This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/323430313a383034303a3a2f33322d3332203d3e20313336313237.roa File: 323430313a383034303a3a2f33322d3332203d3e20313336313237.roa (raw, json) Hash identifier: UuD6w5FXiXpEb3WA0CSDEKfMUpwCYuxys7TXvAGTTaE= Subject key identifier: D4:1F:60:A9:DF:D6:83:AF:51:2E:2A:7A:81:16:19:6C:6D:8F:83:0E Certificate issuer: /CN=8C888E996588527BC5EF8ABD293676C3463A1A22 Certificate serial: 37DB275F420C056EE12F7EB51EC0F8BA8D710FD0 Authority key identifier: 8C:88:8E:99:65:88:52:7B:C5:EF:8A:BD:29:36:76:C3:46:3A:1A:22 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C888E996588527BC5EF8ABD293676C3463A1A22.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/323430313a383034303a3a2f33322d3332203d3e20313336313237.roa Signing time: Fri 19 Sep 2025 04:03:25 +0000 ROA not before: Fri 19 Sep 2025 03:58:25 +0000 ROA not after: Fri 18 Sep 2026 04:03:25 +0000 asID: 136127 IP address blocks: 2401:8040::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/8C888E996588527BC5EF8ABD293676C3463A1A22.crl rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/8C888E996588527BC5EF8ABD293676C3463A1A22.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C888E996588527BC5EF8ABD293676C3463A1A22.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 21:12:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:db:27:5f:42:0c:05:6e:e1:2f:7e:b5:1e:c0:f8:ba:8d:71:0f:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C888E996588527BC5EF8ABD293676C3463A1A22 Validity Not Before: Sep 19 03:58:25 2025 GMT Not After : Sep 18 04:03:25 2026 GMT Subject: CN=D41F60A9DFD683AF512E2A7A8116196C6D8F830E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:05:4e:fe:24:c8:01:20:2d:44:88:dc:17:64: aa:4c:5c:b8:97:ad:4f:fc:0e:99:93:09:01:db:35: 89:f9:8f:9d:7f:33:3a:44:46:4e:47:ca:c2:db:82: bb:76:6f:fb:27:29:c0:fa:be:1b:3b:2c:28:cf:22: 7e:d1:9c:bb:ae:c2:bd:b9:fe:bc:f9:65:31:ee:87: 45:d6:68:77:4f:74:28:c1:7a:d7:04:ab:ab:da:75: 37:9f:38:b6:bf:f8:20:6f:f2:06:23:ba:2c:70:a3: 0d:f3:3a:00:65:6d:6e:aa:8c:05:1f:e8:3a:c6:d4: be:7d:22:f6:3c:b2:31:af:69:5f:fd:c3:c1:eb:40: e3:8f:80:15:65:33:a5:ba:cf:fa:f2:d0:b2:15:dd: 03:32:c5:26:9b:9c:0d:b9:80:90:65:ad:1d:dc:e3: d6:27:fc:99:07:03:7b:7f:5e:6e:ad:14:8c:a7:5b: bf:51:9e:e1:65:18:fe:97:ea:6c:ee:2e:83:67:40: a8:54:bb:de:cb:84:45:ab:56:b4:87:f6:29:54:3f: 6d:4b:81:66:37:9e:37:e4:7b:8b:4a:f8:7b:41:57: 5b:51:83:7a:64:fb:af:e2:1c:8e:ae:c9:72:6e:20: 56:16:d4:fc:45:05:c2:07:3e:b6:9d:e9:27:22:73: 3a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:1F:60:A9:DF:D6:83:AF:51:2E:2A:7A:81:16:19:6C:6D:8F:83:0E X509v3 Authority Key Identifier: keyid:8C:88:8E:99:65:88:52:7B:C5:EF:8A:BD:29:36:76:C3:46:3A:1A:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/8C888E996588527BC5EF8ABD293676C3463A1A22.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C888E996588527BC5EF8ABD293676C3463A1A22.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/323430313a383034303a3a2f33322d3332203d3e20313336313237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:8040::/32 Signature Algorithm: sha256WithRSAEncryption 3d:23:61:c7:33:f1:cc:fd:a5:94:5d:e5:a6:a1:6c:1f:a9:f4: fb:eb:e2:c8:a5:c0:f9:2b:c1:a4:8e:ac:e9:3a:9f:0c:12:9a: 56:22:bc:8c:99:bd:68:c1:80:d9:c7:be:82:54:c1:13:8f:e5: d4:0f:6c:74:07:77:02:2a:0a:67:49:5d:55:91:6c:94:e0:b8: 6c:e2:08:79:7f:2c:3d:62:d8:60:2f:2d:6e:9a:75:25:2a:3e: c9:8f:09:b9:d2:cf:d8:7e:7d:b7:5f:c9:26:77:fd:5e:a0:b8: c3:74:7e:e9:55:fd:27:1d:92:e7:0d:ae:6b:c4:a9:80:32:5b: af:a8:d0:a9:43:2a:2f:54:b4:f9:46:5a:05:c1:c1:c7:f2:f2: 8c:30:2e:78:24:c9:e9:73:b8:1e:c1:5a:f5:fb:aa:86:6a:c4: 82:88:7a:50:14:d2:0a:4b:6d:23:a4:3f:50:53:15:70:00:9c: c3:7c:b0:28:83:49:d1:cc:e9:06:06:6f:90:75:b9:66:46:92: 9c:84:6c:09:79:7c:a9:8c:5a:50:a4:91:9d:37:97:7b:58:50: d0:42:58:58:76:9e:2f:bd:8e:eb:40:16:59:cf:21:d0:b5:46: db:b9:49:6f:d0:0b:a8:a8:10:ba:7f:1b:be:0f:6b:62:e7:e9: ec:c8:a4:45 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUN9snX0IMBW7hL361HsD4uo1xD9AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEM4ODhFOTk2NTg4NTI3QkM1RUY4QUJEMjkzNjc2QzM0 NjNBMUEyMjAeFw0yNTA5MTkwMzU4MjVaFw0yNjA5MTgwNDAzMjVaMDMxMTAvBgNV BAMTKEQ0MUY2MEE5REZENjgzQUY1MTJFMkE3QTgxMTYxOTZDNkQ4RjgzMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4BU7+JMgBIC1EiNwXZKpMXLiX rU/8DpmTCQHbNYn5j51/MzpERk5HysLbgrt2b/snKcD6vhs7LCjPIn7RnLuuwr25 /rz5ZTHuh0XWaHdPdCjBetcEq6vadTefOLa/+CBv8gYjuixwow3zOgBlbW6qjAUf 6DrG1L59IvY8sjGvaV/9w8HrQOOPgBVlM6W6z/ry0LIV3QMyxSabnA25gJBlrR3c 49Yn/JkHA3t/Xm6tFIynW79RnuFlGP6X6mzuLoNnQKhUu97LhEWrVrSH9ilUP21L gWY3njfke4tK+HtBV1tRg3pk+6/iHI6uyXJuIFYW1PxFBcIHPrad6SciczpHAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU1B9gqd/Wg69RLip6gRYZbG2Pgw4wHwYDVR0j BBgwFoAUjIiOmWWIUnvF74q9KTZ2w0Y6GiIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NGIyNzMwMy05ZTNkLTRkNDItYWYyNS02YTBmMTE4MDhmMjcvMC84Qzg4OEU5OTY1 ODg1MjdCQzVFRjhBQkQyOTM2NzZDMzQ2M0ExQTIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEM4ODhFOTk2NTg4NTI3QkM1RUY4QUJEMjkzNjc2QzM0NjNB MUEyMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0YjI3MzAzLTllM2QtNGQ0Mi1h ZjI1LTZhMGYxMTgwOGYyNy8wLzMyMzQzMDMxM2EzODMwMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNjMxMzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBgEAwDQYJKoZI hvcNAQELBQADggEBAD0jYccz8cz9pZRd5aahbB+p9Pvr4silwPkrwaSOrOk6nwwS mlYivIyZvWjBgNnHvoJUwROP5dQPbHQHdwIqCmdJXVWRbJTguGziCHl/LD1i2GAv LW6adSUqPsmPCbnSz9h+fbdfySZ3/V6guMN0fulV/ScdkucNrmvEqYAyW6+o0KlD Ki9UtPlGWgXBwcfy8owwLngkyelzuB7BWvX7qoZqxIKIelAU0gpLbSOkP1BTFXAA nMN8sCiDSdHM6QYGb5B1uWZGkpyEbAl5fKmMWlCkkZ03l3tYUNBCWFh2ni+9jutA FlnPIdC1Rtu5SW/QC6ioELp/G74Pa2Ln6ezIpEU= -----END CERTIFICATE-----Generated at Wed Dec 3 16:07:36 2025 by rpki-client