This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a363030303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a363030303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: OQDE1JKfovvc04Sx9zJJ6eBx//fK4i4KdzEjLHB3q+I= Subject key identifier: 7D:5F:38:DA:9D:55:B4:17:55:27:B2:85:F0:79:3C:83:84:20:43:F9 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 424BE5E31551EDB196F9F231590CD23462A65133 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a363030303a3a2f33362d3438203d3e20313430343233.roa Signing time: Fri 12 Dec 2025 13:00:01 +0000 ROA not before: Fri 12 Dec 2025 12:55:01 +0000 ROA not after: Fri 11 Dec 2026 13:00:01 +0000 asID: 140423 IP address blocks: 2406:20c0:6000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 02:22:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:4b:e5:e3:15:51:ed:b1:96:f9:f2:31:59:0c:d2:34:62:a6:51:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Dec 12 12:55:01 2025 GMT Not After : Dec 11 13:00:01 2026 GMT Subject: CN=7D5F38DA9D55B4175527B285F0793C83842043F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1c:1a:63:de:1d:41:93:c6:75:b3:62:8c:e6: 66:d8:c3:a5:7a:1e:ef:04:a3:41:37:65:72:7d:a8: 1b:82:cc:18:08:6d:b9:25:4a:78:d7:f1:9a:b6:7b: 7f:2f:b8:39:5f:49:df:f8:31:35:cd:e5:2d:d1:35: d2:48:25:01:8e:d2:02:cd:a2:d8:90:ed:a9:60:b8: 1f:29:1d:c7:48:e8:37:a2:ce:20:61:dc:d3:84:63: fd:a2:70:a6:e7:4f:67:6b:c5:7e:88:10:44:f0:2d: c5:8a:f6:9d:6f:b6:40:d7:7d:ad:4a:66:72:f5:5e: 86:49:c1:34:ce:41:b7:5e:2c:0f:74:b0:77:a2:01: 26:8b:dd:fd:88:63:c6:9d:8d:27:aa:58:61:28:81: c5:50:80:8d:3e:6e:61:21:cd:81:00:75:cc:55:f1: 70:df:14:bd:04:d6:f4:eb:c2:bd:07:c5:7d:8f:e8: 72:19:66:5a:ab:29:7d:79:f4:8a:34:6b:f6:05:eb: f1:95:f1:5b:0c:b5:b3:75:25:6f:21:73:96:6f:7f: 3f:d4:f9:d1:d6:b9:c1:b9:be:e7:7a:7e:ae:a0:df: e0:13:45:f9:14:7b:13:7b:2c:e7:ae:fb:0a:7b:05: ac:72:2a:90:53:27:03:18:f2:98:a8:ce:b8:c5:c1: 59:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:5F:38:DA:9D:55:B4:17:55:27:B2:85:F0:79:3C:83:84:20:43:F9 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a363030303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:6000::/36 Signature Algorithm: sha256WithRSAEncryption 62:47:a4:ec:04:ce:27:b2:f0:09:74:17:48:24:90:6f:ee:7e: d1:3f:f0:93:9a:9b:39:bc:f0:16:f7:e6:6e:74:f5:a0:00:0a: 76:4e:d9:94:c8:5c:c1:06:92:b1:9c:8f:dc:f1:80:ca:fe:9c: 94:e7:0f:5a:51:08:be:c3:b1:46:40:9f:e5:3c:c6:70:81:ac: f0:90:db:e8:f4:56:ed:f8:61:28:2d:c4:36:63:b0:72:c9:51: c4:79:5d:81:64:3c:42:69:9e:7d:be:8c:b8:15:f0:75:90:dc: 23:8b:5c:45:96:90:f6:73:f6:36:da:1f:b9:27:4f:72:ff:cc: 1a:e5:8b:29:27:9c:0f:d0:fb:78:f1:9c:bd:c7:be:8f:76:c8: 70:81:e0:d9:e8:d3:c5:7a:c3:95:72:24:4b:16:10:93:4f:88: fb:3c:d9:69:d1:b5:f3:85:c2:e4:42:a6:47:2e:68:70:72:f3: c6:d8:52:f2:b8:26:72:56:e9:8f:59:dd:c9:61:c1:92:2b:a4: c6:86:29:93:a4:10:f3:7e:e4:cd:8e:9f:b6:1f:e6:db:34:03: 3e:07:29:30:86:80:98:ed:c3:98:cf:cb:b1:5e:eb:23:30:31: 5e:08:01:a2:86:20:a8:69:fc:56:30:4d:cd:a7:77:ef:dd:02: f3:0c:b3:89 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUQkvl4xVR7bGW+fIxWQzSNGKmUTMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNTEyMTIxMjU1MDFaFw0yNjEyMTExMzAwMDFaMDMxMTAvBgNV BAMTKDdENUYzOERBOUQ1NUI0MTc1NTI3QjI4NUYwNzkzQzgzODQyMDQzRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOHBpj3h1Bk8Z1s2KM5mbYw6V6 Hu8Eo0E3ZXJ9qBuCzBgIbbklSnjX8Zq2e38vuDlfSd/4MTXN5S3RNdJIJQGO0gLN otiQ7alguB8pHcdI6DeiziBh3NOEY/2icKbnT2drxX6IEETwLcWK9p1vtkDXfa1K ZnL1XoZJwTTOQbdeLA90sHeiASaL3f2IY8adjSeqWGEogcVQgI0+bmEhzYEAdcxV 8XDfFL0E1vTrwr0HxX2P6HIZZlqrKX159Io0a/YF6/GV8VsMtbN1JW8hc5Zvfz/U +dHWucG5vud6fq6g3+ATRfkUexN7LOeu+wp7BaxyKpBTJwMY8piozrjFwVkdAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUfV842p1VtBdVJ7KF8Hk8g4QgQ/kwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzYzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BiDAYDANBgkqhkiG9w0BAQsFAAOCAQEAYkek7ATOJ7LwCXQXSCSQb+5+0T/wk5qb ObzwFvfmbnT1oAAKdk7ZlMhcwQaSsZyP3PGAyv6clOcPWlEIvsOxRkCf5TzGcIGs 8JDb6PRW7fhhKC3ENmOwcslRxHldgWQ8Qmmefb6MuBXwdZDcI4tcRZaQ9nP2Ntof uSdPcv/MGuWLKSecD9D7ePGcvce+j3bIcIHg2ejTxXrDlXIkSxYQk0+I+zzZadG1 84XC5EKmRy5ocHLzxthS8rgmclbpj1ndyWHBkiukxoYpk6QQ837kzY6fth/m2zQD PgcpMIaAmO3DmM/LsV7rIzAxXggBooYgqGn8VjBNzad3790C8wyziQ== -----END CERTIFICATE-----Generated at Fri Dec 19 23:06:21 2025 by rpki-client