This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/323430363a353463303a383030303a3a2f33332d3333203d3e20313430343739.roa File: 323430363a353463303a383030303a3a2f33332d3333203d3e20313430343739.roa (raw, json) Hash identifier: pDyawm8Ut1xJC/Kb1Iiv+fIq9ylWhbkOkOXsv+y8R04= Subject key identifier: B2:AB:85:C6:09:36:11:29:52:D3:E3:62:54:A5:6A:0A:06:49:9B:A3 Certificate issuer: /CN=7470038419B67CD1743CE4D96953077ECE6928FE Certificate serial: 335EF2DCAD7F8C619C76ED1C94D7EE7BBF052ED7 Authority key identifier: 74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/323430363a353463303a383030303a3a2f33332d3333203d3e20313430343739.roa Signing time: Tue 06 Jan 2026 10:01:42 +0000 ROA not before: Tue 06 Jan 2026 09:56:42 +0000 ROA not after: Tue 05 Jan 2027 10:01:42 +0000 asID: 140479 IP address blocks: 2406:54c0:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.crl rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Feb 2026 04:12:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:5e:f2:dc:ad:7f:8c:61:9c:76:ed:1c:94:d7:ee:7b:bf:05:2e:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7470038419B67CD1743CE4D96953077ECE6928FE Validity Not Before: Jan 6 09:56:42 2026 GMT Not After : Jan 5 10:01:42 2027 GMT Subject: CN=B2AB85C60936112952D3E36254A56A0A06499BA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:c7:e1:dd:c3:54:2f:a7:c1:97:25:47:1e:14: 1c:0e:71:52:e1:9d:d4:36:76:17:4e:80:9d:cc:5a: 2a:cc:76:f4:d8:8b:ef:a2:dc:66:e7:36:4f:c2:a6: 70:1b:fb:77:22:6a:e9:0f:43:c2:ce:fa:42:77:c4: 1d:2a:87:b6:01:54:12:ad:98:01:13:a3:4d:b8:95: 0a:73:fc:58:98:d8:8d:52:91:af:fd:29:56:a4:e7: 16:77:13:3b:c3:06:e5:a4:c1:69:9d:a1:f8:e7:17: 22:ce:66:b9:f4:c6:65:39:87:cb:fd:69:9b:e3:d5: 42:4e:15:55:69:fb:1c:ff:2b:69:6a:58:ae:6b:74: 72:7a:9e:bf:e5:62:5e:ed:4b:a6:3f:c5:06:12:ad: 9d:39:b6:80:b9:c5:17:bc:63:68:75:13:1c:2f:66: a0:c4:a1:1d:c2:17:94:6e:ea:1c:e0:27:6f:fc:e3: d9:91:03:c8:9c:44:ec:aa:80:12:39:d5:a6:7a:55: bd:de:6a:51:b5:f7:a5:ce:a0:ea:50:6a:33:2e:4e: bc:f9:58:ca:a8:49:ae:1c:2d:4c:cb:df:a5:dd:33: 65:bc:27:a6:72:8b:0e:b0:eb:80:36:c5:87:5d:46: 0e:14:53:9c:3e:ee:ba:56:d8:f5:a4:9e:9b:23:5c: de:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:AB:85:C6:09:36:11:29:52:D3:E3:62:54:A5:6A:0A:06:49:9B:A3 X509v3 Authority Key Identifier: keyid:74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/323430363a353463303a383030303a3a2f33332d3333203d3e20313430343739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:54c0:8000::/33 Signature Algorithm: sha256WithRSAEncryption 34:f6:34:35:58:84:cd:3d:d9:21:73:57:2c:c2:56:24:fa:54: 43:22:70:01:76:9e:a1:b1:88:e5:a1:2d:af:94:bd:cc:d1:28: 87:68:e8:bb:c6:9d:20:d4:56:bb:29:20:a9:6f:0f:85:4e:d5: 9e:4b:6f:69:a2:8f:25:05:1f:24:25:ca:30:b8:bc:e8:2b:07: fa:c6:03:b9:77:0d:2b:9c:b9:ec:d0:08:6b:d5:f3:1b:d2:10: 71:15:90:01:31:15:8b:c1:2c:8f:d4:43:bd:65:62:63:18:2d: 0a:7a:e2:57:5c:1f:9e:d3:5f:ad:fb:5f:86:89:c3:be:e6:23: 66:6b:8f:8d:d8:a2:2f:29:2e:55:df:70:eb:34:a6:21:ba:09: e2:df:cd:da:fe:bc:35:3f:c9:34:5f:3c:c1:36:e6:ff:df:6c: 7d:f6:8e:60:8b:a2:1a:1a:f4:3a:62:ac:1b:ce:3e:dd:da:7c: ff:8e:7a:ce:eb:2d:9e:a3:03:65:c4:da:2b:06:15:24:23:b0: 79:a3:4a:d8:56:0e:73:f7:3d:ab:49:7a:72:2f:39:26:f6:a6: 7c:a2:ea:b4:9c:1c:08:46:1a:9e:a3:d0:3d:a3:88:9f:d5:5c: a3:3d:d1:ab:99:16:51:d3:3a:af:aa:d7:40:b7:91:e1:52:3e: 9d:4d:df:58 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUM17y3K1/jGGcdu0clNfue78FLtcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ3MDAzODQxOUI2N0NEMTc0M0NFNEQ5Njk1MzA3N0VD RTY5MjhGRTAeFw0yNjAxMDYwOTU2NDJaFw0yNzAxMDUxMDAxNDJaMDMxMTAvBgNV BAMTKEIyQUI4NUM2MDkzNjExMjk1MkQzRTM2MjU0QTU2QTBBMDY0OTlCQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTx+Hdw1Qvp8GXJUceFBwOcVLh ndQ2dhdOgJ3MWirMdvTYi++i3GbnNk/CpnAb+3ciaukPQ8LO+kJ3xB0qh7YBVBKt mAETo024lQpz/FiY2I1Ska/9KVak5xZ3EzvDBuWkwWmdofjnFyLOZrn0xmU5h8v9 aZvj1UJOFVVp+xz/K2lqWK5rdHJ6nr/lYl7tS6Y/xQYSrZ05toC5xRe8Y2h1Exwv ZqDEoR3CF5Ru6hzgJ2/849mRA8icROyqgBI51aZ6Vb3ealG196XOoOpQajMuTrz5 WMqoSa4cLUzL36XdM2W8J6Zyiw6w64A2xYddRg4UU5w+7rpW2PWknpsjXN4xAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUsquFxgk2ESlS0+NiVKVqCgZJm6MwHwYDVR0j BBgwFoAUdHADhBm2fNF0POTZaVMHfs5pKP4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w Yzc2NWQ1MS1iMGIxLTQzNWQtYTY2Yi02MDRjNmU1ZDI5ZWYvMC83NDcwMDM4NDE5 QjY3Q0QxNzQzQ0U0RDk2OTUzMDc3RUNFNjkyOEZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ3MDAzODQxOUI2N0NEMTc0M0NFNEQ5Njk1MzA3N0VDRTY5 MjhGRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjNzY1ZDUxLWIwYjEtNDM1ZC1h NjZiLTYwNGM2ZTVkMjllZi8wLzMyMzQzMDM2M2EzNTM0NjMzMDNhMzgzMDMwMzAz YTNhMmYzMzMzMmQzMzMzMjAzZDNlMjAzMTM0MzAzNDM3Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgck BlTAgDANBgkqhkiG9w0BAQsFAAOCAQEANPY0NViEzT3ZIXNXLMJWJPpUQyJwAXae obGI5aEtr5S9zNEoh2jou8adINRWuykgqW8PhU7VnktvaaKPJQUfJCXKMLi86CsH +sYDuXcNK5y57NAIa9XzG9IQcRWQATEVi8Esj9RDvWViYxgtCnriV1wfntNfrftf honDvuYjZmuPjdiiLykuVd9w6zSmIboJ4t/N2v68NT/JNF88wTbm/99sffaOYIui Ghr0OmKsG84+3dp8/456zustnqMDZcTaKwYVJCOweaNK2FYOc/c9q0l6ci85Jvam fKLqtJwcCEYanqPQPaOIn9Vcoz3Rq5kWUdM6r6rXQLeR4VI+nU3fWA== -----END CERTIFICATE-----Generated at Mon Feb 2 12:58:44 2026 by rpki-client