This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626163613a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a626163613a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: TTh2GTDjmWSaoJl188YHUmBX+BSZHYyGpQm/zpjZNWw= Subject key identifier: 08:4F:06:9C:FF:DF:9A:31:E9:46:AD:8A:DE:AA:94:A4:6E:29:B9:51 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 15EAA157A626ED1F568714C2D9E619BC4B3080BC Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626163613a3a2f34382d3438203d3e20313336303838.roa Signing time: Sat 17 May 2025 04:00:01 +0000 ROA not before: Sat 17 May 2025 03:55:01 +0000 ROA not after: Sat 16 May 2026 04:00:01 +0000 asID: 136088 IP address blocks: 2400:d940:baca::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 04:36:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:ea:a1:57:a6:26:ed:1f:56:87:14:c2:d9:e6:19:bc:4b:30:80:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: May 17 03:55:01 2025 GMT Not After : May 16 04:00:01 2026 GMT Subject: CN=084F069CFFDF9A31E946AD8ADEAA94A46E29B951 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:77:2d:4a:39:d0:4b:c5:68:98:84:39:85:29: ec:b5:ba:91:4d:c9:c0:74:cd:ec:c8:66:3c:27:c4: 76:20:ca:71:6f:e0:fa:ce:4c:71:0e:ee:4b:5f:79: 75:93:16:78:57:af:46:3b:a3:15:88:c9:57:4f:8b: a9:ec:73:d4:5c:3a:0d:d4:e9:5b:1f:02:7b:80:e4: f1:3a:6e:68:20:ab:89:80:c1:ad:79:f1:e9:30:df: 0e:5c:c5:de:36:2b:bf:eb:be:14:e6:d6:1c:02:00: 7c:7a:3b:82:7b:7c:e9:9a:3c:3d:46:c9:f9:74:84: 5b:e4:f9:e9:86:c6:2e:10:46:ce:36:bc:c9:38:04: a8:33:42:e7:cc:2f:bd:35:62:b1:ec:2e:77:69:20: 64:64:f1:74:93:9c:15:17:37:41:4d:76:aa:b6:e8: 3e:6f:db:7f:db:01:da:ec:1e:c5:e7:7d:4c:d3:fe: 23:0d:c1:43:11:cf:a4:a6:ee:f3:ec:e6:c4:f2:17: cb:9c:c0:02:4f:47:d1:72:33:39:69:d0:73:1f:61: 8a:b3:24:08:c4:16:83:ce:e7:b0:01:2c:b2:9e:4c: 1c:e2:48:74:43:7b:21:03:8f:77:57:4d:76:f4:2e: fc:9b:44:7b:93:8c:fd:0b:cf:7f:47:a9:b9:2a:fa: ba:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:4F:06:9C:FF:DF:9A:31:E9:46:AD:8A:DE:AA:94:A4:6E:29:B9:51 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626163613a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:baca::/48 Signature Algorithm: sha256WithRSAEncryption 3e:da:f6:77:4c:3b:b6:2a:01:e3:1d:5c:8c:ef:9c:c8:40:b2: a6:08:71:c6:59:73:b2:91:71:6c:8e:15:34:d6:99:2e:25:f4: be:57:06:d6:56:70:27:87:3e:7a:b4:43:d9:fd:dd:4e:3f:e4: 24:62:f9:93:e8:0d:db:87:95:eb:11:b7:71:ce:ab:1d:30:2a: 56:98:4f:cb:65:1e:eb:ad:3c:63:5f:f3:66:f6:5d:7d:4b:b6: 85:99:db:08:7b:94:e1:74:e2:ba:fb:27:7a:19:be:9d:30:c1: c8:18:55:47:aa:84:e0:29:b1:d7:56:b1:64:15:42:05:df:42: 7f:e2:87:aa:a9:ff:da:6c:e1:42:1f:b9:fc:50:91:56:01:23: 01:06:49:1e:aa:8d:80:ec:c0:0b:d4:4b:e0:28:57:f9:bd:1d: 19:9f:3a:a1:e0:34:92:0b:f2:eb:59:88:76:2d:0f:7a:0c:91: 57:6f:9a:37:69:0b:5b:9a:81:e1:5e:ca:17:67:e4:07:4d:37: c9:13:69:80:4a:57:2a:17:c4:f9:75:24:4d:3a:40:aa:79:a0: 05:a9:54:7f:78:78:06:5f:e3:47:42:de:29:24:64:dc:ca:e8: fc:0e:dc:e1:78:99:32:db:3a:80:b5:6a:3f:58:8d:5a:0d:ec: b1:90:76:92 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUFeqhV6Ym7R9WhxTC2eYZvEswgLwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA1MTcwMzU1MDFaFw0yNjA1MTYwNDAwMDFaMDMxMTAvBgNV BAMTKDA4NEYwNjlDRkZERjlBMzFFOTQ2QUQ4QURFQUE5NEE0NkUyOUI5NTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCydy1KOdBLxWiYhDmFKey1upFN ycB0zezIZjwnxHYgynFv4PrOTHEO7ktfeXWTFnhXr0Y7oxWIyVdPi6nsc9RcOg3U 6VsfAnuA5PE6bmggq4mAwa158ekw3w5cxd42K7/rvhTm1hwCAHx6O4J7fOmaPD1G yfl0hFvk+emGxi4QRs42vMk4BKgzQufML701YrHsLndpIGRk8XSTnBUXN0FNdqq2 6D5v23/bAdrsHsXnfUzT/iMNwUMRz6Sm7vPs5sTyF8ucwAJPR9FyMzlp0HMfYYqz JAjEFoPO57ABLLKeTBziSHRDeyEDj3dXTXb0LvybRHuTjP0Lz39Hqbkq+rpZAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUCE8GnP/fmjHpRq2K3qqUpG4puVEwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjI2MTYzNjEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlAusowDQYJKoZIhvcNAQELBQADggEBAD7a9ndMO7YqAeMdXIzvnMhAsqYIccZZ c7KRcWyOFTTWmS4l9L5XBtZWcCeHPnq0Q9n93U4/5CRi+ZPoDduHlesRt3HOqx0w KlaYT8tlHuutPGNf82b2XX1LtoWZ2wh7lOF04rr7J3oZvp0wwcgYVUeqhOApsddW sWQVQgXfQn/ih6qp/9ps4UIfufxQkVYBIwEGSR6qjYDswAvUS+AoV/m9HRmfOqHg NJIL8utZiHYtD3oMkVdvmjdpC1uageFeyhdn5AdNN8kTaYBKVyoXxPl1JE06QKp5 oAWpVH94eAZf40dC3ikkZNzK6PwO3OF4mTLbOoC1aj9YjVoN7LGQdpI= -----END CERTIFICATE-----Generated at Wed Dec 3 16:36:19 2025 by rpki-client