This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/e9c15b78-2071-44d1-9a1d-ad6eb09fae08/0/3135372e32302e3133322e302f32332d3233203d3e20313532343033.roa File: 3135372e32302e3133322e302f32332d3233203d3e20313532343033.roa (raw, json) Hash identifier: amumi/WYE2A4FB3wGrZMgKCqFZMIGROo7mRPUcV+x9E= Subject key identifier: 06:44:D1:D8:85:D4:F6:02:34:7C:60:4F:36:16:61:4E:1C:DA:53:16 Certificate issuer: /CN=D4688B55FB8C00F6AEC284E5BCB81E227C512DED Certificate serial: 6FA3D725BBA1524B522F28DE941375F1F7B9912D Authority key identifier: D4:68:8B:55:FB:8C:00:F6:AE:C2:84:E5:BC:B8:1E:22:7C:51:2D:ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D4688B55FB8C00F6AEC284E5BCB81E227C512DED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e9c15b78-2071-44d1-9a1d-ad6eb09fae08/0/3135372e32302e3133322e302f32332d3233203d3e20313532343033.roa Signing time: Fri 07 Nov 2025 05:00:01 +0000 ROA not before: Fri 07 Nov 2025 04:55:01 +0000 ROA not after: Fri 06 Nov 2026 05:00:01 +0000 asID: 152403 IP address blocks: 157.20.132.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e9c15b78-2071-44d1-9a1d-ad6eb09fae08/0/D4688B55FB8C00F6AEC284E5BCB81E227C512DED.crl rsync://repo-rpki.idnic.net/repo/e9c15b78-2071-44d1-9a1d-ad6eb09fae08/0/D4688B55FB8C00F6AEC284E5BCB81E227C512DED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D4688B55FB8C00F6AEC284E5BCB81E227C512DED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 17:23:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:a3:d7:25:bb:a1:52:4b:52:2f:28:de:94:13:75:f1:f7:b9:91:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4688B55FB8C00F6AEC284E5BCB81E227C512DED Validity Not Before: Nov 7 04:55:01 2025 GMT Not After : Nov 6 05:00:01 2026 GMT Subject: CN=0644D1D885D4F602347C604F3616614E1CDA5316 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bb:c5:58:60:05:08:77:e1:9f:da:84:b5:81: 8e:65:30:9f:69:21:b0:b1:f1:61:1b:fd:c2:42:e4: 0a:c7:b7:1a:49:50:5e:f5:4b:ca:71:e7:b0:8d:ec: 53:45:e4:c6:81:78:f1:3a:50:2e:8f:99:12:cc:74: dd:a2:81:31:1e:02:3f:3b:2f:47:04:85:5d:a7:af: 9d:2a:0b:de:59:6f:66:f7:ca:f5:b1:a4:ad:a4:5a: cc:4f:d5:06:91:5e:81:79:f5:16:db:ec:38:25:ef: 35:73:00:e5:91:ff:00:e8:3c:21:22:f1:2c:99:e4: 84:79:71:fb:ee:e5:4f:ee:d9:30:e1:b9:c0:57:a1: 75:aa:a9:d0:dc:b3:23:2d:07:9a:4d:b4:b8:ce:8e: 7f:a7:1f:59:dc:30:bf:1c:f3:b6:ca:37:e9:54:9f: 58:3d:e3:8d:92:7c:e6:75:29:4a:55:d8:81:c1:d3: 98:3f:25:e4:e3:d8:ca:fa:20:31:2c:83:59:b0:a5: be:14:1f:da:d4:9f:f3:a6:bd:76:b1:41:81:44:a8: c5:83:73:af:7c:bb:70:65:84:1d:87:86:c4:c7:7c: 0c:b6:1f:1a:4e:c1:5a:5a:ee:63:27:9a:de:7e:8c: 44:0c:8b:c5:bb:2e:ce:be:0e:d0:00:27:9f:da:6d: 7a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:44:D1:D8:85:D4:F6:02:34:7C:60:4F:36:16:61:4E:1C:DA:53:16 X509v3 Authority Key Identifier: keyid:D4:68:8B:55:FB:8C:00:F6:AE:C2:84:E5:BC:B8:1E:22:7C:51:2D:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e9c15b78-2071-44d1-9a1d-ad6eb09fae08/0/D4688B55FB8C00F6AEC284E5BCB81E227C512DED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D4688B55FB8C00F6AEC284E5BCB81E227C512DED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e9c15b78-2071-44d1-9a1d-ad6eb09fae08/0/3135372e32302e3133322e302f32332d3233203d3e20313532343033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.132.0/23 Signature Algorithm: sha256WithRSAEncryption 67:57:fb:8a:5b:b7:18:24:22:8b:f6:54:f7:40:76:48:83:be: 30:07:91:75:cb:82:c1:74:83:1f:3a:81:87:6e:5a:e8:ac:5d: 82:44:95:8f:8c:39:a8:c1:9f:53:38:57:1d:f1:42:a5:a4:1d: 40:7e:db:5a:93:64:52:6a:22:c6:1f:11:70:8b:6c:03:5a:f1: 0d:18:2f:df:0f:fc:fc:c8:66:27:08:45:ef:53:1c:04:cc:f5: 62:99:27:2e:a7:d1:ab:42:51:cd:85:b1:1b:24:5b:b3:4d:6a: de:a2:f9:69:67:d6:51:5d:a3:37:a0:19:70:4a:3c:c2:2e:89: f5:59:c7:ce:d9:95:16:ea:4c:02:c2:8c:4f:86:48:69:af:05: 54:5a:81:07:ee:1d:60:9c:87:93:11:99:7e:c6:ab:4e:b8:4a: 82:be:07:a2:95:a2:c4:d4:40:a4:9b:2e:d0:94:f5:27:fc:b1: 2a:36:b0:6c:77:06:c9:20:cd:3f:d2:6b:fc:73:cc:f5:09:7c: b9:2f:89:8f:78:81:36:61:45:8d:bb:fc:29:d9:fd:5d:64:c6: fd:38:06:9e:a5:d9:f1:4f:c6:73:59:02:ec:1b:7c:22:d8:18: e3:cf:ac:47:4c:39:3b:9b:f4:72:18:bb:60:71:5b:1a:78:81: 8b:7f:13:07 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUb6PXJbuhUktSLyjelBN18fe5kS0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQ2ODhCNTVGQjhDMDBGNkFFQzI4NEU1QkNCODFFMjI3 QzUxMkRFRDAeFw0yNTExMDcwNDU1MDFaFw0yNjExMDYwNTAwMDFaMDMxMTAvBgNV BAMTKDA2NDREMUQ4ODVENEY2MDIzNDdDNjA0RjM2MTY2MTRFMUNEQTUzMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/u8VYYAUId+Gf2oS1gY5lMJ9p IbCx8WEb/cJC5ArHtxpJUF71S8px57CN7FNF5MaBePE6UC6PmRLMdN2igTEeAj87 L0cEhV2nr50qC95Zb2b3yvWxpK2kWsxP1QaRXoF59Rbb7Dgl7zVzAOWR/wDoPCEi 8SyZ5IR5cfvu5U/u2TDhucBXoXWqqdDcsyMtB5pNtLjOjn+nH1ncML8c87bKN+lU n1g9442SfOZ1KUpV2IHB05g/JeTj2Mr6IDEsg1mwpb4UH9rUn/OmvXaxQYFEqMWD c698u3BlhB2HhsTHfAy2HxpOwVpa7mMnmt5+jEQMi8W7Ls6+DtAAJ5/abXqjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBkTR2IXU9gI0fGBPNhZhThzaUxYwHwYDVR0j BBgwFoAU1GiLVfuMAPauwoTlvLgeInxRLe0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l OWMxNWI3OC0yMDcxLTQ0ZDEtOWExZC1hZDZlYjA5ZmFlMDgvMC9ENDY4OEI1NUZC OEMwMEY2QUVDMjg0RTVCQ0I4MUUyMjdDNTEyREVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDQ2ODhCNTVGQjhDMDBGNkFFQzI4NEU1QkNCODFFMjI3QzUx MkRFRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U5YzE1Yjc4LTIwNzEtNDRkMS05 YTFkLWFkNmViMDlmYWUwOC8wLzMxMzUzNzJlMzIzMDJlMzEzMzMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMyMzQzMDMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnRSEMA0GCSqG SIb3DQEBCwUAA4IBAQBnV/uKW7cYJCKL9lT3QHZIg74wB5F1y4LBdIMfOoGHblro rF2CRJWPjDmowZ9TOFcd8UKlpB1Afttak2RSaiLGHxFwi2wDWvENGC/fD/z8yGYn CEXvUxwEzPVimScup9GrQlHNhbEbJFuzTWreovlpZ9ZRXaM3oBlwSjzCLon1WcfO 2ZUW6kwCwoxPhkhprwVUWoEH7h1gnIeTEZl+xqtOuEqCvgeilaLE1ECkmy7QlPUn /LEqNrBsdwbJIM0/0mv8c8z1CXy5L4mPeIE2YUWNu/wp2f1dZMb9OAaepdnxT8Zz WQLsG3wi2Bjjz6xHTDk7m/RyGLtgcVsaeIGLfxMH -----END CERTIFICATE-----Generated at Mon Dec 8 05:58:09 2025 by rpki-client