This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a313030303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a313030303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: cC9uX5eCE9W4PbREQnsLAtOLKiq0EhKP+Bu1UcCX5ZQ= Subject key identifier: EB:2F:A5:5C:6A:AE:FB:37:6D:B5:C4:93:EE:9C:9C:79:98:5F:90:F6 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 6FD44522219EE63702ED1098309CCC243047721B Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a313030303a3a2f33362d3438203d3e20313430343233.roa Signing time: Fri 12 Dec 2025 13:00:00 +0000 ROA not before: Fri 12 Dec 2025 12:55:00 +0000 ROA not after: Fri 11 Dec 2026 13:00:00 +0000 asID: 140423 IP address blocks: 2406:20c0:1000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 02:22:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:d4:45:22:21:9e:e6:37:02:ed:10:98:30:9c:cc:24:30:47:72:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Dec 12 12:55:00 2025 GMT Not After : Dec 11 13:00:00 2026 GMT Subject: CN=EB2FA55C6AAEFB376DB5C493EE9C9C79985F90F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:24:3d:e8:c4:9f:70:2c:c8:6e:fa:d4:c4:bd: e8:cf:38:4e:1b:7a:f6:46:e2:ba:d2:ad:4a:cb:45: b2:e2:95:a1:09:04:9e:77:c0:67:f0:e9:64:9b:36: f6:69:b2:be:f7:aa:f5:7a:29:95:70:42:60:77:0e: 38:2f:09:0e:be:49:4a:2c:93:4d:5f:c9:65:34:d0: 4a:16:17:73:a1:8a:24:96:09:4d:bc:a9:0d:ab:58: 44:94:ca:67:3d:75:8f:88:4f:ce:c5:f1:f3:79:9b: c7:2b:eb:92:d4:72:f9:b2:b6:a6:99:b1:7b:63:f9: 6b:ff:f9:c9:ea:16:d5:a2:10:cc:55:aa:3f:aa:82: 64:8f:75:e8:e8:cb:f0:a9:52:6d:af:1c:af:c3:fa: aa:89:d8:05:1a:33:c5:11:a7:b1:61:10:b6:d5:15: 66:bc:d0:08:31:5c:31:7c:ec:a8:76:93:45:f2:41: 33:62:38:95:4d:f1:74:d1:55:85:50:51:1a:20:ae: 1f:9b:af:51:fb:01:7b:7d:1a:00:ce:7c:a7:43:bf: 87:95:75:97:83:e9:4d:f7:7c:7a:8c:dd:a0:85:cf: d3:60:42:9a:27:fa:11:1e:8e:b6:f5:cd:dc:32:fa: d5:21:9b:9b:2d:ba:ad:75:c4:ce:bd:79:45:87:fc: 07:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:2F:A5:5C:6A:AE:FB:37:6D:B5:C4:93:EE:9C:9C:79:98:5F:90:F6 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a313030303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:1000::/36 Signature Algorithm: sha256WithRSAEncryption 08:6e:56:21:83:b3:51:47:f1:9b:ae:d9:38:8a:d6:92:fe:e0: 4d:57:cc:c2:97:4a:f7:1c:f7:48:d3:a3:3e:17:e6:d2:8e:de: 31:6d:01:57:7c:8f:e9:a2:dd:15:93:f5:5c:a1:b9:16:a7:17: d8:bb:af:18:64:c4:cd:5a:16:7f:c0:42:bf:62:61:7f:19:83: f1:31:87:61:9e:f1:fe:d9:08:42:24:08:b1:8b:ce:1c:d3:8b: 59:50:c5:a5:0a:16:26:95:08:92:3f:37:07:00:77:40:6d:4a: c4:8a:5b:d6:ee:8e:55:7c:8f:14:a6:1f:15:0c:bc:67:ed:21: d8:5a:48:12:02:d0:e2:93:06:61:08:ae:a9:5e:f7:34:fd:db: 80:ff:ea:68:7b:b5:f9:5c:9b:41:da:c8:d0:20:57:90:71:ce: 2e:7b:53:9a:26:9d:e6:a4:96:d9:d6:bc:ee:98:59:ae:85:c7: bc:77:8b:43:65:9e:1c:a6:1c:ff:32:3b:9e:ca:2c:2d:eb:69: 96:6b:5c:bf:bb:03:1f:ba:d1:b3:ec:17:fa:f5:65:6a:28:a0: 62:43:3d:66:4c:d6:b8:89:2e:19:ed:18:31:36:27:3c:db:4d: 1a:27:49:9f:c8:d6:98:c8:70:e8:49:25:81:3d:dd:06:fa:69: db:80:0b:a8 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUb9RFIiGe5jcC7RCYMJzMJDBHchswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNTEyMTIxMjU1MDBaFw0yNjEyMTExMzAwMDBaMDMxMTAvBgNV BAMTKEVCMkZBNTVDNkFBRUZCMzc2REI1QzQ5M0VFOUM5Qzc5OTg1RjkwRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpJD3oxJ9wLMhu+tTEvejPOE4b evZG4rrSrUrLRbLilaEJBJ53wGfw6WSbNvZpsr73qvV6KZVwQmB3DjgvCQ6+SUos k01fyWU00EoWF3OhiiSWCU28qQ2rWESUymc9dY+IT87F8fN5m8cr65LUcvmytqaZ sXtj+Wv/+cnqFtWiEMxVqj+qgmSPdejoy/CpUm2vHK/D+qqJ2AUaM8URp7FhELbV FWa80AgxXDF87Kh2k0XyQTNiOJVN8XTRVYVQURogrh+br1H7AXt9GgDOfKdDv4eV dZeD6U33fHqM3aCFz9NgQpon+hEejrb1zdwy+tUhm5stuq11xM69eUWH/AdLAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU6y+lXGqu+zdttcST7pyceZhfkPYwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzEzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BiDAEDANBgkqhkiG9w0BAQsFAAOCAQEACG5WIYOzUUfxm67ZOIrWkv7gTVfMwpdK 9xz3SNOjPhfm0o7eMW0BV3yP6aLdFZP1XKG5FqcX2LuvGGTEzVoWf8BCv2JhfxmD 8TGHYZ7x/tkIQiQIsYvOHNOLWVDFpQoWJpUIkj83BwB3QG1KxIpb1u6OVXyPFKYf FQy8Z+0h2FpIEgLQ4pMGYQiuqV73NP3bgP/qaHu1+VybQdrI0CBXkHHOLntTmiad 5qSW2da87phZroXHvHeLQ2WeHKYc/zI7nsosLetplmtcv7sDH7rRs+wX+vVlaiig YkM9ZkzWuIkuGe0YMTYnPNtNGidJn8jWmMhw6EklgT3dBvpp24ALqA== -----END CERTIFICATE-----Generated at Fri Dec 19 01:59:54 2025 by rpki-client