This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/323430333a333163303a3a2f33322d3332203d3e20313337333736.roa File: 323430333a333163303a3a2f33322d3332203d3e20313337333736.roa (raw, json) Hash identifier: yZdB1+Hb4ph9w/wvrnMAOAc9P831jd2qxlkZfuEjv8w= Subject key identifier: 78:FC:91:0A:90:B3:43:09:B8:22:B2:58:19:35:25:7B:59:BE:84:EC Certificate issuer: /CN=8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57 Certificate serial: 06D7D93EA2953C7E82590661213D76C82D6E8A09 Authority key identifier: 8C:5F:A2:EB:D7:AF:40:39:38:83:FB:08:E7:1B:DF:41:AA:E2:0F:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/323430333a333163303a3a2f33322d3332203d3e20313337333736.roa Signing time: Fri 31 Oct 2025 15:02:25 +0000 ROA not before: Fri 31 Oct 2025 14:57:25 +0000 ROA not after: Fri 30 Oct 2026 15:02:25 +0000 asID: 137376 IP address blocks: 2403:31c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.crl rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 10:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:d7:d9:3e:a2:95:3c:7e:82:59:06:61:21:3d:76:c8:2d:6e:8a:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57 Validity Not Before: Oct 31 14:57:25 2025 GMT Not After : Oct 30 15:02:25 2026 GMT Subject: CN=78FC910A90B34309B822B2581935257B59BE84EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a0:91:dc:31:22:c2:b4:7b:0f:0e:3c:ee:f2: 86:55:95:42:d0:e6:0f:20:55:da:38:63:3e:ac:33: d8:f4:a6:bd:92:2f:ae:e1:8e:27:9e:21:b9:21:7a: b4:35:de:32:f7:bb:e5:3d:e3:47:57:30:50:c8:27: da:0a:55:5e:ab:0f:5c:3d:91:3c:02:29:be:c5:1c: 70:a9:2f:7b:a9:9f:38:94:3a:ea:20:6d:61:03:a0: 18:4c:fd:bc:c4:f4:62:fc:6b:19:11:ee:ea:4e:fb: d8:c7:84:90:a6:e0:44:66:4a:dc:dc:07:ea:7a:f4: 3b:49:e3:2f:fa:c9:e8:84:d5:ab:b0:76:aa:06:1f: 2a:fd:1f:fc:9c:31:6c:5d:de:96:1a:e6:5d:0a:0b: 77:fd:91:5d:e1:93:0a:85:5a:ab:da:f7:ab:f8:7e: aa:0e:1c:e5:c9:18:ee:11:bb:f2:2e:ea:8c:e3:b4: 09:03:59:5d:ce:b2:2e:30:2d:b4:ab:82:0d:fb:7d: 2f:50:85:f4:3e:78:6d:6d:a4:95:57:38:f6:2b:82: b6:f4:c9:20:8f:a9:06:ec:1a:95:5b:a2:bb:88:c1: e3:b4:0e:71:ed:8d:2a:b6:45:aa:10:e5:67:5a:2b: b6:50:4c:df:63:b5:e4:8f:27:39:bb:f4:14:56:58: 66:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:FC:91:0A:90:B3:43:09:B8:22:B2:58:19:35:25:7B:59:BE:84:EC X509v3 Authority Key Identifier: keyid:8C:5F:A2:EB:D7:AF:40:39:38:83:FB:08:E7:1B:DF:41:AA:E2:0F:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/323430333a333163303a3a2f33322d3332203d3e20313337333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:31c0::/32 Signature Algorithm: sha256WithRSAEncryption 54:ff:34:72:07:5a:eb:c9:52:0e:06:16:dc:f8:8f:c6:fb:27: 1d:d7:ba:68:c9:1f:17:4d:a2:84:86:2e:02:ca:40:31:98:49: 59:a8:89:93:c6:28:e1:83:49:3f:74:b7:16:84:ab:76:1b:a6: 72:dc:43:25:ec:15:d1:94:25:85:47:0c:3e:e1:ab:e8:7d:40: c3:29:65:4d:44:83:6f:1e:2a:49:45:e2:1d:78:6f:cf:73:7e: d3:9b:71:61:cb:f8:50:87:51:8d:d9:2d:fb:92:0a:7a:ed:23: f6:19:80:89:4f:af:1b:61:ca:ee:14:07:f9:fc:a5:16:60:11: 63:06:b5:d7:52:0e:80:b4:f8:27:63:29:cb:f1:df:11:d0:1f: a2:5a:c1:08:ed:94:d0:d9:cc:67:19:c3:bf:63:bb:6e:07:e6: ff:65:9c:a4:cf:55:ba:e2:11:e7:29:4f:77:a7:6d:a5:6d:50: 72:0e:6b:36:24:56:23:42:01:9a:f0:8e:ec:a3:c2:18:e5:2b: 31:1d:e5:80:dc:7e:49:b5:37:78:89:e1:02:3e:52:b9:06:ff: c5:4c:97:b3:72:84:44:ea:72:90:43:67:8d:1d:27:93:06:5a: 62:02:ac:f7:c7:f8:54:71:0e:32:4c:b9:08:59:34:e8:c1:0f: 24:c6:8f:fe -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUBtfZPqKVPH6CWQZhIT12yC1uigkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEM1RkEyRUJEN0FGNDAzOTM4ODNGQjA4RTcxQkRGNDFB QUUyMEY1NzAeFw0yNTEwMzExNDU3MjVaFw0yNjEwMzAxNTAyMjVaMDMxMTAvBgNV BAMTKDc4RkM5MTBBOTBCMzQzMDlCODIyQjI1ODE5MzUyNTdCNTlCRTg0RUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7oJHcMSLCtHsPDjzu8oZVlULQ 5g8gVdo4Yz6sM9j0pr2SL67hjieeIbkherQ13jL3u+U940dXMFDIJ9oKVV6rD1w9 kTwCKb7FHHCpL3upnziUOuogbWEDoBhM/bzE9GL8axkR7upO+9jHhJCm4ERmStzc B+p69DtJ4y/6yeiE1auwdqoGHyr9H/ycMWxd3pYa5l0KC3f9kV3hkwqFWqva96v4 fqoOHOXJGO4Ru/Iu6ozjtAkDWV3Osi4wLbSrgg37fS9QhfQ+eG1tpJVXOPYrgrb0 ySCPqQbsGpVboruIweO0DnHtjSq2RaoQ5WdaK7ZQTN9jteSPJzm79BRWWGapAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUePyRCpCzQwm4IrJYGTUle1m+hOwwHwYDVR0j BBgwFoAUjF+i69evQDk4g/sI5xvfQariD1cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDJhNWI1MS1iYzAwLTRkNmItODc2MS1jN2QwZDNmNmRlMTIvMC84QzVGQTJFQkQ3 QUY0MDM5Mzg4M0ZCMDhFNzFCREY0MUFBRTIwRjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEM1RkEyRUJEN0FGNDAzOTM4ODNGQjA4RTcxQkRGNDFBQUUy MEY1Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkMmE1YjUxLWJjMDAtNGQ2Yi04 NzYxLWM3ZDBkM2Y2ZGUxMi8wLzMyMzQzMDMzM2EzMzMxNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNzMzMzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDMcAwDQYJKoZI hvcNAQELBQADggEBAFT/NHIHWuvJUg4GFtz4j8b7Jx3XumjJHxdNooSGLgLKQDGY SVmoiZPGKOGDST90txaEq3YbpnLcQyXsFdGUJYVHDD7hq+h9QMMpZU1Eg28eKklF 4h14b89zftObcWHL+FCHUY3ZLfuSCnrtI/YZgIlPrxthyu4UB/n8pRZgEWMGtddS DoC0+CdjKcvx3xHQH6JawQjtlNDZzGcZw79ju24H5v9lnKTPVbriEecpT3enbaVt UHIOazYkViNCAZrwjuyjwhjlKzEd5YDcfkm1N3iJ4QI+UrkG/8VMl7NyhETqcpBD Z40dJ5MGWmICrPfH+FRxDjJMuQhZNOjBDyTGj/4= -----END CERTIFICATE-----Generated at Wed Dec 3 15:27:09 2025 by rpki-client