This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: /2j20KxiHUqPzb25Ob8Vnswz982vobPobznvUU3v3l0= Subject key identifier: FA:8D:BA:A0:DA:0B:EA:39:F9:9E:C9:BA:EE:8F:28:68:3E:B5:E1:CD Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 7DAC2F55CBAD6A978E502D8C107DAB4A73744205 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3a2f33362d3336203d3e20313533303837.roa Signing time: Tue 11 Nov 2025 06:01:53 +0000 ROA not before: Tue 11 Nov 2025 05:56:53 +0000 ROA not after: Tue 10 Nov 2026 06:01:53 +0000 asID: 153087 IP address blocks: 2404:97c0::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 07:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:ac:2f:55:cb:ad:6a:97:8e:50:2d:8c:10:7d:ab:4a:73:74:42:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Nov 11 05:56:53 2025 GMT Not After : Nov 10 06:01:53 2026 GMT Subject: CN=FA8DBAA0DA0BEA39F99EC9BAEE8F28683EB5E1CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e0:e6:55:1f:11:d2:fa:22:cd:ce:85:b4:4d: df:78:f4:8f:b0:61:b4:b9:ed:7a:2e:cb:08:a9:15: 4e:cc:f9:f4:83:65:59:19:0d:80:da:ec:21:29:4f: 38:62:62:28:31:cb:dd:08:8c:2c:dc:6e:3f:7b:03: ea:2b:7c:a9:cf:38:72:c0:54:2b:ad:40:10:78:3d: 1f:48:97:3e:c8:91:44:c8:ea:7e:02:52:e5:61:d5: 5d:41:53:29:3c:02:d5:6a:e5:e4:8d:6e:bb:e9:7a: 22:09:d6:7a:73:ed:11:aa:cd:b1:ad:a2:fa:64:bc: fe:d9:c5:2b:d5:15:c9:e7:24:c2:a2:d1:a0:9f:d3: 91:53:59:fe:f4:c7:ce:44:94:ca:99:4c:f0:c8:33: 62:10:63:c8:6d:a0:e8:c4:78:27:36:2f:76:6e:ad: f4:2b:d4:3e:cd:79:19:3a:32:7a:38:a6:f9:46:c0: 92:44:5d:c1:a3:42:c9:aa:8c:97:ff:87:00:2e:c7: dd:d6:03:5c:7e:f4:1c:11:07:78:88:f1:1c:41:02: a4:d3:ce:dd:3c:54:fb:19:7f:a5:54:56:0f:ef:01: 02:8d:53:fa:67:ae:18:4c:1b:22:06:cf:2b:89:ab: c0:00:c0:cc:55:4e:a0:f4:eb:16:11:70:4c:4f:72: 0b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:8D:BA:A0:DA:0B:EA:39:F9:9E:C9:BA:EE:8F:28:68:3E:B5:E1:CD X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0::/36 Signature Algorithm: sha256WithRSAEncryption 69:33:ff:d4:d1:4b:dc:59:3f:4b:31:84:54:4a:5d:5a:9c:6b: 61:0a:9e:1a:a6:2d:00:e7:e3:93:30:ef:d5:1e:a6:95:70:d2: 64:34:d5:55:92:43:e1:0d:55:e6:65:46:b7:ae:34:93:aa:a6: b3:0b:e3:85:d9:d3:8f:fe:29:d5:b0:36:4d:2b:d8:2e:0c:e8: 44:f8:92:93:38:90:7c:15:41:0b:cf:62:f2:2f:ce:44:1d:4f: 5c:9f:c6:4d:74:aa:39:04:7e:20:74:08:ae:ce:90:f5:8c:cb: e8:07:7a:b8:c4:e1:f9:11:9d:5e:99:dd:60:7c:f4:a9:e4:9d: 0c:5d:78:76:4e:5a:f2:3f:f4:81:e5:4a:e0:6c:fb:64:09:73: ec:6b:e1:5b:d0:77:26:b7:25:22:72:9a:f0:df:ce:b1:b5:bf: a5:2f:8c:99:ca:d1:f0:ba:88:87:cf:4e:be:f5:fb:29:34:50: a9:cc:52:e8:d4:e6:db:01:82:ad:39:0e:ca:02:b6:17:9c:96: d2:ae:87:ae:a8:f4:de:c3:04:f1:6e:e5:56:1f:72:78:a7:b2: 53:11:49:36:b5:0c:9c:69:02:4c:70:3f:33:8f:7b:ea:e7:18: 04:f3:80:2e:6e:28:c6:2d:4c:be:f6:59:4d:eb:2d:21:dc:d6: 68:e6:ac:3e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfawvVcutapeOUC2MEH2rSnN0QgUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTExMTEwNTU2NTNaFw0yNjExMTAwNjAxNTNaMDMxMTAvBgNV BAMTKEZBOERCQUEwREEwQkVBMzlGOTlFQzlCQUVFOEYyODY4M0VCNUUxQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN4OZVHxHS+iLNzoW0Td949I+w YbS57XouywipFU7M+fSDZVkZDYDa7CEpTzhiYigxy90IjCzcbj97A+orfKnPOHLA VCutQBB4PR9Ilz7IkUTI6n4CUuVh1V1BUyk8AtVq5eSNbrvpeiIJ1npz7RGqzbGt ovpkvP7ZxSvVFcnnJMKi0aCf05FTWf70x85ElMqZTPDIM2IQY8htoOjEeCc2L3Zu rfQr1D7NeRk6Mno4pvlGwJJEXcGjQsmqjJf/hwAux93WA1x+9BwRB3iI8RxBAqTT zt08VPsZf6VUVg/vAQKNU/pnrhhMGyIGzyuJq8AAwMxVTqD06xYRcExPcgsRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+o26oNoL6jn5nsm67o8oaD614c0wHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhM2EyZjMzMzYy ZDMzMzYyMDNkM2UyMDMxMzUzMzMwMzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCQEl8AAMA0GCSqG SIb3DQEBCwUAA4IBAQBpM//U0UvcWT9LMYRUSl1anGthCp4api0A5+OTMO/VHqaV cNJkNNVVkkPhDVXmZUa3rjSTqqazC+OF2dOP/inVsDZNK9guDOhE+JKTOJB8FUEL z2LyL85EHU9cn8ZNdKo5BH4gdAiuzpD1jMvoB3q4xOH5EZ1emd1gfPSp5J0MXXh2 TlryP/SB5UrgbPtkCXPsa+Fb0HcmtyUicprw386xtb+lL4yZytHwuoiHz06+9fsp NFCpzFLo1ObbAYKtOQ7KArYXnJbSroeuqPTewwTxbuVWH3J4p7JTEUk2tQycaQJM cD8zj3vq5xgE84AubijGLUy+9llN6y0h3NZo5qw+ -----END CERTIFICATE-----Generated at Wed Dec 3 17:38:53 2025 by rpki-client