This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a3a2f34382d3438203d3e203338353233.roa File: 323430313a326334303a3a2f34382d3438203d3e203338353233.roa (raw, json) Hash identifier: ibJZHZEEwuIaueWUBS974XsPSfaJnljHAhKebn2nItk= Subject key identifier: 05:FE:D2:7E:12:A1:A3:09:5A:EF:3A:E0:88:09:B5:E0:46:2A:2F:23 Certificate issuer: /CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F Certificate serial: 5D09B6275472DD641F7503CBA98596F29B17D8CB Authority key identifier: 1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a3a2f34382d3438203d3e203338353233.roa Signing time: Wed 12 Nov 2025 15:00:03 +0000 ROA not before: Wed 12 Nov 2025 14:55:03 +0000 ROA not after: Wed 11 Nov 2026 15:00:03 +0000 asID: 38523 IP address blocks: 2401:2c40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 01:46:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:09:b6:27:54:72:dd:64:1f:75:03:cb:a9:85:96:f2:9b:17:d8:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F Validity Not Before: Nov 12 14:55:03 2025 GMT Not After : Nov 11 15:00:03 2026 GMT Subject: CN=05FED27E12A1A3095AEF3AE08809B5E0462A2F23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0d:44:f1:b6:81:1b:48:a3:a3:02:de:d8:fc: 4e:4d:96:fa:49:c1:94:0b:01:64:e5:10:50:d5:9f: af:eb:f4:48:70:6e:79:ae:59:03:d8:3f:d3:29:bd: 0c:e9:ec:2a:a8:07:6a:12:70:c0:07:33:03:05:79: 93:ab:c8:73:9f:59:5b:e7:c1:96:57:8b:a7:ff:8e: 3d:28:a3:7d:42:55:05:75:b3:df:bf:ab:7e:88:12: d0:45:9a:7a:41:fd:84:54:57:30:25:09:aa:cc:46: a9:55:51:4a:a3:f3:89:e7:c1:39:dc:eb:a6:e3:de: 1c:af:d4:6f:90:86:3d:bc:ef:94:76:01:7b:d7:e7: b8:b4:4a:62:51:c8:4b:eb:a0:ee:73:5d:76:75:df: fc:e0:01:0d:19:dd:25:7d:47:bb:62:0e:e6:bc:73: 06:8d:d0:7a:84:de:74:2f:6b:ef:15:fb:4c:63:6d: 62:30:3f:35:b6:50:c4:18:b4:ea:ab:21:3d:c3:62: 99:1b:16:6b:72:c1:32:59:64:d5:fa:51:6e:cb:cf: 3c:b3:83:ff:84:99:ec:f0:c2:b8:f6:bd:e8:74:50: fc:96:aa:a4:ee:d1:5b:33:05:51:ff:d1:a0:82:aa: eb:ef:ed:29:6a:18:ac:4e:a9:60:69:c3:c3:ba:2d: 18:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:FE:D2:7E:12:A1:A3:09:5A:EF:3A:E0:88:09:B5:E0:46:2A:2F:23 X509v3 Authority Key Identifier: keyid:1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a3a2f34382d3438203d3e203338353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2c40::/48 Signature Algorithm: sha256WithRSAEncryption 6c:86:8d:d9:c4:68:83:c6:ba:65:5b:e3:bb:94:8c:37:d7:13: aa:82:cf:e6:f5:df:5f:04:1d:54:92:14:70:72:b6:d3:6f:ba: 09:32:cf:48:02:23:38:79:03:71:3c:ec:4f:45:42:b1:fb:3b: 3d:d8:5d:fc:32:ba:b4:7a:d1:2c:b5:fe:9c:01:6f:3e:77:72: 97:30:14:09:24:e5:24:00:42:7a:9d:ad:f2:70:b3:7f:48:53: 18:5f:00:a0:35:24:b5:5b:b7:d9:19:a4:38:ab:92:8f:de:36: fe:36:3e:59:05:16:74:a7:74:5f:ea:e2:51:af:16:9d:0f:66: e4:69:eb:78:19:2a:23:6d:84:1f:92:5e:12:bf:90:11:10:de: 21:09:a9:c9:7e:db:64:d0:a0:91:75:8f:ea:c6:ef:6e:1d:40: 7d:07:39:b5:42:03:fa:0f:e8:76:b4:b9:8e:d3:24:d1:ba:92: 36:1d:99:92:35:db:37:2f:40:b0:dc:7d:a3:8a:7d:0f:e0:09: 12:37:b5:a8:f7:b1:1b:24:6f:41:90:85:bb:47:b7:94:91:89: bc:d6:23:db:21:cc:fc:49:ec:e4:21:25:4d:30:d1:87:b5:ee: 87:46:03:77:6f:41:5c:4a:4f:d5:0a:a7:68:95:51:30:f0:6e: 3a:8e:1a:98 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUXQm2J1Ry3WQfdQPLqYWW8psX2MswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJDNDk3RDBBRDBBREE4MDY4M0E0QUQxN0M2MEI4N0I2 MDM5NDQ4RjAeFw0yNTExMTIxNDU1MDNaFw0yNjExMTExNTAwMDNaMDMxMTAvBgNV BAMTKDA1RkVEMjdFMTJBMUEzMDk1QUVGM0FFMDg4MDlCNUUwNDYyQTJGMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmDUTxtoEbSKOjAt7Y/E5NlvpJ wZQLAWTlEFDVn6/r9EhwbnmuWQPYP9MpvQzp7CqoB2oScMAHMwMFeZOryHOfWVvn wZZXi6f/jj0oo31CVQV1s9+/q36IEtBFmnpB/YRUVzAlCarMRqlVUUqj84nnwTnc 66bj3hyv1G+Qhj2875R2AXvX57i0SmJRyEvroO5zXXZ13/zgAQ0Z3SV9R7tiDua8 cwaN0HqE3nQva+8V+0xjbWIwPzW2UMQYtOqrIT3DYpkbFmtywTJZZNX6UW7Lzzyz g/+Emezwwrj2veh0UPyWqqTu0VszBVH/0aCCquvv7SlqGKxOqWBpw8O6LRhbAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUBf7SfhKhowla7zrgiAm14EYqLyMwHwYDVR0j BBgwFoAUG8SX0K0K2oBoOkrRfGC4e2A5RI8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NTVhMWE0NC0zMzdkLTRkYjQtOTBkNy01YmQ0ZjM3MjE0YjgvMC8xQkM0OTdEMEFE MEFEQTgwNjgzQTRBRDE3QzYwQjg3QjYwMzk0NDhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJDNDk3RDBBRDBBREE4MDY4M0E0QUQxN0M2MEI4N0I2MDM5 NDQ4Ri5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1NWExYTQ0LTMzN2QtNGRiNC05 MGQ3LTViZDRmMzcyMTRiOC8wLzMyMzQzMDMxM2EzMjYzMzQzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMzMzgzNTMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkASxAAAAwDQYJKoZI hvcNAQELBQADggEBAGyGjdnEaIPGumVb47uUjDfXE6qCz+b1318EHVSSFHByttNv ugkyz0gCIzh5A3E87E9FQrH7Oz3YXfwyurR60Sy1/pwBbz53cpcwFAkk5SQAQnqd rfJws39IUxhfAKA1JLVbt9kZpDirko/eNv42PlkFFnSndF/q4lGvFp0PZuRp63gZ KiNthB+SXhK/kBEQ3iEJqcl+22TQoJF1j+rG724dQH0HObVCA/oP6Ha0uY7TJNG6 kjYdmZI12zcvQLDcfaOKfQ/gCRI3taj3sRskb0GQhbtHt5SRibzWI9shzPxJ7OQh JU0w0Ye17odGA3dvQVxKT9UKp2iVUTDwbjqOGpg= -----END CERTIFICATE-----Generated at Wed Dec 3 16:53:02 2025 by rpki-client