This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/3135372e36362e3233392e302f32342d3234203d3e20313532373538.roa File: 3135372e36362e3233392e302f32342d3234203d3e20313532373538.roa (raw, json) Hash identifier: M0X+RxU47itayQ/XNChUFKjZL2Z8BgvfCZ6jiqN1z0I= Subject key identifier: AF:25:70:8A:BA:FA:CD:AD:D2:14:97:A1:CE:85:79:46:06:88:60:5F Certificate issuer: /CN=9B2DB6A80E8A5860943D5E249BCF6F2C47D48549 Certificate serial: 0183CF01BFCD64368B7C343F474A37134A58D592 Authority key identifier: 9B:2D:B6:A8:0E:8A:58:60:94:3D:5E:24:9B:CF:6F:2C:47:D4:85:49 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9B2DB6A80E8A5860943D5E249BCF6F2C47D48549.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/3135372e36362e3233392e302f32342d3234203d3e20313532373538.roa Signing time: Tue 21 Oct 2025 13:00:02 +0000 ROA not before: Tue 21 Oct 2025 12:55:02 +0000 ROA not after: Tue 20 Oct 2026 13:00:02 +0000 asID: 152758 IP address blocks: 157.66.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/9B2DB6A80E8A5860943D5E249BCF6F2C47D48549.crl rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/9B2DB6A80E8A5860943D5E249BCF6F2C47D48549.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9B2DB6A80E8A5860943D5E249BCF6F2C47D48549.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 02:08:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:83:cf:01:bf:cd:64:36:8b:7c:34:3f:47:4a:37:13:4a:58:d5:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B2DB6A80E8A5860943D5E249BCF6F2C47D48549 Validity Not Before: Oct 21 12:55:02 2025 GMT Not After : Oct 20 13:00:02 2026 GMT Subject: CN=AF25708ABAFACDADD21497A1CE8579460688605F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ee:73:0c:79:82:a7:ef:d8:43:a0:c5:37:28: c1:bf:24:57:51:0e:4e:29:c6:3e:18:2c:86:f0:49: 51:b2:24:6f:8b:2d:c3:9f:ae:b9:6c:5d:8c:3e:62: e6:b8:1b:14:3f:f6:52:84:8c:b0:e8:2c:41:91:23: 40:cd:99:54:1f:7d:d0:23:4d:1c:35:ab:4d:5f:6f: e2:08:37:49:57:dc:ee:d2:1f:52:18:dc:34:ac:0d: 1e:aa:78:a8:69:0d:76:7c:e2:e2:8d:1f:50:c4:4b: 1a:26:c9:2c:c8:a7:78:97:9c:ff:9b:a4:f2:85:31: b5:76:7a:d0:56:cf:41:76:bd:a7:4a:d7:c4:3c:0c: f4:6d:dd:9e:a0:73:bd:61:26:a2:44:84:f5:8c:50: 51:b6:b4:f8:86:b4:c0:7b:99:a0:a0:df:9d:27:d9: ac:c1:3c:b4:e4:78:48:2b:dd:00:ba:ba:b4:cf:93: 72:17:e7:ee:fd:d5:5b:a0:f5:ad:ed:af:13:54:fb: 70:c3:09:5a:72:27:9e:91:d4:00:32:f6:2e:1b:f6: bf:37:31:2a:df:c7:09:d1:2a:02:45:5a:e0:78:c3: 3e:bf:ca:1d:9c:47:7c:00:17:1c:c5:2e:7b:d6:ff: b7:74:8d:a3:92:3a:94:66:ac:ae:aa:4a:5f:f9:47: 3f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:25:70:8A:BA:FA:CD:AD:D2:14:97:A1:CE:85:79:46:06:88:60:5F X509v3 Authority Key Identifier: keyid:9B:2D:B6:A8:0E:8A:58:60:94:3D:5E:24:9B:CF:6F:2C:47:D4:85:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/9B2DB6A80E8A5860943D5E249BCF6F2C47D48549.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9B2DB6A80E8A5860943D5E249BCF6F2C47D48549.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/0/3135372e36362e3233392e302f32342d3234203d3e20313532373538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.239.0/24 Signature Algorithm: sha256WithRSAEncryption dd:2c:2c:89:ed:4f:24:1c:71:1e:a9:6a:bf:a2:03:82:b7:8c: ff:6b:b5:00:04:15:ed:00:89:e4:f9:19:b4:be:c3:a8:3e:5c: 37:67:ba:c8:37:c2:b2:a7:83:2e:a6:74:5f:aa:ee:15:af:c9: 2a:d4:e8:99:98:4d:a6:06:52:30:da:54:34:21:6b:77:88:25: dc:c6:5a:36:d6:73:e6:b7:91:18:e5:f3:09:ec:b7:4e:5d:b2: 1d:90:d4:8c:c8:f5:b0:ee:55:95:17:2e:8f:07:73:85:9e:d3: 22:09:0f:bf:e1:f2:46:6b:76:5a:72:56:1b:ce:77:76:e2:7e: 32:a5:a3:59:a0:18:2c:b3:90:6c:1f:84:a5:2b:fe:70:36:80: ad:fa:e9:4d:20:0d:3f:4c:3e:07:de:c5:13:38:f7:16:10:e6: e2:ec:68:90:8f:24:76:36:1f:5d:b9:6d:2a:68:c2:77:80:a5: 41:bd:5f:58:d4:60:06:55:4c:3c:29:91:58:9c:a2:ff:bd:87: d3:1a:af:3d:20:d6:ab:a1:6f:74:2d:45:e2:9e:25:ea:3a:7e: cf:95:05:91:21:f4:ef:75:ce:8c:b1:bb:3f:b1:e1:96:07:dc: e5:ac:c8:fc:b8:d6:b6:a1:9d:63:28:2d:3e:46:e2:96:63:59: 31:99:df:1c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAYPPAb/NZDaLfDQ/R0o3E0pY1ZIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIyREI2QTgwRThBNTg2MDk0M0Q1RTI0OUJDRjZGMkM0 N0Q0ODU0OTAeFw0yNTEwMjExMjU1MDJaFw0yNjEwMjAxMzAwMDJaMDMxMTAvBgNV BAMTKEFGMjU3MDhBQkFGQUNEQUREMjE0OTdBMUNFODU3OTQ2MDY4ODYwNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF7nMMeYKn79hDoMU3KMG/JFdR Dk4pxj4YLIbwSVGyJG+LLcOfrrlsXYw+Yua4GxQ/9lKEjLDoLEGRI0DNmVQffdAj TRw1q01fb+IIN0lX3O7SH1IY3DSsDR6qeKhpDXZ84uKNH1DESxomySzIp3iXnP+b pPKFMbV2etBWz0F2vadK18Q8DPRt3Z6gc71hJqJEhPWMUFG2tPiGtMB7maCg350n 2azBPLTkeEgr3QC6urTPk3IX5+791Vug9a3trxNU+3DDCVpyJ56R1AAy9i4b9r83 MSrfxwnRKgJFWuB4wz6/yh2cR3wAFxzFLnvW/7d0jaOSOpRmrK6qSl/5Rz+fAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUryVwirr6za3SFJehzoV5RgaIYF8wHwYDVR0j BBgwFoAUmy22qA6KWGCUPV4km89vLEfUhUkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k N2RkMjUxOS0zMDc4LTQ3ZDMtOWU4Ni00OGZkM2JkZTc2YzgvMC85QjJEQjZBODBF OEE1ODYwOTQzRDVFMjQ5QkNGNkYyQzQ3RDQ4NTQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUIyREI2QTgwRThBNTg2MDk0M0Q1RTI0OUJDRjZGMkM0N0Q0 ODU0OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3ZGQyNTE5LTMwNzgtNDdkMy05 ZTg2LTQ4ZmQzYmRlNzZjOC8wLzMxMzUzNzJlMzYzNjJlMzIzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzczNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnULvMA0GCSqG SIb3DQEBCwUAA4IBAQDdLCyJ7U8kHHEeqWq/ogOCt4z/a7UABBXtAInk+Rm0vsOo Plw3Z7rIN8Kyp4MupnRfqu4Vr8kq1OiZmE2mBlIw2lQ0IWt3iCXcxlo21nPmt5EY 5fMJ7LdOXbIdkNSMyPWw7lWVFy6PB3OFntMiCQ+/4fJGa3ZaclYbznd24n4ypaNZ oBgss5BsH4SlK/5wNoCt+ulNIA0/TD4H3sUTOPcWEObi7GiQjyR2Nh9duW0qaMJ3 gKVBvV9Y1GAGVUw8KZFYnKL/vYfTGq89INaroW90LUXiniXqOn7PlQWRIfTvdc6M sbs/seGWB9zlrMj8uNa2oZ1jKC0+RuKWY1kxmd8c -----END CERTIFICATE-----Generated at Wed Dec 3 16:14:55 2025 by rpki-client