This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/28a79755-238a-46d2-b052-30587bf9eff7/0/34352e3234392e3232302e302f32342d3234203d3e203535363634.roa File: 34352e3234392e3232302e302f32342d3234203d3e203535363634.roa (raw, json) Hash identifier: UnBNpg7Ki5yb8nLJihGU6CQzLaBHjw3/oRDo43eNzRA= Subject key identifier: C0:94:7C:8C:22:DD:09:05:D4:27:B0:57:4B:5C:A8:C4:94:5C:88:C5 Certificate issuer: /CN=7932E1C92B451A2FD7A5E85B541135E25AD074D5 Certificate serial: 4D393893B04D275A9FB36F48A3C6E57EF9C6DB3D Authority key identifier: 79:32:E1:C9:2B:45:1A:2F:D7:A5:E8:5B:54:11:35:E2:5A:D0:74:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7932E1C92B451A2FD7A5E85B541135E25AD074D5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/28a79755-238a-46d2-b052-30587bf9eff7/0/34352e3234392e3232302e302f32342d3234203d3e203535363634.roa Signing time: Tue 09 Dec 2025 11:34:28 +0000 ROA not before: Tue 09 Dec 2025 11:29:28 +0000 ROA not after: Tue 08 Dec 2026 11:34:28 +0000 asID: 55664 IP address blocks: 45.249.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/28a79755-238a-46d2-b052-30587bf9eff7/0/7932E1C92B451A2FD7A5E85B541135E25AD074D5.crl rsync://repo-rpki.idnic.net/repo/28a79755-238a-46d2-b052-30587bf9eff7/0/7932E1C92B451A2FD7A5E85B541135E25AD074D5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7932E1C92B451A2FD7A5E85B541135E25AD074D5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 08:24:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:39:38:93:b0:4d:27:5a:9f:b3:6f:48:a3:c6:e5:7e:f9:c6:db:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7932E1C92B451A2FD7A5E85B541135E25AD074D5 Validity Not Before: Dec 9 11:29:28 2025 GMT Not After : Dec 8 11:34:28 2026 GMT Subject: CN=C0947C8C22DD0905D427B0574B5CA8C4945C88C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:41:57:a3:d4:bb:c2:a8:8d:d5:0a:8a:b8:45: 39:39:1f:e7:41:93:7a:0f:c1:aa:f8:e4:43:b1:2b: a7:0c:b0:51:4a:d8:11:85:0a:5c:cf:67:09:bc:a8: 91:13:01:14:b3:10:7f:ff:e0:cc:58:d3:6c:76:ea: e9:fc:1d:11:99:3a:1e:34:02:89:1e:81:21:7b:04: 50:cf:ae:0d:02:5c:0f:7c:84:ed:be:7d:76:fa:25: 87:86:6a:ae:3b:54:ea:6d:6b:97:12:7e:7c:a5:c6: b5:16:ff:40:a0:be:b2:dc:96:33:54:a7:03:ba:77: 5a:d3:a6:d3:07:75:c4:d3:39:e3:03:30:70:84:50: c8:76:58:0a:29:25:0a:8c:54:3a:43:e0:31:64:13: a3:2a:36:ec:8f:63:0b:89:21:cb:fa:1e:1e:79:74: 1c:f3:a3:a8:70:03:5f:9f:6d:7b:61:b2:cd:b0:cd: de:8e:b4:f2:d4:a5:6a:e5:5b:5c:29:71:56:fc:f4: fa:dc:96:bd:01:1d:b7:a9:e8:27:ed:2c:e3:bc:a1: df:9a:a7:00:ca:45:89:5f:1e:14:c5:85:7d:58:43: 24:1c:e3:40:39:7f:c4:27:ee:02:75:62:96:22:e1: 2e:79:ac:4f:d4:e9:25:fd:84:e8:b3:7e:1b:9e:a3: 9d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:94:7C:8C:22:DD:09:05:D4:27:B0:57:4B:5C:A8:C4:94:5C:88:C5 X509v3 Authority Key Identifier: keyid:79:32:E1:C9:2B:45:1A:2F:D7:A5:E8:5B:54:11:35:E2:5A:D0:74:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/28a79755-238a-46d2-b052-30587bf9eff7/0/7932E1C92B451A2FD7A5E85B541135E25AD074D5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7932E1C92B451A2FD7A5E85B541135E25AD074D5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/28a79755-238a-46d2-b052-30587bf9eff7/0/34352e3234392e3232302e302f32342d3234203d3e203535363634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.249.220.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:62:2d:f3:d5:71:92:a0:c0:55:51:82:c9:aa:fb:30:32:fb: fc:02:eb:b6:5f:47:97:77:8d:92:67:79:e5:af:dd:6a:8a:18: 20:d0:b3:9c:59:72:37:d1:6f:2a:46:7e:e9:ac:39:d2:dc:68: a2:eb:35:44:dc:47:b9:e2:7c:27:6a:6b:c9:a6:71:a1:48:7b: df:46:8d:16:c7:65:7a:f8:91:a2:71:97:15:b0:2f:9a:c6:76: b2:aa:32:75:bb:e6:61:be:7c:7b:93:7c:04:4d:95:87:d7:8e: 86:f6:58:d8:fe:03:fa:e2:cd:15:2c:73:a4:13:c2:5d:b9:b5: 2c:0b:67:40:94:98:92:b7:15:27:89:dc:62:59:89:60:2c:ff: b1:78:91:59:57:6f:f7:c4:05:fd:ee:85:13:d1:c2:00:80:8e: cc:06:bd:b4:da:33:2b:81:7e:05:a6:f2:1c:2e:a7:a8:47:45: 03:43:5f:24:31:47:64:ea:e8:03:1d:7c:a3:59:6a:61:38:07: 04:99:d3:a3:32:93:80:27:1c:fe:3f:3e:91:16:df:d8:ff:71: 0a:73:62:81:c3:f8:f5:53:bf:19:44:61:93:27:ed:e5:95:d5: c6:ab:af:0c:4f:94:a5:4b:9b:2b:69:3c:ce:8a:8c:c6:21:75: 9e:5f:5b:76 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTTk4k7BNJ1qfs29Io8blfvnG2z0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzkzMkUxQzkyQjQ1MUEyRkQ3QTVFODVCNTQxMTM1RTI1 QUQwNzRENTAeFw0yNTEyMDkxMTI5MjhaFw0yNjEyMDgxMTM0MjhaMDMxMTAvBgNV BAMTKEMwOTQ3QzhDMjJERDA5MDVENDI3QjA1NzRCNUNBOEM0OTQ1Qzg4QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiQVej1LvCqI3VCoq4RTk5H+dB k3oPwar45EOxK6cMsFFK2BGFClzPZwm8qJETARSzEH//4MxY02x26un8HRGZOh40 AokegSF7BFDPrg0CXA98hO2+fXb6JYeGaq47VOpta5cSfnylxrUW/0CgvrLcljNU pwO6d1rTptMHdcTTOeMDMHCEUMh2WAopJQqMVDpD4DFkE6MqNuyPYwuJIcv6Hh55 dBzzo6hwA1+fbXthss2wzd6OtPLUpWrlW1wpcVb89Prclr0BHbep6CftLOO8od+a pwDKRYlfHhTFhX1YQyQc40A5f8Qn7gJ1YpYi4S55rE/U6SX9hOizfhueo521AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwJR8jCLdCQXUJ7BXS1yoxJRciMUwHwYDVR0j BBgwFoAUeTLhyStFGi/XpehbVBE14lrQdNUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OGE3OTc1NS0yMzhhLTQ2ZDItYjA1Mi0zMDU4N2JmOWVmZjcvMC83OTMyRTFDOTJC NDUxQTJGRDdBNUU4NUI1NDExMzVFMjVBRDA3NEQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzkzMkUxQzkyQjQ1MUEyRkQ3QTVFODVCNTQxMTM1RTI1QUQw NzRENS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI4YTc5NzU1LTIzOGEtNDZkMi1i MDUyLTMwNTg3YmY5ZWZmNy8wLzM0MzUyZTMyMzQzOTJlMzIzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC353DANBgkqhkiG 9w0BAQsFAAOCAQEAPWIt89VxkqDAVVGCyar7MDL7/ALrtl9Hl3eNkmd55a/daooY INCznFlyN9FvKkZ+6aw50txoous1RNxHueJ8J2pryaZxoUh730aNFsdleviRonGX FbAvmsZ2sqoydbvmYb58e5N8BE2Vh9eOhvZY2P4D+uLNFSxzpBPCXbm1LAtnQJSY krcVJ4ncYlmJYCz/sXiRWVdv98QF/e6FE9HCAICOzAa9tNozK4F+BabyHC6nqEdF A0NfJDFHZOroAx18o1lqYTgHBJnTozKTgCcc/j8+kRbf2P9xCnNigcP49VO/GURh kyft5ZXVxquvDE+UpUubK2k8zoqMxiF1nl9bdg== -----END CERTIFICATE-----Generated at Fri Dec 19 12:18:28 2025 by rpki-client