This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323030303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a323030303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: ASP8j+vBPIfNxGlKZjOVhw8wDXvVplT0wShhkxku/nY= Subject key identifier: 9F:98:46:F9:C6:09:C3:42:48:72:5B:3E:81:84:BB:D0:DE:5C:E1:FC Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 0EAFC4E3E8E9DE89FF04F040844C01688A15098D Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323030303a3a2f33362d3336203d3e20313533303837.roa Signing time: Tue 11 Nov 2025 06:01:52 +0000 ROA not before: Tue 11 Nov 2025 05:56:52 +0000 ROA not after: Tue 10 Nov 2026 06:01:52 +0000 asID: 153087 IP address blocks: 2404:97c0:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 07:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:af:c4:e3:e8:e9:de:89:ff:04:f0:40:84:4c:01:68:8a:15:09:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Nov 11 05:56:52 2025 GMT Not After : Nov 10 06:01:52 2026 GMT Subject: CN=9F9846F9C609C34248725B3E8184BBD0DE5CE1FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f6:92:d5:e8:b0:65:19:e2:a5:3c:f6:bb:3d: 8e:1e:45:80:26:f2:f4:75:10:f7:1d:60:15:a2:ba: 06:ab:fb:cf:af:98:67:f2:37:5f:5e:62:ea:24:7a: 7d:e1:22:ff:81:72:71:58:5a:43:23:f5:b0:fb:2b: 77:4d:8f:25:99:92:52:4d:56:0e:e8:61:a6:a9:4e: a3:f2:7d:a1:f8:7e:8e:be:85:45:29:a7:81:f6:84: 69:ac:75:55:df:3d:6a:dc:61:c7:99:30:1c:c8:08: 2c:08:64:a5:76:fe:e4:93:1d:fd:61:ec:73:cf:9c: fc:67:50:87:1b:aa:c8:d2:ba:76:b0:75:00:a0:de: 9b:fa:77:08:d8:de:21:44:17:c1:20:77:1e:5a:a6: ee:ed:30:0f:99:15:b5:82:4d:92:ff:86:ea:90:af: 95:1c:fb:fc:d7:0b:77:38:35:2f:b7:4b:24:c1:c2: 72:40:3f:cc:39:fa:f0:29:35:9f:e6:c3:46:58:fb: 1d:07:4c:06:9f:a0:2e:4d:ec:51:1d:ac:bd:8e:fc: 74:eb:ea:08:86:21:6d:ab:14:a3:ad:93:c2:8d:a7: be:44:e5:60:c0:5b:a3:62:5f:8b:13:82:de:19:5f: 7a:00:26:46:11:75:e2:1c:28:3d:a3:87:b7:10:cb: 2d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:98:46:F9:C6:09:C3:42:48:72:5B:3E:81:84:BB:D0:DE:5C:E1:FC X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323030303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2000::/36 Signature Algorithm: sha256WithRSAEncryption 35:d4:10:bc:ed:cd:9b:3c:06:7f:a1:ac:bc:7d:59:98:12:59: 9c:35:9f:bf:21:b7:78:94:8c:9c:fc:71:27:3b:b0:4a:a2:db: d9:e0:51:f8:21:36:22:a5:99:eb:ac:d8:1a:b6:fb:b5:c2:a0: ec:4d:a7:ea:0e:63:f3:25:e6:6c:90:19:d8:bf:e0:22:d1:2e: 4f:34:94:f8:90:26:a9:a7:e4:75:e9:f5:d9:e6:b5:bc:92:02: c1:73:37:91:60:80:fa:24:1e:6c:4f:7e:d3:78:e7:90:50:a6: 3a:51:3f:2c:32:a1:65:f0:a8:0a:14:ca:7c:4b:f4:49:71:05: 08:b7:a0:a3:88:c3:30:f9:82:ed:dc:a8:56:b2:88:6a:0a:93: ca:64:45:e0:cd:86:7e:71:20:32:e7:bc:71:dc:60:cd:ac:94: cc:5a:3a:50:ab:68:aa:30:71:d4:44:dc:b6:ea:49:11:52:41: 81:1c:2c:52:07:21:71:66:73:d4:8b:aa:03:24:e2:5e:ba:6c: ef:fa:60:d0:c7:f4:c0:7f:c4:94:0e:e3:6f:4e:f5:85:98:ad: c3:76:43:c6:c0:12:f6:57:7a:e0:ad:3b:03:db:61:47:e3:f9: 90:88:42:d8:38:7f:c2:aa:83:15:81:24:ea:4b:6c:9b:2c:4e: bd:bf:94:60 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUDq/E4+jp3on/BPBAhEwBaIoVCY0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTExMTEwNTU2NTJaFw0yNjExMTAwNjAxNTJaMDMxMTAvBgNV BAMTKDlGOTg0NkY5QzYwOUMzNDI0ODcyNUIzRTgxODRCQkQwREU1Q0UxRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC19pLV6LBlGeKlPPa7PY4eRYAm 8vR1EPcdYBWiugar+8+vmGfyN19eYuoken3hIv+BcnFYWkMj9bD7K3dNjyWZklJN Vg7oYaapTqPyfaH4fo6+hUUpp4H2hGmsdVXfPWrcYceZMBzICCwIZKV2/uSTHf1h 7HPPnPxnUIcbqsjSunawdQCg3pv6dwjY3iFEF8Egdx5apu7tMA+ZFbWCTZL/huqQ r5Uc+/zXC3c4NS+3SyTBwnJAP8w5+vApNZ/mw0ZY+x0HTAafoC5N7FEdrL2O/HTr 6giGIW2rFKOtk8KNp75E5WDAW6NiX4sTgt4ZX3oAJkYRdeIcKD2jh7cQyy2pAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUn5hG+cYJw0JIcls+gYS70N5c4fwwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfAIDANBgkqhkiG9w0BAQsFAAOCAQEANdQQvO3NmzwGf6GsvH1ZmBJZnDWfvyG3 eJSMnPxxJzuwSqLb2eBR+CE2IqWZ66zYGrb7tcKg7E2n6g5j8yXmbJAZ2L/gItEu TzSU+JAmqafkden12ea1vJICwXM3kWCA+iQebE9+03jnkFCmOlE/LDKhZfCoChTK fEv0SXEFCLego4jDMPmC7dyoVrKIagqTymRF4M2GfnEgMue8cdxgzayUzFo6UKto qjBx1ETctupJEVJBgRwsUgchcWZz1IuqAyTiXrps7/pg0Mf0wH/ElA7jb071hZit w3ZDxsAS9ld64K07A9thR+P5kIhC2Dh/wqqDFYEk6ktsmyxOvb+UYA== -----END CERTIFICATE-----Generated at Wed Dec 3 17:39:08 2025 by rpki-client