXDcPoip7XEIbdObqvBImfV7V153d9jIZQZzpvHZS5rGHz2 RQweAs0Gb+Xjr1YaA6veYN5m9Ghp9r2yOXwPlt2NA69VcGF1hYQVAAzGDgFsx2dV bokAWxYMpnGInRlkHmFBanKOUxMqTNmXhcPpzFSQBIChy7SnSV23vE+5fp7zv4/a MwaWEPDTJvNvNeWWqwK2w56WsVJlA9VRJbVQNVABEa0= -----END CERTIFICATE-----Generated at Sat Dec 20 00:21:23 2025 by rpki-client