This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a343030303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a343030303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: jqvg3e8AqoLRJ/K75B/MsSSeNm5CmK8WuhFVMvH1GPY= Subject key identifier: AE:E1:4A:0A:8C:4E:9D:5A:38:5E:E6:47:D8:3F:C9:0A:97:B4:EF:BC Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 02DF91DC9591B57D16D17107979B9AA99A003EAA Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a343030303a3a2f33362d3336203d3e20313533303837.roa Signing time: Tue 11 Nov 2025 06:01:52 +0000 ROA not before: Tue 11 Nov 2025 05:56:52 +0000 ROA not after: Tue 10 Nov 2026 06:01:52 +0000 asID: 153087 IP address blocks: 2404:97c0:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 07:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:df:91:dc:95:91:b5:7d:16:d1:71:07:97:9b:9a:a9:9a:00:3e:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Nov 11 05:56:52 2025 GMT Not After : Nov 10 06:01:52 2026 GMT Subject: CN=AEE14A0A8C4E9D5A385EE647D83FC90A97B4EFBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9b:a6:c7:f6:b5:0f:2b:89:24:2a:be:47:61: 3a:a7:04:28:f2:a0:82:fd:0d:21:80:3a:a4:c8:7c: f7:2a:dc:1d:0f:4d:4c:85:86:74:52:05:48:fc:48: 1d:75:9d:7f:7a:29:59:63:26:20:78:51:e6:37:8f: 31:95:69:41:bc:f6:e9:d2:ef:89:6b:25:fe:65:68: 3e:c8:89:65:74:08:34:b8:8e:66:17:31:2a:de:36: d8:5d:dd:d3:38:b2:ff:a2:23:f0:78:db:24:5d:cd: 71:b4:d7:a6:51:02:d0:c7:a9:35:8b:29:d9:e8:94: 19:af:eb:2c:cb:c1:88:ed:fe:b6:cc:d9:8c:40:12: 6b:c8:a2:02:ed:a3:f8:99:b7:46:39:36:c6:b1:94: 56:01:7a:9d:bc:82:13:f9:39:fe:28:4a:21:92:b0: cd:78:dd:0b:66:69:2c:f7:de:a7:ea:eb:4c:54:19: 8f:15:06:08:df:f3:ec:0e:b2:0e:e6:2a:cf:53:85: b0:3d:aa:50:fb:44:6b:9d:7c:0a:2c:ad:65:92:59: 1d:d0:ab:ce:84:97:46:04:55:6d:0e:d8:6c:bc:02: 17:3b:e7:5c:5b:40:7f:ee:23:39:a1:8d:ca:56:ff: f7:43:1a:58:7b:b2:73:b1:df:66:14:fe:a4:3c:ca: d2:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:E1:4A:0A:8C:4E:9D:5A:38:5E:E6:47:D8:3F:C9:0A:97:B4:EF:BC X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a343030303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:4000::/36 Signature Algorithm: sha256WithRSAEncryption c9:f3:4d:42:27:18:a6:2c:63:8b:03:74:59:04:8e:c9:af:a4: f8:7e:6e:ed:36:0e:cc:ae:84:23:97:63:8a:af:df:5f:a2:b3: 82:c2:ac:57:dc:16:6f:04:c8:57:a8:8f:40:b8:5d:20:e0:4f: 87:08:d9:d8:39:42:6b:26:f4:fc:68:ac:87:6e:c2:1f:7a:90: d6:7d:fc:bf:bc:40:cb:de:02:0f:de:7a:75:62:fe:89:09:d6: 27:71:89:03:ba:d6:d7:c7:84:db:a8:bb:45:93:14:73:08:c5: 50:c3:4d:ee:79:75:fd:6a:5f:1a:e7:cd:b8:ea:be:e7:8c:0a: 88:43:a2:fb:df:dd:de:1d:02:f7:93:6b:7d:5d:cd:d2:1d:d1: 5f:29:6d:d9:f2:c3:30:00:67:96:cd:26:29:7b:d1:e6:04:f9: 09:da:34:df:f1:8b:bb:5f:70:28:69:ef:4d:85:df:5a:fa:eb: 3f:a7:2b:7c:a7:c7:06:ce:c6:87:f8:3a:e6:98:e9:af:9f:a3: c9:2d:ef:32:a4:c4:76:fe:0a:48:53:b5:a7:eb:83:ef:2e:e7: 27:24:da:31:14:19:f5:c4:05:fc:53:ab:cd:ff:3b:1d:22:d7: 9d:64:95:f2:a7:70:f4:1a:00:74:b2:43:42:f4:1c:81:4b:b0: 8c:cc:18:0b -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUAt+R3JWRtX0W0XEHl5uaqZoAPqowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTExMTEwNTU2NTJaFw0yNjExMTAwNjAxNTJaMDMxMTAvBgNV BAMTKEFFRTE0QTBBOEM0RTlENUEzODVFRTY0N0Q4M0ZDOTBBOTdCNEVGQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFm6bH9rUPK4kkKr5HYTqnBCjy oIL9DSGAOqTIfPcq3B0PTUyFhnRSBUj8SB11nX96KVljJiB4UeY3jzGVaUG89unS 74lrJf5laD7IiWV0CDS4jmYXMSreNthd3dM4sv+iI/B42yRdzXG016ZRAtDHqTWL KdnolBmv6yzLwYjt/rbM2YxAEmvIogLto/iZt0Y5NsaxlFYBep28ghP5Of4oSiGS sM143QtmaSz33qfq60xUGY8VBgjf8+wOsg7mKs9ThbA9qlD7RGudfAosrWWSWR3Q q86El0YEVW0O2Gy8Ahc751xbQH/uIzmhjcpW//dDGlh7snOx32YU/qQ8ytIBAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUruFKCoxOnVo4XuZH2D/JCpe077wwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzQzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfAQDANBgkqhkiG9w0BAQsFAAOCAQEAyfNNQicYpixjiwN0WQSOya+k+H5u7TYO zK6EI5djiq/fX6KzgsKsV9wWbwTIV6iPQLhdIOBPhwjZ2DlCayb0/Gish27CH3qQ 1n38v7xAy94CD956dWL+iQnWJ3GJA7rW18eE26i7RZMUcwjFUMNN7nl1/WpfGufN uOq+54wKiEOi+9/d3h0C95NrfV3N0h3RXylt2fLDMABnls0mKXvR5gT5Cdo03/GL u19wKGnvTYXfWvrrP6crfKfHBs7Gh/g65pjpr5+jyS3vMqTEdv4KSFO1p+uD7y7n JyTaMRQZ9cQF/FOrzf87HSLXnWSV8qdw9BoAdLJDQvQcgUuwjMwYCw== -----END CERTIFICATE-----Generated at Wed Dec 3 17:38:52 2025 by rpki-client