This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a323a3a2f34382d3438203d3e203338353233.roa File: 323430313a326334303a323a3a2f34382d3438203d3e203338353233.roa (raw, json) Hash identifier: hqbmI1+UoUPoz5aHKEefU2aqzgzzxdPZgTYT+n6aATQ= Subject key identifier: 09:74:49:F6:2E:69:C8:B7:18:0A:3E:BE:69:75:0B:F8:68:41:A6:3F Certificate issuer: /CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F Certificate serial: 37F477C0A346A7315451837487D54BF06DFAFBDE Authority key identifier: 1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a323a3a2f34382d3438203d3e203338353233.roa Signing time: Wed 12 Nov 2025 15:00:03 +0000 ROA not before: Wed 12 Nov 2025 14:55:03 +0000 ROA not after: Wed 11 Nov 2026 15:00:03 +0000 asID: 38523 IP address blocks: 2401:2c40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 01:46:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:f4:77:c0:a3:46:a7:31:54:51:83:74:87:d5:4b:f0:6d:fa:fb:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F Validity Not Before: Nov 12 14:55:03 2025 GMT Not After : Nov 11 15:00:03 2026 GMT Subject: CN=097449F62E69C8B7180A3EBE69750BF86841A63F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d3:90:ad:f0:68:ed:84:99:ae:6f:72:f3:99: 0d:f4:4b:b8:22:22:6d:f8:b8:5c:98:69:6d:2c:0b: fc:5e:bb:e6:fd:b5:2d:28:0f:97:87:bb:3b:f6:3d: 9f:60:60:32:75:50:55:9e:66:30:9b:b0:64:2e:13: 07:0e:f0:c4:b1:aa:07:d8:c2:49:3e:c1:46:2f:ff: aa:7c:8d:cc:88:7f:7a:27:c8:f1:26:dd:5f:66:63: ee:61:cf:48:7a:4b:47:a7:e6:4e:5f:f3:9f:e2:3e: bc:05:ee:4d:e8:43:95:82:cc:03:8b:d5:ed:3d:e7: 08:73:a8:e3:15:ff:55:39:32:f5:3f:6b:9e:f4:08: 17:50:0e:31:94:5e:30:d0:8f:28:29:be:8f:26:0f: f7:83:ae:99:3f:99:06:a7:1a:25:dd:38:6f:5a:56: a9:30:de:60:0f:68:dc:05:6f:38:7d:f4:a2:5d:6c: 10:6b:9f:9e:b4:fb:dc:c2:ac:cc:c7:5c:a6:d7:0e: 79:17:b8:aa:82:91:a5:45:19:d3:24:c6:dd:cb:f0: 7a:af:64:dc:49:5d:61:7a:d8:cf:e0:6a:f1:5e:db: 49:3e:e9:36:35:1f:81:a8:d1:83:d2:f0:0b:dd:9a: fb:4d:24:c5:df:f8:2c:9b:cd:ae:17:8a:a7:d9:fe: 11:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:74:49:F6:2E:69:C8:B7:18:0A:3E:BE:69:75:0B:F8:68:41:A6:3F X509v3 Authority Key Identifier: keyid:1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a323a3a2f34382d3438203d3e203338353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2c40:2::/48 Signature Algorithm: sha256WithRSAEncryption 27:21:c9:33:16:18:8a:eb:4f:35:d1:fe:f8:f1:22:28:aa:2b: 59:58:68:fb:7a:fe:08:cf:43:5c:2c:0f:8b:0d:9e:bf:1a:09: 55:e5:50:ce:d0:f1:f1:d6:7d:79:30:4d:ab:68:37:70:bc:12: d2:95:59:81:11:e6:c4:cd:33:f0:34:77:57:61:da:79:01:00: 2f:2a:e1:d4:f6:63:42:da:da:fc:d7:50:28:bd:c0:d7:2c:c9: 9e:ab:f2:e3:09:ce:3c:c6:a4:7a:39:5c:2b:6a:c3:98:5f:a4: ce:9e:77:7d:a2:aa:36:4e:76:fb:7b:e8:83:56:23:bd:e8:e4: 2b:8d:8c:1a:57:6a:b9:de:1f:08:e1:50:9c:cf:a4:65:60:7b: 37:7a:1f:09:22:b9:83:ef:8b:6d:93:b3:94:16:c4:38:76:c9: bb:3e:e5:b7:a2:4f:a9:08:a3:ca:c0:63:85:4c:3d:1f:16:64: 3d:c5:4f:1e:e3:b5:b9:58:3f:bf:98:cb:06:5c:7b:b2:d6:66: 6c:2f:6a:25:4e:7b:f1:a4:51:ff:04:11:8a:b1:a0:1a:c3:ac: 1d:32:ee:49:47:eb:a8:70:73:ef:d8:9d:f5:4d:dc:04:3d:df: fd:21:a6:df:f3:dd:79:75:dc:0d:0e:dc:59:05:b0:56:f5:22: e5:07:04:22 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUN/R3wKNGpzFUUYN0h9VL8G36+94wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJDNDk3RDBBRDBBREE4MDY4M0E0QUQxN0M2MEI4N0I2 MDM5NDQ4RjAeFw0yNTExMTIxNDU1MDNaFw0yNjExMTExNTAwMDNaMDMxMTAvBgNV BAMTKDA5NzQ0OUY2MkU2OUM4QjcxODBBM0VCRTY5NzUwQkY4Njg0MUE2M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd05Ct8GjthJmub3LzmQ30S7gi Im34uFyYaW0sC/xeu+b9tS0oD5eHuzv2PZ9gYDJ1UFWeZjCbsGQuEwcO8MSxqgfY wkk+wUYv/6p8jcyIf3onyPEm3V9mY+5hz0h6S0en5k5f85/iPrwF7k3oQ5WCzAOL 1e095whzqOMV/1U5MvU/a570CBdQDjGUXjDQjygpvo8mD/eDrpk/mQanGiXdOG9a Vqkw3mAPaNwFbzh99KJdbBBrn560+9zCrMzHXKbXDnkXuKqCkaVFGdMkxt3L8Hqv ZNxJXWF62M/gavFe20k+6TY1H4Go0YPS8AvdmvtNJMXf+Cybza4XiqfZ/hHLAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUCXRJ9i5pyLcYCj6+aXUL+GhBpj8wHwYDVR0j BBgwFoAUG8SX0K0K2oBoOkrRfGC4e2A5RI8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NTVhMWE0NC0zMzdkLTRkYjQtOTBkNy01YmQ0ZjM3MjE0YjgvMC8xQkM0OTdEMEFE MEFEQTgwNjgzQTRBRDE3QzYwQjg3QjYwMzk0NDhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJDNDk3RDBBRDBBREE4MDY4M0E0QUQxN0M2MEI4N0I2MDM5 NDQ4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1NWExYTQ0LTMzN2QtNGRiNC05 MGQ3LTViZDRmMzcyMTRiOC8wLzMyMzQzMDMxM2EzMjYzMzQzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEsQAACMA0G CSqGSIb3DQEBCwUAA4IBAQAnIckzFhiK60810f748SIoqitZWGj7ev4Iz0NcLA+L DZ6/GglV5VDO0PHx1n15ME2raDdwvBLSlVmBEebEzTPwNHdXYdp5AQAvKuHU9mNC 2tr811AovcDXLMmeq/LjCc48xqR6OVwrasOYX6TOnnd9oqo2Tnb7e+iDViO96OQr jYwaV2q53h8I4VCcz6RlYHs3eh8JIrmD74ttk7OUFsQ4dsm7PuW3ok+pCKPKwGOF TD0fFmQ9xU8e47W5WD+/mMsGXHuy1mZsL2olTnvxpFH/BBGKsaAaw6wdMu5JR+uo cHPv2J31TdwEPd/9Iabf8915ddwNDtxZBbBW9SLlBwQi -----END CERTIFICATE-----Generated at Wed Dec 3 16:53:01 2025 by rpki-client