This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a32303a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a32303a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: JQBV4LZ7vr6myTyNSsVnH8wkRJsd1to3z2hSNW0KGDU= Subject key identifier: B4:6D:C8:C9:49:BE:FD:07:7C:73:6B:8F:BC:C5:16:E7:3C:E6:57:2F Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 3C3340A4308ACC3A8E045D10974063171DCB11B0 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a32303a3a2f34382d3438203d3e203538343835.roa Signing time: Sat 08 Nov 2025 23:00:00 +0000 ROA not before: Sat 08 Nov 2025 22:55:00 +0000 ROA not after: Sat 07 Nov 2026 23:00:00 +0000 asID: 58485 IP address blocks: 2402:e100:20::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 09:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:33:40:a4:30:8a:cc:3a:8e:04:5d:10:97:40:63:17:1d:cb:11:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Nov 8 22:55:00 2025 GMT Not After : Nov 7 23:00:00 2026 GMT Subject: CN=B46DC8C949BEFD077C736B8FBCC516E73CE6572F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:15:57:54:9b:d4:f5:5c:5e:d5:2d:1c:04:78: 97:a9:3e:e0:db:4d:76:60:a4:14:a0:c6:4c:56:3e: 04:26:fe:99:b8:f9:84:9a:48:64:38:6e:62:22:04: 86:5d:23:29:58:70:49:84:7e:10:22:7d:1f:f2:e1: 27:10:79:c1:87:e1:f0:2c:1c:97:0d:6d:1f:4a:26: d5:41:c9:0b:a5:50:99:46:d5:bb:df:f6:8f:50:bf: d6:87:05:2d:30:a9:47:b2:b6:8d:8f:4c:ff:91:d6: 48:2d:13:e1:b3:1f:51:67:86:0f:a2:54:c9:96:aa: 6f:30:3e:95:9a:b7:1c:a0:41:49:1e:78:25:7e:8a: 71:f6:33:bd:07:99:8c:9c:2d:7d:78:8b:42:2d:78: 45:a7:48:b1:e8:24:aa:05:e6:b1:9b:8e:3d:11:e0: ed:27:fc:a2:70:96:89:7a:47:7a:cd:f9:2b:2b:81: 44:a9:e7:c8:ac:2e:fd:b5:37:f4:5a:87:c8:03:5d: 93:3d:93:d2:c2:09:61:73:11:63:4d:d3:05:91:26: 02:bf:06:fc:80:ca:f2:2f:a6:e6:25:fa:62:09:9f: a8:a0:c4:4e:a5:00:e3:8a:1a:fb:55:3b:54:26:f8: 6b:a9:6a:a5:bf:cb:bf:46:94:62:1e:08:c9:c5:b3: 52:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:6D:C8:C9:49:BE:FD:07:7C:73:6B:8F:BC:C5:16:E7:3C:E6:57:2F X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a32303a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:20::/48 Signature Algorithm: sha256WithRSAEncryption 40:4a:51:7a:a6:0b:fe:20:2b:9e:3d:47:a0:70:05:5b:49:c4: 3e:6d:4d:01:82:39:24:b9:6b:5d:00:8d:d1:a0:32:04:a6:3c: 23:cb:30:f2:0d:d6:91:c3:78:3d:d5:17:45:93:5b:cb:eb:18: d0:6b:e6:65:88:a3:6e:b5:a7:52:27:24:ae:ca:17:37:bb:15: 5a:f1:f6:9c:9f:2b:19:74:09:13:2f:03:69:f5:9e:c1:78:2f: bf:c1:42:0b:45:35:e9:bc:88:34:d2:86:8b:42:16:60:12:31: 36:3d:bf:93:ec:64:33:21:51:56:65:08:14:2e:e3:1c:45:25: 91:bf:b8:77:5b:bc:a8:0e:c8:fb:18:9f:01:23:94:56:5d:5a: ae:9b:de:92:56:3e:33:bb:47:9e:7b:30:e4:8a:0b:48:6f:5b: 2d:0a:15:c5:5c:bc:c9:fc:47:fc:07:14:b5:d6:0e:2e:cf:d8: 7c:53:5c:52:8d:79:20:7e:c6:dc:6f:fb:2e:b2:62:70:6f:a4: 04:11:e7:92:38:74:5a:8f:17:97:e6:e4:bb:0b:ac:7b:64:a8: 0d:61:53:07:95:47:7e:5c:d0:fd:0f:19:fb:db:69:7c:fc:d2: 72:b1:f5:01:eb:7f:a6:4e:2d:b7:a7:38:6c:f3:6d:e7:43:e9: 8a:22:b1:0c -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUPDNApDCKzDqOBF0Ql0BjFx3LEbAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNTExMDgyMjU1MDBaFw0yNjExMDcyMzAwMDBaMDMxMTAvBgNV BAMTKEI0NkRDOEM5NDlCRUZEMDc3QzczNkI4RkJDQzUxNkU3M0NFNjU3MkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnFVdUm9T1XF7VLRwEeJepPuDb TXZgpBSgxkxWPgQm/pm4+YSaSGQ4bmIiBIZdIylYcEmEfhAifR/y4ScQecGH4fAs HJcNbR9KJtVByQulUJlG1bvf9o9Qv9aHBS0wqUeyto2PTP+R1kgtE+GzH1Fnhg+i VMmWqm8wPpWatxygQUkeeCV+inH2M70HmYycLX14i0IteEWnSLHoJKoF5rGbjj0R 4O0n/KJwlol6R3rN+SsrgUSp58isLv21N/Rah8gDXZM9k9LCCWFzEWNN0wWRJgK/ BvyAyvIvpuYl+mIJn6igxE6lAOOKGvtVO1Qm+GupaqW/y79GlGIeCMnFs1IrAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUtG3IyUm+/Qd8c2uPvMUW5zzmVy8wHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhMzIzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAuEAACAw DQYJKoZIhvcNAQELBQADggEBAEBKUXqmC/4gK549R6BwBVtJxD5tTQGCOSS5a10A jdGgMgSmPCPLMPIN1pHDeD3VF0WTW8vrGNBr5mWIo261p1InJK7KFze7FVrx9pyf Kxl0CRMvA2n1nsF4L7/BQgtFNem8iDTShotCFmASMTY9v5PsZDMhUVZlCBQu4xxF JZG/uHdbvKgOyPsYnwEjlFZdWq6b3pJWPjO7R557MOSKC0hvWy0KFcVcvMn8R/wH FLXWDi7P2HxTXFKNeSB+xtxv+y6yYnBvpAQR55I4dFqPF5fm5LsLrHtkqA1hUweV R35c0P0PGfvbaXz80nKx9QHrf6ZOLbenOGzzbedD6YoisQw= -----END CERTIFICATE-----Generated at Wed Dec 3 16:09:23 2025 by rpki-client