This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/30a392dc-2e4e-4770-8f68-bc61f80b74a7/0/323030313a6466363a656630303a3a2f34382d3438203d3e20313338303937.roa File: 323030313a6466363a656630303a3a2f34382d3438203d3e20313338303937.roa (raw, json) Hash identifier: fswipt2GzpbLxNVSKLJNBtjumryj1H079NPKIHEQz6g= Subject key identifier: 69:1E:DE:07:0A:CE:03:46:EA:AB:82:27:A8:AF:94:7A:26:6E:7E:B7 Certificate issuer: /CN=5509BA3B36B8E5C809C09949749272FEF605F530 Certificate serial: 5A03BD70810C3059E76DAF8CA3408F6E5AC74C2E Authority key identifier: 55:09:BA:3B:36:B8:E5:C8:09:C0:99:49:74:92:72:FE:F6:05:F5:30 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5509BA3B36B8E5C809C09949749272FEF605F530.cer Subject info access: rsync://repo-rpki.idnic.net/repo/30a392dc-2e4e-4770-8f68-bc61f80b74a7/0/323030313a6466363a656630303a3a2f34382d3438203d3e20313338303937.roa Signing time: Thu 20 Nov 2025 05:00:00 +0000 ROA not before: Thu 20 Nov 2025 04:55:00 +0000 ROA not after: Thu 19 Nov 2026 05:00:00 +0000 asID: 138097 IP address blocks: 2001:df6:ef00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/30a392dc-2e4e-4770-8f68-bc61f80b74a7/0/5509BA3B36B8E5C809C09949749272FEF605F530.crl rsync://repo-rpki.idnic.net/repo/30a392dc-2e4e-4770-8f68-bc61f80b74a7/0/5509BA3B36B8E5C809C09949749272FEF605F530.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5509BA3B36B8E5C809C09949749272FEF605F530.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 17:14:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:03:bd:70:81:0c:30:59:e7:6d:af:8c:a3:40:8f:6e:5a:c7:4c:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5509BA3B36B8E5C809C09949749272FEF605F530 Validity Not Before: Nov 20 04:55:00 2025 GMT Not After : Nov 19 05:00:00 2026 GMT Subject: CN=691EDE070ACE0346EAAB8227A8AF947A266E7EB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1d:d9:2d:79:88:43:af:b3:d4:33:1a:d3:a5: 50:56:49:3f:1b:18:91:fa:47:93:d8:1d:e3:ac:98: 1e:58:59:48:45:e5:3c:66:ce:10:db:38:28:58:85: 0d:13:0f:5b:19:f3:18:3c:69:9d:ec:b6:43:68:d0: e2:4f:8b:27:a1:10:9d:e7:ef:91:d4:b6:ad:c4:de: b5:26:c5:94:8a:73:f9:4e:0c:74:2d:83:6e:8f:93: e1:b7:39:1d:a1:be:5f:e6:25:21:c1:53:3a:6d:e8: 96:32:41:56:e4:b7:ca:51:b8:b8:16:7b:f4:c6:30: 50:ed:c3:f7:68:e7:47:5c:71:72:b4:43:cc:ec:da: a7:0d:60:36:09:53:f7:29:4f:21:0e:68:75:b5:1b: e9:23:2a:ce:ee:07:32:fb:e3:1e:7a:eb:51:af:51: c6:a6:60:f2:5d:18:d6:ad:95:6d:f3:e9:53:2f:63: a4:6f:03:78:a5:cc:26:8d:04:be:2d:e9:b5:9d:9d: 1b:62:ec:54:e4:e5:57:5e:60:26:9c:d4:e6:10:28: d0:dd:4b:db:19:77:00:32:a6:dc:c1:7f:f2:e8:28: 6d:55:21:5f:01:16:5f:14:a6:05:a3:75:1b:a4:bf: 3d:a5:ca:64:34:68:49:29:49:73:74:52:d5:c1:c4: 97:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:1E:DE:07:0A:CE:03:46:EA:AB:82:27:A8:AF:94:7A:26:6E:7E:B7 X509v3 Authority Key Identifier: keyid:55:09:BA:3B:36:B8:E5:C8:09:C0:99:49:74:92:72:FE:F6:05:F5:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/30a392dc-2e4e-4770-8f68-bc61f80b74a7/0/5509BA3B36B8E5C809C09949749272FEF605F530.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5509BA3B36B8E5C809C09949749272FEF605F530.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/30a392dc-2e4e-4770-8f68-bc61f80b74a7/0/323030313a6466363a656630303a3a2f34382d3438203d3e20313338303937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:ef00::/48 Signature Algorithm: sha256WithRSAEncryption 37:52:22:c8:02:a6:68:ab:a4:bf:d2:1f:9a:1f:5e:8d:1a:8c: 03:ae:d5:40:84:e7:6c:2e:00:e6:a4:e9:2d:02:3c:75:75:80: f9:ae:11:54:c8:cc:5e:da:e3:06:5d:72:ba:6c:9f:25:46:83: b1:9f:1c:ae:0c:fd:c5:4b:92:f4:24:60:d2:0a:93:25:3b:98: 58:9d:ce:02:58:1a:2b:5c:be:30:30:d0:86:f1:5a:8a:66:b5: 71:d3:62:66:72:42:d5:87:fc:0d:9a:3c:35:5b:a6:25:65:31: 77:c3:a9:cb:36:75:34:f5:b2:dd:3e:83:37:b3:d0:76:e2:8a: 11:4d:23:80:3a:4f:0b:d3:3a:c4:b7:d3:b1:63:8e:c0:cd:eb: ac:d3:b9:4a:5d:c7:61:6e:fd:26:ac:d1:58:29:e1:73:d2:69: 68:c7:d1:4f:7f:10:00:06:32:01:35:2f:c2:2a:71:30:3b:e7: 69:1e:1c:7b:95:e2:54:90:bb:ba:89:0f:65:26:29:e3:07:35: f5:6d:8d:09:1d:7c:ed:e6:4b:cf:1d:0c:5f:1d:70:c1:c7:9a: 9c:39:ed:3f:53:b7:85:ea:a0:e5:1a:9e:1c:c8:45:0c:6d:08: 43:33:36:4b:41:77:b7:42:c7:8a:e1:a6:52:c2:a0:8e:8c:a5: 1b:a7:ba:96 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWgO9cIEMMFnnba+Mo0CPblrHTC4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUwOUJBM0IzNkI4RTVDODA5QzA5OTQ5NzQ5MjcyRkVG NjA1RjUzMDAeFw0yNTExMjAwNDU1MDBaFw0yNjExMTkwNTAwMDBaMDMxMTAvBgNV BAMTKDY5MUVERTA3MEFDRTAzNDZFQUFCODIyN0E4QUY5NDdBMjY2RTdFQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGHdkteYhDr7PUMxrTpVBWST8b GJH6R5PYHeOsmB5YWUhF5TxmzhDbOChYhQ0TD1sZ8xg8aZ3stkNo0OJPiyehEJ3n 75HUtq3E3rUmxZSKc/lODHQtg26Pk+G3OR2hvl/mJSHBUzpt6JYyQVbkt8pRuLgW e/TGMFDtw/do50dccXK0Q8zs2qcNYDYJU/cpTyEOaHW1G+kjKs7uBzL74x5661Gv UcamYPJdGNatlW3z6VMvY6RvA3ilzCaNBL4t6bWdnRti7FTk5VdeYCac1OYQKNDd S9sZdwAyptzBf/LoKG1VIV8BFl8UpgWjdRukvz2lymQ0aEkpSXN0UtXBxJcbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUaR7eBwrOA0bqq4InqK+UeiZufrcwHwYDVR0j BBgwFoAUVQm6Oza45cgJwJlJdJJy/vYF9TAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MGEzOTJkYy0yZTRlLTQ3NzAtOGY2OC1iYzYxZjgwYjc0YTcvMC81NTA5QkEzQjM2 QjhFNUM4MDlDMDk5NDk3NDkyNzJGRUY2MDVGNTMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUwOUJBM0IzNkI4RTVDODA5QzA5OTQ5NzQ5MjcyRkVGNjA1 RjUzMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwYTM5MmRjLTJlNGUtNDc3MC04 ZjY4LWJjNjFmODBiNzRhNy8wLzMyMzAzMDMxM2E2NDY2MzYzYTY1NjYzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzAzOTM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9u8AMA0GCSqGSIb3DQEBCwUAA4IBAQA3UiLIAqZoq6S/0h+aH16NGowDrtVAhOds LgDmpOktAjx1dYD5rhFUyMxe2uMGXXK6bJ8lRoOxnxyuDP3FS5L0JGDSCpMlO5hY nc4CWBorXL4wMNCG8VqKZrVx02JmckLVh/wNmjw1W6YlZTF3w6nLNnU09bLdPoM3 s9B24ooRTSOAOk8L0zrEt9OxY47Azeus07lKXcdhbv0mrNFYKeFz0mlox9FPfxAA BjIBNS/CKnEwO+dpHhx7leJUkLu6iQ9lJinjBzX1bY0JHXzt5kvPHQxfHXDBx5qc Oe0/U7eF6qDlGp4cyEUMbQhDMzZLQXe3QseK4aZSwqCOjKUbp7qW -----END CERTIFICATE-----Generated at Wed Dec 3 16:10:56 2025 by rpki-client