This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32312e302f32342d3234203d3e20313431363733.roa File: 3230322e35372e32312e302f32342d3234203d3e20313431363733.roa (raw, json) Hash identifier: bCrGS2h+/zPAS+2DepWngEarE7NIIMpAdATexMqAfyQ= Subject key identifier: 02:66:35:38:03:E3:38:CB:6D:03:D8:00:50:54:C1:71:87:72:7F:B0 Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Certificate serial: 2A862E7CC0EA5469DBD2A9E69F6698D62BA5689B Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32312e302f32342d3234203d3e20313431363733.roa Signing time: Sun 09 Nov 2025 03:00:01 +0000 ROA not before: Sun 09 Nov 2025 02:55:01 +0000 ROA not after: Sun 08 Nov 2026 03:00:01 +0000 asID: 141673 IP address blocks: 202.57.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:86:2e:7c:c0:ea:54:69:db:d2:a9:e6:9f:66:98:d6:2b:a5:68:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5 Validity Not Before: Nov 9 02:55:01 2025 GMT Not After : Nov 8 03:00:01 2026 GMT Subject: CN=0266353803E338CB6D03D8005054C17187727FB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:dc:bf:ef:7e:fa:69:21:30:dd:d8:da:f7:21: c4:77:16:29:09:10:69:aa:c1:e6:cf:d1:09:91:22: c7:ee:76:fd:9b:f3:3c:90:9f:b0:66:0c:56:a7:c0: ad:46:cb:9f:fe:2a:d5:c8:38:9c:d9:a7:a2:8a:2b: bd:f3:82:c0:ae:7e:87:f5:3b:d7:34:f7:6d:25:fc: de:8e:47:86:22:a5:ab:38:46:0b:7a:a0:05:2c:27: 4b:41:a5:55:e4:21:80:d7:72:05:35:27:7f:41:b3: 02:50:59:9b:ba:68:ba:5f:3d:ef:41:3d:d3:9d:86: de:61:df:f9:da:08:78:be:1a:48:fb:ed:15:34:06: de:d8:68:72:16:74:b2:c9:d7:00:17:a0:09:44:70: 8b:94:2b:96:12:3d:9f:ca:f4:b4:28:a6:f5:3c:aa: 1f:cf:91:87:0f:83:bd:fa:98:65:c1:7c:d0:20:d3: 12:eb:4b:60:48:72:b6:bc:c3:ca:4e:59:d2:7c:41: 89:9f:d9:b4:dd:e8:cf:d9:eb:1b:66:1e:2c:bf:bf: 30:cb:00:1c:1b:42:68:c0:b1:2f:bf:8e:89:62:5f: cc:21:d7:d5:b8:ec:21:1a:53:6c:e8:c0:fd:97:64: 45:91:f9:47:96:90:16:51:3e:b1:ea:68:14:79:d2: ae:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:66:35:38:03:E3:38:CB:6D:03:D8:00:50:54:C1:71:87:72:7F:B0 X509v3 Authority Key Identifier: keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e32312e302f32342d3234203d3e20313431363733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.57.21.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:5b:f9:59:d1:47:1b:df:2f:62:9e:95:ad:37:3f:80:ff:43: 21:9b:2f:0e:db:d3:0a:4d:46:14:64:c7:21:c9:8b:01:8b:25: 30:e1:63:58:70:0a:90:ee:16:b0:51:ff:16:b8:fd:49:af:02: 2c:25:e4:17:89:8a:bb:ec:46:71:1e:d2:45:00:bc:e8:1e:e3: 2e:21:70:e3:68:c4:7a:06:1d:b6:bb:29:52:66:69:a7:a5:b2: c8:f4:34:13:bb:3c:66:1a:33:38:5e:8a:06:93:c8:ac:04:78: 41:e4:a6:9a:06:0a:52:c7:7b:9c:56:bb:d0:ba:f9:44:db:e5: af:54:86:28:c9:af:39:4a:d8:26:95:45:63:b1:e7:98:30:7f: 4f:e8:e0:54:bb:56:03:c8:5e:08:df:c9:1d:23:e3:14:9f:ec: 03:da:5f:1c:88:af:8d:b7:d4:d0:ca:5c:68:a0:6e:f1:fd:5a: 43:85:fa:49:3d:80:81:9e:c9:4f:9b:b8:1b:46:5a:eb:1d:e4: a4:d8:45:ae:e1:11:21:af:77:5c:c9:91:61:9d:af:69:cb:ee: 57:df:de:3f:fc:fd:be:81:fa:48:23:94:c5:2a:ab:95:33:0f: e4:61:45:15:19:7c:15:6d:66:2e:65:4e:ef:e8:ff:3e:d1:9f: 96:1b:76:5d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKoYufMDqVGnb0qnmn2aY1iulaJswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3 Qjg1OUJENTAeFw0yNTExMDkwMjU1MDFaFw0yNjExMDgwMzAwMDFaMDMxMTAvBgNV BAMTKDAyNjYzNTM4MDNFMzM4Q0I2RDAzRDgwMDUwNTRDMTcxODc3MjdGQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC73L/vfvppITDd2Nr3IcR3FikJ EGmqwebP0QmRIsfudv2b8zyQn7BmDFanwK1Gy5/+KtXIOJzZp6KKK73zgsCufof1 O9c0920l/N6OR4Yipas4Rgt6oAUsJ0tBpVXkIYDXcgU1J39BswJQWZu6aLpfPe9B PdOdht5h3/naCHi+Gkj77RU0Bt7YaHIWdLLJ1wAXoAlEcIuUK5YSPZ/K9LQopvU8 qh/PkYcPg736mGXBfNAg0xLrS2BIcra8w8pOWdJ8QYmf2bTd6M/Z6xtmHiy/vzDL ABwbQmjAsS+/joliX8wh19W47CEaU2zowP2XZEWR+UeWkBZRPrHqaBR50q5nAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAmY1OAPjOMttA9gAUFTBcYdyf7AwHwYDVR0j BBgwFoAUH5ae6bCDjSIVYRioiLgb8nuFm9UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZDNmMDk1Yi03MTMwLTQxMjItYWYyNS03ZDJlN2ExMWIxYjEvMC8xRjk2OUVFOUIw ODM4RDIyMTU2MTE4QTg4OEI4MUJGMjdCODU5QkQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUY5NjlFRTlCMDgzOEQyMjE1NjExOEE4ODhCODFCRjI3Qjg1 OUJENS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkM2YwOTViLTcxMzAtNDEyMi1h ZjI1LTdkMmU3YTExYjFiMS8wLzMyMzAzMjJlMzUzNzJlMzIzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM2MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMo5FTANBgkqhkiG 9w0BAQsFAAOCAQEAK1v5WdFHG98vYp6VrTc/gP9DIZsvDtvTCk1GFGTHIcmLAYsl MOFjWHAKkO4WsFH/Frj9Sa8CLCXkF4mKu+xGcR7SRQC86B7jLiFw42jEegYdtrsp UmZpp6WyyPQ0E7s8ZhozOF6KBpPIrAR4QeSmmgYKUsd7nFa70Lr5RNvlr1SGKMmv OUrYJpVFY7HnmDB/T+jgVLtWA8heCN/JHSPjFJ/sA9pfHIivjbfU0MpcaKBu8f1a Q4X6ST2AgZ7JT5u4G0Za6x3kpNhFruERIa93XMmRYZ2vacvuV9/eP/z9voH6SCOU xSqrlTMP5GFFFRl8FW1mLmVO7+j/PtGflht2XQ== -----END CERTIFICATE-----Generated at Sun Dec 7 01:50:18 2025 by rpki-client