This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a613030303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a613030303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: N6mGANoBckRU2bg5hxStsxuo2HX2wdIPxHilFclib3s= Subject key identifier: DB:EE:D5:18:E3:99:B6:AF:71:9B:50:33:41:FF:CE:7C:B8:66:AE:0E Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 46ACCE31B26549B9DAF82D79FC83B270B01501E1 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a613030303a3a2f33362d3336203d3e20313533303837.roa Signing time: Tue 11 Nov 2025 06:01:53 +0000 ROA not before: Tue 11 Nov 2025 05:56:53 +0000 ROA not after: Tue 10 Nov 2026 06:01:53 +0000 asID: 153087 IP address blocks: 2404:97c0:a000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 07:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:ac:ce:31:b2:65:49:b9:da:f8:2d:79:fc:83:b2:70:b0:15:01:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Nov 11 05:56:53 2025 GMT Not After : Nov 10 06:01:53 2026 GMT Subject: CN=DBEED518E399B6AF719B503341FFCE7CB866AE0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:cf:3b:1f:f9:7e:26:ca:f6:d8:c2:33:a8:26: 91:cf:c0:5a:41:22:f0:0c:12:a0:f8:8c:ba:07:15: 0c:c6:bf:df:10:d4:e9:3d:b4:38:e5:7c:8b:28:72: 99:8c:7e:a2:d6:1e:fc:0c:74:ad:3f:a8:ab:13:27: 2e:b2:d4:67:96:10:28:9c:c4:d9:b9:7f:7f:66:0e: 39:f4:3c:fd:35:e6:48:95:e7:72:5e:88:7f:a9:f6: ae:e2:2e:d4:46:4e:e2:19:cd:89:4d:99:1e:c5:68: 68:0d:17:13:ef:93:cd:04:34:6f:4c:4b:77:66:21: ad:0b:79:20:ac:25:3c:fc:37:90:f7:b1:82:31:d9: df:b1:12:4b:1b:9f:aa:67:d8:38:5c:c1:1f:f4:8b: 29:ab:da:c8:fe:bf:05:38:42:45:06:43:a1:9e:17: 1a:74:cc:d1:98:3c:a0:e3:27:59:b9:00:b1:df:cd: 71:07:f9:27:80:81:6b:99:a8:6b:37:3d:1c:7f:dc: 75:98:43:ee:a8:bd:77:76:9b:67:21:28:d2:d5:d2: 80:12:44:33:24:71:3b:4d:1b:68:1f:e3:f2:6c:1a: 99:ed:db:3b:a6:54:74:6d:75:12:b7:ae:83:8f:3b: 81:d4:ef:b6:34:a2:da:cd:45:d5:7a:ab:04:a9:6f: dc:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:EE:D5:18:E3:99:B6:AF:71:9B:50:33:41:FF:CE:7C:B8:66:AE:0E X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a613030303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:a000::/36 Signature Algorithm: sha256WithRSAEncryption 96:fc:39:47:75:f7:85:9e:0c:74:4c:ca:4e:80:51:ae:f8:67: e9:81:b9:33:67:8e:44:6d:9f:40:e9:aa:68:9c:b5:40:fe:59: 93:0e:f2:fb:21:eb:9a:74:d7:d9:94:5e:23:53:42:57:91:9f: bb:fa:cf:e2:a2:46:cc:b5:8e:1f:fb:a6:32:13:20:ff:c8:0b: bf:2c:c7:f7:9d:c3:25:c8:41:43:67:c9:ee:8c:0f:c4:2b:ae: a6:9c:b5:d1:e1:a0:ef:b5:00:64:74:f6:29:18:be:f4:88:5c: 63:b1:d7:19:a5:ac:61:a2:b4:cf:04:17:93:c4:19:92:1b:fc: 12:cd:e4:7e:53:19:69:47:d4:e8:b0:6a:aa:7e:b1:8b:5c:a1: 9f:12:29:b6:10:50:c5:dd:6b:49:f6:f8:1a:4d:a6:29:8a:8e: da:71:92:8f:fc:24:1d:fe:fd:c2:41:7d:eb:9c:17:58:5c:cf: f3:be:fa:d5:3e:93:a7:ce:27:f6:04:87:d0:21:31:7b:02:6e: 78:06:3d:83:8e:6b:30:f5:c3:cb:05:6a:f9:b9:4e:11:b7:94: cd:5f:a7:ac:66:fa:5c:c5:16:46:39:a8:d3:52:08:bb:e0:f7: c8:ed:38:e4:47:08:db:62:79:a4:57:ee:95:1d:b5:d6:d3:b1: 46:a8:4a:2f -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIURqzOMbJlSbna+C15/IOycLAVAeEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTExMTEwNTU2NTNaFw0yNjExMTAwNjAxNTNaMDMxMTAvBgNV BAMTKERCRUVENTE4RTM5OUI2QUY3MTlCNTAzMzQxRkZDRTdDQjg2NkFFMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6zzsf+X4myvbYwjOoJpHPwFpB IvAMEqD4jLoHFQzGv98Q1Ok9tDjlfIsocpmMfqLWHvwMdK0/qKsTJy6y1GeWECic xNm5f39mDjn0PP015kiV53JeiH+p9q7iLtRGTuIZzYlNmR7FaGgNFxPvk80ENG9M S3dmIa0LeSCsJTz8N5D3sYIx2d+xEksbn6pn2DhcwR/0iymr2sj+vwU4QkUGQ6Ge Fxp0zNGYPKDjJ1m5ALHfzXEH+SeAgWuZqGs3PRx/3HWYQ+6ovXd2m2chKNLV0oAS RDMkcTtNG2gf4/JsGpnt2zumVHRtdRK3roOPO4HU77Y0otrNRdV6qwSpb9wVAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU2+7VGOOZtq9xm1AzQf/OfLhmrg4wHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhNjEzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfAoDANBgkqhkiG9w0BAQsFAAOCAQEAlvw5R3X3hZ4MdEzKToBRrvhn6YG5M2eO RG2fQOmqaJy1QP5Zkw7y+yHrmnTX2ZReI1NCV5Gfu/rP4qJGzLWOH/umMhMg/8gL vyzH953DJchBQ2fJ7owPxCuuppy10eGg77UAZHT2KRi+9IhcY7HXGaWsYaK0zwQX k8QZkhv8Es3kflMZaUfU6LBqqn6xi1yhnxIpthBQxd1rSfb4Gk2mKYqO2nGSj/wk Hf79wkF965wXWFzP87761T6Tp84n9gSH0CExewJueAY9g45rMPXDywVq+blOEbeU zV+nrGb6XMUWRjmo01IIu+D3yO045EcI22J5pFfulR211tOxRqhKLw== -----END CERTIFICATE-----Generated at Wed Dec 3 17:39:09 2025 by rpki-client