This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393730303a3a2f34302d3430203d3e20313533303837.roa File: 323430343a393763303a393730303a3a2f34302d3430203d3e20313533303837.roa (raw, json) Hash identifier: 5B2JZlTjn+LkK2wM5nDYDuRQs9xZXGxH5pBH421APJg= Subject key identifier: AE:3C:94:03:A7:4C:FC:28:BC:5B:7A:79:5C:9A:0A:3A:12:2E:2C:F9 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 23E866DAFB038246E471AD469730E02FAD625479 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393730303a3a2f34302d3430203d3e20313533303837.roa Signing time: Tue 11 Nov 2025 07:00:02 +0000 ROA not before: Tue 11 Nov 2025 06:55:02 +0000 ROA not after: Tue 10 Nov 2026 07:00:02 +0000 asID: 153087 IP address blocks: 2404:97c0:9700::/40 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 07:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:e8:66:da:fb:03:82:46:e4:71:ad:46:97:30:e0:2f:ad:62:54:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Nov 11 06:55:02 2025 GMT Not After : Nov 10 07:00:02 2026 GMT Subject: CN=AE3C9403A74CFC28BC5B7A795C9A0A3A122E2CF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:93:1f:b4:fe:00:ed:63:4b:ce:1b:c2:55:87: 2a:f3:af:cd:02:2f:c6:81:63:74:f2:ab:b8:ba:a2: d4:77:49:72:43:e0:24:08:33:b7:b8:3a:b9:b4:79: 7d:26:1b:52:ae:4e:3c:6a:ed:4b:25:0c:67:a3:0b: 3a:49:93:2a:24:a0:7b:0a:cb:52:cc:02:11:28:85: 5d:78:36:11:8e:36:b4:99:df:79:d2:75:33:4f:32: 66:9b:42:50:6f:e8:22:e1:22:92:a0:a0:c2:b3:f0: 02:a0:cf:15:fd:0a:1d:8c:af:7b:5e:2d:89:49:60: 4a:51:2e:bb:12:73:08:61:c4:56:54:2b:1e:ff:e6: f8:28:fa:f3:c7:cd:b4:02:62:e7:5f:9f:6a:b1:bd: c5:0a:0b:55:a7:ee:61:ea:70:8a:9e:20:59:ca:7a: 3f:96:dc:4b:2a:f8:28:51:1d:9c:fc:3d:c6:de:c3: 03:1d:c4:af:45:56:68:a1:2f:41:9c:81:f7:57:5f: b9:41:e8:12:ba:a6:b6:1e:c9:bc:a6:74:af:1f:7f: 27:41:64:65:e9:19:5c:60:f7:e0:ad:45:d1:64:16: b4:1f:60:2b:0e:be:1e:45:c1:9c:97:b0:ff:a5:04: 0a:0f:94:39:74:a2:dd:2c:15:e9:a7:7a:c1:0b:c4: a2:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:3C:94:03:A7:4C:FC:28:BC:5B:7A:79:5C:9A:0A:3A:12:2E:2C:F9 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393730303a3a2f34302d3430203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:9700::/40 Signature Algorithm: sha256WithRSAEncryption 05:fc:15:d1:88:c4:49:1a:97:ec:3a:ed:ef:c3:25:01:d5:9b: b2:eb:f1:6d:ea:b7:c8:ab:54:a8:82:58:bc:1a:a4:d6:7b:10: 5a:2a:6d:b3:76:ea:2e:96:3f:72:d0:ce:d1:39:70:b6:35:ce: 1c:08:65:c3:27:80:0c:04:fa:98:2e:fa:1c:6f:c9:7e:b8:1c: fc:da:2c:46:b6:51:63:aa:88:d0:88:f4:e4:d7:af:9e:42:83: ed:75:ec:27:04:cb:08:98:36:3c:9b:58:9e:36:23:15:10:1d: ea:c3:8e:8d:2c:c9:56:22:ee:06:ce:2c:1b:e6:b1:7d:ec:c9: a2:4d:dc:64:e4:a3:0a:4f:59:8c:b3:f3:95:d2:af:c4:24:c8: 04:6c:35:d1:65:ae:bd:be:0d:07:0e:f4:1f:ae:f8:3d:f5:4b: 3c:be:cc:72:e7:38:f0:39:5d:73:7d:46:63:53:02:9b:89:1a: 65:22:18:0e:b4:e9:ea:39:90:af:d7:da:27:f0:a7:65:0f:80: dd:a9:7e:d1:ae:47:34:4b:30:79:88:c6:d4:1e:69:c9:ef:7c: 85:9e:b2:a9:9e:f3:3c:42:0d:48:46:16:87:de:8a:c1:54:99: 0f:18:c3:36:47:0b:15:8d:b4:a9:8a:a8:78:43:d0:25:d3:7f: cc:53:19:19 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUI+hm2vsDgkbkca1GlzDgL61iVHkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTExMTEwNjU1MDJaFw0yNjExMTAwNzAwMDJaMDMxMTAvBgNV BAMTKEFFM0M5NDAzQTc0Q0ZDMjhCQzVCN0E3OTVDOUEwQTNBMTIyRTJDRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXkx+0/gDtY0vOG8JVhyrzr80C L8aBY3Tyq7i6otR3SXJD4CQIM7e4Orm0eX0mG1KuTjxq7UslDGejCzpJkyokoHsK y1LMAhEohV14NhGONrSZ33nSdTNPMmabQlBv6CLhIpKgoMKz8AKgzxX9Ch2Mr3te LYlJYEpRLrsScwhhxFZUKx7/5vgo+vPHzbQCYudfn2qxvcUKC1Wn7mHqcIqeIFnK ej+W3Esq+ChRHZz8PcbewwMdxK9FVmihL0GcgfdXX7lB6BK6prYeybymdK8ffydB ZGXpGVxg9+CtRdFkFrQfYCsOvh5FwZyXsP+lBAoPlDl0ot0sFemnesELxKIXAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUrjyUA6dM/Ci8W3p5XJoKOhIuLPkwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzkzNzMwMzAz YTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAk BJfAlzANBgkqhkiG9w0BAQsFAAOCAQEABfwV0YjESRqX7Drt78MlAdWbsuvxbeq3 yKtUqIJYvBqk1nsQWipts3bqLpY/ctDO0TlwtjXOHAhlwyeADAT6mC76HG/Jfrgc /NosRrZRY6qI0Ij05NevnkKD7XXsJwTLCJg2PJtYnjYjFRAd6sOOjSzJViLuBs4s G+axfezJok3cZOSjCk9ZjLPzldKvxCTIBGw10WWuvb4NBw70H674PfVLPL7Mcuc4 8Dldc31GY1MCm4kaZSIYDrTp6jmQr9faJ/CnZQ+A3al+0a5HNEsweYjG1B5pye98 hZ6yqZ7zPEINSEYWh96KwVSZDxjDNkcLFY20qYqoeEPQJdN/zFMZGQ== -----END CERTIFICATE-----Generated at Wed Dec 3 17:39:10 2025 by rpki-client