This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a313630303a3a2f34302d3430203d3e20313533303837.roa File: 323430343a393763303a313630303a3a2f34302d3430203d3e20313533303837.roa (raw, json) Hash identifier: xiP480ZV+GHJ2/4depZViI+46Z/6Gy8Oy9ISHx8BOoQ= Subject key identifier: F1:6C:91:C8:F4:B0:C9:C2:D1:BC:3A:AE:A8:1F:85:FD:88:DC:D0:78 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 69ACEE9ADF5E7DDBE7A3526EF97AFF2FDE234FF4 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a313630303a3a2f34302d3430203d3e20313533303837.roa Signing time: Tue 11 Nov 2025 07:00:02 +0000 ROA not before: Tue 11 Nov 2025 06:55:02 +0000 ROA not after: Tue 10 Nov 2026 07:00:02 +0000 asID: 153087 IP address blocks: 2404:97c0:1600::/40 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 07:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:ac:ee:9a:df:5e:7d:db:e7:a3:52:6e:f9:7a:ff:2f:de:23:4f:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Nov 11 06:55:02 2025 GMT Not After : Nov 10 07:00:02 2026 GMT Subject: CN=F16C91C8F4B0C9C2D1BC3AAEA81F85FD88DCD078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c2:5b:e2:31:05:b5:f0:c0:05:05:ac:5e:0d: f4:5c:19:8a:33:ba:9a:61:74:e8:d9:64:c3:0c:f4: 4a:79:1a:93:02:48:62:94:16:fc:9c:09:f6:06:45: 60:84:0f:dc:3d:8b:3a:8d:e1:71:16:19:d3:3a:59: e3:86:00:60:98:8d:e4:ae:57:cc:6d:da:41:47:de: e4:97:f9:89:a9:cf:57:b9:8f:6d:bd:bc:4c:9a:55: 79:1a:f1:41:5e:15:ca:f9:2f:09:87:25:a7:a3:4c: a4:de:49:51:02:6a:33:09:18:2a:45:2b:47:6f:53: 6d:8d:2c:24:9e:97:52:5a:53:81:88:28:65:c0:8e: e8:4a:98:4e:aa:ec:30:21:42:c5:eb:69:06:6e:22: dd:e8:a3:0c:1d:f8:bd:1c:e9:c9:6c:7e:18:ed:b3: 90:6b:c1:f5:f7:04:ce:77:00:03:42:40:a3:3c:14: 68:e6:9f:63:ee:a9:62:cd:3b:0e:61:44:e7:d2:54: f5:b1:ab:3c:60:ab:1b:d3:e7:22:f6:fd:8c:d1:78: bc:f7:b5:3b:1d:e8:73:39:54:2f:eb:9f:84:10:0f: 5c:95:dc:91:47:39:46:8f:f3:d3:97:05:08:00:82: e9:2d:ab:92:a0:b1:aa:6b:3d:98:9d:70:6b:00:7b: df:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:6C:91:C8:F4:B0:C9:C2:D1:BC:3A:AE:A8:1F:85:FD:88:DC:D0:78 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a313630303a3a2f34302d3430203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:1600::/40 Signature Algorithm: sha256WithRSAEncryption c3:af:9d:d0:b3:81:56:5d:aa:d8:3d:a3:a9:a3:09:fb:84:79: 71:93:60:66:12:7c:45:b1:51:ce:68:ef:e1:66:a5:2a:ec:d9: ed:6e:f2:20:3e:83:dd:69:31:98:32:93:f8:25:58:83:c8:30: 33:77:39:ce:66:31:6c:ee:bd:56:6d:3d:4a:22:4e:8b:6b:4c: eb:96:a7:6b:4b:6e:dc:82:d0:27:1b:1e:c2:99:e9:e3:cb:ed: fc:46:73:d9:14:c9:37:02:be:1f:9a:4c:93:18:e3:7c:a1:d6: b6:c4:d7:6b:01:61:4b:fd:d2:97:9f:3e:f8:51:2c:23:b2:bb: 7b:26:d1:cf:b1:4d:62:11:86:9e:4d:fe:b2:5b:c8:c8:c5:a8: fa:ed:3e:67:83:b7:6c:4a:3f:aa:76:5f:84:c5:b6:bf:37:ca: 72:92:97:c2:54:f7:7e:68:44:c4:0d:84:e9:45:48:f6:4f:d9: 5d:1e:1c:a7:65:29:37:92:86:82:0b:9c:61:16:60:6c:4d:1e: f0:80:cc:87:7b:92:ee:38:36:a1:e8:d6:85:c5:25:00:88:82: 67:cd:42:70:b9:8e:48:18:25:ac:04:7c:f7:d5:2d:fa:da:da: b6:e0:86:1d:b0:c5:f0:fe:37:73:59:16:b6:93:d9:fd:5f:51: 80:87:9f:4d -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUaazumt9efdvno1Ju+Xr/L94jT/QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTExMTEwNjU1MDJaFw0yNjExMTAwNzAwMDJaMDMxMTAvBgNV BAMTKEYxNkM5MUM4RjRCMEM5QzJEMUJDM0FBRUE4MUY4NUZEODhEQ0QwNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGwlviMQW18MAFBaxeDfRcGYoz upphdOjZZMMM9Ep5GpMCSGKUFvycCfYGRWCED9w9izqN4XEWGdM6WeOGAGCYjeSu V8xt2kFH3uSX+Ympz1e5j229vEyaVXka8UFeFcr5LwmHJaejTKTeSVECajMJGCpF K0dvU22NLCSel1JaU4GIKGXAjuhKmE6q7DAhQsXraQZuIt3oowwd+L0c6clsfhjt s5BrwfX3BM53AANCQKM8FGjmn2PuqWLNOw5hROfSVPWxqzxgqxvT5yL2/YzReLz3 tTsd6HM5VC/rn4QQD1yV3JFHOUaP89OXBQgAguktq5KgsaprPZidcGsAe9/lAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU8WyRyPSwycLRvDquqB+F/Yjc0HgwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzNjMwMzAz YTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAk BJfAFjANBgkqhkiG9w0BAQsFAAOCAQEAw6+d0LOBVl2q2D2jqaMJ+4R5cZNgZhJ8 RbFRzmjv4WalKuzZ7W7yID6D3WkxmDKT+CVYg8gwM3c5zmYxbO69Vm09SiJOi2tM 65ana0tu3ILQJxsewpnp48vt/EZz2RTJNwK+H5pMkxjjfKHWtsTXawFhS/3Sl58+ +FEsI7K7eybRz7FNYhGGnk3+slvIyMWo+u0+Z4O3bEo/qnZfhMW2vzfKcpKXwlT3 fmhExA2E6UVI9k/ZXR4cp2UpN5KGggucYRZgbE0e8IDMh3uS7jg2oejWhcUlAIiC Z81CcLmOSBglrAR899Ut+tratuCGHbDF8P43c1kWtpPZ/V9RgIefTQ== -----END CERTIFICATE-----Generated at Wed Dec 3 17:38:55 2025 by rpki-client