This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/3135372e31302e39312e302f32342d3234203d3e20313532303836.roa File: 3135372e31302e39312e302f32342d3234203d3e20313532303836.roa (raw, json) Hash identifier: 7Vh+JQ+EwBgCn6qPsEsbKPExyQYjppcpw9GgUYCQELQ= Subject key identifier: 25:D5:BC:99:C4:38:F3:AD:AB:57:A1:18:D4:19:B5:1E:C1:EF:AA:6B Certificate issuer: /CN=5EC928AFD73AFC70F10C468E21482031920DF521 Certificate serial: 0583CF4CB0070A63F50AADA80934356E61C2649B Authority key identifier: 5E:C9:28:AF:D7:3A:FC:70:F1:0C:46:8E:21:48:20:31:92:0D:F5:21 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5EC928AFD73AFC70F10C468E21482031920DF521.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/3135372e31302e39312e302f32342d3234203d3e20313532303836.roa Signing time: Sun 21 Dec 2025 16:00:39 +0000 ROA not before: Sun 21 Dec 2025 15:55:39 +0000 ROA not after: Sun 20 Dec 2026 16:00:39 +0000 asID: 152086 IP address blocks: 157.10.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/5EC928AFD73AFC70F10C468E21482031920DF521.crl rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/5EC928AFD73AFC70F10C468E21482031920DF521.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5EC928AFD73AFC70F10C468E21482031920DF521.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 Jan 2026 17:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:83:cf:4c:b0:07:0a:63:f5:0a:ad:a8:09:34:35:6e:61:c2:64:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5EC928AFD73AFC70F10C468E21482031920DF521 Validity Not Before: Dec 21 15:55:39 2025 GMT Not After : Dec 20 16:00:39 2026 GMT Subject: CN=25D5BC99C438F3ADAB57A118D419B51EC1EFAA6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:13:6c:e7:d8:d5:4c:f2:da:d1:73:e1:3e:0b: de:4e:fe:b2:28:e8:4b:b4:28:c2:e9:2c:68:71:83: 96:7f:35:87:cc:c6:f3:5f:3e:d6:7f:47:6c:f0:ec: cc:f1:b8:ca:fc:63:bd:0a:4d:21:92:ce:88:ea:5d: f2:27:6d:52:bf:25:ec:a1:7d:6d:ca:d6:e4:24:67: 6a:bb:b3:01:d7:5b:fb:f9:f4:2a:75:1d:c5:7c:6e: e8:7a:6e:ca:0b:91:57:c8:e2:b6:fe:60:4a:c7:39: b8:14:1a:f1:4f:05:bc:dd:c5:53:a3:08:31:e0:ca: 61:35:e3:20:4e:dd:a3:11:68:02:c4:ae:54:77:9a: 6c:ae:b0:4e:31:5d:f4:bc:13:3e:42:6c:84:04:05: ed:65:a4:c2:ac:10:5a:03:09:fd:e7:eb:01:a2:12: 31:05:f3:98:6c:5e:cd:92:54:54:c1:1e:d4:d8:a5: 17:c7:f7:b1:e3:7d:a1:60:55:e0:06:d3:fe:e6:b3: 4b:80:73:a8:75:bf:59:2c:a9:37:c5:a9:47:a5:42: 63:34:69:2b:cd:28:46:19:15:41:b6:5e:c6:05:11: 48:ce:80:c7:85:22:ed:6d:be:7e:8c:e4:cb:ea:c1: 4b:ce:f6:e3:af:91:5f:8f:31:7e:ce:8b:4a:08:4b: 3c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:D5:BC:99:C4:38:F3:AD:AB:57:A1:18:D4:19:B5:1E:C1:EF:AA:6B X509v3 Authority Key Identifier: keyid:5E:C9:28:AF:D7:3A:FC:70:F1:0C:46:8E:21:48:20:31:92:0D:F5:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/5EC928AFD73AFC70F10C468E21482031920DF521.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5EC928AFD73AFC70F10C468E21482031920DF521.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/3135372e31302e39312e302f32342d3234203d3e20313532303836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.91.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:da:98:57:fb:37:3e:67:21:75:de:52:8d:d4:10:67:66:d5: fb:10:41:87:8e:62:76:4b:1d:93:93:20:f1:eb:24:ca:13:47: cd:02:de:f4:f4:cd:4c:81:83:66:e3:51:06:d7:8b:62:44:f0: 7a:a8:39:36:00:53:c2:7e:f0:d8:ff:13:00:58:92:58:cd:a7: 5e:1c:30:17:30:67:8c:29:be:99:a5:51:9d:85:5e:04:41:5a: 29:32:06:af:87:30:35:87:91:80:a4:67:53:f0:a9:19:62:f4: 57:f8:81:88:ed:e3:d4:0e:20:00:61:c7:3c:e3:f3:b5:90:e4: 3d:2c:e3:08:c6:ce:bf:2b:14:d5:ce:58:b5:5a:31:83:b0:ec: 20:da:33:6f:a8:d7:a3:76:e7:b7:db:8b:df:2f:9b:6a:c1:df: 2a:67:46:b0:6a:14:ee:f0:32:f3:9e:7d:87:a8:11:96:30:08: 3e:7c:d6:3d:8a:fb:df:f6:e9:20:9e:d2:0b:96:07:b2:ee:41: 6f:d5:ed:ee:cf:93:1b:b4:c3:c1:63:12:18:b5:30:b5:ca:e0: 7e:47:3d:25:63:16:a2:eb:b3:bb:d2:4b:71:38:6a:47:6c:ad: b0:37:f9:82:d6:32:bd:71:13:46:5d:75:fa:d7:1b:4a:a9:bc: 3e:2e:e5:c9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBYPPTLAHCmP1Cq2oCTQ1bmHCZJswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUVDOTI4QUZENzNBRkM3MEYxMEM0NjhFMjE0ODIwMzE5 MjBERjUyMTAeFw0yNTEyMjExNTU1MzlaFw0yNjEyMjAxNjAwMzlaMDMxMTAvBgNV BAMTKDI1RDVCQzk5QzQzOEYzQURBQjU3QTExOEQ0MTlCNTFFQzFFRkFBNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuE2zn2NVM8trRc+E+C95O/rIo 6Eu0KMLpLGhxg5Z/NYfMxvNfPtZ/R2zw7MzxuMr8Y70KTSGSzojqXfInbVK/Jeyh fW3K1uQkZ2q7swHXW/v59Cp1HcV8buh6bsoLkVfI4rb+YErHObgUGvFPBbzdxVOj CDHgymE14yBO3aMRaALErlR3mmyusE4xXfS8Ez5CbIQEBe1lpMKsEFoDCf3n6wGi EjEF85hsXs2SVFTBHtTYpRfH97HjfaFgVeAG0/7ms0uAc6h1v1ksqTfFqUelQmM0 aSvNKEYZFUG2XsYFEUjOgMeFIu1tvn6M5MvqwUvO9uOvkV+PMX7Oi0oISzyHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJdW8mcQ4862rV6EY1Bm1HsHvqmswHwYDVR0j BBgwFoAUXskor9c6/HDxDEaOIUggMZIN9SEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l Y2YzZjhjOC0wNDA2LTRiMzgtYTdhOC1kY2IxNWU0MWYyYjcvMC81RUM5MjhBRkQ3 M0FGQzcwRjEwQzQ2OEUyMTQ4MjAzMTkyMERGNTIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNUVDOTI4QUZENzNBRkM3MEYxMEM0NjhFMjE0ODIwMzE5MjBE RjUyMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VjZjNmOGM4LTA0MDYtNGIzOC1h N2E4LWRjYjE1ZTQxZjJiNy8wLzMxMzUzNzJlMzEzMDJlMzkzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzgzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ0KWzANBgkqhkiG 9w0BAQsFAAOCAQEAm9qYV/s3Pmchdd5SjdQQZ2bV+xBBh45idksdk5Mg8eskyhNH zQLe9PTNTIGDZuNRBteLYkTweqg5NgBTwn7w2P8TAFiSWM2nXhwwFzBnjCm+maVR nYVeBEFaKTIGr4cwNYeRgKRnU/CpGWL0V/iBiO3j1A4gAGHHPOPztZDkPSzjCMbO vysU1c5YtVoxg7DsINozb6jXo3bnt9uL3y+basHfKmdGsGoU7vAy8559h6gRljAI PnzWPYr73/bpIJ7SC5YHsu5Bb9Xt7s+TG7TDwWMSGLUwtcrgfkc9JWMWouuzu9JL cThqR2ytsDf5gtYyvXETRl11+tcbSqm8Pi7lyQ== -----END CERTIFICATE-----Generated at Wed Jan 21 13:21:00 2026 by rpki-client