This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/323030313a6466313a316338303a3a2f34382d3438203d3e20313339333637.roa File: 323030313a6466313a316338303a3a2f34382d3438203d3e20313339333637.roa (raw, json) Hash identifier: FLALrXW88OdyfJgNAdKbgu+otxNBlGdrwAiQnaIoTaE= Subject key identifier: 28:24:4D:7F:EB:98:BE:BF:D2:D5:30:1E:95:0D:FC:76:81:F8:B6:4C Certificate issuer: /CN=E7D91E7B841DB274E77E823084312F8B78A5C951 Certificate serial: 5FA4C360432919D516565FDC8B876B5EC07C5AF5 Authority key identifier: E7:D9:1E:7B:84:1D:B2:74:E7:7E:82:30:84:31:2F:8B:78:A5:C9:51 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7D91E7B841DB274E77E823084312F8B78A5C951.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/323030313a6466313a316338303a3a2f34382d3438203d3e20313339333637.roa Signing time: Wed 26 Nov 2025 08:00:40 +0000 ROA not before: Wed 26 Nov 2025 07:55:40 +0000 ROA not after: Wed 25 Nov 2026 08:00:40 +0000 asID: 139367 IP address blocks: 2001:df1:1c80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/E7D91E7B841DB274E77E823084312F8B78A5C951.crl rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/E7D91E7B841DB274E77E823084312F8B78A5C951.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7D91E7B841DB274E77E823084312F8B78A5C951.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 09:49:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:a4:c3:60:43:29:19:d5:16:56:5f:dc:8b:87:6b:5e:c0:7c:5a:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E7D91E7B841DB274E77E823084312F8B78A5C951 Validity Not Before: Nov 26 07:55:40 2025 GMT Not After : Nov 25 08:00:40 2026 GMT Subject: CN=28244D7FEB98BEBFD2D5301E950DFC7681F8B64C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:66:ed:51:06:47:37:7a:8d:02:94:d5:bb:12: 4a:0a:bb:b4:be:ac:78:df:c7:85:23:40:99:b9:8e: 85:3e:32:c9:ae:24:25:6d:60:a6:08:1e:9e:8c:d7: 29:15:52:80:db:17:a6:55:d2:c6:7b:b6:d5:d4:7a: 34:d0:05:89:82:8b:80:af:83:3f:53:24:67:3e:95: d4:75:2a:cc:3a:b1:71:be:1b:b4:b0:66:e7:a0:db: f5:df:6c:0f:17:34:5b:7e:af:1e:2d:48:45:da:1a: 72:db:e5:c7:81:77:15:54:57:4a:0e:48:07:1e:18: 5e:0a:70:c7:16:bc:95:07:c5:38:70:5c:af:ba:50: d9:77:bb:cb:23:f3:b5:8e:e9:56:e7:1c:ec:96:99: 6e:61:4b:70:48:5b:df:ad:f6:ae:45:7d:2f:1e:e0: 08:f3:d0:c4:46:68:48:03:12:a7:32:09:81:50:5b: 68:6e:30:29:c7:2d:c9:8c:28:3e:8b:13:f7:a9:61: 2f:47:ec:72:0d:35:f0:e3:24:cd:bb:c0:5c:72:19: 10:79:8b:e5:c7:d3:86:40:58:21:42:c1:2a:b3:86: f1:57:2f:c3:4d:ba:0f:32:93:1c:4e:be:89:c0:74: 97:db:a2:8a:6e:7c:79:69:1b:55:5d:6a:9e:00:23: 44:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:24:4D:7F:EB:98:BE:BF:D2:D5:30:1E:95:0D:FC:76:81:F8:B6:4C X509v3 Authority Key Identifier: keyid:E7:D9:1E:7B:84:1D:B2:74:E7:7E:82:30:84:31:2F:8B:78:A5:C9:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/E7D91E7B841DB274E77E823084312F8B78A5C951.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7D91E7B841DB274E77E823084312F8B78A5C951.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/323030313a6466313a316338303a3a2f34382d3438203d3e20313339333637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:1c80::/48 Signature Algorithm: sha256WithRSAEncryption 46:2d:a4:77:54:86:43:b3:f0:08:95:3b:29:48:1b:96:d9:66: 0f:8b:f5:5b:2a:83:e5:70:c4:0b:f0:19:d1:70:a9:c7:04:cb: 3d:03:02:cb:63:f2:1d:54:25:e9:e8:c6:20:11:c8:bc:a3:ba: 33:fd:c6:ea:a2:b6:65:72:e8:0f:0e:bb:cf:72:26:d4:5f:88: 57:3b:e7:69:d6:52:78:ce:d5:e1:b9:92:c8:8d:87:c5:3d:8d: c1:ff:0b:0b:d5:71:a5:0c:09:43:46:4c:2c:9e:a1:39:fa:df: 5f:6c:5d:89:8c:3b:7a:f3:6d:29:5b:c8:32:ac:2f:7f:09:70: ee:9c:5f:9e:ab:7b:d0:a0:f6:63:99:7c:bf:15:0d:d3:e7:58: f2:93:a6:af:b0:4c:47:b4:b9:4c:39:d3:5c:d7:54:fa:9b:8c: 3c:e2:d8:6c:02:fa:cc:60:14:0e:8f:d7:02:70:79:f1:16:27: 49:bc:4e:79:de:43:18:2b:d2:18:d0:bc:25:b7:cb:f9:6f:03: db:c1:54:79:89:6c:ab:2c:aa:66:59:7b:29:f1:e3:06:42:b3: a7:9e:58:e0:de:b8:1b:b9:67:61:b9:19:d3:a8:08:79:3e:c0: b7:5e:31:4c:c5:a7:69:3c:7b:a6:a6:2a:05:c0:ca:99:2e:d7: f4:7a:52:b5 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUX6TDYEMpGdUWVl/ci4drXsB8WvUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTdEOTFFN0I4NDFEQjI3NEU3N0U4MjMwODQzMTJGOEI3 OEE1Qzk1MTAeFw0yNTExMjYwNzU1NDBaFw0yNjExMjUwODAwNDBaMDMxMTAvBgNV BAMTKDI4MjQ0RDdGRUI5OEJFQkZEMkQ1MzAxRTk1MERGQzc2ODFGOEI2NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlZu1RBkc3eo0ClNW7EkoKu7S+ rHjfx4UjQJm5joU+MsmuJCVtYKYIHp6M1ykVUoDbF6ZV0sZ7ttXUejTQBYmCi4Cv gz9TJGc+ldR1Ksw6sXG+G7SwZueg2/XfbA8XNFt+rx4tSEXaGnLb5ceBdxVUV0oO SAceGF4KcMcWvJUHxThwXK+6UNl3u8sj87WO6VbnHOyWmW5hS3BIW9+t9q5FfS8e 4Ajz0MRGaEgDEqcyCYFQW2huMCnHLcmMKD6LE/epYS9H7HINNfDjJM27wFxyGRB5 i+XH04ZAWCFCwSqzhvFXL8NNug8ykxxOvonAdJfboopufHlpG1Vdap4AI0TdAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUKCRNf+uYvr/S1TAelQ38doH4tkwwHwYDVR0j BBgwFoAU59kee4QdsnTnfoIwhDEvi3ilyVEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTcwODNhYi0yNzBhLTRiMGEtOGU1NS1hNDVlMWNmMWFmZDUvMC9FN0Q5MUU3Qjg0 MURCMjc0RTc3RTgyMzA4NDMxMkY4Qjc4QTVDOTUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTdEOTFFN0I4NDFEQjI3NEU3N0U4MjMwODQzMTJGOEI3OEE1 Qzk1MS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhNzA4M2FiLTI3MGEtNGIwYS04 ZTU1LWE0NWUxY2YxYWZkNS8wLzMyMzAzMDMxM2E2NDY2MzEzYTMxNjMzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzMzNjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8RyAMA0GCSqGSIb3DQEBCwUAA4IBAQBGLaR3VIZDs/AIlTspSBuW2WYPi/VbKoPl cMQL8BnRcKnHBMs9AwLLY/IdVCXp6MYgEci8o7oz/cbqorZlcugPDrvPcibUX4hX O+dp1lJ4ztXhuZLIjYfFPY3B/wsL1XGlDAlDRkwsnqE5+t9fbF2JjDt6820pW8gy rC9/CXDunF+eq3vQoPZjmXy/FQ3T51jyk6avsExHtLlMOdNc11T6m4w84thsAvrM YBQOj9cCcHnxFidJvE553kMYK9IY0Lwlt8v5bwPbwVR5iWyrLKpmWXsp8eMGQrOn nljg3rgbuWdhuRnTqAh5PsC3XjFMxadpPHumpioFwMqZLtf0elK1 -----END CERTIFICATE-----Generated at Wed Dec 3 16:51:05 2025 by rpki-client