This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/323030313a6466303a376163303a3a2f34382d3438203d3e20313439333838.roa File: 323030313a6466303a376163303a3a2f34382d3438203d3e20313439333838.roa (raw, json) Hash identifier: i+MoEz8eS3RKxf5DE+oBdBXLAZikYN1wJCHUVs+azh0= Subject key identifier: 87:05:E1:51:49:78:39:2F:E6:0A:03:72:B8:E7:F9:BD:E0:19:A4:89 Certificate issuer: /CN=D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14 Certificate serial: 3ECC7C38067454281EF7953FD0689C02A64F6F25 Authority key identifier: D2:9E:D5:B5:FC:4D:BF:FE:44:7D:DD:02:2C:0D:01:EB:00:BA:8F:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/323030313a6466303a376163303a3a2f34382d3438203d3e20313439333838.roa Signing time: Thu 06 Nov 2025 12:00:37 +0000 ROA not before: Thu 06 Nov 2025 11:55:37 +0000 ROA not after: Thu 05 Nov 2026 12:00:37 +0000 asID: 149388 IP address blocks: 2001:df0:7ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.crl rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 15:30:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:cc:7c:38:06:74:54:28:1e:f7:95:3f:d0:68:9c:02:a6:4f:6f:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14 Validity Not Before: Nov 6 11:55:37 2025 GMT Not After : Nov 5 12:00:37 2026 GMT Subject: CN=8705E1514978392FE60A0372B8E7F9BDE019A489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:59:17:73:ed:d8:11:64:76:6b:9b:32:33:9a: f7:db:d9:e5:2c:ef:ef:61:92:88:c5:eb:69:6e:64: e8:fc:d2:45:0c:ac:c2:11:fb:39:23:e4:13:a0:fc: 7f:f5:cf:79:b0:5e:3e:ef:6e:1d:45:c6:b0:f8:b1: 89:e5:4f:9e:b4:fd:23:82:81:ca:a7:fd:13:61:d6: de:72:ec:84:fe:53:93:b9:65:d0:16:0f:07:ec:f1: d2:e8:a3:94:fc:4d:c2:8e:3a:1c:ef:de:39:33:39: 8b:03:1a:2c:6a:3e:d4:ef:63:87:7c:38:3f:ca:5d: 99:83:31:bc:66:5e:a9:b6:93:ea:08:5a:cb:d0:60: 5b:47:76:40:35:12:da:d6:d2:1b:ba:79:2a:b4:28: 38:85:0c:cb:ae:9e:f9:0d:12:74:8c:3d:9a:ee:ba: 3b:68:fc:79:7c:1d:00:15:32:f7:48:e5:9c:51:70: 1f:68:77:3f:65:7f:8e:07:cf:71:1c:9e:1f:12:90: 5c:6e:7d:30:b3:b0:41:51:2a:68:dc:cd:d9:83:5a: af:08:b5:0e:bb:d9:96:8d:b8:c9:be:11:42:56:7e: 58:c5:f8:6c:1c:3a:09:26:37:b5:db:bd:a5:5e:3e: 02:59:67:92:a3:a6:82:58:2d:c7:d4:81:52:5d:47: f6:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:05:E1:51:49:78:39:2F:E6:0A:03:72:B8:E7:F9:BD:E0:19:A4:89 X509v3 Authority Key Identifier: keyid:D2:9E:D5:B5:FC:4D:BF:FE:44:7D:DD:02:2C:0D:01:EB:00:BA:8F:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/323030313a6466303a376163303a3a2f34382d3438203d3e20313439333838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:7ac0::/48 Signature Algorithm: sha256WithRSAEncryption 8d:20:c8:3b:4a:21:8e:a1:52:e0:98:b0:46:49:14:16:4d:d1: 37:35:be:cb:2d:a2:88:56:9d:ee:a0:03:6b:57:40:a7:48:d5: ae:63:52:8c:7c:3f:1e:a8:e2:a0:df:11:e5:8d:5b:90:1d:10: 5f:57:c9:56:0d:01:da:75:71:2c:ca:a7:20:5d:0f:15:f7:f7: 45:0d:92:ff:be:5f:b2:33:67:7a:87:8c:74:ce:c8:5b:55:1d: b7:91:90:e1:2c:f1:ca:0e:19:45:0b:6c:4b:89:cf:91:a6:9c: 76:28:92:07:d3:34:8c:41:83:36:ae:bf:1d:d0:7d:a2:8c:73: e9:24:0a:7c:19:0c:f9:59:ea:7a:75:7e:37:bb:c4:db:f9:51: d2:9d:7c:ff:7a:de:5e:51:26:03:1e:34:aa:5b:5e:00:a0:f6: b2:7e:6a:31:5e:bd:e8:ad:25:35:26:bc:0a:00:5e:49:b1:59: 49:0c:35:f3:bb:d3:ab:1b:8f:f3:6b:a9:0d:f4:eb:ca:40:f8: a6:9e:f1:d4:c4:a3:6e:14:8e:90:15:5d:4c:30:fe:aa:14:1f: 34:74:c9:ad:14:3e:9e:3b:76:45:7f:7a:94:40:45:c5:49:da: 28:45:6a:60:f8:6e:4c:8b:e3:23:56:db:59:e9:c6:9d:91:aa: 16:3c:ee:c8 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPsx8OAZ0VCge95U/0GicAqZPbyUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI5RUQ1QjVGQzREQkZGRTQ0N0RERDAyMkMwRDAxRUIw MEJBOEYxNDAeFw0yNTExMDYxMTU1MzdaFw0yNjExMDUxMjAwMzdaMDMxMTAvBgNV BAMTKDg3MDVFMTUxNDk3ODM5MkZFNjBBMDM3MkI4RTdGOUJERTAxOUE0ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCWRdz7dgRZHZrmzIzmvfb2eUs 7+9hkojF62luZOj80kUMrMIR+zkj5BOg/H/1z3mwXj7vbh1FxrD4sYnlT560/SOC gcqn/RNh1t5y7IT+U5O5ZdAWDwfs8dLoo5T8TcKOOhzv3jkzOYsDGixqPtTvY4d8 OD/KXZmDMbxmXqm2k+oIWsvQYFtHdkA1EtrW0hu6eSq0KDiFDMuunvkNEnSMPZru ujto/Hl8HQAVMvdI5ZxRcB9odz9lf44Hz3Ecnh8SkFxufTCzsEFRKmjczdmDWq8I tQ672ZaNuMm+EUJWfljF+GwcOgkmN7XbvaVePgJZZ5KjpoJYLcfUgVJdR/Z9AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUhwXhUUl4OS/mCgNyuOf5veAZpIkwHwYDVR0j BBgwFoAU0p7VtfxNv/5Efd0CLA0B6wC6jxQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODUyNDNlNS1jNjYwLTQxMTItYmRjMy01OTQ0MTJkZWRjNGQvMC9EMjlFRDVCNUZD NERCRkZFNDQ3REREMDIyQzBEMDFFQjAwQkE4RjE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI5RUQ1QjVGQzREQkZGRTQ0N0RERDAyMkMwRDAxRUIwMEJB OEYxNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI4NTI0M2U1LWM2NjAtNDExMi1i ZGMzLTU5NDQxMmRlZGM0ZC8wLzMyMzAzMDMxM2E2NDY2MzAzYTM3NjE2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM5MzMzODM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8HrAMA0GCSqGSIb3DQEBCwUAA4IBAQCNIMg7SiGOoVLgmLBGSRQWTdE3Nb7LLaKI Vp3uoANrV0CnSNWuY1KMfD8eqOKg3xHljVuQHRBfV8lWDQHadXEsyqcgXQ8V9/dF DZL/vl+yM2d6h4x0zshbVR23kZDhLPHKDhlFC2xLic+Rppx2KJIH0zSMQYM2rr8d 0H2ijHPpJAp8GQz5Wep6dX43u8Tb+VHSnXz/et5eUSYDHjSqW14AoPayfmoxXr3o rSU1JrwKAF5JsVlJDDXzu9OrG4/za6kN9OvKQPimnvHUxKNuFI6QFV1MMP6qFB80 dMmtFD6eO3ZFf3qUQEXFSdooRWpg+G5Mi+MjVttZ6cadkaoWPO7I -----END CERTIFICATE-----Generated at Wed Dec 3 15:32:31 2025 by rpki-client