This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/323430363a383434303a3a2f33322d3332203d3e20313431303837.roa File: 323430363a383434303a3a2f33322d3332203d3e20313431303837.roa (raw, json) Hash identifier: dBa568UK/EDi0HlAgRz6Gr8t22rnoRAjxn7WiN8bCyc= Subject key identifier: 5B:8F:02:BE:9E:BB:24:32:9F:A0:85:E1:EA:3D:8F:66:59:19:A2:09 Certificate issuer: /CN=878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE Certificate serial: 5B4F30EB57466FE56FDF5541B3B43D968E9CB989 Authority key identifier: 87:8D:F4:B7:E3:C7:76:B2:ED:C1:75:2F:CC:BC:5E:28:9C:45:3B:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/323430363a383434303a3a2f33322d3332203d3e20313431303837.roa Signing time: Wed 21 Jan 2026 08:01:08 +0000 ROA not before: Wed 21 Jan 2026 07:56:08 +0000 ROA not after: Wed 20 Jan 2027 08:01:08 +0000 asID: 141087 IP address blocks: 2406:8440::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.crl rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Feb 2026 07:22:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:4f:30:eb:57:46:6f:e5:6f:df:55:41:b3:b4:3d:96:8e:9c:b9:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE Validity Not Before: Jan 21 07:56:08 2026 GMT Not After : Jan 20 08:01:08 2027 GMT Subject: CN=5B8F02BE9EBB24329FA085E1EA3D8F665919A209 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5e:32:44:94:0c:db:d3:e5:fc:e7:40:82:0c: 5f:c9:2d:22:0d:8d:08:53:87:de:1e:2a:c0:06:c0: ad:2f:00:65:dc:fc:6a:0b:ce:ab:34:bb:d2:e3:39: b4:c3:f5:c8:e8:9e:47:d8:d3:cc:1c:f2:e5:ad:9f: 27:f7:bd:e0:f4:73:7c:13:dc:16:8e:68:a9:d8:85: d7:e6:9c:5d:ff:2c:d6:4d:c0:3d:b0:30:5d:f1:01: 0a:ce:bb:c7:55:45:f5:bd:e2:9f:5e:6a:c4:45:23: 46:5f:ed:11:66:09:50:37:cf:34:a1:8f:c3:05:fb: 27:7a:e9:c7:13:91:cd:62:15:56:16:f2:3f:77:e6: 11:a9:a0:c2:8f:cf:a1:29:db:d4:d5:9f:b0:26:d6: 9e:a8:b0:44:e6:70:ce:b6:1f:07:61:d1:ee:fc:b3: 84:78:99:2e:dd:35:6a:9e:96:6c:54:7c:a7:97:71: 59:4b:d4:b1:8e:76:51:cd:d7:71:09:e8:2c:50:a2: 08:36:a3:ed:ee:07:c0:d4:5f:c0:66:90:c2:fa:56: b9:ce:0d:3d:6d:a4:13:03:24:43:93:cb:64:e4:8f: af:0d:f8:d3:aa:24:57:a5:f2:1a:9a:8f:6f:11:51: 9d:53:65:b0:02:f2:39:08:dd:a3:fc:6a:84:dc:5a: 7e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:8F:02:BE:9E:BB:24:32:9F:A0:85:E1:EA:3D:8F:66:59:19:A2:09 X509v3 Authority Key Identifier: keyid:87:8D:F4:B7:E3:C7:76:B2:ED:C1:75:2F:CC:BC:5E:28:9C:45:3B:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/323430363a383434303a3a2f33322d3332203d3e20313431303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:8440::/32 Signature Algorithm: sha256WithRSAEncryption a2:5a:91:0f:fc:e2:76:96:df:cc:31:3e:6a:0c:61:00:56:0d: e4:32:96:db:71:3e:38:f5:ff:e1:3e:cf:e9:8a:ee:27:a9:ef: 88:64:39:96:c4:5e:b3:4b:6c:7d:08:05:b5:c5:3e:24:32:dc: f3:2c:62:c8:98:90:0a:ce:c2:85:93:77:b0:38:b2:67:2a:19: ea:b5:06:5c:4a:90:e4:82:d7:50:da:e2:4e:9d:c3:ee:6f:c9: a8:9f:19:68:de:9c:b9:d2:6c:bc:ff:2c:73:ef:7f:bc:4e:74: b5:58:5d:64:02:39:84:cd:fc:07:75:44:b5:cf:ab:92:c2:33: c7:9a:53:0a:d1:91:5a:78:51:72:46:cb:04:09:5c:d0:ef:04: 87:74:22:fb:69:e5:b2:d8:14:3f:45:dc:f4:78:ca:e5:68:a8: d4:54:d9:6d:ba:83:a1:e3:00:9e:17:fb:7b:19:6d:12:ec:25: 9d:99:e2:2c:06:9b:31:bb:08:78:17:fd:c7:d5:d3:6b:9a:d4: 07:d2:40:12:ce:0a:c6:ea:49:81:8a:48:51:be:6e:6b:eb:ab: 9e:06:f6:e4:a8:bb:99:a2:f7:12:0b:21:ed:75:ec:0d:46:e8: f4:1f:5d:45:bf:90:48:df:13:27:f6:c8:48:0d:77:ed:3d:ba: 49:40:2a:0e -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUW08w61dGb+Vv31VBs7Q9lo6cuYkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODc4REY0QjdFM0M3NzZCMkVEQzE3NTJGQ0NCQzVFMjg5 QzQ1M0JFRTAeFw0yNjAxMjEwNzU2MDhaFw0yNzAxMjAwODAxMDhaMDMxMTAvBgNV BAMTKDVCOEYwMkJFOUVCQjI0MzI5RkEwODVFMUVBM0Q4RjY2NTkxOUEyMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAXjJElAzb0+X850CCDF/JLSIN jQhTh94eKsAGwK0vAGXc/GoLzqs0u9LjObTD9cjonkfY08wc8uWtnyf3veD0c3wT 3BaOaKnYhdfmnF3/LNZNwD2wMF3xAQrOu8dVRfW94p9easRFI0Zf7RFmCVA3zzSh j8MF+yd66ccTkc1iFVYW8j935hGpoMKPz6Ep29TVn7Am1p6osETmcM62Hwdh0e78 s4R4mS7dNWqelmxUfKeXcVlL1LGOdlHN13EJ6CxQogg2o+3uB8DUX8BmkML6VrnO DT1tpBMDJEOTy2Tkj68N+NOqJFel8hqaj28RUZ1TZbAC8jkI3aP8aoTcWn5pAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUW48Cvp67JDKfoIXh6j2PZlkZogkwHwYDVR0j BBgwFoAUh430t+PHdrLtwXUvzLxeKJxFO+4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Yzg5N2M0YS1lMGZmLTQ2NTItYTU5MS1mZjJkNDhlNzJjOTEvMC84NzhERjRCN0Uz Qzc3NkIyRURDMTc1MkZDQ0JDNUUyODlDNDUzQkVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODc4REY0QjdFM0M3NzZCMkVEQzE3NTJGQ0NCQzVFMjg5QzQ1 M0JFRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjODk3YzRhLWUwZmYtNDY1Mi1h NTkxLWZmMmQ0OGU3MmM5MS8wLzMyMzQzMDM2M2EzODM0MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTMwMzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGhEAwDQYJKoZI hvcNAQELBQADggEBAKJakQ/84naW38wxPmoMYQBWDeQylttxPjj1/+E+z+mK7iep 74hkOZbEXrNLbH0IBbXFPiQy3PMsYsiYkArOwoWTd7A4smcqGeq1BlxKkOSC11Da 4k6dw+5vyaifGWjenLnSbLz/LHPvf7xOdLVYXWQCOYTN/Ad1RLXPq5LCM8eaUwrR kVp4UXJGywQJXNDvBId0Ivtp5bLYFD9F3PR4yuVoqNRU2W26g6HjAJ4X+3sZbRLs JZ2Z4iwGmzG7CHgX/cfV02ua1AfSQBLOCsbqSYGKSFG+bmvrq54G9uSou5mi9xIL Ie117A1G6PQfXUW/kEjfEyf2yEgNd+09uklAKg4= -----END CERTIFICATE-----Generated at Mon Feb 2 12:55:42 2026 by rpki-client