This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/323430323a376163303a3a2f33362d3336203d3e20313337333136.roa File: 323430323a376163303a3a2f33362d3336203d3e20313337333136.roa (raw, json) Hash identifier: a3qrmd7fTcg4vQa4NLtlfE5OplZv+VoVJFg73dEoGp8= Subject key identifier: BE:0B:9D:80:40:AD:F0:E7:71:B2:D5:E6:91:12:A7:85:89:96:16:A6 Certificate issuer: /CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Certificate serial: 75D5A3256E908992DA772F29097192B82B982713 Authority key identifier: 7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/323430323a376163303a3a2f33362d3336203d3e20313337333136.roa Signing time: Fri 07 Nov 2025 14:00:02 +0000 ROA not before: Fri 07 Nov 2025 13:55:02 +0000 ROA not after: Fri 06 Nov 2026 14:00:02 +0000 asID: 137316 IP address blocks: 2402:7ac0::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 20:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:d5:a3:25:6e:90:89:92:da:77:2f:29:09:71:92:b8:2b:98:27:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Validity Not Before: Nov 7 13:55:02 2025 GMT Not After : Nov 6 14:00:02 2026 GMT Subject: CN=BE0B9D8040ADF0E771B2D5E69112A785899616A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:da:cb:e5:5e:e1:c8:eb:0c:7b:99:68:cd:60: 5e:cd:7d:5c:d6:f5:19:1f:27:e5:05:46:c0:37:e5: f6:04:24:bb:e2:d6:fa:9e:1f:30:de:a4:95:7b:86: 67:66:91:c3:ed:94:93:a0:0d:44:8d:58:dd:03:56: 2c:b1:fa:c0:3e:f0:36:72:9a:b3:2a:99:9b:c9:ca: 2a:27:cd:38:60:ae:f9:58:6d:28:56:4c:3b:c6:89: 46:bd:50:ad:31:3f:4a:c1:f1:88:e6:a4:38:c8:a9: 73:95:3f:62:f4:c7:c4:55:96:21:05:8b:af:a9:f0: 0b:ac:2d:54:c6:60:0a:f2:0c:74:52:e4:5b:5a:37: 58:40:a3:39:6d:92:ec:de:ad:e0:54:38:b9:40:65: 8b:8b:23:0c:1c:a5:76:a5:33:ea:f3:80:8a:f9:3d: 1b:f8:34:57:dd:ce:4e:6f:f2:f2:22:f1:fe:0b:37: b4:e6:a8:b8:75:cc:ee:ac:8f:01:39:70:6d:75:fa: b2:89:1f:28:d3:32:8a:a2:d7:de:1d:77:3a:6c:0f: ad:45:cd:61:f1:4f:05:0c:16:d6:1f:a2:62:6d:75: e7:3d:81:26:7f:00:0e:73:27:5f:07:e8:c2:42:3d: f2:92:1d:a7:b7:60:40:c2:ba:e6:e2:c2:29:7b:e8: 60:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:0B:9D:80:40:AD:F0:E7:71:B2:D5:E6:91:12:A7:85:89:96:16:A6 X509v3 Authority Key Identifier: keyid:7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/323430323a376163303a3a2f33362d3336203d3e20313337333136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:7ac0::/36 Signature Algorithm: sha256WithRSAEncryption 48:b3:bb:1d:48:de:4e:30:80:09:6b:47:95:e1:10:1f:06:76: 83:98:ad:69:93:d1:f1:17:7e:00:85:8f:cb:f5:e4:64:ea:64: d7:3e:b2:0a:b3:7a:f9:e1:1d:c7:24:55:ef:47:73:81:08:f3: fe:e6:aa:4d:83:4f:9e:ec:44:d8:83:78:8e:5a:a9:cb:94:e0: 3a:90:ac:2c:ba:19:e2:cd:ff:d8:8e:c8:ca:5e:4f:34:19:78: 39:27:d4:d0:96:66:9d:60:e8:31:ef:e0:7c:33:ee:d1:7b:3b: 66:93:f6:d6:74:56:40:64:4d:44:43:3d:8d:2d:cc:8d:eb:66: 78:88:3f:dc:9d:2c:db:10:00:68:5e:f0:c6:a8:78:9f:fb:d2: c8:0e:13:47:44:c7:45:96:e4:67:49:24:c5:80:46:da:a9:da: d6:04:f4:94:3a:58:26:79:40:21:ef:3d:fa:f7:53:1d:69:7a: 52:f8:fb:2e:ae:93:61:68:ea:de:a1:27:0e:01:61:02:73:64: 4f:d8:1c:1a:e5:56:47:6c:0f:d3:08:6a:7d:2a:e4:48:5a:63: a3:d9:c6:c1:11:8b:a4:f4:55:af:14:40:42:15:19:ec:0c:b1: 70:97:13:df:b7:77:bc:68:9e:9f:05:a6:0e:ef:f0:1d:cb:48: 20:c1:7b:d5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUddWjJW6QiZLady8pCXGSuCuYJxMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZB NUEwNjY2RDAeFw0yNTExMDcxMzU1MDJaFw0yNjExMDYxNDAwMDJaMDMxMTAvBgNV BAMTKEJFMEI5RDgwNDBBREYwRTc3MUIyRDVFNjkxMTJBNzg1ODk5NjE2QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP2svlXuHI6wx7mWjNYF7NfVzW 9RkfJ+UFRsA35fYEJLvi1vqeHzDepJV7hmdmkcPtlJOgDUSNWN0DViyx+sA+8DZy mrMqmZvJyionzThgrvlYbShWTDvGiUa9UK0xP0rB8YjmpDjIqXOVP2L0x8RVliEF i6+p8AusLVTGYAryDHRS5FtaN1hAozltkuzereBUOLlAZYuLIwwcpXalM+rzgIr5 PRv4NFfdzk5v8vIi8f4LN7TmqLh1zO6sjwE5cG11+rKJHyjTMoqi194ddzpsD61F zWHxTwUMFtYfomJtdec9gSZ/AA5zJ18H6MJCPfKSHae3YEDCuubiwil76GCRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvgudgECt8OdxstXmkRKnhYmWFqYwHwYDVR0j BBgwFoAUezWDSkcEx+2F1iIS/GLEb6WgZm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 Y2M0NjJhNS04Zjc0LTQyYWYtODgzYi01ZTg5ZWU1ZjJkZjMvMC83QjM1ODM0QTQ3 MDRDN0VEODVENjIyMTJGQzYyQzQ2RkE1QTA2NjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZBNUEw NjY2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjYzQ2MmE1LThmNzQtNDJhZi04 ODNiLTVlODllZTVmMmRmMy8wLzMyMzQzMDMyM2EzNzYxNjMzMDNhM2EyZjMzMzYy ZDMzMzYyMDNkM2UyMDMxMzMzNzMzMzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCQCesAAMA0GCSqG SIb3DQEBCwUAA4IBAQBIs7sdSN5OMIAJa0eV4RAfBnaDmK1pk9HxF34AhY/L9eRk 6mTXPrIKs3r54R3HJFXvR3OBCPP+5qpNg0+e7ETYg3iOWqnLlOA6kKwsuhnizf/Y jsjKXk80GXg5J9TQlmadYOgx7+B8M+7Reztmk/bWdFZAZE1EQz2NLcyN62Z4iD/c nSzbEABoXvDGqHif+9LIDhNHRMdFluRnSSTFgEbaqdrWBPSUOlgmeUAh7z3691Md aXpS+PsurpNhaOreoScOAWECc2RP2Bwa5VZHbA/TCGp9KuRIWmOj2cbBEYuk9FWv FEBCFRnsDLFwlxPft3e8aJ6fBaYO7/Ady0ggwXvV -----END CERTIFICATE-----Generated at Wed Dec 3 16:09:05 2025 by rpki-client