This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36362e302f32342d3234203d3e203436303633.roa File: 32372e3131322e36362e302f32342d3234203d3e203436303633.roa (raw, json) Hash identifier: aYHcfPnNR/c6q1Gn6jLMY340l5EssmEBF13l3KbonYA= Subject key identifier: 54:B0:57:35:1D:74:24:12:2A:BB:5A:60:B3:DD:8B:07:7C:C8:CD:77 Certificate issuer: /CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312 Certificate serial: 387AA93156A4D899C51778BD749DAE33CEED3B18 Authority key identifier: D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36362e302f32342d3234203d3e203436303633.roa Signing time: Fri 05 Sep 2025 11:00:01 +0000 ROA not before: Fri 05 Sep 2025 10:55:01 +0000 ROA not after: Fri 04 Sep 2026 11:00:01 +0000 asID: 46063 IP address blocks: 27.112.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 01:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:7a:a9:31:56:a4:d8:99:c5:17:78:bd:74:9d:ae:33:ce:ed:3b:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2A6ABCA1EF89725109CBEA5D42E683C95925312 Validity Not Before: Sep 5 10:55:01 2025 GMT Not After : Sep 4 11:00:01 2026 GMT Subject: CN=54B057351D7424122ABB5A60B3DD8B077CC8CD77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:4b:2b:d5:bb:9b:9f:f4:d9:a2:82:b6:88:7b: 38:4b:9d:13:44:79:bf:95:a4:25:aa:95:d1:05:6f: 76:fc:a8:0a:0d:8c:a8:91:e8:e9:80:16:f1:c9:d8: ec:88:47:7c:26:41:9b:02:41:7a:99:2d:48:f9:b0: b3:b7:4d:11:f9:21:e2:2a:6e:f7:30:d0:62:b9:d6: 26:31:3c:24:56:75:4c:f1:59:01:30:5f:f7:0e:e9: b4:b1:e9:49:dd:bb:87:c7:bb:b9:0c:a8:ee:a7:a6: a0:3b:6e:a5:f2:77:8f:2e:e2:4b:44:16:09:a8:3a: cb:57:32:63:5e:b4:77:90:73:14:c8:45:eb:77:d0: 79:28:1e:61:66:a8:0d:b8:ce:f7:cf:3f:ef:43:4c: 1e:5f:4c:36:b2:aa:e9:18:80:3a:02:ef:60:56:30: 96:06:35:6c:37:15:4c:8e:2c:67:c3:be:d6:d7:6d: f6:73:ce:ea:a6:26:26:84:6b:35:ff:2d:b4:ed:23: b2:de:63:6a:cb:2e:37:b0:e2:5e:8f:0d:af:cb:d4: bb:4f:db:37:6a:f3:19:36:d0:11:37:06:a4:52:8f: de:9d:5d:3b:05:91:0d:7d:5d:c6:32:e7:07:89:f2: b3:d8:5d:0f:61:64:43:b1:39:3a:c5:ab:ed:98:93: 2b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:B0:57:35:1D:74:24:12:2A:BB:5A:60:B3:DD:8B:07:7C:C8:CD:77 X509v3 Authority Key Identifier: keyid:D2:A6:AB:CA:1E:F8:97:25:10:9C:BE:A5:D4:2E:68:3C:95:92:53:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/D2A6ABCA1EF89725109CBEA5D42E683C95925312.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2A6ABCA1EF89725109CBEA5D42E683C95925312.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ead1e16a-0a4d-44b1-9845-9c0cd7a6f38f/0/32372e3131322e36362e302f32342d3234203d3e203436303633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.112.66.0/24 Signature Algorithm: sha256WithRSAEncryption 33:de:b6:0e:30:b9:d5:21:fd:61:71:57:db:6b:cd:2b:41:3c: 9a:ea:f2:83:c8:75:d4:a8:92:95:8f:fa:f9:6c:68:6f:aa:5d: 7c:8a:7d:d1:6e:a6:65:9e:73:f7:45:3b:b4:66:e9:76:af:57: ee:a4:3e:19:fd:2e:44:7d:20:a2:59:f2:51:14:da:ba:39:d6: 9f:a8:54:79:ab:d5:75:51:fa:ab:a2:b2:af:36:46:af:f2:93: 52:82:d6:6d:6b:06:96:e7:9e:b8:8b:fb:9b:6c:cc:0b:58:a0: 3b:02:1d:a1:52:51:8a:80:fc:1f:76:80:85:9f:a6:4d:43:21: 9a:c4:41:1e:7b:69:a9:6b:4e:4a:1d:2e:a8:36:b7:6b:bb:a7: 49:00:09:7b:73:08:44:56:4d:9d:a2:9a:52:2a:c6:33:1c:3a: 9b:2e:40:b5:92:89:0d:a1:59:08:87:b5:e7:f0:28:50:b6:54: c2:9b:cb:ff:86:92:8e:c1:f6:0d:ea:b9:d9:ae:0f:54:08:cc: ec:af:65:87:07:8a:04:61:cd:cc:5e:83:d2:5d:7e:c4:c7:b0: 53:82:de:ad:6e:38:d2:83:15:b5:22:e7:4a:23:cd:7a:3c:bf: 65:ce:67:ce:2f:7f:b4:8e:d0:02:20:69:f4:f9:52:84:30:b9: 6e:01:de:52 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUOHqpMVak2JnFF3i9dJ2uM87tOxgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJBNkFCQ0ExRUY4OTcyNTEwOUNCRUE1RDQyRTY4M0M5 NTkyNTMxMjAeFw0yNTA5MDUxMDU1MDFaFw0yNjA5MDQxMTAwMDFaMDMxMTAvBgNV BAMTKDU0QjA1NzM1MUQ3NDI0MTIyQUJCNUE2MEIzREQ4QjA3N0NDOENENzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgSyvVu5uf9NmigraIezhLnRNE eb+VpCWqldEFb3b8qAoNjKiR6OmAFvHJ2OyIR3wmQZsCQXqZLUj5sLO3TRH5IeIq bvcw0GK51iYxPCRWdUzxWQEwX/cO6bSx6Undu4fHu7kMqO6npqA7bqXyd48u4ktE FgmoOstXMmNetHeQcxTIRet30HkoHmFmqA24zvfPP+9DTB5fTDayqukYgDoC72BW MJYGNWw3FUyOLGfDvtbXbfZzzuqmJiaEazX/LbTtI7LeY2rLLjew4l6PDa/L1LtP 2zdq8xk20BE3BqRSj96dXTsFkQ19XcYy5weJ8rPYXQ9hZEOxOTrFq+2YkysrAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUVLBXNR10JBIqu1pgs92LB3zIzXcwHwYDVR0j BBgwFoAU0qaryh74lyUQnL6l1C5oPJWSUxIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YWQxZTE2YS0wYTRkLTQ0YjEtOTg0NS05YzBjZDdhNmYzOGYvMC9EMkE2QUJDQTFF Rjg5NzI1MTA5Q0JFQTVENDJFNjgzQzk1OTI1MzEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJBNkFCQ0ExRUY4OTcyNTEwOUNCRUE1RDQyRTY4M0M5NTky NTMxMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhZDFlMTZhLTBhNGQtNDRiMS05 ODQ1LTljMGNkN2E2ZjM4Zi8wLzMyMzcyZTMxMzEzMjJlMzYzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDM2MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAbcEIwDQYJKoZIhvcN AQELBQADggEBADPetg4wudUh/WFxV9trzStBPJrq8oPIddSokpWP+vlsaG+qXXyK fdFupmWec/dFO7Rm6XavV+6kPhn9LkR9IKJZ8lEU2ro51p+oVHmr1XVR+quisq82 Rq/yk1KC1m1rBpbnnriL+5tszAtYoDsCHaFSUYqA/B92gIWfpk1DIZrEQR57aalr TkodLqg2t2u7p0kACXtzCERWTZ2imlIqxjMcOpsuQLWSiQ2hWQiHtefwKFC2VMKb y/+Gko7B9g3qudmuD1QIzOyvZYcHigRhzcxeg9JdfsTHsFOC3q1uONKDFbUi50oj zXo8v2XOZ84vf7SO0AIgafT5UoQwuW4B3lI= -----END CERTIFICATE-----Generated at Wed Dec 3 15:44:42 2025 by rpki-client