This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a353030303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a353030303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: ajp2RV8pB0t7xjb6AMg24tD94YiYauZ1iojKxpZ1J3o= Subject key identifier: 9C:2A:9B:22:F3:74:4B:58:3E:58:9F:05:71:E8:98:11:25:89:E6:01 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 4C5E0E0B738E5A4D2C095E1EC24584385AEE07D6 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a353030303a3a2f33362d3336203d3e20313533303837.roa Signing time: Tue 11 Nov 2025 06:01:51 +0000 ROA not before: Tue 11 Nov 2025 05:56:51 +0000 ROA not after: Tue 10 Nov 2026 06:01:51 +0000 asID: 153087 IP address blocks: 2404:97c0:5000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 07:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:5e:0e:0b:73:8e:5a:4d:2c:09:5e:1e:c2:45:84:38:5a:ee:07:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Nov 11 05:56:51 2025 GMT Not After : Nov 10 06:01:51 2026 GMT Subject: CN=9C2A9B22F3744B583E589F0571E898112589E601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4e:2e:58:e6:2e:7f:0e:f7:f0:1d:11:1a:74: 2e:13:de:b9:ea:33:ec:39:e0:91:82:87:16:43:31: 73:f3:be:39:b3:aa:dd:50:5f:bf:95:65:ea:52:e8: 05:f2:8c:f3:82:20:c2:ea:6f:1a:83:54:94:e7:2b: d0:5c:c8:ac:e7:5b:87:bb:fd:2e:6e:2d:9f:0c:82: e6:ea:c6:53:c5:b0:ee:19:75:9f:0a:80:18:70:96: 2e:c2:27:db:de:54:d7:a5:23:3a:8d:31:15:c0:26: 64:b3:84:ee:d1:b2:18:c8:e7:aa:6e:b0:94:5d:7f: ea:22:41:83:d9:60:fd:ff:a0:50:81:5d:90:21:5b: b0:a9:2d:31:22:b8:97:62:d3:fc:9d:a4:20:6a:37: b3:94:8f:ea:ec:07:97:75:0d:9a:5a:09:e2:a7:8b: 66:ac:07:69:42:ac:3c:8c:75:db:c1:6e:19:fa:c8: 48:4a:d1:21:32:b6:88:ce:19:9d:1f:2e:74:fb:f7: 6a:9d:c2:2e:d7:21:c4:ad:87:37:dc:d0:d3:57:3d: fd:bd:e9:be:5c:51:1d:62:fe:2b:ef:0c:80:27:b8: f3:c7:8f:ff:cc:2e:39:59:ae:69:ba:ac:eb:de:b2: 18:0b:26:9c:1b:bb:ba:40:32:a9:74:0b:10:0e:08: c9:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:2A:9B:22:F3:74:4B:58:3E:58:9F:05:71:E8:98:11:25:89:E6:01 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a353030303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:5000::/36 Signature Algorithm: sha256WithRSAEncryption 9b:53:76:c2:11:fb:91:9d:53:f9:cf:80:45:81:a5:e0:36:6c: 85:7b:28:93:53:3d:2c:9e:79:35:b6:8c:3a:ba:3b:0c:ec:78: f6:76:45:7c:4c:6c:7d:e2:b3:21:8a:d0:01:6e:5c:8b:b1:cf: 07:ea:39:4a:27:80:da:f6:7d:4c:49:fa:07:25:ec:4c:ef:0f: 1b:9d:d0:31:27:42:d0:bf:bb:41:ff:ce:2a:20:25:72:85:2f: 7d:26:78:40:fd:e7:4f:99:10:49:82:90:fc:36:30:3e:17:2f: 4a:d7:07:30:76:4d:d3:f5:7f:09:dc:d0:1c:e9:8a:4a:87:0d: f5:05:dd:3c:db:5a:fc:c2:24:2b:6d:f3:20:4a:80:68:07:25: 1a:70:2c:eb:22:0e:fc:61:ac:53:67:55:0a:ba:27:05:cc:71: 99:76:70:f6:ab:08:42:ff:7b:7d:33:52:86:85:20:f8:d5:11: 06:71:bc:6b:73:6b:57:d7:bd:2d:a4:74:de:01:09:25:c6:0c: 07:60:7c:9b:b9:e2:94:74:48:fd:08:5e:46:9e:df:f4:ec:bd: cc:be:48:22:93:94:dc:23:7b:6d:73:0b:f2:ce:d2:9a:3c:de: 4a:d9:59:1a:09:6a:9b:bd:63:11:5b:23:05:cf:a4:ae:44:7f: 65:dd:80:62 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUTF4OC3OOWk0sCV4ewkWEOFruB9YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTExMTEwNTU2NTFaFw0yNjExMTAwNjAxNTFaMDMxMTAvBgNV BAMTKDlDMkE5QjIyRjM3NDRCNTgzRTU4OUYwNTcxRTg5ODExMjU4OUU2MDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8Ti5Y5i5/DvfwHREadC4T3rnq M+w54JGChxZDMXPzvjmzqt1QX7+VZepS6AXyjPOCIMLqbxqDVJTnK9BcyKznW4e7 /S5uLZ8MgubqxlPFsO4ZdZ8KgBhwli7CJ9veVNelIzqNMRXAJmSzhO7RshjI56pu sJRdf+oiQYPZYP3/oFCBXZAhW7CpLTEiuJdi0/ydpCBqN7OUj+rsB5d1DZpaCeKn i2asB2lCrDyMddvBbhn6yEhK0SEytojOGZ0fLnT792qdwi7XIcSthzfc0NNXPf29 6b5cUR1i/ivvDIAnuPPHj//MLjlZrmm6rOveshgLJpwbu7pAMql0CxAOCMkhAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUnCqbIvN0S1g+WJ8FceiYESWJ5gEwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzUzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfAUDANBgkqhkiG9w0BAQsFAAOCAQEAm1N2whH7kZ1T+c+ARYGl4DZshXsok1M9 LJ55NbaMOro7DOx49nZFfExsfeKzIYrQAW5ci7HPB+o5SieA2vZ9TEn6ByXsTO8P G53QMSdC0L+7Qf/OKiAlcoUvfSZ4QP3nT5kQSYKQ/DYwPhcvStcHMHZN0/V/CdzQ HOmKSocN9QXdPNta/MIkK23zIEqAaAclGnAs6yIO/GGsU2dVCronBcxxmXZw9qsI Qv97fTNShoUg+NURBnG8a3NrV9e9LaR03gEJJcYMB2B8m7nilHRI/QheRp7f9Oy9 zL5IIpOU3CN7bXML8s7SmjzeStlZGglqm71jEVsjBc+krkR/Zd2AYg== -----END CERTIFICATE-----Generated at Wed Dec 3 17:39:10 2025 by rpki-client