This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323232303a3a2f34342d3434203d3e20313533303837.roa File: 323430343a393763303a323232303a3a2f34342d3434203d3e20313533303837.roa (raw, json) Hash identifier: faTcPr5R7d5SON6aopxvVZHUN4/VFaOooXiyhEzUbUA= Subject key identifier: 8E:0E:50:10:D4:8F:95:1A:62:6E:B2:47:43:80:3B:F1:C1:E7:57:BF Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 1319DB032F9389CCC1108EBD274A7FE3CE19D06F Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323232303a3a2f34342d3434203d3e20313533303837.roa Signing time: Tue 11 Nov 2025 07:00:02 +0000 ROA not before: Tue 11 Nov 2025 06:55:02 +0000 ROA not after: Tue 10 Nov 2026 07:00:02 +0000 asID: 153087 IP address blocks: 2404:97c0:2220::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 07:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:19:db:03:2f:93:89:cc:c1:10:8e:bd:27:4a:7f:e3:ce:19:d0:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Nov 11 06:55:02 2025 GMT Not After : Nov 10 07:00:02 2026 GMT Subject: CN=8E0E5010D48F951A626EB24743803BF1C1E757BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:8d:b3:3a:e9:34:b9:25:f9:a2:89:8d:3f:d3: 6a:ad:88:f4:3a:6c:70:a8:92:d7:db:b7:70:ed:2b: 55:c3:31:3b:a6:51:cf:46:57:d7:ff:21:c8:50:74: 20:a9:62:56:67:54:16:bf:d7:5d:fc:0d:2e:51:84: 78:32:c4:c4:e4:81:a8:15:6c:06:e5:e4:e6:9c:38: 4c:89:38:34:64:92:74:ea:32:b1:5c:a3:91:34:b3: 83:fc:9f:ec:64:72:59:a2:bc:01:8c:a2:28:44:ed: 0b:3d:b7:97:71:0c:61:75:37:36:ff:62:52:6b:4a: f5:8d:4f:fd:c7:38:b0:75:d8:9e:6c:1b:b1:60:04: f9:28:2a:80:db:8c:2e:86:ef:35:75:15:71:e7:7e: 28:1b:6e:b7:48:8b:84:47:7d:5d:d8:7d:5d:31:28: 06:53:dc:bf:b9:7b:da:b7:ed:b0:51:c8:7c:fa:09: a5:35:56:97:8e:55:d1:36:e6:27:ed:37:9d:a1:9e: 91:a8:2c:23:ab:75:4b:6e:a7:0e:cf:b5:ec:3f:b4: 2d:89:24:a4:a2:d1:fb:2c:e8:0d:1e:3a:78:d2:06: c1:07:8b:86:e2:83:d8:55:5a:e9:58:24:9d:e7:9f: 2e:e9:34:81:09:c8:6d:a0:c1:70:84:77:09:29:2d: 77:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:0E:50:10:D4:8F:95:1A:62:6E:B2:47:43:80:3B:F1:C1:E7:57:BF X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323232303a3a2f34342d3434203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2220::/44 Signature Algorithm: sha256WithRSAEncryption a1:52:26:da:9a:5b:9b:fb:ba:36:75:18:9a:58:72:99:a2:df: e9:84:e0:5f:d2:71:f1:fb:59:ab:24:f3:9d:a8:bf:09:c8:1a: 65:6a:3a:9b:a2:25:e4:72:a0:5f:2a:b0:4f:2a:bc:11:6f:e6: 41:41:f5:e1:04:87:94:1d:5e:af:41:0a:52:4f:ee:f4:35:bf: 2c:4a:c6:79:bb:9f:94:23:26:eb:14:36:93:7e:7b:62:d8:b1: 40:2e:32:2a:05:b4:be:fc:b4:b2:de:a7:bf:70:35:d1:06:a3: 83:61:5b:f7:dd:d8:09:58:7d:a2:33:c3:c8:d7:29:6d:09:dd: 76:89:35:85:4b:b3:4f:8c:b6:93:e1:17:31:2b:14:a8:eb:79: c1:23:00:51:db:1e:e4:d9:5b:1c:71:bf:a8:fc:8b:34:18:84: 57:a6:86:b6:4c:cc:d5:8e:68:ea:2d:36:bc:e3:68:d9:b8:d1: 8b:94:64:96:75:7c:9e:06:8a:95:ab:30:22:ed:ec:bc:15:57: 3b:17:21:34:4e:06:df:bd:4b:13:7a:b7:4b:0e:3d:d8:40:ed: ed:87:22:91:bd:31:38:be:f6:d9:dd:8f:ae:05:4c:fe:7d:71: ca:24:90:34:df:0d:c8:ae:38:0a:01:29:58:0c:0c:e5:42:77: cf:40:99:fb -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUExnbAy+TiczBEI69J0p/484Z0G8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTExMTEwNjU1MDJaFw0yNjExMTAwNzAwMDJaMDMxMTAvBgNV BAMTKDhFMEU1MDEwRDQ4Rjk1MUE2MjZFQjI0NzQzODAzQkYxQzFFNzU3QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkjbM66TS5JfmiiY0/02qtiPQ6 bHCoktfbt3DtK1XDMTumUc9GV9f/IchQdCCpYlZnVBa/1138DS5RhHgyxMTkgagV bAbl5OacOEyJODRkknTqMrFco5E0s4P8n+xkclmivAGMoihE7Qs9t5dxDGF1Nzb/ YlJrSvWNT/3HOLB12J5sG7FgBPkoKoDbjC6G7zV1FXHnfigbbrdIi4RHfV3YfV0x KAZT3L+5e9q37bBRyHz6CaU1VpeOVdE25iftN52hnpGoLCOrdUtupw7Ptew/tC2J JKSi0fss6A0eOnjSBsEHi4big9hVWulYJJ3nny7pNIEJyG2gwXCEdwkpLXfFAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUjg5QENSPlRpibrJHQ4A78cHnV78wHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMyMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk BJfAIiAwDQYJKoZIhvcNAQELBQADggEBAKFSJtqaW5v7ujZ1GJpYcpmi3+mE4F/S cfH7Wask852ovwnIGmVqOpuiJeRyoF8qsE8qvBFv5kFB9eEEh5QdXq9BClJP7vQ1 vyxKxnm7n5QjJusUNpN+e2LYsUAuMioFtL78tLLep79wNdEGo4NhW/fd2AlYfaIz w8jXKW0J3XaJNYVLs0+MtpPhFzErFKjrecEjAFHbHuTZWxxxv6j8izQYhFemhrZM zNWOaOotNrzjaNm40YuUZJZ1fJ4GipWrMCLt7LwVVzsXITROBt+9SxN6t0sOPdhA 7e2HIpG9MTi+9tndj64FTP59ccokkDTfDciuOAoBKVgMDOVCd89Amfs= -----END CERTIFICATE-----Generated at Wed Dec 3 17:38:51 2025 by rpki-client