This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/3135372e31302e3135392e302f32342d3234203d3e20313532333535.roa File: 3135372e31302e3135392e302f32342d3234203d3e20313532333535.roa (raw, json) Hash identifier: s2utPuT9/Rrfn+3q49rkE18sSG/2dm9VSsVmVu4LpF4= Subject key identifier: AF:D4:49:4F:76:76:66:D5:D7:5C:DF:94:46:03:2F:0B:C8:D0:85:76 Certificate issuer: /CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Certificate serial: 57F45DB461DA30F41EF2D9E497B4F03E9BB5582E Authority key identifier: 89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/3135372e31302e3135392e302f32342d3234203d3e20313532333535.roa Signing time: Mon 22 Dec 2025 07:00:43 +0000 ROA not before: Mon 22 Dec 2025 06:55:43 +0000 ROA not after: Mon 21 Dec 2026 07:00:43 +0000 asID: 152355 IP address blocks: 157.10.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 21:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:f4:5d:b4:61:da:30:f4:1e:f2:d9:e4:97:b4:f0:3e:9b:b5:58:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Validity Not Before: Dec 22 06:55:43 2025 GMT Not After : Dec 21 07:00:43 2026 GMT Subject: CN=AFD4494F767666D5D75CDF9446032F0BC8D08576 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:aa:c6:80:e1:0c:dd:47:19:88:0b:00:b0:bc: c9:9c:31:cc:30:66:da:d2:23:f1:dc:7d:82:7e:e4: e2:56:01:58:34:1b:2b:bd:27:ec:e2:1c:f5:5f:4d: 66:b8:0b:b1:eb:62:e1:6e:87:76:b7:89:e1:e0:b1: 48:37:aa:ba:26:94:e6:09:3f:8f:f5:57:9c:c1:38: 99:77:c0:fd:79:5b:6a:22:54:2d:3b:75:fc:bf:2e: dc:d7:b9:b0:f0:5b:d5:0f:8e:8e:f7:3a:a9:eb:2a: 37:59:d5:c7:cb:5d:8a:b4:1a:fb:fd:ed:6e:d5:1e: 76:0a:d4:2b:09:1b:35:e3:ef:29:41:b2:3d:3b:fb: 03:e1:43:af:a8:e9:ce:46:64:d8:74:e6:69:18:2d: fe:ab:de:f3:0a:5b:da:49:87:72:f2:f5:52:23:60: e9:77:80:fa:bc:75:3a:95:e3:6e:3e:f1:a4:71:da: dc:35:fb:eb:04:7a:7c:4b:fd:0f:fa:09:d2:39:57: bf:17:78:9e:ac:82:3b:e6:b8:e7:1c:fa:5b:80:28: 3b:55:d3:68:cb:44:dc:5f:ec:ef:50:c3:2d:30:9b: 6f:25:f2:3f:e6:e1:43:23:ec:13:01:76:5a:b8:44: b9:a0:9c:41:7b:f9:64:05:a0:ba:5a:b3:36:0f:e1: dc:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:D4:49:4F:76:76:66:D5:D7:5C:DF:94:46:03:2F:0B:C8:D0:85:76 X509v3 Authority Key Identifier: keyid:89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/3135372e31302e3135392e302f32342d3234203d3e20313532333535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.159.0/24 Signature Algorithm: sha256WithRSAEncryption c9:89:a6:49:25:81:e2:1a:25:08:ee:ba:b0:1e:38:f3:38:43: 46:d8:e3:bd:38:1e:00:b1:06:5b:61:ed:9d:1c:d1:48:b6:0a: ca:f5:36:e2:61:ba:39:3e:73:eb:3c:02:2d:58:44:81:42:9c: 5e:93:3e:c4:0c:0c:ef:28:cb:d7:99:2a:03:3a:55:0e:df:6f: 46:d1:b9:03:30:02:fc:a9:0d:a1:ac:26:e0:bc:44:48:24:6b: 73:74:d1:9c:6c:19:7e:c4:80:f3:1e:de:03:a2:d4:0e:39:13: 63:fe:85:93:59:06:74:c9:36:87:2d:2e:ab:83:ff:44:e7:e0: ca:3d:15:b1:ef:90:df:79:8a:aa:ce:ba:af:e4:ea:ed:61:47: 91:6e:c3:91:d6:9c:aa:15:21:4f:7e:1a:8f:03:af:6d:f5:6e: ac:ed:1f:c2:98:df:0b:f1:7d:66:a1:a8:91:21:75:07:20:40: a8:5a:ec:c0:23:b6:b3:e1:98:a0:e1:73:c6:54:60:1b:3b:59: 26:d9:df:41:ca:a1:e5:7c:7f:43:c2:54:e1:f5:f9:d6:ff:96: f0:8e:6f:f0:27:7a:1d:fc:76:b1:ff:45:54:0b:b1:d6:68:0e: 35:92:43:98:b5:18:ff:00:0b:4a:2e:48:4f:e1:98:f2:a1:1a: ca:cd:5d:9f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUV/RdtGHaMPQe8tnkl7TwPpu1WC4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0 M0VGNTQ0RTAeFw0yNTEyMjIwNjU1NDNaFw0yNjEyMjEwNzAwNDNaMDMxMTAvBgNV BAMTKEFGRDQ0OTRGNzY3NjY2RDVENzVDREY5NDQ2MDMyRjBCQzhEMDg1NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgqsaA4QzdRxmICwCwvMmcMcww ZtrSI/HcfYJ+5OJWAVg0Gyu9J+ziHPVfTWa4C7HrYuFuh3a3ieHgsUg3qromlOYJ P4/1V5zBOJl3wP15W2oiVC07dfy/LtzXubDwW9UPjo73OqnrKjdZ1cfLXYq0Gvv9 7W7VHnYK1CsJGzXj7ylBsj07+wPhQ6+o6c5GZNh05mkYLf6r3vMKW9pJh3Ly9VIj YOl3gPq8dTqV424+8aRx2tw1++sEenxL/Q/6CdI5V78XeJ6sgjvmuOcc+luAKDtV 02jLRNxf7O9Qwy0wm28l8j/m4UMj7BMBdlq4RLmgnEF7+WQFoLpaszYP4dwBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUr9RJT3Z2ZtXXXN+URgMvC8jQhXYwHwYDVR0j BBgwFoAUidzZ6etULSAro2y0TOda10PvVE4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDI1OGU1Yy0wNDU2LTQ2YTMtOTYzMi03MDljNzY3MTA0YmIvMC84OURDRDlFOUVC NTQyRDIwMkJBMzZDQjQ0Q0U3NUFENzQzRUY1NDRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0M0VG NTQ0RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0MjU4ZTVjLTA0NTYtNDZhMy05 NjMyLTcwOWM3NjcxMDRiYi8wLzMxMzUzNzJlMzEzMDJlMzEzNTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzMzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnQqfMA0GCSqG SIb3DQEBCwUAA4IBAQDJiaZJJYHiGiUI7rqwHjjzOENG2OO9OB4AsQZbYe2dHNFI tgrK9TbiYbo5PnPrPAItWESBQpxekz7EDAzvKMvXmSoDOlUO329G0bkDMAL8qQ2h rCbgvERIJGtzdNGcbBl+xIDzHt4DotQOORNj/oWTWQZ0yTaHLS6rg/9E5+DKPRWx 75DfeYqqzrqv5OrtYUeRbsOR1pyqFSFPfhqPA69t9W6s7R/CmN8L8X1moaiRIXUH IECoWuzAI7az4Zig4XPGVGAbO1km2d9ByqHlfH9DwlTh9fnW/5bwjm/wJ3od/Hax /0VUC7HWaA41kkOYtRj/AAtKLkhP4ZjyoRrKzV2f -----END CERTIFICATE-----Generated at Thu Dec 25 11:07:41 2025 by rpki-client