This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/1/323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa File: 323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa (raw, json) Hash identifier: 2IgIC7bQbnZuCzsfPNnXgtfSnUm13LwLKWaSfNK/sF4= Subject key identifier: AE:23:A4:1D:2B:0C:3A:F2:E5:45:01:67:86:47:D8:3D:67:F1:FC:E9 Certificate issuer: /CN=93B49EA86589396F687875020DE4D17DE244CD6E Certificate serial: 537D274D4FC2E50EEA75306FBC8F3F8CB2A081A0 Authority key identifier: 93:B4:9E:A8:65:89:39:6F:68:78:75:02:0D:E4:D1:7D:E2:44:CD:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/93B49EA86589396F687875020DE4D17DE244CD6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/1/323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa Signing time: Thu 13 Nov 2025 04:00:49 +0000 ROA not before: Thu 13 Nov 2025 03:55:49 +0000 ROA not after: Thu 12 Nov 2026 04:00:49 +0000 asID: 152082 IP address blocks: 2001:df3:5bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/1/93B49EA86589396F687875020DE4D17DE244CD6E.crl rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/1/93B49EA86589396F687875020DE4D17DE244CD6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/93B49EA86589396F687875020DE4D17DE244CD6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 02:18:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:7d:27:4d:4f:c2:e5:0e:ea:75:30:6f:bc:8f:3f:8c:b2:a0:81:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93B49EA86589396F687875020DE4D17DE244CD6E Validity Not Before: Nov 13 03:55:49 2025 GMT Not After : Nov 12 04:00:49 2026 GMT Subject: CN=AE23A41D2B0C3AF2E54501678647D83D67F1FCE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e2:bb:c8:93:4a:6a:8a:99:7d:d1:13:89:de: e3:a3:aa:b9:57:4d:7a:65:db:1a:29:ca:b5:c4:a5: 28:a6:02:e9:37:2f:1d:6d:5b:57:f8:e0:8b:41:bf: be:1c:46:81:f1:99:e7:2f:35:84:cb:92:24:53:11: 16:80:7e:73:21:44:49:28:07:f5:c2:3a:7e:61:f5: 0d:3c:a6:d1:57:f6:6e:02:55:92:37:c5:aa:e6:b6: 54:56:56:7d:ab:6c:58:b1:85:85:d1:04:e6:39:fa: d3:99:e4:5f:be:c3:55:0d:fe:5f:6c:dc:95:03:17: 61:a8:51:00:32:02:5b:ff:73:26:ab:39:88:23:2a: 10:36:d0:0b:23:82:e5:b8:74:ef:b2:b5:3f:ed:83: 89:0f:4f:19:9b:c7:28:5b:76:a9:f8:f1:2e:e1:9c: dd:d8:ae:4c:95:b1:64:2e:f6:0e:f9:4d:1b:33:8e: 22:d0:0b:4f:10:55:40:33:2f:4f:d1:04:12:1a:43: 00:a5:3a:af:3a:1a:59:ef:e3:2a:a2:b1:88:56:0b: 98:44:f9:36:8b:08:fb:ec:52:f0:64:a5:b4:12:ad: ea:56:84:cc:a5:af:2b:14:00:0a:4d:8f:09:78:83: f1:01:7e:c8:10:6c:d4:2b:c7:ce:e7:54:80:70:2d: 71:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:23:A4:1D:2B:0C:3A:F2:E5:45:01:67:86:47:D8:3D:67:F1:FC:E9 X509v3 Authority Key Identifier: keyid:93:B4:9E:A8:65:89:39:6F:68:78:75:02:0D:E4:D1:7D:E2:44:CD:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/1/93B49EA86589396F687875020DE4D17DE244CD6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/93B49EA86589396F687875020DE4D17DE244CD6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/732e4f86-48e7-48c7-ba91-e25968378e95/1/323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:5bc0::/48 Signature Algorithm: sha256WithRSAEncryption 1e:6f:a2:49:b9:ef:0e:c9:1b:3e:ec:09:6c:de:81:19:fa:aa: 30:e5:3d:53:c2:68:84:3d:9e:99:52:b4:e2:08:92:57:05:a0: 2b:7a:a1:71:4d:fb:90:d1:d3:e1:8a:cb:fe:dd:f0:cb:77:b5: 02:0a:03:48:fc:fb:d5:21:11:11:60:23:67:55:4e:91:26:7c: 28:83:39:75:dc:9f:df:b8:55:3e:d6:56:05:a6:c7:ff:c9:fc: 5c:48:72:da:4e:a4:47:ee:fa:9b:50:3b:9f:8a:70:3e:6f:03: f8:dd:2b:82:00:a6:01:dd:9f:6f:57:75:cb:24:e5:ee:d6:12: f7:c7:40:96:ae:7e:1f:6d:0b:95:c7:4c:89:0a:2e:2d:77:dc: f9:e4:7a:58:8c:8c:38:a6:b9:e5:f0:1c:b3:ab:b0:cb:fb:63: 0f:40:4f:dd:a1:c5:e3:a9:73:4c:d6:46:61:a9:36:35:24:d5: 95:db:94:c6:7b:98:8b:ba:ba:ac:f2:1a:25:08:eb:2f:e2:0f: 71:75:29:f7:43:02:88:e4:76:99:eb:44:b6:0d:f4:46:c1:cc: 12:8d:0a:d5:29:32:05:ed:75:6c:e4:ff:b9:ae:9e:1e:98:22: d3:f0:18:f1:d7:b8:ff:9d:bb:5d:50:f4:57:fb:ad:f8:87:dd: eb:41:4f:96 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUU30nTU/C5Q7qdTBvvI8/jLKggaAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTNCNDlFQTg2NTg5Mzk2RjY4Nzg3NTAyMERFNEQxN0RF MjQ0Q0Q2RTAeFw0yNTExMTMwMzU1NDlaFw0yNjExMTIwNDAwNDlaMDMxMTAvBgNV BAMTKEFFMjNBNDFEMkIwQzNBRjJFNTQ1MDE2Nzg2NDdEODNENjdGMUZDRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS4rvIk0pqipl90ROJ3uOjqrlX TXpl2xopyrXEpSimAuk3Lx1tW1f44ItBv74cRoHxmecvNYTLkiRTERaAfnMhREko B/XCOn5h9Q08ptFX9m4CVZI3xarmtlRWVn2rbFixhYXRBOY5+tOZ5F++w1UN/l9s 3JUDF2GoUQAyAlv/cyarOYgjKhA20AsjguW4dO+ytT/tg4kPTxmbxyhbdqn48S7h nN3YrkyVsWQu9g75TRszjiLQC08QVUAzL0/RBBIaQwClOq86Glnv4yqisYhWC5hE +TaLCPvsUvBkpbQSrepWhMylrysUAApNjwl4g/EBfsgQbNQrx87nVIBwLXFHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUriOkHSsMOvLlRQFnhkfYPWfx/OkwHwYDVR0j BBgwFoAUk7SeqGWJOW9oeHUCDeTRfeJEzW4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MzJlNGY4Ni00OGU3LTQ4YzctYmE5MS1lMjU5NjgzNzhlOTUvMS85M0I0OUVBODY1 ODkzOTZGNjg3ODc1MDIwREU0RDE3REUyNDRDRDZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTNCNDlFQTg2NTg5Mzk2RjY4Nzg3NTAyMERFNEQxN0RFMjQ0 Q0Q2RS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczMmU0Zjg2LTQ4ZTctNDhjNy1i YTkxLWUyNTk2ODM3OGU5NS8xLzMyMzAzMDMxM2E2NDY2MzMzYTM1NjI2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzAzODMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 81vAMA0GCSqGSIb3DQEBCwUAA4IBAQAeb6JJue8OyRs+7Als3oEZ+qow5T1TwmiE PZ6ZUrTiCJJXBaAreqFxTfuQ0dPhisv+3fDLd7UCCgNI/PvVIRERYCNnVU6RJnwo gzl13J/fuFU+1lYFpsf/yfxcSHLaTqRH7vqbUDufinA+bwP43SuCAKYB3Z9vV3XL JOXu1hL3x0CWrn4fbQuVx0yJCi4td9z55HpYjIw4prnl8Byzq7DL+2MPQE/docXj qXNM1kZhqTY1JNWV25TGe5iLurqs8holCOsv4g9xdSn3QwKI5HaZ60S2DfRGwcwS jQrVKTIF7XVs5P+5rp4emCLT8Bjx17j/nbtdUPRX+634h93rQU+W -----END CERTIFICATE-----Generated at Wed Dec 3 16:51:15 2025 by rpki-client