This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/323430303a313838303a3a2f33322d3438203d3e203137363730.roa File: 323430303a313838303a3a2f33322d3438203d3e203137363730.roa (raw, json) Hash identifier: FP8IqHLkyX7Qj2+QyPrsBYEPwMn3gsRtfyfeKNBNdEg= Subject key identifier: 4F:7F:96:14:FA:E4:76:84:DA:19:04:BF:F8:72:C0:93:78:41:E3:88 Certificate issuer: /CN=89402655017312B8CFCB367BA82966AA21E11F90 Certificate serial: 288C5C4EA2CAC8A5F07FDC0243AF5A0F07EDE0B9 Authority key identifier: 89:40:26:55:01:73:12:B8:CF:CB:36:7B:A8:29:66:AA:21:E1:1F:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/323430303a313838303a3a2f33322d3438203d3e203137363730.roa Signing time: Sun 06 Jul 2025 19:00:00 +0000 ROA not before: Sun 06 Jul 2025 18:55:00 +0000 ROA not after: Sun 05 Jul 2026 19:00:00 +0000 asID: 17670 IP address blocks: 2400:1880::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.crl rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 07:04:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:8c:5c:4e:a2:ca:c8:a5:f0:7f:dc:02:43:af:5a:0f:07:ed:e0:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89402655017312B8CFCB367BA82966AA21E11F90 Validity Not Before: Jul 6 18:55:00 2025 GMT Not After : Jul 5 19:00:00 2026 GMT Subject: CN=4F7F9614FAE47684DA1904BFF872C0937841E388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:23:3e:17:22:ff:8d:56:21:e0:95:9b:f6:99: 38:08:17:c7:c4:84:35:17:69:b5:a3:22:79:f1:fd: 05:11:e4:07:68:86:e9:f2:21:b1:b4:f2:ae:7b:ba: f6:0d:ad:35:9f:33:e0:77:c4:24:3e:7b:ea:f5:ff: 21:77:95:7d:77:94:81:43:d7:eb:01:4b:21:e2:31: 40:f2:70:18:97:b0:2d:71:a7:3b:6b:31:4e:f9:e0: c2:52:46:0a:f3:97:2e:bd:41:94:83:c7:cc:6a:b1: e5:f5:72:6e:15:40:81:08:bb:ba:ec:d1:6c:e1:f8: 6f:fb:0c:46:02:13:40:9f:b8:de:46:d3:a9:a5:12: a0:c7:30:df:12:7b:bc:bf:ee:1f:4d:32:c5:ca:34: 80:1a:f4:d3:05:00:40:8f:f0:5f:d8:17:d2:88:32: 2a:6f:eb:60:7f:5c:d9:d7:ab:d2:8f:cc:61:90:ba: e6:e6:8b:f7:24:76:f8:2b:e5:a3:87:f5:1f:2d:24: 31:0d:55:4c:b1:10:1d:22:1a:a1:22:12:30:aa:d1: d5:90:2d:2b:43:13:f9:57:7d:a1:d8:95:03:f2:57: 9d:73:27:ed:2d:cc:d2:fc:fa:33:16:86:9d:e6:0e: 61:3f:a7:f5:18:ce:0b:1e:47:4c:3b:bf:a0:40:f1: 0d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:7F:96:14:FA:E4:76:84:DA:19:04:BF:F8:72:C0:93:78:41:E3:88 X509v3 Authority Key Identifier: keyid:89:40:26:55:01:73:12:B8:CF:CB:36:7B:A8:29:66:AA:21:E1:1F:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/323430303a313838303a3a2f33322d3438203d3e203137363730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:1880::/32 Signature Algorithm: sha256WithRSAEncryption 6a:b3:e3:11:6a:60:14:74:92:d8:9f:a2:8e:62:c5:94:56:96: ae:5e:af:c9:2a:0d:c6:cc:d6:85:b9:ea:e8:4c:55:e5:2c:05: b6:4a:53:90:5d:3b:57:20:88:2d:b1:c4:a7:2e:a7:b5:51:2b: d5:b6:8b:e4:c3:4f:84:50:d2:79:df:ca:14:c7:d4:f2:21:29: 7f:e1:72:25:8c:82:55:54:2b:aa:d2:8a:b7:78:75:6c:33:7d: 11:1a:33:84:7a:b0:0f:12:51:8c:72:7b:e1:20:e2:de:f2:1a: b4:a9:52:ad:8f:b7:f1:05:69:1d:c0:3c:45:41:94:08:b9:2d: e5:44:2f:e9:94:89:26:33:26:47:64:ad:5d:93:b8:6f:10:6e: 8b:1b:33:0b:cc:0c:35:98:0f:60:e0:99:31:14:97:75:eb:d1: 4c:fb:9d:7f:69:cd:f6:fe:c8:66:15:64:cd:48:93:c1:22:d8: c8:fd:b2:9e:39:73:97:71:3b:99:0d:90:f0:3d:48:42:ce:d2: 49:41:81:ea:99:2c:2f:0f:cb:c6:e4:27:b9:23:f9:1f:e4:02: e9:03:06:87:43:47:83:4e:91:dd:9f:30:cf:b9:8d:59:e1:43: e4:20:2b:f6:25:cf:1c:58:19:21:be:7c:d6:99:49:cb:29:70: e6:25:58:43 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUKIxcTqLKyKXwf9wCQ69aDwft4LkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk0MDI2NTUwMTczMTJCOENGQ0IzNjdCQTgyOTY2QUEy MUUxMUY5MDAeFw0yNTA3MDYxODU1MDBaFw0yNjA3MDUxOTAwMDBaMDMxMTAvBgNV BAMTKDRGN0Y5NjE0RkFFNDc2ODREQTE5MDRCRkY4NzJDMDkzNzg0MUUzODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2Iz4XIv+NViHglZv2mTgIF8fE hDUXabWjInnx/QUR5AdohunyIbG08q57uvYNrTWfM+B3xCQ+e+r1/yF3lX13lIFD 1+sBSyHiMUDycBiXsC1xpztrMU754MJSRgrzly69QZSDx8xqseX1cm4VQIEIu7rs 0Wzh+G/7DEYCE0CfuN5G06mlEqDHMN8Se7y/7h9NMsXKNIAa9NMFAECP8F/YF9KI Mipv62B/XNnXq9KPzGGQuubmi/ckdvgr5aOH9R8tJDENVUyxEB0iGqEiEjCq0dWQ LStDE/lXfaHYlQPyV51zJ+0tzNL8+jMWhp3mDmE/p/UYzgseR0w7v6BA8Q3dAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUT3+WFPrkdoTaGQS/+HLAk3hB44gwHwYDVR0j BBgwFoAUiUAmVQFzErjPyzZ7qClmqiHhH5AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZmIxYzgwYy00ZDZjLTQ0MDgtODk0Ny1mYmE2ZTdjNGJlN2MvMC84OTQwMjY1NTAx NzMxMkI4Q0ZDQjM2N0JBODI5NjZBQTIxRTExRjkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODk0MDI2NTUwMTczMTJCOENGQ0IzNjdCQTgyOTY2QUEyMUUx MUY5MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVmYjFjODBjLTRkNmMtNDQwOC04 OTQ3LWZiYTZlN2M0YmU3Yy8wLzMyMzQzMDMwM2EzMTM4MzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzczNjM3MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkABiAMA0GCSqGSIb3 DQEBCwUAA4IBAQBqs+MRamAUdJLYn6KOYsWUVpauXq/JKg3GzNaFueroTFXlLAW2 SlOQXTtXIIgtscSnLqe1USvVtovkw0+EUNJ538oUx9TyISl/4XIljIJVVCuq0oq3 eHVsM30RGjOEerAPElGMcnvhIOLe8hq0qVKtj7fxBWkdwDxFQZQIuS3lRC/plIkm MyZHZK1dk7hvEG6LGzMLzAw1mA9g4JkxFJd169FM+51/ac32/shmFWTNSJPBItjI /bKeOXOXcTuZDZDwPUhCztJJQYHqmSwvD8vG5Ce5I/kf5ALpAwaHQ0eDTpHdnzDP uY1Z4UPkICv2Jc8cWBkhvnzWmUnLKXDmJVhD -----END CERTIFICATE-----Generated at Wed Dec 3 16:06:27 2025 by rpki-client