This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323230303a3a2f34302d3430203d3e20313533303837.roa File: 323430343a393763303a323230303a3a2f34302d3430203d3e20313533303837.roa (raw, json) Hash identifier: 8BghnefMyUfpQWuZ7yB+zaBc31qeLaaDPm1YLasmkKU= Subject key identifier: FE:5E:B3:C0:E7:61:EE:48:DF:8E:53:71:71:CE:28:97:84:F2:D4:4A Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 0B108D578A7E339EA5E4456259BCAB37EC745FCF Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323230303a3a2f34302d3430203d3e20313533303837.roa Signing time: Tue 11 Nov 2025 07:00:03 +0000 ROA not before: Tue 11 Nov 2025 06:55:03 +0000 ROA not after: Tue 10 Nov 2026 07:00:03 +0000 asID: 153087 IP address blocks: 2404:97c0:2200::/40 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 07:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:10:8d:57:8a:7e:33:9e:a5:e4:45:62:59:bc:ab:37:ec:74:5f:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Nov 11 06:55:03 2025 GMT Not After : Nov 10 07:00:03 2026 GMT Subject: CN=FE5EB3C0E761EE48DF8E537171CE289784F2D44A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:28:b0:0c:d6:6c:c4:71:46:bc:81:a5:e6:ec: fd:ae:5a:02:f3:61:f7:6f:50:6d:e3:c1:d9:72:c6: 01:84:d9:d3:a5:9a:05:0f:3e:01:41:6d:46:49:82: 56:d8:dc:b6:bc:a8:7d:e5:b8:40:d5:4c:d4:eb:b9: 04:2d:c7:98:88:de:10:7e:78:7a:da:95:ef:39:fe: 64:6d:a3:82:f7:c2:14:b4:5c:8b:25:12:fb:fa:35: b8:04:14:b6:4c:ea:b4:c5:db:7d:9c:72:96:5b:b2: 03:9b:de:da:11:fb:d4:0a:40:a4:b8:8e:db:52:0d: 39:2c:04:9e:aa:72:56:4e:67:83:9e:fd:65:41:b2: dc:ba:68:a1:5f:f5:13:f2:1e:ed:d9:4f:c1:76:60: 38:ae:6a:85:6b:58:6b:59:a9:71:0a:d5:37:99:af: 77:3d:6a:0e:cd:09:a4:b9:8c:aa:da:89:ed:93:bf: 5f:92:17:18:bb:c6:67:3e:13:c3:b8:6b:74:c7:ae: 3a:80:93:6e:b5:28:9e:82:04:3b:19:13:65:56:60: 1a:91:a0:b0:7b:46:ff:f8:21:34:b1:8a:e8:ca:6f: 6c:d6:4a:58:38:6f:2a:f2:b2:a0:d6:31:ca:2e:7d: 54:9f:5a:20:e9:20:be:ef:a7:dd:43:19:68:a6:7f: 49:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:5E:B3:C0:E7:61:EE:48:DF:8E:53:71:71:CE:28:97:84:F2:D4:4A X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323230303a3a2f34302d3430203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2200::/40 Signature Algorithm: sha256WithRSAEncryption 30:2e:a8:da:02:22:38:24:c5:82:ec:82:91:55:4d:6b:a3:29: 39:f9:5c:55:8c:41:bb:b2:f7:94:5c:63:d9:6d:78:83:9d:f9: 09:f2:10:0f:b6:67:42:b1:bb:96:f3:7e:9a:c7:66:9a:2c:4f: 56:2a:50:68:bc:45:60:2f:2a:d8:13:3e:cb:d1:e4:b8:a5:bb: bb:5c:81:63:f9:ad:28:e3:6e:4d:0b:b7:b7:72:6c:20:c5:e6: 6f:3c:10:89:2d:14:de:d6:f3:7f:3a:ce:01:49:25:e1:7d:5e: f5:d4:20:a5:3d:3f:78:a8:d0:a7:cb:e4:d8:ce:26:b6:30:d9: 65:f9:4f:c5:cf:28:2a:b3:1a:b2:24:d9:ff:27:e0:a8:3e:2a: 1a:a7:a8:89:0b:92:1a:40:9c:c4:f2:c0:d6:df:e9:99:c4:f4: a8:d4:56:6d:ed:1d:23:55:f9:17:cb:cc:94:96:2d:5f:4f:c5: 22:69:62:1c:48:47:c6:07:f1:44:1b:a1:a1:2f:c2:1e:3c:8f: a3:f8:06:c6:18:22:f3:3f:19:20:45:d6:2f:ba:a4:22:f9:2a: 23:1b:09:70:ee:9b:97:ea:3e:c9:6e:c1:ce:9c:72:fe:48:de: 50:e6:f2:b7:40:0b:d0:5f:d0:c8:fb:eb:f4:d3:b4:a6:82:aa: 86:a4:05:91 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUCxCNV4p+M56l5EViWbyrN+x0X88wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTExMTEwNjU1MDNaFw0yNjExMTAwNzAwMDNaMDMxMTAvBgNV BAMTKEZFNUVCM0MwRTc2MUVFNDhERjhFNTM3MTcxQ0UyODk3ODRGMkQ0NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/KLAM1mzEcUa8gaXm7P2uWgLz YfdvUG3jwdlyxgGE2dOlmgUPPgFBbUZJglbY3La8qH3luEDVTNTruQQtx5iI3hB+ eHrale85/mRto4L3whS0XIslEvv6NbgEFLZM6rTF232ccpZbsgOb3toR+9QKQKS4 jttSDTksBJ6qclZOZ4Oe/WVBsty6aKFf9RPyHu3ZT8F2YDiuaoVrWGtZqXEK1TeZ r3c9ag7NCaS5jKraie2Tv1+SFxi7xmc+E8O4a3THrjqAk261KJ6CBDsZE2VWYBqR oLB7Rv/4ITSxiujKb2zWSlg4byrysqDWMcoufVSfWiDpIL7vp91DGWimf0kRAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU/l6zwOdh7kjfjlNxcc4ol4Ty1EowHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMwMzAz YTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAk BJfAIjANBgkqhkiG9w0BAQsFAAOCAQEAMC6o2gIiOCTFguyCkVVNa6MpOflcVYxB u7L3lFxj2W14g535CfIQD7ZnQrG7lvN+msdmmixPVipQaLxFYC8q2BM+y9HkuKW7 u1yBY/mtKONuTQu3t3JsIMXmbzwQiS0U3tbzfzrOAUkl4X1e9dQgpT0/eKjQp8vk 2M4mtjDZZflPxc8oKrMasiTZ/yfgqD4qGqeoiQuSGkCcxPLA1t/pmcT0qNRWbe0d I1X5F8vMlJYtX0/FImliHEhHxgfxRBuhoS/CHjyPo/gGxhgi8z8ZIEXWL7qkIvkq IxsJcO6bl+o+yW7Bzpxy/kjeUObyt0AL0F/QyPvr9NO0poKqhqQFkQ== -----END CERTIFICATE-----Generated at Wed Dec 3 17:39:08 2025 by rpki-client