This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3937303a3a2f34342d3434203d3e20313533303837.roa File: 323430343a393763303a3937303a3a2f34342d3434203d3e20313533303837.roa (raw, json) Hash identifier: 3REo8lPESzPESEgFYfKabImyxXr3e1MH5zR+5WqeqWA= Subject key identifier: 52:82:EF:9F:E1:A8:88:A6:8A:6D:4F:7D:CF:3B:09:D0:35:FA:EF:57 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 026BE7769AF27A62CED9072C516D2CD341F7A237 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3937303a3a2f34342d3434203d3e20313533303837.roa Signing time: Tue 11 Nov 2025 07:00:02 +0000 ROA not before: Tue 11 Nov 2025 06:55:02 +0000 ROA not after: Tue 10 Nov 2026 07:00:02 +0000 asID: 153087 IP address blocks: 2404:97c0:970::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 07:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:6b:e7:76:9a:f2:7a:62:ce:d9:07:2c:51:6d:2c:d3:41:f7:a2:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Nov 11 06:55:02 2025 GMT Not After : Nov 10 07:00:02 2026 GMT Subject: CN=5282EF9FE1A888A68A6D4F7DCF3B09D035FAEF57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ca:14:9a:d3:5c:1d:a8:ed:1f:32:0d:de:43: 9f:de:30:4e:e5:23:8d:01:f6:b1:fc:24:d6:60:99: 46:90:5b:ce:9b:50:d2:a3:fa:e8:a3:50:a0:a0:8a: 0f:42:d4:a0:38:34:eb:d9:1c:75:1d:31:3f:ce:94: dc:4c:ad:3b:95:09:87:e7:08:52:2d:ef:22:fd:46: 6c:d7:54:31:af:9e:90:37:66:90:35:39:06:38:f5: f5:8d:6a:30:af:7c:83:8a:79:29:ce:0d:a6:0d:0c: dc:6c:79:7e:ad:d1:04:3c:71:ed:4f:f9:fc:b3:a4: ca:72:b4:8c:f7:a6:c1:38:9e:64:fb:ec:70:77:e3: 38:9f:ec:d1:a5:cc:22:b8:39:e5:60:62:33:98:ba: 00:f8:8e:6a:61:29:ee:04:fe:43:e9:ef:5f:94:07: cf:33:76:c4:d5:14:8f:f7:0e:c3:6b:4e:91:99:c3: 31:ab:bc:d4:0a:09:0b:dd:07:bf:07:d9:cf:62:f7: 94:0f:57:6f:11:3d:76:ed:2c:ee:4d:e6:2c:9e:ec: 00:82:0d:d6:57:7e:19:60:b9:57:d6:18:54:3b:47: 7b:69:27:36:9b:34:24:f8:aa:8c:2d:7f:03:4f:85: a2:aa:86:ce:84:a4:9b:85:38:0b:b6:b2:30:a9:f3: 9c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:82:EF:9F:E1:A8:88:A6:8A:6D:4F:7D:CF:3B:09:D0:35:FA:EF:57 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3937303a3a2f34342d3434203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:970::/44 Signature Algorithm: sha256WithRSAEncryption ca:00:5b:a4:e7:df:48:fc:01:8f:47:46:5a:f5:46:f6:03:f6: 4c:1a:23:27:be:87:fc:00:2f:a0:11:fc:98:cb:42:cc:3b:80: a0:8c:13:3b:db:f4:66:dc:08:b2:51:26:16:fe:c4:b0:93:db: 1e:78:d1:08:d1:ee:22:57:c3:0b:40:7d:d2:57:d3:43:5f:3b: 8f:29:b1:0c:83:47:03:e5:45:7d:75:31:a1:83:f3:07:2d:60: 22:56:1d:b0:f4:4f:11:8c:af:68:d3:50:11:63:6e:8a:9e:02: 6a:2d:64:5b:6a:bf:85:5f:53:c1:ab:2c:6b:3d:6a:9d:c2:b1: 5f:23:05:1e:28:0b:88:e5:28:cb:7f:a0:73:93:4f:6f:29:31: b1:bc:24:cb:7a:8e:ff:47:16:11:fc:9a:4d:99:9d:d3:1b:dc: 06:76:d9:cb:2b:d5:a2:aa:33:57:8f:ed:d1:ac:c0:31:c9:14: d7:5c:d1:3a:49:7c:f0:e1:ac:ac:f7:bb:e5:9b:f8:2d:f8:e9: 4c:b6:de:bd:13:72:8c:99:f8:51:72:7e:3a:43:db:2d:40:af: 9b:27:03:60:6a:4f:3f:4d:b3:9f:45:a3:52:4e:19:c9:ee:1f: 1e:ec:ad:a5:16:e1:3e:40:c3:eb:7e:90:1d:b3:5f:8a:16:52: ea:f5:ae:81 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUAmvndpryemLO2QcsUW0s00H3ojcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTExMTEwNjU1MDJaFw0yNjExMTAwNzAwMDJaMDMxMTAvBgNV BAMTKDUyODJFRjlGRTFBODg4QTY4QTZENEY3RENGM0IwOUQwMzVGQUVGNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEyhSa01wdqO0fMg3eQ5/eME7l I40B9rH8JNZgmUaQW86bUNKj+uijUKCgig9C1KA4NOvZHHUdMT/OlNxMrTuVCYfn CFIt7yL9RmzXVDGvnpA3ZpA1OQY49fWNajCvfIOKeSnODaYNDNxseX6t0QQ8ce1P +fyzpMpytIz3psE4nmT77HB34zif7NGlzCK4OeVgYjOYugD4jmphKe4E/kPp71+U B88zdsTVFI/3DsNrTpGZwzGrvNQKCQvdB78H2c9i95QPV28RPXbtLO5N5iye7ACC DdZXfhlguVfWGFQ7R3tpJzabNCT4qowtfwNPhaKqhs6EpJuFOAu2sjCp85w3AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUUoLvn+GoiKaKbU99zzsJ0DX671cwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzkzNzMwM2Ez YTJmMzQzNDJkMzQzNDIwM2QzZTIwMzEzNTMzMzAzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEJASX wAlwMA0GCSqGSIb3DQEBCwUAA4IBAQDKAFuk599I/AGPR0Za9Ub2A/ZMGiMnvof8 AC+gEfyYy0LMO4CgjBM72/Rm3AiyUSYW/sSwk9seeNEI0e4iV8MLQH3SV9NDXzuP KbEMg0cD5UV9dTGhg/MHLWAiVh2w9E8RjK9o01ARY26KngJqLWRbar+FX1PBqyxr PWqdwrFfIwUeKAuI5SjLf6Bzk09vKTGxvCTLeo7/RxYR/JpNmZ3TG9wGdtnLK9Wi qjNXj+3RrMAxyRTXXNE6SXzw4ays97vlm/gt+OlMtt69E3KMmfhRcn46Q9stQK+b JwNgak8/TbOfRaNSThnJ7h8e7K2lFuE+QMPrfpAds1+KFlLq9a6B -----END CERTIFICATE-----Generated at Wed Dec 3 17:38:51 2025 by rpki-client