This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a373030303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a373030303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: lNdW3pOZi8eT+J9dyaHX5GGSIEb0ecFMMO3Pho99eNg= Subject key identifier: D1:13:4B:43:95:80:5B:48:3A:BE:42:B4:0E:23:EE:AD:C7:2E:40:13 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 9781246C86AD4783755AD1DA1F36DD37EA61B0 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a373030303a3a2f33362d3336203d3e20313533303837.roa Signing time: Tue 11 Nov 2025 06:01:51 +0000 ROA not before: Tue 11 Nov 2025 05:56:51 +0000 ROA not after: Tue 10 Nov 2026 06:01:51 +0000 asID: 153087 IP address blocks: 2404:97c0:7000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 07:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97:81:24:6c:86:ad:47:83:75:5a:d1:da:1f:36:dd:37:ea:61:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Nov 11 05:56:51 2025 GMT Not After : Nov 10 06:01:51 2026 GMT Subject: CN=D1134B4395805B483ABE42B40E23EEADC72E4013 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6c:fb:5a:8d:35:1b:96:d6:a9:40:ae:a5:a2: c4:60:37:4f:d9:31:b3:78:f6:52:79:0c:3a:b3:bd: 7d:09:d3:31:6d:ba:34:a6:a1:7e:45:53:ce:93:91: f9:56:32:4d:a5:b1:68:b3:a1:be:bd:0c:37:45:1e: f8:de:1c:4a:ae:2e:41:3a:df:03:69:59:cf:f9:ca: b5:1b:5e:1a:e5:1f:77:0b:d4:85:c0:1a:16:9c:7f: e4:b8:85:60:15:3b:59:e5:b1:36:bd:5e:62:9d:53: e4:35:24:cd:8f:52:8f:fe:3a:9c:d4:4e:64:e0:24: e1:85:8c:38:32:2c:aa:4c:8d:b5:08:80:66:a4:da: de:f6:31:7a:42:58:18:8c:22:93:cd:a9:7f:f8:88: e9:30:2d:ce:07:b7:3a:86:a5:3b:be:98:74:c6:6c: c3:45:41:c5:6b:94:5e:fc:29:5f:61:df:62:e6:ae: b8:4b:fa:83:b0:66:9f:30:95:6a:12:63:c4:ea:09: db:b4:f9:8e:f5:ad:37:22:b6:a9:b5:2b:54:af:24: bf:06:45:c2:22:91:bc:f2:7f:59:bc:ca:da:c8:a3: 62:a9:15:06:9c:7e:fa:27:be:1f:d9:20:cc:3d:9b: 64:cb:bb:8c:ee:d1:93:63:0e:89:56:e2:81:ac:39: 29:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:13:4B:43:95:80:5B:48:3A:BE:42:B4:0E:23:EE:AD:C7:2E:40:13 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a373030303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:7000::/36 Signature Algorithm: sha256WithRSAEncryption 5e:cf:01:ec:54:ae:78:29:9b:f3:de:f9:07:84:d4:f1:f9:bf: 00:e8:f5:7d:60:b5:a0:ea:82:62:57:5b:8d:d1:85:9c:51:d3: b5:e8:d8:f0:20:71:94:9e:84:fe:77:2e:1b:91:24:6a:7d:9a: 62:e8:a5:d0:a4:ef:cf:94:01:5b:2e:05:dc:7b:de:44:ae:1f: cf:bb:e9:d3:3c:8a:32:d2:c9:2e:69:ce:93:4e:78:02:69:80: 54:1f:88:67:39:4c:d3:d2:29:f3:e6:0e:52:d9:d1:f5:2e:e4: cc:f1:dd:34:6c:cb:07:9a:3c:01:cb:dd:c9:bc:9b:cd:37:75: 3b:50:11:54:2e:ac:c5:b1:2b:7e:3b:48:60:41:65:4d:5e:28: 69:e9:6f:75:52:ce:0f:1c:0b:c7:5a:34:47:db:92:5e:c6:f4: 19:27:80:c6:0b:a3:fb:e3:bc:7f:ad:30:9c:3c:e7:5c:f9:85: cf:e9:08:71:56:6b:59:0a:45:f0:84:34:71:2e:01:a6:43:7f: 67:91:41:de:e3:98:fe:8f:db:f9:73:5b:1a:32:69:e2:41:54: fa:4e:3f:a3:13:be:1f:aa:3f:e6:b7:a0:88:be:33:a8:6a:50: 2d:d7:93:1c:6c:15:f0:85:84:47:90:f5:1e:ef:cf:ae:f0:98: a1:1d:3c:44 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUAJeBJGyGrUeDdVrR2h823TfqYbAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTExMTEwNTU2NTFaFw0yNjExMTAwNjAxNTFaMDMxMTAvBgNV BAMTKEQxMTM0QjQzOTU4MDVCNDgzQUJFNDJCNDBFMjNFRUFEQzcyRTQwMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCbPtajTUbltapQK6losRgN0/Z MbN49lJ5DDqzvX0J0zFtujSmoX5FU86TkflWMk2lsWizob69DDdFHvjeHEquLkE6 3wNpWc/5yrUbXhrlH3cL1IXAGhacf+S4hWAVO1nlsTa9XmKdU+Q1JM2PUo/+OpzU TmTgJOGFjDgyLKpMjbUIgGak2t72MXpCWBiMIpPNqX/4iOkwLc4HtzqGpTu+mHTG bMNFQcVrlF78KV9h32LmrrhL+oOwZp8wlWoSY8TqCdu0+Y71rTcitqm1K1SvJL8G RcIikbzyf1m8ytrIo2KpFQacfvonvh/ZIMw9m2TLu4zu0ZNjDolW4oGsOSkJAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU0RNLQ5WAW0g6vkK0DiPurccuQBMwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzczMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfAcDANBgkqhkiG9w0BAQsFAAOCAQEAXs8B7FSueCmb8975B4TU8fm/AOj1fWC1 oOqCYldbjdGFnFHTtejY8CBxlJ6E/ncuG5Ekan2aYuil0KTvz5QBWy4F3HveRK4f z7vp0zyKMtLJLmnOk054AmmAVB+IZzlM09Ip8+YOUtnR9S7kzPHdNGzLB5o8Acvd ybybzTd1O1ARVC6sxbErfjtIYEFlTV4oaelvdVLODxwLx1o0R9uSXsb0GSeAxguj ++O8f60wnDznXPmFz+kIcVZrWQpF8IQ0cS4BpkN/Z5FB3uOY/o/b+XNbGjJp4kFU +k4/oxO+H6o/5regiL4zqGpQLdeTHGwV8IWER5D1Hu/PrvCYoR08RA== -----END CERTIFICATE-----Generated at Wed Dec 3 17:39:10 2025 by rpki-client