This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/323430333a393063303a3a2f33322d3332203d3e20313430343037.roa File: 323430333a393063303a3a2f33322d3332203d3e20313430343037.roa (raw, json) Hash identifier: I6slakky3CQtWTIuBbfvHlCbvw8Jyy9iX7shA/6YgbI= Subject key identifier: C1:AD:CB:5D:C3:78:FC:24:37:DA:8F:8E:3C:B9:62:92:58:96:58:1F Certificate issuer: /CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Certificate serial: 2C979B55BA59C7E9EA7B16AA2C9A31896649F19C Authority key identifier: 49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/323430333a393063303a3a2f33322d3332203d3e20313430343037.roa Signing time: Sat 31 Jan 2026 04:00:00 +0000 ROA not before: Sat 31 Jan 2026 03:55:00 +0000 ROA not after: Sat 30 Jan 2027 04:00:00 +0000 asID: 140407 IP address blocks: 2403:90c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 05:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:97:9b:55:ba:59:c7:e9:ea:7b:16:aa:2c:9a:31:89:66:49:f1:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Validity Not Before: Jan 31 03:55:00 2026 GMT Not After : Jan 30 04:00:00 2027 GMT Subject: CN=C1ADCB5DC378FC2437DA8F8E3CB962925896581F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d6:6a:22:98:45:fa:aa:4c:f6:e0:30:88:69: b3:ef:db:d0:5e:8d:9f:0e:ba:45:5a:0d:ca:03:bc: 4f:2e:b0:f1:64:dc:b2:67:ca:f3:8e:2d:7c:1d:c0: 43:ea:20:3f:f0:e9:cd:37:c0:b5:41:c4:ea:f9:93: f4:4d:36:08:4c:ee:91:6f:22:49:9f:ce:50:06:a6: ce:43:c1:aa:a6:cc:39:29:24:88:1c:a9:4b:a2:72: ea:2b:da:9b:1b:c9:fc:a5:3b:a7:07:5f:7c:1c:18: 7c:b8:88:3e:a4:76:1c:4a:f4:f4:ec:94:92:88:74: b4:29:01:53:13:45:76:74:b2:78:df:49:15:43:3e: 80:00:22:b5:e9:5e:4c:4b:be:e0:3c:ee:a6:fc:f6: d6:8f:fd:27:8c:59:4d:2b:5e:3d:f4:b2:ed:52:71: ee:af:15:8c:5b:2d:4b:06:b4:dc:08:a5:ae:8a:e1: 89:24:7b:ad:8b:80:5c:6f:db:0e:43:b6:48:4c:2f: ce:c1:74:32:e9:bd:bc:fc:4a:19:3a:74:17:dc:a7: d1:c9:21:4b:39:65:ae:31:f6:15:89:6a:c1:53:56: 9f:55:2c:3a:3d:6f:6d:2c:49:68:9f:81:5e:08:3b: 8e:25:93:12:9d:3d:12:d9:18:52:fb:77:54:1e:6a: 94:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:AD:CB:5D:C3:78:FC:24:37:DA:8F:8E:3C:B9:62:92:58:96:58:1F X509v3 Authority Key Identifier: keyid:49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/323430333a393063303a3a2f33322d3332203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:90c0::/32 Signature Algorithm: sha256WithRSAEncryption 71:00:60:d2:5a:5d:fe:4d:70:18:ce:c3:4b:ba:89:b3:d9:0d: c5:19:4a:24:a7:b9:db:f8:84:93:38:c8:39:0b:75:0e:a1:c6: b8:41:a2:6a:d1:cc:23:9f:ba:97:eb:e3:66:db:4f:2c:25:9e: dc:e5:13:69:6e:2b:76:76:95:b4:e5:69:cc:57:ae:41:28:9f: d2:9f:ea:07:82:3a:ae:67:1b:67:e7:dd:9d:39:84:04:f4:ef: 94:ad:bf:84:8e:19:72:6e:f1:d5:9d:de:71:1c:1f:51:f0:65: 32:1b:14:68:8e:f8:a3:33:bc:3b:eb:72:c6:55:46:55:71:49: 74:e0:28:f6:67:df:b9:01:2b:f9:c9:67:23:7b:07:6d:88:d2: 19:03:dd:0e:cb:35:f9:2b:48:f1:ae:a5:cc:e2:c2:21:b8:d5: b6:fa:28:d8:21:99:cd:8f:dc:20:40:a5:8f:4b:64:2c:cb:3c: 8b:02:99:50:6b:54:f6:d7:15:73:70:ec:65:9c:c9:8e:a3:40: 8b:30:23:9f:8b:d0:6b:3e:d7:c4:91:5a:fb:21:08:6f:31:03: 13:22:7c:2a:5b:16:e5:09:28:5f:65:4a:e8:76:58:b5:10:27: 5b:e7:7b:1f:e5:0e:94:be:41:fd:5c:52:ff:a9:86:92:a6:6b: 5b:5e:9e:09 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIULJebVbpZx+nqexaqLJoxiWZJ8ZwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1 QTlEMkY5NTAeFw0yNjAxMzEwMzU1MDBaFw0yNzAxMzAwNDAwMDBaMDMxMTAvBgNV BAMTKEMxQURDQjVEQzM3OEZDMjQzN0RBOEY4RTNDQjk2MjkyNTg5NjU4MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC51moimEX6qkz24DCIabPv29Be jZ8OukVaDcoDvE8usPFk3LJnyvOOLXwdwEPqID/w6c03wLVBxOr5k/RNNghM7pFv IkmfzlAGps5DwaqmzDkpJIgcqUuicuor2psbyfylO6cHX3wcGHy4iD6kdhxK9PTs lJKIdLQpAVMTRXZ0snjfSRVDPoAAIrXpXkxLvuA87qb89taP/SeMWU0rXj30su1S ce6vFYxbLUsGtNwIpa6K4Ykke62LgFxv2w5DtkhML87BdDLpvbz8Shk6dBfcp9HJ IUs5Za4x9hWJasFTVp9VLDo9b20sSWifgV4IO44lkxKdPRLZGFL7d1QeapS3AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUwa3LXcN4/CQ32o+OPLlikliWWB8wHwYDVR0j BBgwFoAUSRsOpUQFY76bDxZ9p2wF6FqdL5UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MjI5NzgxYS04YWM5LTQ0NTItYjI1Zi01NGU3ZWRmN2Q0YTQvMC80OTFCMEVBNTQ0 MDU2M0JFOUIwRjE2N0RBNzZDMDVFODVBOUQyRjk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDkxQjBFQTU0NDA1NjNCRTlCMEYxNjdEQTc2QzA1RTg1QTlE MkY5NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcyMjk3ODFhLThhYzktNDQ1Mi1i MjVmLTU0ZTdlZGY3ZDRhNC8wLzMyMzQzMDMzM2EzOTMwNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMDM0MzAzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDkMAwDQYJKoZI hvcNAQELBQADggEBAHEAYNJaXf5NcBjOw0u6ibPZDcUZSiSnudv4hJM4yDkLdQ6h xrhBomrRzCOfupfr42bbTywlntzlE2luK3Z2lbTlacxXrkEon9Kf6geCOq5nG2fn 3Z05hAT075Stv4SOGXJu8dWd3nEcH1HwZTIbFGiO+KMzvDvrcsZVRlVxSXTgKPZn 37kBK/nJZyN7B22I0hkD3Q7LNfkrSPGupcziwiG41bb6KNghmc2P3CBApY9LZCzL PIsCmVBrVPbXFXNw7GWcyY6jQIswI5+L0Gs+18SRWvshCG8xAxMifCpbFuUJKF9l Suh2WLUQJ1vnex/lDpS+Qf1cUv+phpKma1tengk= -----END CERTIFICATE-----Generated at Mon Feb 2 14:28:48 2026 by rpki-client