This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3930303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a3930303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: Qw0+ysqj1KVf5j9DqaI7K+MxmgUrT3GSkvMgHW/v67k= Subject key identifier: F5:F7:6F:3E:8B:EF:B9:08:4D:E0:6D:FB:6A:6B:36:6A:49:82:85:08 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 2E2606FD4DC88131E3853F4524410502E3C1D103 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3930303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 02 Jun 2025 02:03:24 +0000 ROA not before: Mon 02 Jun 2025 01:58:24 +0000 ROA not after: Mon 01 Jun 2026 02:03:24 +0000 asID: 136088 IP address blocks: 2400:d940:900::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 04:36:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:26:06:fd:4d:c8:81:31:e3:85:3f:45:24:41:05:02:e3:c1:d1:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 2 01:58:24 2025 GMT Not After : Jun 1 02:03:24 2026 GMT Subject: CN=F5F76F3E8BEFB9084DE06DFB6A6B366A49828508 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:83:40:2a:52:e5:74:c5:50:94:88:06:17:b4: 3f:3a:91:02:59:7e:6a:bc:5c:1b:16:49:8e:b7:ea: 3d:6f:b4:90:79:eb:23:52:71:77:d4:7f:69:f6:a4: dd:c2:08:d4:33:ca:de:8c:f3:7b:08:8a:7d:dd:c8: 43:51:ae:4c:77:72:50:4e:75:e7:bf:4c:6c:96:73: 39:f4:52:c2:e6:f9:b6:f2:36:ad:02:c1:39:e2:a8: 58:7d:b4:2d:94:56:fc:db:cb:70:25:e7:f5:40:be: dc:4b:b4:cc:ab:c1:8e:e4:ff:b7:48:6f:85:db:fa: 19:6a:8b:20:85:06:63:90:25:24:9c:62:31:35:61: 1e:4c:9a:78:9c:8b:79:cc:29:55:ae:ca:39:06:40: 63:9e:c5:ab:e2:b0:fc:62:30:97:75:9e:9a:ec:18: aa:eb:15:61:1d:53:0e:e1:1d:af:67:6b:a9:80:69: 75:4e:12:85:f8:75:9d:e2:fa:e0:48:86:67:de:5e: f2:36:da:71:9e:f9:3f:de:94:7b:59:18:1e:49:db: 1e:66:8f:3a:7c:61:17:5f:8d:88:c4:36:ff:69:ea: 03:c1:b4:ff:26:87:3e:b9:0c:3c:32:11:8f:0f:f9: 86:be:e4:9a:95:90:11:0a:af:bd:82:5c:71:6f:c3: 42:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:F7:6F:3E:8B:EF:B9:08:4D:E0:6D:FB:6A:6B:36:6A:49:82:85:08 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3930303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:900::/48 Signature Algorithm: sha256WithRSAEncryption cd:7d:68:a6:f3:08:29:5c:f6:fc:6b:5b:ab:63:9c:50:22:cc: c0:00:3d:5a:43:6a:e1:14:38:58:ba:b6:c9:8a:62:ed:8f:c5: 15:da:11:2e:75:c2:9f:f9:7f:a1:38:be:1b:3d:dc:1f:84:a1: a0:e7:e0:de:bc:f5:94:9a:f0:71:d8:9b:6d:b0:4c:f1:8e:58: af:be:fd:a6:73:8e:9f:a6:ac:ed:d0:72:47:4f:4f:16:1b:d5: dc:52:07:f2:63:c2:d5:24:4b:7b:31:70:7b:01:83:ef:f5:3f: 85:f9:ef:57:53:d3:ba:df:ab:54:b1:5b:0a:55:55:26:78:b5: 46:67:c8:27:aa:a7:79:8f:85:25:19:99:cd:97:a1:18:01:ba: ee:15:7d:3d:ed:a4:77:2e:30:02:25:67:49:b3:c4:cb:64:e8: f5:bf:f7:ca:f8:9d:44:7e:81:6f:f2:e7:02:7a:b9:91:2d:0b: 9e:f3:8f:56:a7:3d:6c:20:08:8d:f1:fc:a0:a3:e7:fb:40:1c: 42:ad:9c:26:c3:e9:b2:81:dd:af:2d:ac:50:20:f6:58:1a:03: 4c:2b:56:0c:dc:7c:02:bb:c8:d0:0d:8f:a2:27:65:2e:6c:55: cb:ff:0c:97:2e:1e:ba:9b:62:e9:a0:97:f2:f0:42:7a:ac:4b: 57:df:73:24 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIULiYG/U3IgTHjhT9FJEEFAuPB0QMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA2MDIwMTU4MjRaFw0yNjA2MDEwMjAzMjRaMDMxMTAvBgNV BAMTKEY1Rjc2RjNFOEJFRkI5MDg0REUwNkRGQjZBNkIzNjZBNDk4Mjg1MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdg0AqUuV0xVCUiAYXtD86kQJZ fmq8XBsWSY636j1vtJB56yNScXfUf2n2pN3CCNQzyt6M83sIin3dyENRrkx3clBO dee/TGyWczn0UsLm+bbyNq0CwTniqFh9tC2UVvzby3Al5/VAvtxLtMyrwY7k/7dI b4Xb+hlqiyCFBmOQJSScYjE1YR5Mmnici3nMKVWuyjkGQGOexavisPxiMJd1nprs GKrrFWEdUw7hHa9na6mAaXVOEoX4dZ3i+uBIhmfeXvI22nGe+T/elHtZGB5J2x5m jzp8YRdfjYjENv9p6gPBtP8mhz65DDwyEY8P+Ya+5JqVkBEKr72CXHFvw0KpAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU9fdvPovvuQhN4G37ams2akmChQgwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzkzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzODM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADZ QAkAMA0GCSqGSIb3DQEBCwUAA4IBAQDNfWim8wgpXPb8a1urY5xQIszAAD1aQ2rh FDhYurbJimLtj8UV2hEudcKf+X+hOL4bPdwfhKGg5+DevPWUmvBx2JttsEzxjliv vv2mc46fpqzt0HJHT08WG9XcUgfyY8LVJEt7MXB7AYPv9T+F+e9XU9O636tUsVsK VVUmeLVGZ8gnqqd5j4UlGZnNl6EYAbruFX097aR3LjACJWdJs8TLZOj1v/fK+J1E foFv8ucCermRLQue849Wpz1sIAiN8fygo+f7QBxCrZwmw+mygd2vLaxQIPZYGgNM K1YM3HwCu8jQDY+iJ2UubFXL/wyXLh66m2LpoJfy8EJ6rEtX33Mk -----END CERTIFICATE-----Generated at Wed Dec 3 16:37:04 2025 by rpki-client