This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/7b3eabb4-4db3-4373-a348-fb1ed7055651/0/323030313a6466333a356238303a3a2f34382d3438203d3e20313430333839.roa File: 323030313a6466333a356238303a3a2f34382d3438203d3e20313430333839.roa (raw, json) Hash identifier: 2Fp4Lwy8mON7FVeMJE/4PvZDu17XhYrM2gPfMF99PL4= Subject key identifier: A6:31:0A:2B:DC:60:5C:2D:BB:2F:64:B6:33:A6:AD:4D:83:5C:B2:49 Certificate issuer: /CN=5C413D56294D9D20E64978B7296A9DA893C32CAB Certificate serial: 27839BB942C1909AD1EA62A3C6FFEBA670F5DFF7 Authority key identifier: 5C:41:3D:56:29:4D:9D:20:E6:49:78:B7:29:6A:9D:A8:93:C3:2C:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C413D56294D9D20E64978B7296A9DA893C32CAB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b3eabb4-4db3-4373-a348-fb1ed7055651/0/323030313a6466333a356238303a3a2f34382d3438203d3e20313430333839.roa Signing time: Tue 09 Dec 2025 04:02:28 +0000 ROA not before: Tue 09 Dec 2025 03:57:28 +0000 ROA not after: Tue 08 Dec 2026 04:02:28 +0000 asID: 140389 IP address blocks: 2001:df3:5b80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b3eabb4-4db3-4373-a348-fb1ed7055651/0/5C413D56294D9D20E64978B7296A9DA893C32CAB.crl rsync://repo-rpki.idnic.net/repo/7b3eabb4-4db3-4373-a348-fb1ed7055651/0/5C413D56294D9D20E64978B7296A9DA893C32CAB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C413D56294D9D20E64978B7296A9DA893C32CAB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 18:55:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:83:9b:b9:42:c1:90:9a:d1:ea:62:a3:c6:ff:eb:a6:70:f5:df:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5C413D56294D9D20E64978B7296A9DA893C32CAB Validity Not Before: Dec 9 03:57:28 2025 GMT Not After : Dec 8 04:02:28 2026 GMT Subject: CN=A6310A2BDC605C2DBB2F64B633A6AD4D835CB249 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ea:f3:65:22:97:4a:0a:55:39:b9:4b:fc:17: d8:93:48:10:56:b1:e4:92:94:b1:d7:e5:8a:95:e7: 11:6e:11:c9:f0:e2:da:5c:96:da:47:d1:97:d8:e2: ca:25:ed:1d:85:aa:c2:cd:67:a8:7a:2b:bc:78:e7: d9:ab:14:3c:17:35:ac:c3:89:6c:49:92:72:8b:ed: 84:9d:d2:ad:00:08:ee:f2:1b:fe:60:83:99:25:24: bd:d7:f0:dd:c0:77:27:36:b4:0b:e7:23:2e:1b:6d: 1a:74:10:b2:52:16:3d:77:4f:0a:bc:1e:d2:34:ea: 5c:25:5c:f8:6a:f3:18:22:c8:2c:e0:25:4e:51:7a: ae:16:c8:ef:77:f5:1f:ce:f0:a7:f2:e6:7e:ff:b4: dd:cd:19:2d:ea:f8:03:d1:12:c1:22:5c:29:93:03: 54:a1:41:46:cc:c3:80:c4:b2:55:f9:77:e6:1a:a8: 45:d1:8c:07:e3:fa:12:95:56:95:a8:ff:55:39:96: fe:44:ff:40:3d:ee:f2:bb:86:e4:0c:1b:ad:2e:bf: 5f:a7:65:f2:5f:75:14:a3:86:7b:10:9b:56:be:b3: 2d:20:1c:0a:eb:e0:47:5b:73:93:be:ed:7a:88:24: 86:e7:a5:e2:72:02:49:bf:46:15:11:75:1a:24:bf: 2a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:31:0A:2B:DC:60:5C:2D:BB:2F:64:B6:33:A6:AD:4D:83:5C:B2:49 X509v3 Authority Key Identifier: keyid:5C:41:3D:56:29:4D:9D:20:E6:49:78:B7:29:6A:9D:A8:93:C3:2C:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b3eabb4-4db3-4373-a348-fb1ed7055651/0/5C413D56294D9D20E64978B7296A9DA893C32CAB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C413D56294D9D20E64978B7296A9DA893C32CAB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b3eabb4-4db3-4373-a348-fb1ed7055651/0/323030313a6466333a356238303a3a2f34382d3438203d3e20313430333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:5b80::/48 Signature Algorithm: sha256WithRSAEncryption 1e:81:1e:55:e2:31:41:41:62:5b:23:fd:f3:da:3e:a6:b2:93: 68:2e:35:80:5e:a9:4b:21:d6:6b:8c:ed:5d:8b:fb:07:4d:0b: 4a:b8:43:37:03:1a:20:55:fc:4c:20:f6:ea:6b:f3:b9:99:ad: a0:b7:fa:ba:b8:13:3b:a4:2c:02:35:f9:38:d7:46:f9:a3:32: 25:48:02:af:f7:c3:09:71:8d:fe:22:bc:9a:03:be:02:b2:a7: 5f:60:98:a4:6e:d3:35:17:10:a4:e7:f7:f7:11:a1:a3:7a:a0: 50:98:8f:98:ec:42:6e:1c:ba:7b:80:b6:94:01:12:9c:c6:5d: 42:7a:40:03:75:ef:69:33:1c:69:cd:cf:71:01:71:90:6e:0d: 7d:b7:dc:a0:5a:47:2d:88:37:0f:ce:45:97:b9:d8:80:bc:1d: fc:80:9b:28:a5:79:78:ce:6d:10:58:03:03:08:d6:34:06:95: 13:7b:48:ce:ee:e1:37:d0:89:85:f6:86:23:d7:21:eb:da:7d: 82:44:1f:de:fd:77:a1:53:9d:91:ec:b3:95:04:be:af:9d:1a: 08:be:b1:48:16:ea:b8:bc:68:4c:bc:1d:f0:c5:4b:64:b5:dd: 56:7b:1a:88:ec:ba:91:65:e6:47:0f:51:af:3f:66:99:b1:a0: 3b:cf:8c:a4 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJ4ObuULBkJrR6mKjxv/rpnD13/cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUM0MTNENTYyOTREOUQyMEU2NDk3OEI3Mjk2QTlEQTg5 M0MzMkNBQjAeFw0yNTEyMDkwMzU3MjhaFw0yNjEyMDgwNDAyMjhaMDMxMTAvBgNV BAMTKEE2MzEwQTJCREM2MDVDMkRCQjJGNjRCNjMzQTZBRDREODM1Q0IyNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX6vNlIpdKClU5uUv8F9iTSBBW seSSlLHX5YqV5xFuEcnw4tpcltpH0ZfY4sol7R2FqsLNZ6h6K7x459mrFDwXNazD iWxJknKL7YSd0q0ACO7yG/5gg5klJL3X8N3Adyc2tAvnIy4bbRp0ELJSFj13Twq8 HtI06lwlXPhq8xgiyCzgJU5Req4WyO939R/O8Kfy5n7/tN3NGS3q+APREsEiXCmT A1ShQUbMw4DEslX5d+YaqEXRjAfj+hKVVpWo/1U5lv5E/0A97vK7huQMG60uv1+n ZfJfdRSjhnsQm1a+sy0gHArr4Edbc5O+7XqIJIbnpeJyAkm/RhURdRokvypNAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUpjEKK9xgXC27L2S2M6atTYNcskkwHwYDVR0j BBgwFoAUXEE9VilNnSDmSXi3KWqdqJPDLKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjNlYWJiNC00ZGIzLTQzNzMtYTM0OC1mYjFlZDcwNTU2NTEvMC81QzQxM0Q1NjI5 NEQ5RDIwRTY0OTc4QjcyOTZBOURBODkzQzMyQ0FCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUM0MTNENTYyOTREOUQyMEU2NDk3OEI3Mjk2QTlEQTg5M0Mz MkNBQi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiM2VhYmI0LTRkYjMtNDM3My1h MzQ4LWZiMWVkNzA1NTY1MS8wLzMyMzAzMDMxM2E2NDY2MzMzYTM1NjIzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMwMzMzODM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 81uAMA0GCSqGSIb3DQEBCwUAA4IBAQAegR5V4jFBQWJbI/3z2j6mspNoLjWAXqlL IdZrjO1di/sHTQtKuEM3AxogVfxMIPbqa/O5ma2gt/q6uBM7pCwCNfk410b5ozIl SAKv98MJcY3+IryaA74CsqdfYJikbtM1FxCk5/f3EaGjeqBQmI+Y7EJuHLp7gLaU ARKcxl1CekADde9pMxxpzc9xAXGQbg19t9ygWkctiDcPzkWXudiAvB38gJsopXl4 zm0QWAMDCNY0BpUTe0jO7uE30ImF9oYj1yHr2n2CRB/e/XehU52R7LOVBL6vnRoI vrFIFuq4vGhMvB3wxUtktd1WexqI7LqRZeZHD1GvP2aZsaA7z4yk -----END CERTIFICATE-----Generated at Mon Dec 15 12:42:07 2025 by rpki-client