This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/323430313a643934303a3a2f33322d3332203d3e203234353330.roa File: 323430313a643934303a3a2f33322d3332203d3e203234353330.roa (raw, json) Hash identifier: zNXLEw6yyDz7/hz6jwmdvLuPssk25TizR9yEuaOWbhQ= Subject key identifier: 02:2D:50:98:54:D5:8C:26:E0:6F:22:50:60:F8:18:E6:AB:8B:3B:D1 Certificate issuer: /CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40 Certificate serial: 63C976363A184383F0F143E9AA3814FE830B41CA Authority key identifier: 6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/323430313a643934303a3a2f33322d3332203d3e203234353330.roa Signing time: Fri 21 Nov 2025 07:03:03 +0000 ROA not before: Fri 21 Nov 2025 06:58:03 +0000 ROA not after: Fri 20 Nov 2026 07:03:03 +0000 asID: 24530 IP address blocks: 2401:d940::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 02:12:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:c9:76:36:3a:18:43:83:f0:f1:43:e9:aa:38:14:fe:83:0b:41:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40 Validity Not Before: Nov 21 06:58:03 2025 GMT Not After : Nov 20 07:03:03 2026 GMT Subject: CN=022D509854D58C26E06F225060F818E6AB8B3BD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:9f:0a:78:b7:43:38:48:84:2e:bc:d9:c9:ed: 89:30:6c:ad:e5:ef:c7:f5:dc:27:60:ca:c0:16:94: dd:8c:c5:05:49:cd:49:43:c2:96:45:17:82:21:dd: 8e:e4:7c:4d:85:b7:d5:65:40:97:aa:d7:23:9c:e8: bf:ce:3c:07:3f:45:aa:72:47:ae:e5:ef:0f:04:a3: 6c:91:87:68:6b:70:e5:9a:02:8a:bb:75:ad:5d:e5: 55:6b:b6:ff:fd:43:cd:79:c2:20:da:ea:5b:34:94: dc:4b:53:88:8f:72:31:03:23:c1:d9:6d:23:1b:a6: 06:56:35:26:03:ba:41:62:0f:c4:80:69:e2:c5:38: 45:a4:cb:3b:a4:71:96:d1:73:61:3a:d5:06:78:aa: db:f6:d3:70:f7:a4:48:cb:e0:65:af:d1:d5:20:2a: e6:ba:9e:a8:55:4f:bb:56:83:dc:28:b0:bb:b4:a6: 63:03:aa:5a:cb:af:cf:0e:48:e9:40:54:56:8d:d3: df:44:75:3b:d2:3b:6d:6b:2f:e2:37:61:21:5d:0a: e8:29:bc:81:91:1a:29:5a:d0:f7:84:34:d1:25:75: a9:21:c7:ed:19:d8:ac:06:08:cb:16:c4:b4:2a:8f: cb:c6:a3:3c:fd:92:52:44:1d:1b:9c:39:cb:f1:b8: cb:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:2D:50:98:54:D5:8C:26:E0:6F:22:50:60:F8:18:E6:AB:8B:3B:D1 X509v3 Authority Key Identifier: keyid:6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/323430313a643934303a3a2f33322d3332203d3e203234353330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:d940::/32 Signature Algorithm: sha256WithRSAEncryption 08:26:bf:fa:b2:19:49:a4:d3:e7:96:ec:94:4d:23:72:c2:b1: 77:92:16:67:ab:b8:ae:c0:db:93:52:33:88:78:40:7f:35:2d: 77:23:a3:1c:be:a8:dd:4c:e4:58:7c:be:d7:66:a2:21:5d:e3: d1:c0:54:f1:0d:31:68:8a:d6:05:09:2e:66:55:2c:16:d5:b8: e5:1c:d6:ef:30:bd:f1:62:43:ee:00:4d:ee:31:c8:a9:cc:70: b8:80:d3:a0:93:46:a8:0b:38:67:7e:fd:41:eb:91:2e:52:75: a9:0f:77:1e:1b:3f:39:64:22:d3:e6:98:a4:8f:9f:ad:3c:02: f6:04:2a:46:20:8a:2e:b1:cf:d5:0c:bd:64:d0:cc:77:8a:f7: 3b:77:ca:58:35:81:2a:29:d0:89:86:6a:b2:33:88:80:69:39: 6b:2a:33:d5:70:e4:ff:c3:84:ed:80:2c:ce:20:60:c5:1b:3f: 86:fe:f2:cd:6a:8c:4c:bc:7a:93:ac:0c:8f:d0:6d:6e:88:de: f9:24:a2:ec:ce:47:b8:f9:3f:5a:28:db:43:95:0f:e5:de:84: fd:9d:1b:3c:39:e6:bb:bc:34:11:a9:e2:9b:9f:48:30:b4:a3: a6:65:af:66:de:55:d4:46:f3:8d:0c:48:bc:76:bc:f5:53:49: 8c:51:a2:9b -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUY8l2NjoYQ4Pw8UPpqjgU/oMLQcowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNC RjcxRkI0MDAeFw0yNTExMjEwNjU4MDNaFw0yNjExMjAwNzAzMDNaMDMxMTAvBgNV BAMTKDAyMkQ1MDk4NTRENThDMjZFMDZGMjI1MDYwRjgxOEU2QUI4QjNCRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZnwp4t0M4SIQuvNnJ7YkwbK3l 78f13CdgysAWlN2MxQVJzUlDwpZFF4Ih3Y7kfE2Ft9VlQJeq1yOc6L/OPAc/Rapy R67l7w8Eo2yRh2hrcOWaAoq7da1d5VVrtv/9Q815wiDa6ls0lNxLU4iPcjEDI8HZ bSMbpgZWNSYDukFiD8SAaeLFOEWkyzukcZbRc2E61QZ4qtv203D3pEjL4GWv0dUg Kua6nqhVT7tWg9wosLu0pmMDqlrLr88OSOlAVFaN099EdTvSO21rL+I3YSFdCugp vIGRGila0PeENNEldakhx+0Z2KwGCMsWxLQqj8vGozz9klJEHRucOcvxuMthAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUAi1QmFTVjCbgbyJQYPgY5quLO9EwHwYDVR0j BBgwFoAUb2o1MBmKm3ZXpjb+zPs5879x+0AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDIzNDRiZS1mOWZiLTQ2MzQtOTJkNi04OTRkZDUzOGNhZGYvMC82RjZBMzUzMDE5 OEE5Qjc2NTdBNjM2RkVDQ0ZCMzlGM0JGNzFGQjQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNCRjcx RkI0MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0MjM0NGJlLWY5ZmItNDYzNC05 MmQ2LTg5NGRkNTM4Y2FkZi8wLzMyMzQzMDMxM2E2NDM5MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMyMzQzNTMzMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAdlAMA0GCSqGSIb3 DQEBCwUAA4IBAQAIJr/6shlJpNPnluyUTSNywrF3khZnq7iuwNuTUjOIeEB/NS13 I6McvqjdTORYfL7XZqIhXePRwFTxDTFoitYFCS5mVSwW1bjlHNbvML3xYkPuAE3u McipzHC4gNOgk0aoCzhnfv1B65EuUnWpD3ceGz85ZCLT5pikj5+tPAL2BCpGIIou sc/VDL1k0Mx3ivc7d8pYNYEqKdCJhmqyM4iAaTlrKjPVcOT/w4TtgCzOIGDFGz+G /vLNaoxMvHqTrAyP0G1uiN75JKLszke4+T9aKNtDlQ/l3oT9nRs8Oea7vDQRqeKb n0gwtKOmZa9m3lXURvONDEi8drz1U0mMUaKb -----END CERTIFICATE-----Generated at Wed Dec 3 16:20:39 2025 by rpki-client