This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a633030303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a633030303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: BVieKtpjSLtSo/dKiDHRcHA8rEhJMn29aKZFmH29jqw= Subject key identifier: 33:EC:89:96:39:18:79:01:FB:F7:44:B0:2C:98:3A:1E:5B:B4:E9:C5 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 092D2C92800E45C30844DE1CCBD4E6DECDC8E2FC Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a633030303a3a2f33362d3336203d3e20313533303837.roa Signing time: Tue 11 Nov 2025 06:01:52 +0000 ROA not before: Tue 11 Nov 2025 05:56:52 +0000 ROA not after: Tue 10 Nov 2026 06:01:52 +0000 asID: 153087 IP address blocks: 2404:97c0:c000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 07:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:2d:2c:92:80:0e:45:c3:08:44:de:1c:cb:d4:e6:de:cd:c8:e2:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Nov 11 05:56:52 2025 GMT Not After : Nov 10 06:01:52 2026 GMT Subject: CN=33EC899639187901FBF744B02C983A1E5BB4E9C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:68:2d:87:74:1f:b7:b8:91:c8:28:27:85:0a: a5:f8:b7:b1:74:61:63:08:4c:4e:6b:82:ec:78:93: bb:11:f3:54:a3:08:7b:2f:d6:c9:f1:98:54:5d:d3: 5b:a5:d2:da:fe:7a:47:d1:4a:0e:25:e2:8a:a3:7f: 43:f3:41:16:ed:c9:1c:dd:0a:5e:f1:a8:74:98:6b: 9c:90:6d:73:e2:47:65:72:09:e2:c9:47:39:c8:b5: 66:47:c1:29:e7:00:a9:a2:11:a5:27:3d:e7:c0:0e: 12:7d:98:04:43:1e:26:b1:02:18:08:fe:93:17:73: 1a:36:7c:ee:84:d1:29:93:e9:26:28:dd:64:0a:36: 2b:7f:c1:32:47:d6:05:f4:e6:46:d6:6e:33:75:cc: 6a:45:14:f8:ac:33:2b:72:7a:90:db:8e:74:da:61: b8:b5:3c:3d:69:87:a7:4b:a6:f1:63:f7:8d:1b:18: a2:f1:4f:1c:03:30:25:c7:6f:03:ef:6b:9e:ac:b9: f0:46:5d:e4:69:9b:36:39:a0:d2:ca:ac:32:39:f7: 02:bb:6a:f7:d8:55:14:94:92:76:2f:34:be:36:47: 7f:15:19:17:13:c9:c4:51:60:64:06:c7:5a:b1:54: 0b:07:72:e4:0e:36:5a:23:e9:5c:67:e0:d9:f8:d5: f2:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:EC:89:96:39:18:79:01:FB:F7:44:B0:2C:98:3A:1E:5B:B4:E9:C5 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a633030303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:c000::/36 Signature Algorithm: sha256WithRSAEncryption 4c:e0:e7:3e:30:c1:aa:16:a6:32:31:92:84:19:20:d1:ae:95: 1e:1a:d5:a8:d9:76:7d:b9:18:91:32:75:f7:9d:2b:60:3d:6b: 9b:1d:14:66:a3:1f:f1:98:95:29:04:e2:56:7c:b1:ea:d4:9e: 63:23:54:df:bd:aa:ab:db:84:29:ba:f3:d3:75:0c:54:87:f4: ae:bf:f0:f3:9b:a2:4f:38:00:f3:98:a0:e7:b0:68:61:f9:3d: 38:5a:5f:70:92:81:7c:0b:c9:d3:02:dc:99:72:64:3d:3e:6c: b8:52:95:00:4e:1c:29:ee:22:fc:21:30:7e:f0:cd:18:08:e3: 05:92:c3:69:e4:e1:af:75:b8:57:04:d7:4d:55:d2:da:ad:55: 66:e8:d6:56:bb:43:73:5d:28:9b:70:03:3b:55:3d:32:2f:77: 51:3b:fc:12:3b:fd:53:1c:f2:31:a3:26:91:28:d5:d4:84:21: 9b:0f:f2:f6:5c:f7:75:6c:a3:e4:c8:07:ac:b5:a2:5a:82:14: 5f:df:a0:a1:a3:f3:d1:6f:03:fb:6e:d0:a8:77:e7:25:16:ab: 95:49:1e:b1:d5:ba:6a:37:bc:85:2b:17:1c:b9:15:13:7b:9a: 42:2f:2f:dc:00:66:7b:74:15:f4:b6:d3:5c:2e:c5:3b:e0:e1: 22:81:f6:59 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUCS0skoAORcMIRN4cy9Tm3s3I4vwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTExMTEwNTU2NTJaFw0yNjExMTAwNjAxNTJaMDMxMTAvBgNV BAMTKDMzRUM4OTk2MzkxODc5MDFGQkY3NDRCMDJDOTgzQTFFNUJCNEU5QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdaC2HdB+3uJHIKCeFCqX4t7F0 YWMITE5rgux4k7sR81SjCHsv1snxmFRd01ul0tr+ekfRSg4l4oqjf0PzQRbtyRzd Cl7xqHSYa5yQbXPiR2VyCeLJRznItWZHwSnnAKmiEaUnPefADhJ9mARDHiaxAhgI /pMXcxo2fO6E0SmT6SYo3WQKNit/wTJH1gX05kbWbjN1zGpFFPisMytyepDbjnTa Ybi1PD1ph6dLpvFj940bGKLxTxwDMCXHbwPva56sufBGXeRpmzY5oNLKrDI59wK7 avfYVRSUknYvNL42R38VGRcTycRRYGQGx1qxVAsHcuQONloj6Vxn4Nn41fIVAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUM+yJljkYeQH790SwLJg6Hlu06cUwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhNjMzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfAwDANBgkqhkiG9w0BAQsFAAOCAQEATODnPjDBqhamMjGShBkg0a6VHhrVqNl2 fbkYkTJ1950rYD1rmx0UZqMf8ZiVKQTiVnyx6tSeYyNU372qq9uEKbrz03UMVIf0 rr/w85uiTzgA85ig57BoYfk9OFpfcJKBfAvJ0wLcmXJkPT5suFKVAE4cKe4i/CEw fvDNGAjjBZLDaeThr3W4VwTXTVXS2q1VZujWVrtDc10om3ADO1U9Mi93UTv8Ejv9 UxzyMaMmkSjV1IQhmw/y9lz3dWyj5MgHrLWiWoIUX9+goaPz0W8D+27QqHfnJRar lUkesdW6aje8hSsXHLkVE3uaQi8v3ABme3QV9LbTXC7FO+DhIoH2WQ== -----END CERTIFICATE-----Generated at Wed Dec 3 17:38:52 2025 by rpki-client