This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323330303a3a2f34302d3430203d3e20313533303837.roa File: 323430343a393763303a323330303a3a2f34302d3430203d3e20313533303837.roa (raw, json) Hash identifier: 4uXivfruDrV6vIQDaw3CdwZggXYUI8C5CzvO1Aezvw8= Subject key identifier: 15:8E:69:38:2A:9F:C0:B6:11:22:6D:55:AF:C6:89:6E:12:E9:70:86 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 17B2AD22C6E6436F1D5EF776B30CAD1514C9D2AD Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323330303a3a2f34302d3430203d3e20313533303837.roa Signing time: Tue 11 Nov 2025 07:00:02 +0000 ROA not before: Tue 11 Nov 2025 06:55:02 +0000 ROA not after: Tue 10 Nov 2026 07:00:02 +0000 asID: 153087 IP address blocks: 2404:97c0:2300::/40 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 07:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:b2:ad:22:c6:e6:43:6f:1d:5e:f7:76:b3:0c:ad:15:14:c9:d2:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Nov 11 06:55:02 2025 GMT Not After : Nov 10 07:00:02 2026 GMT Subject: CN=158E69382A9FC0B611226D55AFC6896E12E97086 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:91:5f:25:53:95:22:66:66:ce:79:3a:40:72: 2a:e6:40:8e:0e:3c:e2:85:fb:ec:4f:4f:d6:43:48: 2f:d3:b4:c3:09:b5:33:77:14:91:6e:5d:6b:eb:e9: 89:c5:94:0b:92:e4:e2:6e:8a:4a:73:95:03:41:03: 3d:40:c0:26:3a:8b:1c:ba:ba:7d:bd:c4:e0:93:73: 96:60:d5:90:d7:6f:41:f7:48:cc:6a:e3:a0:5d:d4: f2:16:ee:f4:5a:e5:22:28:dd:57:eb:05:1a:54:7a: df:1f:ea:d0:af:ef:81:d3:80:a9:c2:06:ae:04:99: 95:d9:16:c6:ac:8c:83:09:a5:00:c7:1f:d7:b3:64: ad:cb:2b:f8:8a:5c:0f:6d:93:4c:92:f5:a9:8e:a7: 2a:60:04:38:21:e7:34:38:e8:60:06:64:8e:73:36: 6f:22:d2:04:c4:fb:41:12:bc:e9:94:4d:44:ed:62: 02:23:ed:ad:5e:4d:68:4d:5b:1b:51:cc:2a:20:26: b3:bd:e9:75:ee:80:d7:94:9d:5c:bb:92:77:8b:e5: 8d:e4:61:3a:9e:ae:28:84:4a:95:23:8b:e4:6e:83: e3:bc:77:ac:17:f1:b5:4f:60:5a:c9:35:81:8a:16: 87:e8:2a:1c:c1:18:b6:8e:d3:09:93:2b:21:66:66: c0:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:8E:69:38:2A:9F:C0:B6:11:22:6D:55:AF:C6:89:6E:12:E9:70:86 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323330303a3a2f34302d3430203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2300::/40 Signature Algorithm: sha256WithRSAEncryption be:a0:19:c8:00:2d:10:6b:5d:81:71:65:60:80:c7:5d:4b:7f: 82:66:c3:0a:eb:4c:be:24:81:87:48:85:f2:9c:82:f4:26:cf: b8:fc:42:cd:de:fb:be:81:51:eb:36:19:63:75:af:45:2a:cd: 66:6f:ef:c2:ef:44:7c:8e:1d:0e:60:f0:0b:4b:ee:ae:57:85: bc:a9:59:92:40:82:96:a8:3f:51:49:d3:4c:0d:5f:66:85:22: d2:91:af:26:57:66:d4:83:67:94:a8:d3:f0:f8:e8:9d:3c:27: 11:a6:61:a8:c1:81:78:6c:58:04:c6:48:36:d0:c5:6b:50:93: d5:4e:bf:2f:96:c4:f5:1e:30:45:a4:c2:b1:04:9e:12:36:f2: 73:60:13:38:ac:54:e3:c4:16:2c:fa:6b:e5:d7:b0:da:5f:28: 72:9d:34:a6:10:32:94:8b:41:4c:42:e0:d4:ed:49:8b:76:b2: b6:ce:27:33:a2:ae:44:c8:29:e9:f9:c9:ef:13:bb:be:7a:a8: 4b:b5:77:b7:0e:06:c0:52:a1:1f:07:b9:54:a2:f2:9f:b3:f1: 34:ff:ec:37:12:30:48:f8:1b:b8:17:f4:c3:db:7a:12:31:96: b4:fe:66:80:28:10:70:82:d3:27:7f:5d:35:b2:8b:84:a6:31: b3:49:82:9c -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUF7KtIsbmQ28dXvd2swytFRTJ0q0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTExMTEwNjU1MDJaFw0yNjExMTAwNzAwMDJaMDMxMTAvBgNV BAMTKDE1OEU2OTM4MkE5RkMwQjYxMTIyNkQ1NUFGQzY4OTZFMTJFOTcwODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/kV8lU5UiZmbOeTpAcirmQI4O POKF++xPT9ZDSC/TtMMJtTN3FJFuXWvr6YnFlAuS5OJuikpzlQNBAz1AwCY6ixy6 un29xOCTc5Zg1ZDXb0H3SMxq46Bd1PIW7vRa5SIo3VfrBRpUet8f6tCv74HTgKnC Bq4EmZXZFsasjIMJpQDHH9ezZK3LK/iKXA9tk0yS9amOpypgBDgh5zQ46GAGZI5z Nm8i0gTE+0ESvOmUTUTtYgIj7a1eTWhNWxtRzCogJrO96XXugNeUnVy7kneL5Y3k YTqeriiESpUji+Rug+O8d6wX8bVPYFrJNYGKFofoKhzBGLaO0wmTKyFmZsBnAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUFY5pOCqfwLYRIm1Vr8aJbhLpcIYwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMzMwMzAz YTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAk BJfAIzANBgkqhkiG9w0BAQsFAAOCAQEAvqAZyAAtEGtdgXFlYIDHXUt/gmbDCutM viSBh0iF8pyC9CbPuPxCzd77voFR6zYZY3WvRSrNZm/vwu9EfI4dDmDwC0vurleF vKlZkkCClqg/UUnTTA1fZoUi0pGvJldm1INnlKjT8PjonTwnEaZhqMGBeGxYBMZI NtDFa1CT1U6/L5bE9R4wRaTCsQSeEjbyc2ATOKxU48QWLPpr5dew2l8ocp00phAy lItBTELg1O1Ji3ayts4nM6KuRMgp6fnJ7xO7vnqoS7V3tw4GwFKhHwe5VKLyn7Px NP/sNxIwSPgbuBf0w9t6EjGWtP5mgCgQcILTJ39dNbKLhKYxs0mCnA== -----END CERTIFICATE-----Generated at Wed Dec 3 17:39:08 2025 by rpki-client