This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/3230322e382e32392e302f32342d3234203d3e203435373234.roa File: 3230322e382e32392e302f32342d3234203d3e203435373234.roa (raw, json) Hash identifier: vTpKFtEuSQzd7i6WWufB9z0/u+k/lMjz3IOnInep2vs= Subject key identifier: 75:4D:A0:5F:96:00:3B:E7:68:1A:B3:AD:FB:5A:25:E6:D9:EA:40:B4 Certificate issuer: /CN=371967DFBD203A2FD44E88F786D9F0F0C88E4BA9 Certificate serial: 7A6251D0A0250FB7FC3C4CF7EFA8AF7A2D2FE0A2 Authority key identifier: 37:19:67:DF:BD:20:3A:2F:D4:4E:88:F7:86:D9:F0:F0:C8:8E:4B:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/3230322e382e32392e302f32342d3234203d3e203435373234.roa Signing time: Sun 09 Nov 2025 15:00:00 +0000 ROA not before: Sun 09 Nov 2025 14:55:00 +0000 ROA not after: Sun 08 Nov 2026 15:00:00 +0000 asID: 45724 IP address blocks: 202.8.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.crl rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 14:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:62:51:d0:a0:25:0f:b7:fc:3c:4c:f7:ef:a8:af:7a:2d:2f:e0:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=371967DFBD203A2FD44E88F786D9F0F0C88E4BA9 Validity Not Before: Nov 9 14:55:00 2025 GMT Not After : Nov 8 15:00:00 2026 GMT Subject: CN=754DA05F96003BE7681AB3ADFB5A25E6D9EA40B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:31:46:5a:b5:91:f4:9e:ba:1d:48:52:fd:61: f5:ae:60:0a:92:27:0d:ed:9e:a8:7e:31:38:34:05: 29:ff:bf:91:7d:14:ee:4e:30:99:42:34:f5:8c:4f: 17:9b:f8:20:c2:da:1a:31:9f:e6:64:f5:d9:20:11: 5a:79:03:ee:96:9b:0f:5c:30:fc:1b:e6:b9:cb:bb: 70:e5:db:dc:d5:98:02:b9:c8:17:b0:c7:49:1c:a1: e0:a7:3c:a2:89:85:8a:1d:52:b4:01:db:e2:77:99: 40:11:1e:b9:db:93:a8:f9:22:5f:1d:83:21:c9:1c: fb:70:57:a1:31:46:e7:54:a0:87:12:e4:19:1b:df: 63:ca:e7:e9:8e:8a:ed:9b:eb:65:0f:dd:6c:65:bf: 9d:16:c0:ef:72:02:37:7c:c9:db:c2:24:95:ce:f8: 9e:d3:bc:28:ee:90:92:05:52:f9:4f:26:ac:45:aa: 5a:5f:6f:e0:1e:d1:bd:47:66:11:97:2e:c5:e2:6b: 68:d7:ec:b7:15:05:a8:bd:fa:eb:a1:25:de:df:48: 75:d6:85:ae:40:ad:2c:fd:10:11:5b:bf:12:12:ab: a5:0a:bc:c4:48:df:db:03:52:f5:5f:f0:2e:10:b2: 7b:5e:d3:c3:1e:be:a0:3a:09:e3:47:fc:6f:c3:ca: e4:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:4D:A0:5F:96:00:3B:E7:68:1A:B3:AD:FB:5A:25:E6:D9:EA:40:B4 X509v3 Authority Key Identifier: keyid:37:19:67:DF:BD:20:3A:2F:D4:4E:88:F7:86:D9:F0:F0:C8:8E:4B:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/371967DFBD203A2FD44E88F786D9F0F0C88E4BA9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/deb8b889-3b3d-4ef5-ad70-5b1045eff393/0/3230322e382e32392e302f32342d3234203d3e203435373234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.8.29.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:9c:5f:8e:9c:bd:1d:b3:09:80:0c:86:a9:db:4c:61:4e:52: c4:e3:a2:ce:34:68:fb:2a:ef:6f:86:f0:5a:62:1a:e9:60:41: ce:30:98:62:3a:09:fc:29:42:6e:55:a9:26:d3:c6:a8:7b:bc: 73:03:ca:39:ba:02:fc:ff:8e:84:e0:13:38:80:8e:9d:29:b2: c8:9e:28:eb:e9:82:34:8b:f2:76:ae:5f:b0:4a:63:b4:12:3d: b3:b1:33:d3:96:a8:54:ec:f7:b4:02:f7:bd:17:cc:1e:a7:67: 84:75:0c:af:a8:9d:c6:10:18:4f:2e:c2:53:83:e8:04:0e:fb: 80:de:cf:b7:5b:37:6d:d4:25:f2:53:93:a7:5c:bb:ba:6f:fd: a3:3f:1c:28:a9:03:d9:a7:69:9c:8a:05:e3:38:bb:7f:ca:88: 07:7c:a2:06:5b:93:df:ba:8a:b9:c6:ee:99:a2:52:c8:55:31: b2:81:24:a5:2f:25:4d:04:c9:96:d6:c3:f1:da:be:80:28:a5: 62:af:0d:17:1d:b5:64:44:57:8c:4c:58:9a:03:d0:e3:3c:48: 3b:04:a0:11:e4:00:a4:51:c9:83:2f:04:7f:6a:36:af:fd:40: ae:45:08:f9:81:a1:5c:4e:0f:4f:85:59:e5:da:e9:e1:74:94: 69:92:4f:2a -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUemJR0KAlD7f8PEz376ivei0v4KIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcxOTY3REZCRDIwM0EyRkQ0NEU4OEY3ODZEOUYwRjBD ODhFNEJBOTAeFw0yNTExMDkxNDU1MDBaFw0yNjExMDgxNTAwMDBaMDMxMTAvBgNV BAMTKDc1NERBMDVGOTYwMDNCRTc2ODFBQjNBREZCNUEyNUU2RDlFQTQwQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgMUZatZH0nrodSFL9YfWuYAqS Jw3tnqh+MTg0BSn/v5F9FO5OMJlCNPWMTxeb+CDC2hoxn+Zk9dkgEVp5A+6Wmw9c MPwb5rnLu3Dl29zVmAK5yBewx0kcoeCnPKKJhYodUrQB2+J3mUARHrnbk6j5Il8d gyHJHPtwV6ExRudUoIcS5Bkb32PK5+mOiu2b62UP3Wxlv50WwO9yAjd8ydvCJJXO +J7TvCjukJIFUvlPJqxFqlpfb+Ae0b1HZhGXLsXia2jX7LcVBai9+uuhJd7fSHXW ha5ArSz9EBFbvxISq6UKvMRI39sDUvVf8C4Qsnte08MevqA6CeNH/G/DyuRFAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUdU2gX5YAO+doGrOt+1ol5tnqQLQwHwYDVR0j BBgwFoAUNxln370gOi/UToj3htnw8MiOS6kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZWI4Yjg4OS0zYjNkLTRlZjUtYWQ3MC01YjEwNDVlZmYzOTMvMC8zNzE5NjdERkJE MjAzQTJGRDQ0RTg4Rjc4NkQ5RjBGMEM4OEU0QkE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzcxOTY3REZCRDIwM0EyRkQ0NEU4OEY3ODZEOUYwRjBDODhF NEJBOS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGViOGI4ODktM2IzZC00ZWY1LWFk NzAtNWIxMDQ1ZWZmMzkzLzAvMzIzMDMyMmUzODJlMzIzOTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM0MzUzNzMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKCB0wDQYJKoZIhvcNAQEL BQADggEBACqcX46cvR2zCYAMhqnbTGFOUsTjos40aPsq72+G8FpiGulgQc4wmGI6 CfwpQm5VqSbTxqh7vHMDyjm6Avz/joTgEziAjp0pssieKOvpgjSL8nauX7BKY7QS PbOxM9OWqFTs97QC970XzB6nZ4R1DK+oncYQGE8uwlOD6AQO+4Dez7dbN23UJfJT k6dcu7pv/aM/HCipA9mnaZyKBeM4u3/KiAd8ogZbk9+6irnG7pmiUshVMbKBJKUv JU0EyZbWw/HavoAopWKvDRcdtWREV4xMWJoD0OM8SDsEoBHkAKRRyYMvBH9qNq/9 QK5FCPmBoVxOD0+FWeXa6eF0lGmSTyo= -----END CERTIFICATE-----Generated at Wed Dec 3 16:10:54 2025 by rpki-client