This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/d9053d96-da17-4099-b707-da0eb2bf07bc/0/3230332e33342e3131382e302f32342d3234203d3e203338373735.roa File: 3230332e33342e3131382e302f32342d3234203d3e203338373735.roa (raw, json) Hash identifier: kAUCvMM7pyFIINYLsBDohcRiHbLYQPvnmOScjw/sM+w= Subject key identifier: 59:7F:C5:34:B5:F3:0D:22:7D:65:31:CD:FC:A1:AB:A5:00:0D:80:FB Certificate issuer: /CN=A7422B678A17489054C0697D44A3B19EB9F67509 Certificate serial: 338D658529E21DB38014F491913425F64E404441 Authority key identifier: A7:42:2B:67:8A:17:48:90:54:C0:69:7D:44:A3:B1:9E:B9:F6:75:09 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A7422B678A17489054C0697D44A3B19EB9F67509.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d9053d96-da17-4099-b707-da0eb2bf07bc/0/3230332e33342e3131382e302f32342d3234203d3e203338373735.roa Signing time: Mon 02 Jun 2025 02:04:04 +0000 ROA not before: Mon 02 Jun 2025 01:59:04 +0000 ROA not after: Mon 01 Jun 2026 02:04:04 +0000 asID: 38775 IP address blocks: 203.34.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d9053d96-da17-4099-b707-da0eb2bf07bc/0/A7422B678A17489054C0697D44A3B19EB9F67509.crl rsync://repo-rpki.idnic.net/repo/d9053d96-da17-4099-b707-da0eb2bf07bc/0/A7422B678A17489054C0697D44A3B19EB9F67509.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A7422B678A17489054C0697D44A3B19EB9F67509.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 04:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:8d:65:85:29:e2:1d:b3:80:14:f4:91:91:34:25:f6:4e:40:44:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7422B678A17489054C0697D44A3B19EB9F67509 Validity Not Before: Jun 2 01:59:04 2025 GMT Not After : Jun 1 02:04:04 2026 GMT Subject: CN=597FC534B5F30D227D6531CDFCA1ABA5000D80FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:a0:83:d4:ee:37:73:fc:62:72:61:aa:b3:04: 27:90:86:bb:80:da:d8:a1:a9:a2:59:da:92:12:b2: 37:14:b5:18:75:0e:31:b9:d8:ed:c3:1b:d3:39:78: d5:13:7e:de:fa:8d:d2:c6:cb:64:82:30:dc:9e:2a: fc:1f:57:77:96:31:f9:65:e6:2b:d3:8a:51:0e:13: a3:70:be:67:0b:3e:4b:3b:d8:b2:3e:f5:00:ae:a4: ab:32:2d:68:d4:f4:79:54:f7:fa:50:0b:78:24:35: 65:af:2b:47:be:37:4b:54:af:f2:13:48:7a:29:16: c1:8c:a6:36:0a:ba:55:b5:2d:0a:68:cb:5a:46:7b: b0:bf:b5:93:15:69:b9:47:a1:59:3f:8e:67:11:93: 3f:5d:92:8b:74:4d:72:d2:24:1f:91:83:90:68:74: 6e:51:18:bb:af:cc:b6:67:5e:1b:bf:74:ef:b9:a2: 36:15:a4:b5:5d:96:25:56:73:a2:72:a8:9a:60:3e: 6a:43:2b:e7:01:5d:e5:db:e9:9b:10:8d:53:69:89: 27:c7:d8:b5:c0:23:92:22:fd:fe:b3:fb:a6:0e:e3: 6f:bd:59:39:f8:db:12:48:e6:77:82:f1:b5:4d:74: 43:3a:35:4e:a8:dc:da:fb:ea:c1:5e:4b:af:af:a2: bd:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:7F:C5:34:B5:F3:0D:22:7D:65:31:CD:FC:A1:AB:A5:00:0D:80:FB X509v3 Authority Key Identifier: keyid:A7:42:2B:67:8A:17:48:90:54:C0:69:7D:44:A3:B1:9E:B9:F6:75:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d9053d96-da17-4099-b707-da0eb2bf07bc/0/A7422B678A17489054C0697D44A3B19EB9F67509.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A7422B678A17489054C0697D44A3B19EB9F67509.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d9053d96-da17-4099-b707-da0eb2bf07bc/0/3230332e33342e3131382e302f32342d3234203d3e203338373735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.34.118.0/24 Signature Algorithm: sha256WithRSAEncryption 19:9d:45:73:d5:d6:60:7f:39:a6:c9:c2:59:8a:7a:a7:ad:83: 03:a1:bb:f9:2e:70:93:34:b2:fd:07:88:97:fd:73:f1:71:2e: 2f:9a:99:c4:a1:16:99:5d:5e:a0:04:e5:02:27:fd:40:7e:0f: 03:33:5b:fa:ed:9a:0e:f4:05:83:57:2e:17:16:e1:a9:44:73: ef:95:bd:a0:3d:6e:51:06:8d:06:7f:a6:6e:32:ae:00:85:c5: 7b:ec:6d:49:f9:35:e3:27:88:58:fc:ed:88:6d:50:18:79:30: 5a:f1:94:e8:04:8b:ae:d8:1b:01:cd:72:0d:f3:2d:09:42:13: b7:8b:a6:cf:34:ae:c5:43:6d:70:ae:ca:33:d2:3d:e5:17:eb: db:78:22:50:e4:68:ba:3e:1c:ea:fc:55:9f:0f:d0:1d:2e:4a: 00:b8:67:91:73:b9:f5:d0:49:a4:ee:63:e3:9b:5b:6f:15:02: 5f:b3:da:73:97:80:07:0d:a6:82:dd:7b:cd:18:f3:8b:03:a1: 53:3e:ad:75:c4:e3:e4:fd:9f:d8:b2:d0:81:3e:cd:5c:b4:21: 4a:00:28:f6:d4:64:fd:80:6e:f8:01:f8:c1:b2:58:10:9d:b9: 97:5b:37:2d:5d:11:ba:9d:24:5e:67:d3:b6:52:b1:14:04:a1: f8:fe:39:f8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUM41lhSniHbOAFPSRkTQl9k5AREEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTc0MjJCNjc4QTE3NDg5MDU0QzA2OTdENDRBM0IxOUVC OUY2NzUwOTAeFw0yNTA2MDIwMTU5MDRaFw0yNjA2MDEwMjA0MDRaMDMxMTAvBgNV BAMTKDU5N0ZDNTM0QjVGMzBEMjI3RDY1MzFDREZDQTFBQkE1MDAwRDgwRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDloIPU7jdz/GJyYaqzBCeQhruA 2tihqaJZ2pISsjcUtRh1DjG52O3DG9M5eNUTft76jdLGy2SCMNyeKvwfV3eWMfll 5ivTilEOE6NwvmcLPks72LI+9QCupKsyLWjU9HlU9/pQC3gkNWWvK0e+N0tUr/IT SHopFsGMpjYKulW1LQpoy1pGe7C/tZMVablHoVk/jmcRkz9dkot0TXLSJB+Rg5Bo dG5RGLuvzLZnXhu/dO+5ojYVpLVdliVWc6JyqJpgPmpDK+cBXeXb6ZsQjVNpiSfH 2LXAI5Ii/f6z+6YO42+9WTn42xJI5neC8bVNdEM6NU6o3Nr76sFeS6+vor3pAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUWX/FNLXzDSJ9ZTHN/KGrpQANgPswHwYDVR0j BBgwFoAUp0IrZ4oXSJBUwGl9RKOxnrn2dQkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OTA1M2Q5Ni1kYTE3LTQwOTktYjcwNy1kYTBlYjJiZjA3YmMvMC9BNzQyMkI2NzhB MTc0ODkwNTRDMDY5N0Q0NEEzQjE5RUI5RjY3NTA5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTc0MjJCNjc4QTE3NDg5MDU0QzA2OTdENDRBM0IxOUVCOUY2 NzUwOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5MDUzZDk2LWRhMTctNDA5OS1i NzA3LWRhMGViMmJmMDdiYy8wLzMyMzAzMzJlMzMzNDJlMzEzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM3MzczNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMsidjANBgkqhkiG 9w0BAQsFAAOCAQEAGZ1Fc9XWYH85psnCWYp6p62DA6G7+S5wkzSy/QeIl/1z8XEu L5qZxKEWmV1eoATlAif9QH4PAzNb+u2aDvQFg1cuFxbhqURz75W9oD1uUQaNBn+m bjKuAIXFe+xtSfk14yeIWPztiG1QGHkwWvGU6ASLrtgbAc1yDfMtCUITt4umzzSu xUNtcK7KM9I95Rfr23giUORouj4c6vxVnw/QHS5KALhnkXO59dBJpO5j45tbbxUC X7Pac5eABw2mgt17zRjziwOhUz6tdcTj5P2f2LLQgT7NXLQhSgAo9tRk/YBu+AH4 wbJYEJ25l1s3LV0Rup0kXmfTtlKxFASh+P45+A== -----END CERTIFICATE-----Generated at Wed Dec 3 15:50:41 2025 by rpki-client