This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a333132363a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a333132363a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: SOe6CNGwh7AV/ME3NGZRGYorNCiEvzdLsEvnR8QiyAQ= Subject key identifier: 5F:D5:B1:26:93:28:DD:66:74:A9:C9:97:C9:43:77:2F:09:D0:6B:87 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 0141D682E21D0FCBE016B9933CE7C99B676D0BEC Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a333132363a3a2f34382d3438203d3e20313533303837.roa Signing time: Wed 24 Dec 2025 11:02:41 +0000 ROA not before: Wed 24 Dec 2025 10:57:41 +0000 ROA not after: Wed 23 Dec 2026 11:02:41 +0000 asID: 153087 IP address blocks: 2404:97c0:3126::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 Jan 2026 22:23:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:41:d6:82:e2:1d:0f:cb:e0:16:b9:93:3c:e7:c9:9b:67:6d:0b:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Dec 24 10:57:41 2025 GMT Not After : Dec 23 11:02:41 2026 GMT Subject: CN=5FD5B1269328DD6674A9C997C943772F09D06B87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3a:37:5a:31:82:18:86:39:26:57:f0:5c:89: 8f:1b:d1:77:3f:42:ab:5f:12:b0:0b:fc:c1:62:8e: 5b:95:31:26:70:e8:17:56:51:e9:72:46:df:9b:d8: 96:bb:2a:bd:70:c3:2f:f9:c7:0c:f9:aa:3c:79:1b: 29:23:13:01:c1:13:16:2b:3b:5b:f9:8d:dd:6d:d5: f4:18:56:60:67:28:db:9b:28:cf:fb:49:ef:bf:9e: 68:08:ed:52:1d:84:ae:18:d5:73:4a:41:58:27:cb: 16:d4:5a:c3:1f:29:77:1a:11:a9:3b:69:0b:2d:3e: 59:01:c3:f9:d1:1a:57:5f:3f:2f:1e:f6:9a:b0:35: dd:c3:7c:a6:ec:61:6d:de:1c:e4:45:fc:96:e4:9e: 71:27:2f:74:f9:03:95:a6:6c:60:54:b4:9a:e4:cf: 6e:16:16:00:ef:1c:2b:70:64:3b:cd:7e:a3:64:d6: 4a:84:78:c1:69:83:db:cc:14:24:2a:81:a6:90:c3: b0:ad:cc:2c:2e:a4:50:f8:1f:6e:e6:1f:d2:fa:ce: 11:53:d2:ad:f2:84:9e:88:4d:a9:ff:5d:08:1d:87: 66:65:c8:06:0e:b7:a9:b3:88:8e:8f:3e:82:ac:58: c7:0e:33:d8:82:a2:72:35:33:c2:d4:a2:02:ed:08: 6f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:D5:B1:26:93:28:DD:66:74:A9:C9:97:C9:43:77:2F:09:D0:6B:87 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a333132363a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:3126::/48 Signature Algorithm: sha256WithRSAEncryption 34:90:5c:8e:67:18:cb:34:d1:1b:b8:19:39:a7:a0:09:be:e4: 59:4b:84:9f:f3:eb:be:04:f0:1d:43:5a:21:92:fe:f2:67:5b: 13:6a:27:3b:ef:f8:d2:9e:71:1c:d3:8f:f4:4f:f0:04:0c:15: fb:6b:d0:d6:10:40:d2:aa:ef:65:88:3e:4d:74:25:af:ed:d7: fd:3c:51:9e:73:53:d2:3d:8d:c3:c3:00:79:69:ce:eb:7a:a7: ef:28:aa:0a:67:3b:5b:6b:1f:5e:0d:76:4d:02:60:49:56:18: e6:a5:3b:0c:cc:27:59:af:67:fb:bc:74:cd:5d:f5:5f:36:77: a0:d0:df:d0:e4:2c:d0:25:cd:46:a6:63:4a:75:17:27:c8:cd: 36:08:70:3b:f3:0b:ab:99:55:c2:81:48:61:c1:a6:29:d3:6c: c3:10:e7:24:6e:32:12:d2:3d:58:6e:1d:09:51:d9:e9:a3:13: d1:09:d6:58:15:ef:6f:84:de:8a:74:ee:9e:21:7e:2d:f3:08: 5b:52:64:42:cf:c6:54:13:d0:10:8d:8b:63:4b:b8:02:fc:ed: 81:90:9f:fb:ae:fe:70:56:55:57:46:d1:af:8a:76:b5:55:30: 42:09:11:47:92:39:fc:7a:02:02:0c:a2:b4:fc:7d:73:a7:92: 25:1c:f3:d9 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUAUHWguIdD8vgFrmTPOfJm2dtC+wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTEyMjQxMDU3NDFaFw0yNjEyMjMxMTAyNDFaMDMxMTAvBgNV BAMTKDVGRDVCMTI2OTMyOERENjY3NEE5Qzk5N0M5NDM3NzJGMDlEMDZCODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9OjdaMYIYhjkmV/BciY8b0Xc/ QqtfErAL/MFijluVMSZw6BdWUelyRt+b2Ja7Kr1wwy/5xwz5qjx5GykjEwHBExYr O1v5jd1t1fQYVmBnKNubKM/7Se+/nmgI7VIdhK4Y1XNKQVgnyxbUWsMfKXcaEak7 aQstPlkBw/nRGldfPy8e9pqwNd3DfKbsYW3eHORF/JbknnEnL3T5A5WmbGBUtJrk z24WFgDvHCtwZDvNfqNk1kqEeMFpg9vMFCQqgaaQw7CtzCwupFD4H27mH9L6zhFT 0q3yhJ6ITan/XQgdh2ZlyAYOt6mziI6PPoKsWMcOM9iConI1M8LUogLtCG+hAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUX9WxJpMo3WZ0qcmXyUN3LwnQa4cwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMTMyMzYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAMSYwDQYJKoZIhvcNAQELBQADggEBADSQXI5nGMs00Ru4GTmnoAm+5FlLhJ/z 674E8B1DWiGS/vJnWxNqJzvv+NKecRzTj/RP8AQMFftr0NYQQNKq72WIPk10Ja/t 1/08UZ5zU9I9jcPDAHlpzut6p+8oqgpnO1trH14Ndk0CYElWGOalOwzMJ1mvZ/u8 dM1d9V82d6DQ39DkLNAlzUamY0p1FyfIzTYIcDvzC6uZVcKBSGHBpinTbMMQ5yRu MhLSPVhuHQlR2emjE9EJ1lgV72+E3op07p4hfi3zCFtSZELPxlQT0BCNi2NLuAL8 7YGQn/uu/nBWVVdG0a+KdrVVMEIJEUeSOfx6AgIMorT8fXOnkiUc89k= -----END CERTIFICATE-----Generated at Wed Jan 21 16:20:15 2026 by rpki-client