This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/323430363a353463303a3a2f33332d3333203d3e20313430343739.roa File: 323430363a353463303a3a2f33332d3333203d3e20313430343739.roa (raw, json) Hash identifier: PrqwHi6VDGsbOfGzpQVys1jP9vQnIVrI8cB9N7l7cwc= Subject key identifier: EF:64:F1:5F:26:F1:F8:A5:9B:33:CB:6F:9B:87:5D:C7:65:70:07:B7 Certificate issuer: /CN=7470038419B67CD1743CE4D96953077ECE6928FE Certificate serial: 4D7553368E6E1CD5596A146ACF8B804E77590253 Authority key identifier: 74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/323430363a353463303a3a2f33332d3333203d3e20313430343739.roa Signing time: Tue 06 Jan 2026 11:00:03 +0000 ROA not before: Tue 06 Jan 2026 10:55:03 +0000 ROA not after: Tue 05 Jan 2027 11:00:03 +0000 asID: 140479 IP address blocks: 2406:54c0::/33 maxlen: 33 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.crl rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Feb 2026 04:12:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:75:53:36:8e:6e:1c:d5:59:6a:14:6a:cf:8b:80:4e:77:59:02:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7470038419B67CD1743CE4D96953077ECE6928FE Validity Not Before: Jan 6 10:55:03 2026 GMT Not After : Jan 5 11:00:03 2027 GMT Subject: CN=EF64F15F26F1F8A59B33CB6F9B875DC7657007B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7a:84:6c:d2:da:66:20:31:01:3b:11:5a:21: fd:1d:92:80:0d:64:6d:fd:0a:8f:70:a1:1b:61:66: a8:df:e6:05:56:4d:17:b1:3c:24:00:9b:9d:d9:2d: ef:ac:9d:2f:ff:41:0f:20:3a:46:09:90:8e:e2:a9: f6:ce:0f:58:8f:2c:92:68:4d:e8:00:a6:76:bf:4f: d2:d1:29:d9:3a:d7:27:8e:89:d2:6d:3c:24:13:54: ee:92:a7:20:39:be:85:69:91:39:15:bb:bf:27:ff: b5:84:dc:7d:a0:9c:d8:a1:4d:3d:c3:ab:79:e7:ed: 91:92:cd:58:e4:a5:51:f3:1a:9a:f6:d6:c6:7a:fc: 21:69:57:45:8f:13:43:d6:71:89:36:ee:7c:f7:61: 9b:67:b4:0d:c6:9e:78:c2:1a:a6:80:de:b4:3f:25: a6:47:7c:96:4e:58:6a:e0:f9:14:fe:77:dd:75:aa: 4d:c4:50:48:df:f9:a4:db:c5:f5:98:56:57:ff:db: 3e:73:f8:4e:8a:b2:88:ce:34:1d:e9:97:37:84:d5: 19:41:fe:0f:d9:f0:48:bd:73:f6:62:45:96:5f:79: 8f:83:6d:e6:fe:c4:b2:fb:51:30:84:4d:be:cc:ec: 6d:57:55:45:e0:55:66:6b:c5:b8:d6:8c:a6:16:c1: dd:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:64:F1:5F:26:F1:F8:A5:9B:33:CB:6F:9B:87:5D:C7:65:70:07:B7 X509v3 Authority Key Identifier: keyid:74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/323430363a353463303a3a2f33332d3333203d3e20313430343739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:54c0::/33 Signature Algorithm: sha256WithRSAEncryption 86:09:6d:9d:3f:a1:a4:21:fc:8b:6a:42:24:1b:da:6d:42:13: 87:5c:d4:de:15:2d:d8:e4:bd:b6:62:7e:fa:f9:fb:22:03:f5: 58:c3:08:ac:75:a9:6a:61:74:c8:80:d5:5b:23:6a:f8:ae:ac: 97:cd:3c:7d:72:49:15:cf:70:54:a4:1a:0f:69:1b:5b:5d:27: 70:b4:7a:65:21:f2:fd:67:02:0d:4a:a9:bd:b7:09:5e:62:1c: ad:3d:75:2b:c5:41:6e:dc:c1:f1:69:3f:45:28:fb:22:cd:a3: 71:fa:35:e6:93:bc:02:57:ca:2f:c3:45:76:3b:f4:ee:c3:05: f1:2a:44:fe:43:91:5f:66:55:3e:70:d4:9d:a6:dd:9e:89:45: b7:7c:77:bb:23:ce:c1:14:8b:28:8e:1f:2f:79:17:94:d2:c1: 5b:48:d7:a1:f2:a6:b0:2a:e0:f7:f1:a0:12:18:40:ec:b9:b9: 41:09:d9:b9:c3:a6:1d:54:55:4c:72:76:08:b4:3b:34:bc:56: 1a:39:15:a6:02:0a:c4:2b:06:6f:1b:89:e3:f5:d9:89:3a:a5: e3:7c:4d:f8:3c:f5:b1:ff:f8:78:66:c7:92:0f:2c:22:d7:7b: f7:44:6b:c9:e7:27:f5:9e:07:15:aa:6f:93:94:af:ea:05:00: 81:bb:a5:a9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTXVTNo5uHNVZahRqz4uATndZAlMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ3MDAzODQxOUI2N0NEMTc0M0NFNEQ5Njk1MzA3N0VD RTY5MjhGRTAeFw0yNjAxMDYxMDU1MDNaFw0yNzAxMDUxMTAwMDNaMDMxMTAvBgNV BAMTKEVGNjRGMTVGMjZGMUY4QTU5QjMzQ0I2RjlCODc1REM3NjU3MDA3QjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0eoRs0tpmIDEBOxFaIf0dkoAN ZG39Co9woRthZqjf5gVWTRexPCQAm53ZLe+snS//QQ8gOkYJkI7iqfbOD1iPLJJo TegApna/T9LRKdk61yeOidJtPCQTVO6SpyA5voVpkTkVu78n/7WE3H2gnNihTT3D q3nn7ZGSzVjkpVHzGpr21sZ6/CFpV0WPE0PWcYk27nz3YZtntA3GnnjCGqaA3rQ/ JaZHfJZOWGrg+RT+d911qk3EUEjf+aTbxfWYVlf/2z5z+E6KsojONB3plzeE1RlB /g/Z8Ei9c/ZiRZZfeY+Dbeb+xLL7UTCETb7M7G1XVUXgVWZrxbjWjKYWwd3NAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU72TxXybx+KWbM8tvm4ddx2VwB7cwHwYDVR0j BBgwFoAUdHADhBm2fNF0POTZaVMHfs5pKP4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w Yzc2NWQ1MS1iMGIxLTQzNWQtYTY2Yi02MDRjNmU1ZDI5ZWYvMC83NDcwMDM4NDE5 QjY3Q0QxNzQzQ0U0RDk2OTUzMDc3RUNFNjkyOEZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ3MDAzODQxOUI2N0NEMTc0M0NFNEQ5Njk1MzA3N0VDRTY5 MjhGRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjNzY1ZDUxLWIwYjEtNDM1ZC1h NjZiLTYwNGM2ZTVkMjllZi8wLzMyMzQzMDM2M2EzNTM0NjMzMDNhM2EyZjMzMzMy ZDMzMzMyMDNkM2UyMDMxMzQzMDM0MzczOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGByQGVMAAMA0GCSqG SIb3DQEBCwUAA4IBAQCGCW2dP6GkIfyLakIkG9ptQhOHXNTeFS3Y5L22Yn76+fsi A/VYwwisdalqYXTIgNVbI2r4rqyXzTx9ckkVz3BUpBoPaRtbXSdwtHplIfL9ZwIN Sqm9twleYhytPXUrxUFu3MHxaT9FKPsizaNx+jXmk7wCV8ovw0V2O/TuwwXxKkT+ Q5FfZlU+cNSdpt2eiUW3fHe7I87BFIsojh8veReU0sFbSNeh8qawKuD38aASGEDs ublBCdm5w6YdVFVMcnYItDs0vFYaORWmAgrEKwZvG4nj9dmJOqXjfE34PPWx//h4 ZseSDywi13v3RGvJ5yf1ngcVqm+TlK/qBQCBu6Wp -----END CERTIFICATE-----Generated at Mon Feb 2 12:55:44 2026 by rpki-client