This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/3136302e32352e3137342e302f32342d3234203d3e20313533303733.roa File: 3136302e32352e3137342e302f32342d3234203d3e20313533303733.roa (raw, json) Hash identifier: 9HcMn3I4XGR9gCZZPwjQDGBo7tgZN5G+yM9cxbzNmtk= Subject key identifier: 2C:62:7F:BB:0A:6D:43:BF:62:B5:CC:1D:E7:C5:3B:C6:5D:A9:45:11 Certificate issuer: /CN=AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93 Certificate serial: 225B404E59BF07D3D3650A232584864AB8A5EFD0 Authority key identifier: AA:72:76:8F:DD:0C:61:5A:05:E4:A3:2A:06:F9:CC:B5:CA:7E:0D:93 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/3136302e32352e3137342e302f32342d3234203d3e20313533303733.roa Signing time: Fri 14 Nov 2025 17:00:02 +0000 ROA not before: Fri 14 Nov 2025 16:55:02 +0000 ROA not after: Fri 13 Nov 2026 17:00:02 +0000 asID: 153073 IP address blocks: 160.25.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.crl rsync://repo-rpki.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 20:29:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:5b:40:4e:59:bf:07:d3:d3:65:0a:23:25:84:86:4a:b8:a5:ef:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93 Validity Not Before: Nov 14 16:55:02 2025 GMT Not After : Nov 13 17:00:02 2026 GMT Subject: CN=2C627FBB0A6D43BF62B5CC1DE7C53BC65DA94511 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:8e:7e:1f:83:b9:ee:b3:42:a5:fd:3d:1d:2a: 2f:d3:7f:3e:60:c3:56:ee:7f:cb:23:95:ae:28:00: 26:e2:9a:e5:c8:5d:5d:49:15:eb:59:c7:8e:bb:95: 4b:b1:f4:48:c1:ae:b0:5e:e2:7f:b3:cd:4a:27:ca: c8:5b:19:c7:f2:69:de:24:05:73:6e:93:46:fc:5a: dd:91:85:29:58:37:70:2a:a5:1b:61:51:2f:bd:0d: 94:ee:64:9a:73:bd:f3:13:82:02:66:2d:28:bc:93: 5f:81:01:19:bd:9e:f3:bd:e7:34:8d:dc:69:ee:40: 49:8e:41:2b:ac:cd:7c:94:08:8a:72:3f:ac:0f:c9: 7c:00:f7:40:cb:b1:98:33:1a:3b:f2:2a:a5:09:47: c4:df:3f:cf:42:6c:7b:b8:3c:5f:f7:79:ed:a2:a7: 6e:50:ef:d0:b3:e3:10:87:6e:82:62:c4:72:30:e4: 1d:d6:e6:37:d4:6b:ef:ea:64:2e:c8:f2:ac:5f:46: 43:87:23:1a:15:84:93:26:1e:8d:7c:db:e9:c9:c0: a3:d8:2e:cd:8b:37:e5:0d:9b:67:e2:c5:b8:40:b3: bd:a0:b8:ef:83:49:37:2e:d2:5f:24:1c:7c:4a:3e: ac:00:eb:17:c3:b3:09:a3:12:a3:8a:6d:88:eb:9d: 8e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:62:7F:BB:0A:6D:43:BF:62:B5:CC:1D:E7:C5:3B:C6:5D:A9:45:11 X509v3 Authority Key Identifier: keyid:AA:72:76:8F:DD:0C:61:5A:05:E4:A3:2A:06:F9:CC:B5:CA:7E:0D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA72768FDD0C615A05E4A32A06F9CCB5CA7E0D93.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec72ee3c-e180-4296-9dad-9500efd94890/0/3136302e32352e3137342e302f32342d3234203d3e20313533303733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.174.0/24 Signature Algorithm: sha256WithRSAEncryption a5:bc:c4:b2:50:9b:bd:8a:1b:ad:03:6e:1e:8b:78:f1:88:42: 40:9b:ad:57:92:33:3a:ce:78:3e:3a:1a:cc:a4:cd:3a:27:69: b1:4c:38:4b:ba:29:b2:bc:9c:2a:20:e1:5c:c4:ff:42:42:a6: 3d:47:b0:22:4e:60:d9:5c:ba:c8:9d:c9:a9:2c:c0:fd:9c:15: 3e:7c:88:3f:c9:30:10:97:ca:36:2e:94:c0:57:f4:34:50:5e: cf:59:bf:72:e3:88:99:9c:ff:60:b6:df:8c:e5:06:dc:d7:36: a9:35:9d:78:36:62:23:cf:55:3e:d2:61:4f:b8:5e:96:2a:3e: 97:04:e9:76:97:7c:2a:60:41:5a:a7:ee:74:96:76:4e:3d:6a: 95:79:7d:7c:e5:6e:88:e6:77:d4:22:0b:e2:8f:15:58:a6:57: 2b:bc:2f:a6:e4:5b:30:0f:23:52:e6:c1:3e:b0:d7:fe:18:b5: 07:f6:92:95:d0:47:2d:b1:d7:95:69:da:b8:09:19:ce:d3:95: 33:95:a2:0f:98:c5:f5:84:e5:f0:9d:1e:fa:27:29:0c:5d:a5: 16:61:f7:eb:be:17:bd:31:68:f0:aa:ae:ca:f7:1f:22:58:a8: 01:33:f8:5a:d3:b1:83:30:6f:e5:d6:99:d4:0b:eb:d1:2f:c9: a3:3f:fa:44 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIltATlm/B9PTZQojJYSGSril79AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUE3Mjc2OEZERDBDNjE1QTA1RTRBMzJBMDZGOUNDQjVD QTdFMEQ5MzAeFw0yNTExMTQxNjU1MDJaFw0yNjExMTMxNzAwMDJaMDMxMTAvBgNV BAMTKDJDNjI3RkJCMEE2RDQzQkY2MkI1Q0MxREU3QzUzQkM2NURBOTQ1MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwjn4fg7nus0Kl/T0dKi/Tfz5g w1buf8sjla4oACbimuXIXV1JFetZx467lUux9EjBrrBe4n+zzUonyshbGcfyad4k BXNuk0b8Wt2RhSlYN3AqpRthUS+9DZTuZJpzvfMTggJmLSi8k1+BARm9nvO95zSN 3GnuQEmOQSuszXyUCIpyP6wPyXwA90DLsZgzGjvyKqUJR8TfP89CbHu4PF/3ee2i p25Q79Cz4xCHboJixHIw5B3W5jfUa+/qZC7I8qxfRkOHIxoVhJMmHo182+nJwKPY Ls2LN+UNm2fixbhAs72guO+DSTcu0l8kHHxKPqwA6xfDswmjEqOKbYjrnY4BAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULGJ/uwptQ79itcwd58U7xl2pRREwHwYDVR0j BBgwFoAUqnJ2j90MYVoF5KMqBvnMtcp+DZMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzcyZWUzYy1lMTgwLTQyOTYtOWRhZC05NTAwZWZkOTQ4OTAvMC9BQTcyNzY4RkRE MEM2MTVBMDVFNEEzMkEwNkY5Q0NCNUNBN0UwRDkzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUE3Mjc2OEZERDBDNjE1QTA1RTRBMzJBMDZGOUNDQjVDQTdF MEQ5My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VjNzJlZTNjLWUxODAtNDI5Ni05 ZGFkLTk1MDBlZmQ5NDg5MC8wLzMxMzYzMDJlMzIzNTJlMzEzNzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBmuMA0GCSqG SIb3DQEBCwUAA4IBAQClvMSyUJu9ihutA24ei3jxiEJAm61XkjM6zng+OhrMpM06 J2mxTDhLuimyvJwqIOFcxP9CQqY9R7AiTmDZXLrIncmpLMD9nBU+fIg/yTAQl8o2 LpTAV/Q0UF7PWb9y44iZnP9gtt+M5Qbc1zapNZ14NmIjz1U+0mFPuF6WKj6XBOl2 l3wqYEFap+50lnZOPWqVeX185W6I5nfUIgvijxVYplcrvC+m5FswDyNS5sE+sNf+ GLUH9pKV0EctsdeVadq4CRnO05UzlaIPmMX1hOXwnR76JykMXaUWYffrvhe9MWjw qq7K9x8iWKgBM/ha07GDMG/l1pnUC+vRL8mjP/pE -----END CERTIFICATE-----Generated at Mon Dec 8 06:08:56 2025 by rpki-client