This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a36323a3a2f34382d3438203d3e20313333383237.roa File: 323430343a613634303a36323a3a2f34382d3438203d3e20313333383237.roa (raw, json) Hash identifier: AAfAK41bYgm/zJnOAM99b/7VZxCthhr1nADRxL8QtvA= Subject key identifier: A5:C9:93:22:76:1C:57:EE:26:B1:81:54:DA:B2:32:3C:0E:3B:C1:B5 Certificate issuer: /CN=0CE6A79D53D829F2A55623676E8D2A9A569F836F Certificate serial: 65E80B74C0570702D4561D7FDB65C108EE8E72C8 Authority key identifier: 0C:E6:A7:9D:53:D8:29:F2:A5:56:23:67:6E:8D:2A:9A:56:9F:83:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a36323a3a2f34382d3438203d3e20313333383237.roa Signing time: Mon 15 Dec 2025 22:00:02 +0000 ROA not before: Mon 15 Dec 2025 21:55:02 +0000 ROA not after: Mon 14 Dec 2026 22:00:02 +0000 asID: 133827 IP address blocks: 2404:a640:62::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.crl rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 18:46:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:e8:0b:74:c0:57:07:02:d4:56:1d:7f:db:65:c1:08:ee:8e:72:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CE6A79D53D829F2A55623676E8D2A9A569F836F Validity Not Before: Dec 15 21:55:02 2025 GMT Not After : Dec 14 22:00:02 2026 GMT Subject: CN=A5C99322761C57EE26B18154DAB2323C0E3BC1B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5c:d4:d7:82:60:4e:82:31:20:ef:c0:f5:5b: 89:be:d1:f2:7b:89:d1:c8:6d:9a:17:e8:6f:2d:ba: d8:cc:f8:f7:b9:8c:8b:37:7f:45:15:f7:17:20:4b: 65:dd:03:71:ff:74:a2:de:41:9b:e1:dc:17:a2:96: 00:f8:3a:fe:6a:25:28:cd:ad:31:b8:d4:e1:8a:34: 20:7c:26:5c:13:48:b4:59:00:f5:72:a2:28:b7:ee: 25:b9:20:7a:d3:20:bd:4f:8b:97:89:98:34:c1:1a: e3:da:e5:34:ac:53:b3:77:61:e2:4a:9f:6d:f2:95: 84:e9:9d:e4:4d:c0:a1:eb:e7:fc:55:7f:b3:fa:0f: d9:12:8d:e7:f3:d7:65:43:3f:ab:1b:33:ae:f0:c9: 6e:c6:77:eb:10:9d:a6:45:a3:81:6b:7e:dc:9f:d8: 43:95:c2:73:b6:09:44:16:af:06:3e:ea:b8:c0:a1: 49:30:47:08:85:d2:fb:8a:4a:3a:25:87:9b:38:7a: 68:d8:8f:ec:3c:f1:d2:c6:d6:e8:52:9f:70:af:39: 8a:58:82:e9:66:71:2e:ac:b0:75:cd:d6:1e:34:24: 51:aa:74:9d:d6:48:3a:e5:86:43:ca:cb:c4:42:02: 19:d4:d8:93:33:ae:6f:58:39:3a:f8:58:85:79:44: 0d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:C9:93:22:76:1C:57:EE:26:B1:81:54:DA:B2:32:3C:0E:3B:C1:B5 X509v3 Authority Key Identifier: keyid:0C:E6:A7:9D:53:D8:29:F2:A5:56:23:67:6E:8D:2A:9A:56:9F:83:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a36323a3a2f34382d3438203d3e20313333383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:a640:62::/48 Signature Algorithm: sha256WithRSAEncryption 5c:33:ef:26:e0:c4:3a:6b:4e:6d:b8:c3:fd:7b:4f:61:1d:5a: 66:d1:be:c3:71:f8:b4:87:da:86:da:a8:98:8f:7e:22:67:41: 1a:75:8a:c3:ff:5e:d5:1d:2b:b1:96:48:28:d4:13:6c:1f:de: e6:f4:29:e0:84:ba:f7:f2:a1:fc:4a:7d:90:9d:11:53:fc:0b: bf:13:be:f9:4c:c2:40:d9:d5:19:5a:10:84:7f:ab:13:fd:d8: 9e:f5:02:d8:ff:93:e1:79:41:b4:7c:8d:62:ec:a5:1e:82:1f: 68:19:6f:f8:78:73:fa:62:c3:5a:3e:e9:a1:8d:44:bf:aa:c3: 62:f2:b5:2c:fd:0a:bf:fc:04:07:3c:e9:15:e2:82:6a:bb:5c: f9:3d:41:c8:1c:c9:3f:b1:b3:47:a7:85:68:9e:1e:76:8f:1a: f8:c0:c3:36:43:c0:e9:1b:78:1a:c8:11:c1:fd:30:a3:63:a6: d6:8e:3a:a6:20:f7:61:d2:b3:a0:aa:ba:fc:6b:ad:b1:3b:03: 91:ea:6d:5b:ef:d5:86:3b:9e:d2:82:f5:92:fd:98:a3:a1:12: be:c7:92:8e:eb:75:cb:4e:70:ca:98:11:ce:d5:6f:d1:f0:68: 42:a2:a4:b7:d9:c8:2d:de:f7:4d:9b:71:c0:c8:95:8c:ef:48: 4e:4b:c3:85 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUZegLdMBXBwLUVh1/22XBCO6OcsgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMENFNkE3OUQ1M0Q4MjlGMkE1NTYyMzY3NkU4RDJBOUE1 NjlGODM2RjAeFw0yNTEyMTUyMTU1MDJaFw0yNjEyMTQyMjAwMDJaMDMxMTAvBgNV BAMTKEE1Qzk5MzIyNzYxQzU3RUUyNkIxODE1NERBQjIzMjNDMEUzQkMxQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1XNTXgmBOgjEg78D1W4m+0fJ7 idHIbZoX6G8tutjM+Pe5jIs3f0UV9xcgS2XdA3H/dKLeQZvh3BeilgD4Ov5qJSjN rTG41OGKNCB8JlwTSLRZAPVyoii37iW5IHrTIL1Pi5eJmDTBGuPa5TSsU7N3YeJK n23ylYTpneRNwKHr5/xVf7P6D9kSjefz12VDP6sbM67wyW7Gd+sQnaZFo4Frftyf 2EOVwnO2CUQWrwY+6rjAoUkwRwiF0vuKSjolh5s4emjYj+w88dLG1uhSn3CvOYpY gulmcS6ssHXN1h40JFGqdJ3WSDrlhkPKy8RCAhnU2JMzrm9YOTr4WIV5RA1LAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUpcmTInYcV+4msYFU2rIyPA47wbUwHwYDVR0j BBgwFoAUDOannVPYKfKlViNnbo0qmlafg28wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTk5MDEyNS02MDlhLTQ4YzgtYWM4Ni0xYzNiYzMxNWJhZDYvMC8wQ0U2QTc5RDUz RDgyOUYyQTU1NjIzNjc2RThEMkE5QTU2OUY4MzZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMENFNkE3OUQ1M0Q4MjlGMkE1NTYyMzY3NkU4RDJBOUE1NjlG ODM2Ri5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhOTkwMTI1LTYwOWEtNDhjOC1h Yzg2LTFjM2JjMzE1YmFkNi8wLzMyMzQzMDM0M2E2MTM2MzQzMDNhMzYzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzMzM4MzIzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQEpkAA YjANBgkqhkiG9w0BAQsFAAOCAQEAXDPvJuDEOmtObbjD/XtPYR1aZtG+w3H4tIfa htqomI9+ImdBGnWKw/9e1R0rsZZIKNQTbB/e5vQp4IS69/Kh/Ep9kJ0RU/wLvxO+ +UzCQNnVGVoQhH+rE/3YnvUC2P+T4XlBtHyNYuylHoIfaBlv+Hhz+mLDWj7poY1E v6rDYvK1LP0Kv/wEBzzpFeKCartc+T1ByBzJP7GzR6eFaJ4edo8a+MDDNkPA6Rt4 GsgRwf0wo2Om1o46piD3YdKzoKq6/GutsTsDkeptW+/Vhjue0oL1kv2Yo6ESvseS jut1y05wypgRztVv0fBoQqKkt9nILd73TZtxwMiVjO9ITkvDhQ== -----END CERTIFICATE-----Generated at Fri Dec 19 11:38:33 2025 by rpki-client