This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/57280400-9654-4d45-888b-9067bada190b/0/323430303a363463303a3a2f33322d3438203d3e20313336303535.roa File: 323430303a363463303a3a2f33322d3438203d3e20313336303535.roa (raw, json) Hash identifier: lkJMOSpD6CK+vqFIQ+W4fJTKxjWnPx2rZSDGiMaIa7Q= Subject key identifier: 8F:E0:D3:15:84:F5:82:57:8D:55:22:51:3E:80:49:7B:89:15:F2:CE Certificate issuer: /CN=A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F Certificate serial: 3491E8E3E14C38437D5DB5FC0FAEC88440624D2D Authority key identifier: A4:AC:49:C4:F5:5B:F5:D4:AF:3D:42:10:4A:8A:5E:C1:F2:12:3E:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/57280400-9654-4d45-888b-9067bada190b/0/323430303a363463303a3a2f33322d3438203d3e20313336303535.roa Signing time: Tue 30 Dec 2025 04:02:32 +0000 ROA not before: Tue 30 Dec 2025 03:57:32 +0000 ROA not after: Tue 29 Dec 2026 04:02:32 +0000 asID: 136055 IP address blocks: 2400:64c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/57280400-9654-4d45-888b-9067bada190b/0/A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F.crl rsync://repo-rpki.idnic.net/repo/57280400-9654-4d45-888b-9067bada190b/0/A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Feb 2026 19:50:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:91:e8:e3:e1:4c:38:43:7d:5d:b5:fc:0f:ae:c8:84:40:62:4d:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F Validity Not Before: Dec 30 03:57:32 2025 GMT Not After : Dec 29 04:02:32 2026 GMT Subject: CN=8FE0D31584F582578D5522513E80497B8915F2CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3f:d0:70:53:01:27:da:7f:df:01:2a:f4:fc: f2:0b:10:5e:a3:ad:7f:b6:25:0c:25:06:d9:a0:6e: bd:7a:0e:7b:e0:64:b6:08:41:51:df:89:36:4c:0c: 34:cc:bd:5e:7b:ff:dc:90:d2:9a:8f:41:7a:bf:fc: 24:4a:76:01:a7:b4:65:39:41:64:2c:5a:46:b0:b7: 2f:d7:4a:37:03:e2:48:25:2b:c0:a9:21:14:45:5b: 59:27:00:ad:6d:d9:81:a1:4b:99:70:75:15:9e:73: 74:16:9c:27:eb:f9:ac:75:39:5c:ce:01:da:ef:fe: 43:67:b8:57:50:7c:8b:7c:0a:bf:81:c9:22:86:af: 06:06:ea:a0:54:45:88:de:38:4b:c2:1a:88:05:14: a6:2b:a3:6d:48:c8:32:4c:33:7e:e1:22:f5:4b:d2: f4:ae:6c:30:0f:1d:2c:10:71:1d:cd:e0:a9:25:99: 0e:9f:80:49:4e:ac:ed:b0:ad:46:0a:51:51:64:6b: e4:de:51:db:97:70:b0:98:71:b5:1a:0d:3a:e8:6a: 22:5e:d3:b8:00:8d:4c:27:af:66:9c:89:16:1e:71: 20:08:ab:43:86:fc:57:b2:da:52:76:10:4a:2a:06: 9c:8b:f3:59:80:2b:fd:1e:c7:b1:29:69:0e:1f:84: 6f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:E0:D3:15:84:F5:82:57:8D:55:22:51:3E:80:49:7B:89:15:F2:CE X509v3 Authority Key Identifier: keyid:A4:AC:49:C4:F5:5B:F5:D4:AF:3D:42:10:4A:8A:5E:C1:F2:12:3E:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/57280400-9654-4d45-888b-9067bada190b/0/A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57280400-9654-4d45-888b-9067bada190b/0/323430303a363463303a3a2f33322d3438203d3e20313336303535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:64c0::/32 Signature Algorithm: sha256WithRSAEncryption 16:32:16:29:ea:e7:0f:d7:1a:36:7d:03:78:fa:4f:17:1d:d7: 4b:23:ca:ca:71:9c:df:bd:f1:55:f8:84:74:c6:b1:fc:3d:b8: e9:26:d9:d2:89:95:3d:97:63:5d:8e:87:72:a5:9e:16:0a:cc: 52:26:13:18:96:7b:f3:b7:67:29:20:f5:75:51:99:0f:56:15: 40:34:ad:38:ee:7f:d3:49:76:cf:59:ae:20:54:b1:61:65:fe: f5:5b:92:c6:6d:81:e3:17:e1:1a:09:c2:c1:14:75:e8:b7:b3: 98:a5:15:e8:3f:58:a5:59:c7:f5:cf:19:d8:20:43:17:b2:8c: 9a:e7:5e:28:f4:a3:05:37:2b:b8:63:5c:8c:dd:27:b2:64:40: 11:e7:3c:ff:7b:23:0e:8a:b6:90:19:a2:db:fa:d1:11:2e:3b: ab:50:cd:e3:02:93:8e:52:b1:f7:a5:f1:0c:7b:08:95:dc:f0: 85:24:90:9f:e1:6f:c8:46:30:a8:55:1e:c7:e6:b4:4d:18:b3: 3e:ee:91:14:e6:9c:ee:68:48:25:12:33:d1:58:40:3c:32:ac: 03:fb:58:54:e2:a2:76:4d:32:db:0d:e3:4b:47:2a:6e:1e:95: 33:f9:5e:f4:05:57:c2:c1:8d:06:13:2a:b1:f6:3c:7e:eb:34: 7f:9c:11:67 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUNJHo4+FMOEN9XbX8D67IhEBiTS0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTRBQzQ5QzRGNTVCRjVENEFGM0Q0MjEwNEE4QTVFQzFG MjEyM0U2RjAeFw0yNTEyMzAwMzU3MzJaFw0yNjEyMjkwNDAyMzJaMDMxMTAvBgNV BAMTKDhGRTBEMzE1ODRGNTgyNTc4RDU1MjI1MTNFODA0OTdCODkxNUYyQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgP9BwUwEn2n/fASr0/PILEF6j rX+2JQwlBtmgbr16DnvgZLYIQVHfiTZMDDTMvV57/9yQ0pqPQXq//CRKdgGntGU5 QWQsWkawty/XSjcD4kglK8CpIRRFW1knAK1t2YGhS5lwdRWec3QWnCfr+ax1OVzO Adrv/kNnuFdQfIt8Cr+BySKGrwYG6qBURYjeOEvCGogFFKYro21IyDJMM37hIvVL 0vSubDAPHSwQcR3N4KklmQ6fgElOrO2wrUYKUVFka+TeUduXcLCYcbUaDTroaiJe 07gAjUwnr2aciRYecSAIq0OG/Fey2lJ2EEoqBpyL81mAK/0ex7EpaQ4fhG+5AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUj+DTFYT1gleNVSJRPoBJe4kV8s4wHwYDVR0j BBgwFoAUpKxJxPVb9dSvPUIQSopewfISPm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NzI4MDQwMC05NjU0LTRkNDUtODg4Yi05MDY3YmFkYTE5MGIvMC9BNEFDNDlDNEY1 NUJGNUQ0QUYzRDQyMTA0QThBNUVDMUYyMTIzRTZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTRBQzQ5QzRGNTVCRjVENEFGM0Q0MjEwNEE4QTVFQzFGMjEy M0U2Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3MjgwNDAwLTk2NTQtNGQ0NS04 ODhiLTkwNjdiYWRhMTkwYi8wLzMyMzQzMDMwM2EzNjM0NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzUzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQAZMAwDQYJKoZI hvcNAQELBQADggEBABYyFinq5w/XGjZ9A3j6Txcd10sjyspxnN+98VX4hHTGsfw9 uOkm2dKJlT2XY12Oh3KlnhYKzFImExiWe/O3Zykg9XVRmQ9WFUA0rTjuf9NJds9Z riBUsWFl/vVbksZtgeMX4RoJwsEUdei3s5ilFeg/WKVZx/XPGdggQxeyjJrnXij0 owU3K7hjXIzdJ7JkQBHnPP97Iw6KtpAZotv60REuO6tQzeMCk45Ssfel8Qx7CJXc 8IUkkJ/hb8hGMKhVHsfmtE0Ysz7ukRTmnO5oSCUSM9FYQDwyrAP7WFTionZNMtsN 40tHKm4elTP5XvQFV8LBjQYTKrH2PH7rNH+cEWc= -----END CERTIFICATE-----Generated at Mon Feb 2 13:09:15 2026 by rpki-client