This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/323430313a643934303a653066663a3a2f34382d3438203d3e203234353330.roa File: 323430313a643934303a653066663a3a2f34382d3438203d3e203234353330.roa (raw, json) Hash identifier: uJJBq3CRQPlKFkFszpgC+lrwza9O+o/0ijEYSMnEI1M= Subject key identifier: 50:35:73:49:CE:48:60:42:94:DF:27:88:43:CD:14:E5:90:54:21:D2 Certificate issuer: /CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40 Certificate serial: 18FCCE59CC31C6E538A08C9ED6B6821EDD8742D6 Authority key identifier: 6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/323430313a643934303a653066663a3a2f34382d3438203d3e203234353330.roa Signing time: Fri 21 Nov 2025 07:03:03 +0000 ROA not before: Fri 21 Nov 2025 06:58:03 +0000 ROA not after: Fri 20 Nov 2026 07:03:03 +0000 asID: 24530 IP address blocks: 2401:d940:e0ff::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 02:12:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:fc:ce:59:cc:31:c6:e5:38:a0:8c:9e:d6:b6:82:1e:dd:87:42:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6F6A3530198A9B7657A636FECCFB39F3BF71FB40 Validity Not Before: Nov 21 06:58:03 2025 GMT Not After : Nov 20 07:03:03 2026 GMT Subject: CN=50357349CE48604294DF278843CD14E5905421D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:79:5c:ea:e1:4d:81:68:66:22:87:07:99:ff: 4d:df:cc:15:bb:93:65:2d:64:7d:17:19:2b:8d:21: 55:c4:1c:ed:f3:0b:31:3c:99:a6:08:c1:48:f2:a1: 9b:82:0c:48:a6:e0:b4:7f:f1:9e:63:27:0c:a6:54: 1c:5c:4d:af:02:00:4e:6f:5b:b9:57:04:f4:1f:51: a0:16:40:11:7d:ba:0e:75:b1:de:0f:89:81:88:61: d8:fc:51:ec:2a:fc:75:8a:d9:11:89:97:ab:1e:32: d4:6d:d3:6c:ef:46:86:7b:4b:1e:90:05:51:28:5c: 4d:3b:9b:73:9b:87:36:fd:1d:e5:cf:4d:a8:73:fe: 4a:52:6d:a9:d3:82:b1:b7:8d:a0:14:0e:6a:1c:d3: c7:81:99:4a:1b:2e:d8:d1:5c:29:6f:5d:90:5a:b0: aa:ff:8b:06:8a:30:43:94:2d:ca:aa:5e:9e:f4:79: 9c:58:f4:64:84:3c:a8:5e:1f:0c:b8:03:20:9d:f9: 89:1b:17:6d:95:dc:20:ab:2f:11:0d:90:a1:1f:ef: 0a:e1:a8:88:55:f0:89:90:17:78:35:76:d8:d5:8f: a0:d1:9d:1f:85:79:79:30:20:0d:9c:10:42:fc:33: 00:b1:a4:df:de:1f:b0:4c:26:07:39:91:d3:28:15: 78:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:35:73:49:CE:48:60:42:94:DF:27:88:43:CD:14:E5:90:54:21:D2 X509v3 Authority Key Identifier: keyid:6F:6A:35:30:19:8A:9B:76:57:A6:36:FE:CC:FB:39:F3:BF:71:FB:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F6A3530198A9B7657A636FECCFB39F3BF71FB40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/042344be-f9fb-4634-92d6-894dd538cadf/0/323430313a643934303a653066663a3a2f34382d3438203d3e203234353330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:d940:e0ff::/48 Signature Algorithm: sha256WithRSAEncryption 4c:da:6c:4e:5b:98:df:08:55:b3:62:9d:67:f9:1f:f5:c4:38: 02:a7:70:77:b9:e3:84:0d:26:dd:0b:25:7c:b3:cf:cb:13:17: 09:d2:29:f2:ef:6b:df:6d:d9:d1:d6:2b:a5:4f:08:26:01:20: 1f:cd:91:76:56:fd:b0:51:c7:31:f5:39:f8:85:8c:67:81:c9: 4a:ac:fd:c3:97:6c:e3:29:bd:01:7a:25:63:3a:2b:1f:9c:93: c6:35:de:d1:91:1b:99:c0:62:2b:50:4f:71:fe:f0:0c:92:80: ea:15:47:d0:fb:57:18:89:94:65:b1:f7:33:7e:f7:4a:f9:64: 5b:97:46:c1:c1:5f:b5:3a:b9:f6:44:df:fc:cf:6b:ca:3f:bd: e2:03:3b:3c:2d:54:1c:4f:b5:96:7b:75:4c:8b:9e:49:c4:94: cc:61:ea:e3:b5:2f:b0:8f:fc:3b:77:50:36:7b:a9:04:ce:d4: c1:ff:d4:53:09:92:88:83:11:f8:62:2a:eb:fd:29:be:f7:1b: c8:92:41:03:1c:2d:6d:17:ce:fc:f7:eb:a5:5a:4f:3c:d9:2a: 08:15:a3:50:b0:aa:72:5b:f8:80:00:0f:61:0b:43:f9:cc:ae: ff:81:f7:73:e5:7b:bd:9b:08:fc:be:66:83:06:20:07:58:63: 06:96:e2:89 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGPzOWcwxxuU4oIye1raCHt2HQtYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNC RjcxRkI0MDAeFw0yNTExMjEwNjU4MDNaFw0yNjExMjAwNzAzMDNaMDMxMTAvBgNV BAMTKDUwMzU3MzQ5Q0U0ODYwNDI5NERGMjc4ODQzQ0QxNEU1OTA1NDIxRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOeVzq4U2BaGYihweZ/03fzBW7 k2UtZH0XGSuNIVXEHO3zCzE8maYIwUjyoZuCDEim4LR/8Z5jJwymVBxcTa8CAE5v W7lXBPQfUaAWQBF9ug51sd4PiYGIYdj8Uewq/HWK2RGJl6seMtRt02zvRoZ7Sx6Q BVEoXE07m3Obhzb9HeXPTahz/kpSbanTgrG3jaAUDmoc08eBmUobLtjRXClvXZBa sKr/iwaKMEOULcqqXp70eZxY9GSEPKheHwy4AyCd+YkbF22V3CCrLxENkKEf7wrh qIhV8ImQF3g1dtjVj6DRnR+FeXkwIA2cEEL8MwCxpN/eH7BMJgc5kdMoFXitAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUUDVzSc5IYEKU3yeIQ80U5ZBUIdIwHwYDVR0j BBgwFoAUb2o1MBmKm3ZXpjb+zPs5879x+0AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDIzNDRiZS1mOWZiLTQ2MzQtOTJkNi04OTRkZDUzOGNhZGYvMC82RjZBMzUzMDE5 OEE5Qjc2NTdBNjM2RkVDQ0ZCMzlGM0JGNzFGQjQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkY2QTM1MzAxOThBOUI3NjU3QTYzNkZFQ0NGQjM5RjNCRjcx RkI0MC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0MjM0NGJlLWY5ZmItNDYzNC05 MmQ2LTg5NGRkNTM4Y2FkZi8wLzMyMzQzMDMxM2E2NDM5MzQzMDNhNjUzMDY2NjYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjM0MzUzMzMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHZ QOD/MA0GCSqGSIb3DQEBCwUAA4IBAQBM2mxOW5jfCFWzYp1n+R/1xDgCp3B3ueOE DSbdCyV8s8/LExcJ0iny72vfbdnR1iulTwgmASAfzZF2Vv2wUccx9Tn4hYxngclK rP3Dl2zjKb0BeiVjOisfnJPGNd7RkRuZwGIrUE9x/vAMkoDqFUfQ+1cYiZRlsfcz fvdK+WRbl0bBwV+1Orn2RN/8z2vKP73iAzs8LVQcT7WWe3VMi55JxJTMYerjtS+w j/w7d1A2e6kEztTB/9RTCZKIgxH4Yirr/Sm+9xvIkkEDHC1tF8789+ulWk882SoI FaNQsKpyW/iAAA9hC0P5zK7/gfdz5Xu9mwj8vmaDBiAHWGMGluKJ -----END CERTIFICATE-----Generated at Wed Dec 3 16:20:56 2025 by rpki-client