This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a31343a3a2f34382d3438203d3e20313432333339.roa File: 323430373a613563303a31343a3a2f34382d3438203d3e20313432333339.roa (raw, json) Hash identifier: JsI09r/ZNnEPFeCt6WLBPTMEkxJRdrp4JE3T6ebsTQM= Subject key identifier: CF:CF:6F:21:BE:D9:A7:D0:32:C0:67:85:BB:9E:8F:B0:A3:DC:14:22 Certificate issuer: /CN=C24FD85D1F493383773D253EBB38BED908305E45 Certificate serial: 2C3372B95274359912EFF08BBB0868BFB73DED23 Authority key identifier: C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a31343a3a2f34382d3438203d3e20313432333339.roa Signing time: Fri 09 Jan 2026 15:00:00 +0000 ROA not before: Fri 09 Jan 2026 14:55:00 +0000 ROA not after: Fri 08 Jan 2027 15:00:00 +0000 asID: 142339 IP address blocks: 2407:a5c0:14::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.crl rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Feb 2026 06:16:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:33:72:b9:52:74:35:99:12:ef:f0:8b:bb:08:68:bf:b7:3d:ed:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C24FD85D1F493383773D253EBB38BED908305E45 Validity Not Before: Jan 9 14:55:00 2026 GMT Not After : Jan 8 15:00:00 2027 GMT Subject: CN=CFCF6F21BED9A7D032C06785BB9E8FB0A3DC1422 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9d:92:f8:76:69:f3:e7:82:d0:53:c1:4e:ee: 9f:87:10:30:b0:24:c3:c2:38:eb:bd:b2:99:c9:29: cd:95:9c:e4:00:9e:e0:dc:3f:ed:85:03:fb:6b:57: 52:2a:f5:ee:89:f4:26:0e:83:b2:5b:ca:82:f6:2f: d7:65:83:11:48:ba:47:fa:9f:01:06:d1:8f:e4:a4: 7e:a6:79:7b:ba:0d:72:0f:3a:a5:62:ca:5a:81:96: 8a:da:16:2e:b2:64:7e:65:6f:e0:77:ec:80:b1:12: af:4d:c8:0d:59:d0:bd:1a:68:4f:64:5e:01:56:fc: 9c:ad:df:38:1b:f4:69:91:9d:17:fc:fa:4e:3c:e6: 4c:58:70:0e:61:67:f7:4a:06:df:df:c3:e6:6f:e1: 02:fd:7f:58:90:89:28:ad:4a:40:81:0e:e9:7d:41: 42:bc:c8:28:d3:b2:d3:da:d2:5c:3a:5a:13:61:44: 22:8a:cb:cb:e3:59:b0:e5:de:b3:95:b1:be:ee:d1: ee:a9:2f:17:a9:46:f4:96:9b:28:79:4c:26:80:5b: 96:20:31:00:99:7a:6a:a5:87:8f:c9:b2:b2:ce:1f: a5:26:5f:7a:63:36:87:34:ca:83:73:fc:26:db:f2: a0:a5:82:22:14:d3:3f:c3:2d:ca:b9:c6:6d:50:d7: cc:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:CF:6F:21:BE:D9:A7:D0:32:C0:67:85:BB:9E:8F:B0:A3:DC:14:22 X509v3 Authority Key Identifier: keyid:C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a31343a3a2f34382d3438203d3e20313432333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:a5c0:14::/48 Signature Algorithm: sha256WithRSAEncryption 02:03:ae:05:5b:a4:47:5b:8e:76:ad:4f:42:2e:5e:28:18:a0: 07:d0:5e:fb:ee:3a:16:16:2c:65:08:de:48:5e:ee:5d:53:74: 79:de:b2:b9:4a:9b:23:4d:05:bf:35:1d:d6:1b:7a:21:46:12: 47:6e:87:23:4e:51:0c:2f:6f:0b:4b:8e:81:98:3f:b2:51:0b: 36:47:31:e2:2b:16:18:95:46:a9:9b:09:c3:05:af:b7:9e:56: 42:d0:df:6f:6b:4f:65:1a:78:42:73:0f:a0:34:dc:76:66:0d: 9a:3f:f7:f2:e9:18:95:6e:d6:3f:fa:09:81:26:a9:d8:66:94: b1:db:92:ce:75:dc:a2:a8:6e:66:6c:1c:3b:14:40:18:83:9b: 49:b6:06:16:b5:ef:16:34:a7:81:a7:9c:84:cb:9f:d9:b8:e0: 9e:38:ee:66:f9:b0:0c:be:21:51:c8:2b:2a:43:5d:2d:6d:95: 84:11:05:f0:6b:d6:bd:17:a4:0f:67:02:67:fa:33:4f:06:4c: 64:2d:af:06:fb:9f:f0:7c:34:0a:36:db:a7:b7:2c:3e:00:e3: 61:62:7f:da:09:96:c6:78:aa:22:43:58:4d:3c:ce:82:40:e0: 6a:03:1a:44:1c:af:bb:b6:2f:41:61:7d:a2:72:55:b2:25:95: f9:16:ec:a2 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIULDNyuVJ0NZkS7/CLuwhov7c97SMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI0RkQ4NUQxRjQ5MzM4Mzc3M0QyNTNFQkIzOEJFRDkw ODMwNUU0NTAeFw0yNjAxMDkxNDU1MDBaFw0yNzAxMDgxNTAwMDBaMDMxMTAvBgNV BAMTKENGQ0Y2RjIxQkVEOUE3RDAzMkMwNjc4NUJCOUU4RkIwQTNEQzE0MjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCznZL4dmnz54LQU8FO7p+HEDCw JMPCOOu9spnJKc2VnOQAnuDcP+2FA/trV1Iq9e6J9CYOg7JbyoL2L9dlgxFIukf6 nwEG0Y/kpH6meXu6DXIPOqViylqBloraFi6yZH5lb+B37ICxEq9NyA1Z0L0aaE9k XgFW/Jyt3zgb9GmRnRf8+k485kxYcA5hZ/dKBt/fw+Zv4QL9f1iQiSitSkCBDul9 QUK8yCjTstPa0lw6WhNhRCKKy8vjWbDl3rOVsb7u0e6pLxepRvSWmyh5TCaAW5Yg MQCZemqlh4/JsrLOH6UmX3pjNoc0yoNz/Cbb8qClgiIU0z/DLcq5xm1Q18y/AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUz89vIb7Zp9AywGeFu56PsKPcFCIwHwYDVR0j BBgwFoAUwk/YXR9JM4N3PSU+uzi+2QgwXkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MTkyMDIxZS0zOTA0LTQxMTUtYWY1ZS0zZWRiNzEzYmFhMTQvMC9DMjRGRDg1RDFG NDkzMzgzNzczRDI1M0VCQjM4QkVEOTA4MzA1RTQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI0RkQ4NUQxRjQ5MzM4Mzc3M0QyNTNFQkIzOEJFRDkwODMw NUU0NS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzExOTIwMjFlLTM5MDQtNDExNS1h ZjVlLTNlZGI3MTNiYWExNC8wLzMyMzQzMDM3M2E2MTM1NjMzMDNhMzEzNDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzMjMzMzMzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQHpcAA FDANBgkqhkiG9w0BAQsFAAOCAQEAAgOuBVukR1uOdq1PQi5eKBigB9Be++46FhYs ZQjeSF7uXVN0ed6yuUqbI00FvzUd1ht6IUYSR26HI05RDC9vC0uOgZg/slELNkcx 4isWGJVGqZsJwwWvt55WQtDfb2tPZRp4QnMPoDTcdmYNmj/38ukYlW7WP/oJgSap 2GaUsduSznXcoqhuZmwcOxRAGIObSbYGFrXvFjSngaechMuf2bjgnjjuZvmwDL4h UcgrKkNdLW2VhBEF8GvWvRekD2cCZ/ozTwZMZC2vBvuf8Hw0Cjbbp7csPgDjYWJ/ 2gmWxniqIkNYTTzOgkDgagMaRByvu7YvQWF9onJVsiWV+Rbsog== -----END CERTIFICATE-----Generated at Mon Feb 2 14:28:43 2026 by rpki-client