This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/323030313a6466323a353463303a3a2f34382d3438203d3e20313432333638.roa File: 323030313a6466323a353463303a3a2f34382d3438203d3e20313432333638.roa (raw, json) Hash identifier: L/T+m/yJ1Buc0w1osVIInT5sZ71zV7/a+aiKjsgJiso= Subject key identifier: 23:42:62:4C:05:41:C1:97:07:D8:0A:4A:59:1F:DB:9B:D4:C4:E6:AE Certificate issuer: /CN=3BA10823C279932D7573B930625CD2884433C744 Certificate serial: 11905E2EDAC374751111082ABDA991A6C8962B63 Authority key identifier: 3B:A1:08:23:C2:79:93:2D:75:73:B9:30:62:5C:D2:88:44:33:C7:44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA10823C279932D7573B930625CD2884433C744.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/323030313a6466323a353463303a3a2f34382d3438203d3e20313432333638.roa Signing time: Sat 31 Jan 2026 08:00:00 +0000 ROA not before: Sat 31 Jan 2026 07:55:00 +0000 ROA not after: Sat 30 Jan 2027 08:00:00 +0000 asID: 142368 IP address blocks: 2001:df2:54c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3BA10823C279932D7573B930625CD2884433C744.crl rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3BA10823C279932D7573B930625CD2884433C744.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA10823C279932D7573B930625CD2884433C744.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Feb 2026 20:22:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:90:5e:2e:da:c3:74:75:11:11:08:2a:bd:a9:91:a6:c8:96:2b:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BA10823C279932D7573B930625CD2884433C744 Validity Not Before: Jan 31 07:55:00 2026 GMT Not After : Jan 30 08:00:00 2027 GMT Subject: CN=2342624C0541C19707D80A4A591FDB9BD4C4E6AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4c:e6:92:ab:6f:c0:08:0b:9f:4b:68:8c:ad: c4:d0:7a:d3:e1:ec:a5:b3:84:d7:a4:25:c0:d2:7d: e2:0c:83:34:ba:bc:a8:6a:98:f4:62:6e:3e:bb:8b: e2:62:50:19:dc:bb:c5:4d:49:75:12:3f:e9:ab:34: 60:49:54:1c:e5:c2:f3:e4:95:a5:04:26:f7:da:61: d6:9b:19:1c:a0:0c:f5:cb:73:35:fe:ad:3b:19:3a: f1:e6:29:17:d5:a9:09:12:db:81:5e:63:90:5e:5e: c7:2f:1b:25:c0:aa:9a:70:42:ed:b2:0e:d8:b3:ca: a3:0a:36:85:55:32:5e:e6:98:16:07:34:3a:61:e7: be:a8:48:f9:65:fb:f5:a0:0d:1f:c8:e8:ad:8b:bb: 91:aa:3a:fb:46:10:90:55:ad:e7:14:d8:fc:76:b1: b1:71:22:9c:38:53:39:85:35:58:87:5c:7c:bd:9c: 76:df:3d:f4:21:56:21:a1:03:64:98:c6:7c:58:fb: 9f:1d:53:3c:7f:0b:cb:2a:fb:dc:3b:53:71:82:49: d2:87:19:ff:25:7d:9e:8d:4e:42:35:c0:8e:07:e1: b6:33:7e:0d:0a:73:b6:4a:bc:90:15:97:7e:99:44: 1c:e2:ef:f9:af:3d:52:90:cd:69:dd:4c:ca:2b:e4: ab:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:42:62:4C:05:41:C1:97:07:D8:0A:4A:59:1F:DB:9B:D4:C4:E6:AE X509v3 Authority Key Identifier: keyid:3B:A1:08:23:C2:79:93:2D:75:73:B9:30:62:5C:D2:88:44:33:C7:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3BA10823C279932D7573B930625CD2884433C744.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA10823C279932D7573B930625CD2884433C744.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/323030313a6466323a353463303a3a2f34382d3438203d3e20313432333638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:54c0::/48 Signature Algorithm: sha256WithRSAEncryption 78:6b:73:6c:5e:1d:d6:73:ea:1f:dd:6c:e7:fc:f8:1b:60:07: 6f:ea:5f:f5:ca:aa:c9:15:be:7a:22:7c:74:76:3a:d2:2b:21: fb:ad:2d:ca:7b:51:c1:d7:63:a7:18:22:98:ca:28:e5:30:a8: ac:79:13:94:a7:10:b3:ee:0f:75:01:c9:3d:07:af:a5:26:e0: f5:72:a9:1d:4d:fe:15:e6:c8:6e:0c:f6:a1:72:df:fe:c2:e7: 82:01:01:43:81:38:6e:c2:a3:c4:20:8e:ed:9f:57:58:c8:e3: 33:38:8e:bf:91:46:b3:60:12:ae:5c:01:8f:41:dc:63:d9:56: 7c:b1:96:38:64:11:ee:e3:ed:92:ca:26:db:6f:b9:06:3a:75: a9:8c:20:e5:d2:80:18:37:39:f6:65:83:4d:d4:db:7d:90:c6: e1:ec:6f:23:e6:1e:58:93:11:fe:49:db:11:81:d5:da:d2:97: 6d:6b:4d:8f:7a:d6:fe:31:db:71:cb:62:2e:07:a7:d6:82:25: 88:44:a6:89:5c:96:65:4a:ed:f9:1e:3d:9f:28:19:75:7f:44: fc:f8:ae:d3:db:f1:51:21:18:d2:d9:83:75:af:1f:c3:6b:51: 05:38:3d:8d:7b:9a:60:b3:c2:81:3f:40:69:da:28:75:d1:b6: a5:8c:00:c8 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUEZBeLtrDdHUREQgqvamRpsiWK2MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0JBMTA4MjNDMjc5OTMyRDc1NzNCOTMwNjI1Q0QyODg0 NDMzQzc0NDAeFw0yNjAxMzEwNzU1MDBaFw0yNzAxMzAwODAwMDBaMDMxMTAvBgNV BAMTKDIzNDI2MjRDMDU0MUMxOTcwN0Q4MEE0QTU5MUZEQjlCRDRDNEU2QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNTOaSq2/ACAufS2iMrcTQetPh 7KWzhNekJcDSfeIMgzS6vKhqmPRibj67i+JiUBncu8VNSXUSP+mrNGBJVBzlwvPk laUEJvfaYdabGRygDPXLczX+rTsZOvHmKRfVqQkS24FeY5BeXscvGyXAqppwQu2y DtizyqMKNoVVMl7mmBYHNDph576oSPll+/WgDR/I6K2Lu5GqOvtGEJBVrecU2Px2 sbFxIpw4UzmFNViHXHy9nHbfPfQhViGhA2SYxnxY+58dUzx/C8sq+9w7U3GCSdKH Gf8lfZ6NTkI1wI4H4bYzfg0Kc7ZKvJAVl36ZRBzi7/mvPVKQzWndTMor5Ku9AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUI0JiTAVBwZcH2ApKWR/bm9TE5q4wHwYDVR0j BBgwFoAUO6EII8J5ky11c7kwYlzSiEQzx0QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MmQ0OTE3OS00ZDhiLTRkMmQtYWJmNC00MzIzMWRlYjViMDEvMC8zQkExMDgyM0My Nzk5MzJENzU3M0I5MzA2MjVDRDI4ODQ0MzNDNzQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0JBMTA4MjNDMjc5OTMyRDc1NzNCOTMwNjI1Q0QyODg0NDMz Qzc0NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyZDQ5MTc5LTRkOGItNGQyZC1h YmY0LTQzMjMxZGViNWIwMS8wLzMyMzAzMDMxM2E2NDY2MzIzYTM1MzQ2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMyMzMzNjM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8lTAMA0GCSqGSIb3DQEBCwUAA4IBAQB4a3NsXh3Wc+of3Wzn/PgbYAdv6l/1yqrJ Fb56Inx0djrSKyH7rS3Ke1HB12OnGCKYyijlMKiseROUpxCz7g91Ack9B6+lJuD1 cqkdTf4V5shuDPahct/+wueCAQFDgThuwqPEII7tn1dYyOMzOI6/kUazYBKuXAGP Qdxj2VZ8sZY4ZBHu4+2Syibbb7kGOnWpjCDl0oAYNzn2ZYNN1Nt9kMbh7G8j5h5Y kxH+SdsRgdXa0pdta02Petb+Mdtxy2IuB6fWgiWIRKaJXJZlSu35Hj2fKBl1f0T8 +K7T2/FRIRjS2YN1rx/Da1EFOD2Ne5pgs8KBP0Bp2ih10baljADI -----END CERTIFICATE-----Generated at Mon Feb 2 13:04:54 2026 by rpki-client