This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/323430303a636438303a3a2f33322d3438203d3e203536323432.roa File: 323430303a636438303a3a2f33322d3438203d3e203536323432.roa (raw, json) Hash identifier: zcYJvgiaLV2GHe09dAoReTJVtccl4TPkiIrfadlJVtM= Subject key identifier: 99:CC:F8:17:8E:9A:77:76:F8:A9:AE:6B:0B:D4:58:C4:AA:FF:BA:3D Certificate issuer: /CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Certificate serial: 770A779F4F4CAD6E9B527B1BF2A941381B5F9B6C Authority key identifier: 84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/323430303a636438303a3a2f33322d3438203d3e203536323432.roa Signing time: Fri 28 Nov 2025 07:00:00 +0000 ROA not before: Fri 28 Nov 2025 06:55:00 +0000 ROA not after: Fri 27 Nov 2026 07:00:00 +0000 asID: 56242 IP address blocks: 2400:cd80::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 13:03:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:0a:77:9f:4f:4c:ad:6e:9b:52:7b:1b:f2:a9:41:38:1b:5f:9b:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8469874AE268E2CD4E9A137EDD5599C748530E9E Validity Not Before: Nov 28 06:55:00 2025 GMT Not After : Nov 27 07:00:00 2026 GMT Subject: CN=99CCF8178E9A7776F8A9AE6B0BD458C4AAFFBA3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ea:94:2f:01:22:e5:48:ed:9d:b3:1f:11:45: ad:b9:69:e4:8f:b0:ea:80:d9:4c:84:6d:60:20:d7: 86:63:cc:28:05:03:b5:5d:e1:1e:77:b8:ca:71:1d: ec:fe:78:f7:b9:08:ea:bc:d4:e3:53:b1:b1:04:d2: 5f:ab:01:2c:09:d3:61:49:93:26:5e:13:6a:39:e4: 84:fa:5d:ea:b5:e8:af:d7:1c:65:9d:40:0f:8f:c4: 73:66:1d:3b:ef:78:e5:a9:87:4b:64:37:c5:cf:e8: 8e:f2:4a:3e:a1:67:ee:8c:c6:7e:f6:e7:84:83:b4: 22:a9:e1:48:74:b8:31:8c:8c:ea:d6:15:64:a0:82: a6:4e:25:87:6d:a2:8b:39:56:9a:7d:af:38:ac:1b: 4d:2b:2c:fd:2f:27:20:f1:14:cc:c1:0f:84:67:c6: 45:4f:1c:19:7b:6a:93:c3:2c:60:2c:19:a3:22:d4: ad:50:09:90:62:3f:7e:27:b9:57:6f:37:b8:93:14: cb:70:3b:32:d9:df:08:dd:26:cd:68:21:68:6d:57: 35:48:47:94:b1:b0:96:3b:44:87:f4:a8:45:ff:f8: d0:4f:a7:12:c0:81:5c:8e:c2:7e:34:91:7f:07:3b: 24:46:e7:50:6e:7f:75:fe:15:b1:a6:4b:83:20:85: 18:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:CC:F8:17:8E:9A:77:76:F8:A9:AE:6B:0B:D4:58:C4:AA:FF:BA:3D X509v3 Authority Key Identifier: keyid:84:69:87:4A:E2:68:E2:CD:4E:9A:13:7E:DD:55:99:C7:48:53:0E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/8469874AE268E2CD4E9A137EDD5599C748530E9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8469874AE268E2CD4E9A137EDD5599C748530E9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17a2d25b-cb18-45be-9fa1-154ca1579223/0/323430303a636438303a3a2f33322d3438203d3e203536323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:cd80::/32 Signature Algorithm: sha256WithRSAEncryption 85:64:3d:9c:2f:03:21:79:33:34:45:a3:03:03:e9:5e:37:7f: 76:38:d6:7c:4d:d8:c7:9f:11:44:e5:1a:48:02:1a:ba:ba:ab: 0b:63:df:17:79:d1:3f:51:41:85:33:d7:d4:8d:7c:b2:4f:14: 4f:fd:6c:0e:94:75:79:f8:c8:f5:00:ba:aa:72:58:a3:a5:cf: be:7d:1d:ed:dd:62:25:12:b8:b9:f8:c4:2d:2e:cb:c5:74:f3: 9e:81:f1:93:14:88:9b:9e:13:c5:33:eb:a1:ed:64:93:f6:cf: f5:22:40:2b:58:9e:30:92:07:f0:88:75:c6:02:8e:c2:65:cf: ce:43:9e:47:04:6c:f6:79:7c:32:f3:67:fd:a4:1f:88:03:c0: 48:bd:1f:fe:ad:94:b7:bd:22:af:13:f2:68:db:7b:0e:50:20: 18:ce:83:ca:85:35:6a:af:01:fa:2a:ca:07:f4:99:81:5e:d2: 8f:82:61:5f:6a:22:e2:a6:a0:4d:82:4d:c0:03:5c:77:eb:cc: 1b:e5:fa:77:85:93:6d:54:9c:ab:ad:f3:a1:1a:78:80:87:9e: 5d:1d:b3:4f:2a:18:d2:fc:ab:64:4f:6c:c0:bd:a9:f1:cf:e3: 14:c1:2c:eb:ef:4d:96:ed:ed:67:82:a1:39:cb:7b:cf:24:55: cc:c8:e4:f8 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUdwp3n09MrW6bUnsb8qlBOBtfm2wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0 ODUzMEU5RTAeFw0yNTExMjgwNjU1MDBaFw0yNjExMjcwNzAwMDBaMDMxMTAvBgNV BAMTKDk5Q0NGODE3OEU5QTc3NzZGOEE5QUU2QjBCRDQ1OEM0QUFGRkJBM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ6pQvASLlSO2dsx8RRa25aeSP sOqA2UyEbWAg14ZjzCgFA7Vd4R53uMpxHez+ePe5COq81ONTsbEE0l+rASwJ02FJ kyZeE2o55IT6Xeq16K/XHGWdQA+PxHNmHTvveOWph0tkN8XP6I7ySj6hZ+6Mxn72 54SDtCKp4Uh0uDGMjOrWFWSggqZOJYdtoos5Vpp9rzisG00rLP0vJyDxFMzBD4Rn xkVPHBl7apPDLGAsGaMi1K1QCZBiP34nuVdvN7iTFMtwOzLZ3wjdJs1oIWhtVzVI R5SxsJY7RIf0qEX/+NBPpxLAgVyOwn40kX8HOyRG51Buf3X+FbGmS4MghRiRAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUmcz4F46ad3b4qa5rC9RYxKr/uj0wHwYDVR0j BBgwFoAUhGmHSuJo4s1OmhN+3VWZx0hTDp4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2EyZDI1Yi1jYjE4LTQ1YmUtOWZhMS0xNTRjYTE1NzkyMjMvMC84NDY5ODc0QUUy NjhFMkNENEU5QTEzN0VERDU1OTlDNzQ4NTMwRTlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2OTg3NEFFMjY4RTJDRDRFOUExMzdFREQ1NTk5Qzc0ODUz MEU5RS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3YTJkMjViLWNiMTgtNDViZS05 ZmExLTE1NGNhMTU3OTIyMy8wLzMyMzQzMDMwM2E2MzY0MzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzYzMjM0MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAM2AMA0GCSqGSIb3 DQEBCwUAA4IBAQCFZD2cLwMheTM0RaMDA+leN392ONZ8TdjHnxFE5RpIAhq6uqsL Y98XedE/UUGFM9fUjXyyTxRP/WwOlHV5+Mj1ALqqclijpc++fR3t3WIlEri5+MQt LsvFdPOegfGTFIibnhPFM+uh7WST9s/1IkArWJ4wkgfwiHXGAo7CZc/OQ55HBGz2 eXwy82f9pB+IA8BIvR/+rZS3vSKvE/Jo23sOUCAYzoPKhTVqrwH6KsoH9JmBXtKP gmFfaiLipqBNgk3AA1x368wb5fp3hZNtVJyrrfOhGniAh55dHbNPKhjS/KtkT2zA vanxz+MUwSzr702W7e1ngqE5y3vPJFXMyOT4 -----END CERTIFICATE-----Generated at Wed Dec 3 16:41:00 2025 by rpki-client