This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393763303a3a2f34342d3434203d3e20313533303837.roa File: 323430343a393763303a393763303a3a2f34342d3434203d3e20313533303837.roa (raw, json) Hash identifier: jwvNujssv5IpW6wUm1bDQwCkCbwLEP4pJ6+PadQVpUw= Subject key identifier: 15:3C:99:FC:A8:AA:36:96:1A:02:E4:11:AA:48:4B:39:85:4F:A0:E3 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 35878211841AA67827D018C431309DF77289F1C0 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393763303a3a2f34342d3434203d3e20313533303837.roa Signing time: Tue 11 Nov 2025 07:00:03 +0000 ROA not before: Tue 11 Nov 2025 06:55:03 +0000 ROA not after: Tue 10 Nov 2026 07:00:03 +0000 asID: 153087 IP address blocks: 2404:97c0:97c0::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 07:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:87:82:11:84:1a:a6:78:27:d0:18:c4:31:30:9d:f7:72:89:f1:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Nov 11 06:55:03 2025 GMT Not After : Nov 10 07:00:03 2026 GMT Subject: CN=153C99FCA8AA36961A02E411AA484B39854FA0E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2c:84:f4:a2:49:0a:7c:61:bb:c6:a9:fa:8b: 87:06:49:16:11:de:2d:79:86:64:71:4a:ee:e0:65: ec:b5:ce:a0:0a:b4:65:17:55:6d:1d:1b:d7:1d:a8: 07:fc:a9:fc:6d:ef:a7:38:2b:80:86:5d:0b:9c:bb: 86:0d:24:a8:99:93:53:dd:74:57:12:f7:3d:b2:d1: 93:29:ae:e9:a3:f5:2b:f8:a7:2f:63:c2:33:c5:4e: 85:da:e6:09:34:e8:ca:52:b3:2c:ea:b9:86:af:e5: 40:2a:51:89:e1:c2:44:d1:de:0c:f7:c4:b2:5f:6b: b0:86:61:99:09:a6:91:32:fb:32:f9:51:27:21:fe: 33:4f:b0:d7:18:fc:0e:45:ad:a0:df:de:bc:d9:a1: 11:bd:cd:3e:39:d2:49:d2:e1:25:63:2c:f1:45:7d: 8b:6a:3a:00:6b:e4:41:10:e6:c0:09:6d:c3:89:05: 22:f4:61:51:61:ad:99:2a:db:4a:34:f5:43:26:e3: fc:b8:9c:c6:45:01:45:b4:9e:16:fd:43:d2:b0:c2: db:ba:3f:59:10:a7:5b:fe:6e:20:f0:dc:af:76:a0: 6b:b8:af:ab:97:90:15:11:03:bc:ac:d8:38:34:80: 32:48:fa:bf:22:9e:78:57:d7:3e:2e:40:96:47:6a: 46:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:3C:99:FC:A8:AA:36:96:1A:02:E4:11:AA:48:4B:39:85:4F:A0:E3 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393763303a3a2f34342d3434203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:97c0::/44 Signature Algorithm: sha256WithRSAEncryption 69:e9:83:83:6c:15:1d:32:65:f6:93:be:40:ba:59:0a:65:af: df:10:ec:26:72:75:91:24:0b:db:70:7b:5d:91:4c:c5:30:23: 0d:7e:75:75:49:a4:1f:a0:5f:9b:79:d2:97:21:ca:0c:b0:27: 84:77:3f:40:c5:92:62:e5:e1:b9:4a:a4:a8:0a:4c:b6:ee:31: 50:f2:7f:12:b8:3c:bb:4e:9a:95:c1:f6:90:34:94:b4:51:ce: 50:ac:4b:99:2c:23:e8:2a:c9:c3:02:19:46:7a:8d:9a:62:b6: d7:3e:50:ae:92:d4:6b:67:81:5c:66:5f:5f:f3:09:fe:e9:11: aa:32:55:fe:1b:28:b3:43:d1:3a:c5:77:39:5c:20:54:9a:98: 8a:b7:0d:1e:01:9d:90:70:ec:6c:71:cc:68:a3:8b:ed:31:61: 96:2b:1e:00:f0:9a:b5:1e:c9:7e:1f:3b:68:f5:54:45:89:c6: 38:86:36:21:9a:51:d0:38:cc:1d:86:48:ac:2b:88:3f:a1:f6: 24:08:81:9a:7a:26:71:13:2f:a2:a9:28:b1:35:a9:db:c6:d9: 2e:62:48:c0:bb:aa:e5:19:b7:00:e8:02:03:5e:e1:36:f3:bc: 12:a4:69:ae:71:c2:71:9e:a3:c7:a3:04:dc:43:3a:33:6f:02: 8e:c6:90:d2 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUNYeCEYQapngn0BjEMTCd93KJ8cAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTExMTEwNjU1MDNaFw0yNjExMTAwNzAwMDNaMDMxMTAvBgNV BAMTKDE1M0M5OUZDQThBQTM2OTYxQTAyRTQxMUFBNDg0QjM5ODU0RkEwRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1LIT0okkKfGG7xqn6i4cGSRYR 3i15hmRxSu7gZey1zqAKtGUXVW0dG9cdqAf8qfxt76c4K4CGXQucu4YNJKiZk1Pd dFcS9z2y0ZMprumj9Sv4py9jwjPFToXa5gk06MpSsyzquYav5UAqUYnhwkTR3gz3 xLJfa7CGYZkJppEy+zL5USch/jNPsNcY/A5FraDf3rzZoRG9zT450knS4SVjLPFF fYtqOgBr5EEQ5sAJbcOJBSL0YVFhrZkq20o09UMm4/y4nMZFAUW0nhb9Q9Kwwtu6 P1kQp1v+biDw3K92oGu4r6uXkBURA7ys2Dg0gDJI+r8innhX1z4uQJZHaka/AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUFTyZ/KiqNpYaAuQRqkhLOYVPoOMwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzkzNzYzMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk BJfAl8AwDQYJKoZIhvcNAQELBQADggEBAGnpg4NsFR0yZfaTvkC6WQplr98Q7CZy dZEkC9twe12RTMUwIw1+dXVJpB+gX5t50pchygywJ4R3P0DFkmLl4blKpKgKTLbu MVDyfxK4PLtOmpXB9pA0lLRRzlCsS5ksI+gqycMCGUZ6jZpittc+UK6S1GtngVxm X1/zCf7pEaoyVf4bKLND0TrFdzlcIFSamIq3DR4BnZBw7GxxzGiji+0xYZYrHgDw mrUeyX4fO2j1VEWJxjiGNiGaUdA4zB2GSKwriD+h9iQIgZp6JnETL6KpKLE1qdvG 2S5iSMC7quUZtwDoAgNe4TbzvBKkaa5xwnGeo8ejBNxDOjNvAo7GkNI= -----END CERTIFICATE-----Generated at Wed Dec 3 17:39:09 2025 by rpki-client