This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232303a3a2f34342d3434203d3e20313533303837.roa File: 323430343a393763303a3232303a3a2f34342d3434203d3e20313533303837.roa (raw, json) Hash identifier: EApvDBvKIpb3TW1OvFKqCBw8otauBBFdv2Yvyf2DIxU= Subject key identifier: 8A:72:A8:90:D6:06:CC:AF:67:6C:6E:B2:CC:6A:12:E3:3D:70:91:07 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 2D38CC718BDA3AA5162B6A46DB200FA1E5DDC210 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232303a3a2f34342d3434203d3e20313533303837.roa Signing time: Thu 27 Nov 2025 09:00:02 +0000 ROA not before: Thu 27 Nov 2025 08:55:02 +0000 ROA not after: Thu 26 Nov 2026 09:00:02 +0000 asID: 153087 IP address blocks: 2404:97c0:220::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 07:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:38:cc:71:8b:da:3a:a5:16:2b:6a:46:db:20:0f:a1:e5:dd:c2:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Nov 27 08:55:02 2025 GMT Not After : Nov 26 09:00:02 2026 GMT Subject: CN=8A72A890D606CCAF676C6EB2CC6A12E33D709107 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:da:5d:72:18:65:11:80:78:65:55:2c:42:c5: ba:ad:3e:d2:d9:b8:57:a7:6c:84:c6:91:b2:bb:72: 90:da:4f:ab:29:d3:fd:5b:95:0f:17:a2:4a:59:c8: e1:a1:0b:87:58:21:3a:2f:40:be:0a:f4:ce:d5:ba: 15:25:c2:77:64:c8:bf:20:60:7b:66:76:14:1f:76: 8b:5c:0c:c1:99:8a:5a:95:d6:e7:bb:71:44:24:10: 2a:53:70:14:ec:74:6f:75:78:47:8e:68:df:51:5a: 5b:8c:21:2b:f8:c3:67:73:5c:2a:59:ce:b0:7f:07: cf:b6:e2:67:af:23:81:d9:bf:2f:5d:4b:a5:e7:32: 75:7c:71:de:65:98:d4:d5:c9:1a:83:94:e4:3a:61: 0e:fb:32:8a:ad:72:d7:ae:a1:c4:60:26:a1:f6:8c: b0:52:4e:51:8f:63:05:93:4f:76:cf:9b:f7:f6:76: 23:e0:48:73:e3:aa:29:11:a7:0e:d1:90:0a:b7:39: 34:a6:9f:73:bb:ee:3a:c7:18:a0:8a:97:f0:90:fc: 39:94:d7:6f:bc:82:14:01:b5:a2:87:0a:24:24:d1: 72:16:4f:6b:88:51:fc:68:89:1c:62:f4:c8:5b:c5: 6f:fa:fb:5a:61:d3:5d:4d:70:35:51:60:1a:9b:5d: 8a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:72:A8:90:D6:06:CC:AF:67:6C:6E:B2:CC:6A:12:E3:3D:70:91:07 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3232303a3a2f34342d3434203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:220::/44 Signature Algorithm: sha256WithRSAEncryption 4f:af:31:5c:39:a3:e6:c5:f3:51:cf:ea:da:f0:2b:fd:3d:2c: b1:8e:fa:60:ed:ca:f7:db:f9:16:42:00:1c:d1:93:a1:f1:c1: 53:4a:e8:cd:ba:c6:cc:4b:6f:2e:de:ca:3f:c4:5a:33:5d:a2: f4:51:58:5e:3a:fa:ec:b5:cc:d4:21:2f:8f:a5:5f:e3:08:ec: 61:cf:8a:f1:cc:df:15:bc:96:e9:18:39:da:60:44:30:6f:28: 34:d8:22:ea:5d:b0:c5:1c:c2:30:59:fd:ca:0a:f3:3c:21:95: 1d:44:d5:99:22:4f:24:53:62:af:17:ea:24:d8:29:51:92:94: b8:c5:b8:d5:a7:e0:1d:7a:e5:83:c7:68:40:0e:ac:45:e1:e2: 28:f6:57:49:f4:02:95:b5:cd:6f:9d:d8:84:38:9e:b9:76:8a: f8:dd:5b:d6:b3:39:26:a6:13:ea:37:20:ad:d5:3d:b5:d7:3f: 3e:32:5e:32:89:7c:de:ba:ff:9c:67:93:59:39:20:9d:fd:1d: d6:f1:d3:b3:83:f4:73:c8:60:3f:df:dc:dc:f7:91:c1:71:97: 02:22:c6:1c:68:f5:98:ff:d9:11:e4:c9:8e:e7:d7:45:49:33: 1c:f6:15:ee:dd:d6:b7:bc:23:ef:85:b6:c8:c6:70:dc:0f:9e: f4:0b:b8:3f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIULTjMcYvaOqUWK2pG2yAPoeXdwhAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTExMjcwODU1MDJaFw0yNjExMjYwOTAwMDJaMDMxMTAvBgNV BAMTKDhBNzJBODkwRDYwNkNDQUY2NzZDNkVCMkNDNkExMkUzM0Q3MDkxMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK2l1yGGURgHhlVSxCxbqtPtLZ uFenbITGkbK7cpDaT6sp0/1blQ8XokpZyOGhC4dYITovQL4K9M7VuhUlwndkyL8g YHtmdhQfdotcDMGZilqV1ue7cUQkECpTcBTsdG91eEeOaN9RWluMISv4w2dzXCpZ zrB/B8+24mevI4HZvy9dS6XnMnV8cd5lmNTVyRqDlOQ6YQ77MoqtcteuocRgJqH2 jLBSTlGPYwWTT3bPm/f2diPgSHPjqikRpw7RkAq3OTSmn3O77jrHGKCKl/CQ/DmU 12+8ghQBtaKHCiQk0XIWT2uIUfxoiRxi9MhbxW/6+1ph011NcDVRYBqbXYpnAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUinKokNYGzK9nbG6yzGoS4z1wkQcwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMwM2Ez YTJmMzQzNDJkMzQzNDIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEJASX wAIgMA0GCSqGSIb3DQEBCwUAA4IBAQBPrzFcOaPmxfNRz+ra8Cv9PSyxjvpg7cr3 2/kWQgAc0ZOh8cFTSujNusbMS28u3so/xFozXaL0UVheOvrstczUIS+PpV/jCOxh z4rxzN8VvJbpGDnaYEQwbyg02CLqXbDFHMIwWf3KCvM8IZUdRNWZIk8kU2KvF+ok 2ClRkpS4xbjVp+AdeuWDx2hADqxF4eIo9ldJ9AKVtc1vndiEOJ65dor43VvWszkm phPqNyCt1T211z8+Ml4yiXzeuv+cZ5NZOSCd/R3W8dOzg/RzyGA/39zc95HBcZcC IsYcaPWY/9kR5MmO59dFSTMc9hXu3da3vCPvhbbIxnDcD570C7g/ -----END CERTIFICATE-----Generated at Wed Dec 3 17:38:53 2025 by rpki-client