This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a383030303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a383030303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: QP61IhleORRzGf5/ZoBkFFGoF5n6EhGqldep0K1H6sA= Subject key identifier: F7:4C:1F:14:C5:97:0E:B1:FB:8F:B9:34:E3:90:DD:6F:E4:39:BC:39 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 58311DBB49A0533688F08F2025DCAA6A5FA00BA9 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a383030303a3a2f33362d3336203d3e20313533303837.roa Signing time: Tue 11 Nov 2025 06:01:52 +0000 ROA not before: Tue 11 Nov 2025 05:56:52 +0000 ROA not after: Tue 10 Nov 2026 06:01:52 +0000 asID: 153087 IP address blocks: 2404:97c0:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 07:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:31:1d:bb:49:a0:53:36:88:f0:8f:20:25:dc:aa:6a:5f:a0:0b:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Nov 11 05:56:52 2025 GMT Not After : Nov 10 06:01:52 2026 GMT Subject: CN=F74C1F14C5970EB1FB8FB934E390DD6FE439BC39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c1:e0:4f:11:94:e1:1d:e3:1e:2b:07:3a:4d: d3:04:f4:e1:de:6d:53:4b:16:46:e9:4e:ad:5c:93: 57:1e:a9:29:01:a2:23:de:dd:2b:89:99:96:d1:cd: 99:d1:5e:8d:05:78:0c:88:be:e8:5b:fd:67:df:9a: 03:fc:bf:b2:7d:13:d1:39:17:40:ae:31:b8:cb:28: c4:2f:f3:53:91:26:92:56:2a:2f:66:45:c6:36:6b: e4:c7:da:d7:d8:a1:48:1e:0d:31:6e:65:18:08:af: 9d:2e:56:86:e1:48:55:65:06:57:6b:d4:4b:51:3f: 80:4a:c6:70:2e:fa:08:ba:d7:f5:c7:fe:7d:75:08: 82:b7:d7:3d:52:3c:23:cb:a3:4d:9b:ae:c0:70:68: 69:11:ee:b3:1d:bf:2c:d2:25:a1:df:ee:20:9d:cd: 7d:33:7a:ea:19:e2:31:5c:a3:17:02:11:c8:3f:d7: d6:69:92:a2:23:8c:51:73:b9:6b:d9:7d:99:68:f9: 21:47:8b:23:f2:d9:15:ad:57:35:f2:01:4c:51:a1: 57:a8:f7:52:87:18:af:d1:40:4b:d4:da:52:70:64: 7b:46:2d:08:18:ef:01:31:32:f2:c0:e4:f3:50:c5: 00:79:9f:27:4f:94:df:45:92:2e:df:fb:47:e1:80: 57:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:4C:1F:14:C5:97:0E:B1:FB:8F:B9:34:E3:90:DD:6F:E4:39:BC:39 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a383030303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:8000::/36 Signature Algorithm: sha256WithRSAEncryption 81:8a:af:34:d9:d3:4b:ea:ac:55:13:79:e1:2d:58:88:de:ab: e0:35:28:8a:ec:d0:9a:26:9f:04:17:74:79:0f:cd:61:05:b0: 27:33:6c:fe:d1:fa:7e:93:1e:04:5b:9b:f4:66:3b:0b:64:a6: 21:3d:ac:b8:a2:3b:4e:c7:15:06:72:e1:7b:c4:a2:2c:10:19: e2:52:be:3a:b6:0f:35:d3:f1:e4:fd:09:80:f4:90:4f:a3:db: b4:33:8e:e2:8b:79:f8:d5:e6:24:a4:66:43:07:f4:6c:e6:86: 90:c4:24:7d:ba:0b:14:71:96:e4:d8:17:04:aa:0f:c2:7f:df: 1f:08:38:c7:52:09:90:5a:ea:45:cf:aa:06:a8:30:7a:bf:c0: f3:da:40:29:ac:4a:ad:f9:4a:f4:fa:20:59:07:b8:be:2c:cf: 8c:28:3c:83:2e:e3:c6:0b:ff:15:86:85:7d:c4:09:eb:e7:bc: a8:13:58:ba:39:d0:29:01:97:cf:28:b4:20:e3:a8:73:69:47: 12:d9:8b:38:2d:17:04:06:16:69:cb:4f:62:e1:83:96:17:8f: 52:4d:8c:7d:ad:b7:07:24:1f:87:9a:ff:53:e9:1f:79:e6:c8: 01:b0:26:b8:73:a3:c4:6d:bb:48:52:15:a8:fb:29:d2:48:e0: 1b:0b:a4:24 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUWDEdu0mgUzaI8I8gJdyqal+gC6kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTExMTEwNTU2NTJaFw0yNjExMTAwNjAxNTJaMDMxMTAvBgNV BAMTKEY3NEMxRjE0QzU5NzBFQjFGQjhGQjkzNEUzOTBERDZGRTQzOUJDMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZweBPEZThHeMeKwc6TdME9OHe bVNLFkbpTq1ck1ceqSkBoiPe3SuJmZbRzZnRXo0FeAyIvuhb/WffmgP8v7J9E9E5 F0CuMbjLKMQv81ORJpJWKi9mRcY2a+TH2tfYoUgeDTFuZRgIr50uVobhSFVlBldr 1EtRP4BKxnAu+gi61/XH/n11CIK31z1SPCPLo02brsBwaGkR7rMdvyzSJaHf7iCd zX0zeuoZ4jFcoxcCEcg/19ZpkqIjjFFzuWvZfZlo+SFHiyPy2RWtVzXyAUxRoVeo 91KHGK/RQEvU2lJwZHtGLQgY7wExMvLA5PNQxQB5nydPlN9Fki7f+0fhgFdNAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU90wfFMWXDrH7j7k045Ddb+Q5vDkwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzgzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfAgDANBgkqhkiG9w0BAQsFAAOCAQEAgYqvNNnTS+qsVRN54S1YiN6r4DUoiuzQ miafBBd0eQ/NYQWwJzNs/tH6fpMeBFub9GY7C2SmIT2suKI7TscVBnLhe8SiLBAZ 4lK+OrYPNdPx5P0JgPSQT6PbtDOO4ot5+NXmJKRmQwf0bOaGkMQkfboLFHGW5NgX BKoPwn/fHwg4x1IJkFrqRc+qBqgwer/A89pAKaxKrflK9PogWQe4vizPjCg8gy7j xgv/FYaFfcQJ6+e8qBNYujnQKQGXzyi0IOOoc2lHEtmLOC0XBAYWactPYuGDlheP Uk2Mfa23ByQfh5r/U+kfeebIAbAmuHOjxG27SFIVqPsp0kjgGwukJA== -----END CERTIFICATE-----Generated at Wed Dec 3 17:39:08 2025 by rpki-client