This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/323030313a6466303a6130303a3a2f34382d3438203d3e20313334363430.roa File: 323030313a6466303a6130303a3a2f34382d3438203d3e20313334363430.roa (raw, json) Hash identifier: BDD90sSQsBf6TcZNY5H5fSy8FBCNfWqRzrbG2rv5UwQ= Subject key identifier: B3:CB:53:E2:59:8A:2B:45:80:F8:DE:68:A6:7E:53:B7:56:A2:B3:D1 Certificate issuer: /CN=A075EFE65C596438427C6A22E60EB0A01ADEDA8A Certificate serial: 01F5791D741D078A2BB1246AC6E06B5E846CBC82 Authority key identifier: A0:75:EF:E6:5C:59:64:38:42:7C:6A:22:E6:0E:B0:A0:1A:DE:DA:8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A075EFE65C596438427C6A22E60EB0A01ADEDA8A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/323030313a6466303a6130303a3a2f34382d3438203d3e20313334363430.roa Signing time: Fri 17 Oct 2025 04:00:01 +0000 ROA not before: Fri 17 Oct 2025 03:55:01 +0000 ROA not after: Fri 16 Oct 2026 04:00:01 +0000 asID: 134640 IP address blocks: 2001:df0:a00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/A075EFE65C596438427C6A22E60EB0A01ADEDA8A.crl rsync://repo-rpki.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/A075EFE65C596438427C6A22E60EB0A01ADEDA8A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A075EFE65C596438427C6A22E60EB0A01ADEDA8A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 19:14:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:f5:79:1d:74:1d:07:8a:2b:b1:24:6a:c6:e0:6b:5e:84:6c:bc:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A075EFE65C596438427C6A22E60EB0A01ADEDA8A Validity Not Before: Oct 17 03:55:01 2025 GMT Not After : Oct 16 04:00:01 2026 GMT Subject: CN=B3CB53E2598A2B4580F8DE68A67E53B756A2B3D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:de:27:7e:56:14:a2:73:29:cb:c3:8b:db:55: 93:f9:43:c0:e1:cf:f6:5a:ad:64:ba:da:49:dd:8d: 9d:71:ee:4a:b3:f6:52:1d:fb:b6:f6:d9:7a:85:19: 0b:b4:ba:a2:1e:2c:37:c7:41:d3:88:ce:19:bc:6b: 7a:c1:ff:4b:b1:a2:de:6a:65:7e:7d:64:9f:80:d9: 1d:a6:96:8a:65:5b:dc:81:fe:d6:fb:d6:bc:ac:c8: 36:16:2d:d5:cb:66:4c:48:d8:6b:09:44:6e:bd:d2: e4:4a:4a:27:72:a2:86:0f:a5:d0:e4:1c:02:ad:0b: d9:7f:65:9c:ad:df:85:c7:2f:20:74:4e:a1:89:4b: d2:b1:ed:58:44:23:c6:06:80:a4:35:f7:35:8c:8c: cc:be:c0:be:3b:6d:fd:f8:d8:b7:13:95:d4:e9:d2: 6e:82:7b:c6:1c:7c:ec:1e:9f:97:4d:ce:05:84:4d: 4c:02:23:37:cd:3b:90:c9:56:3c:d8:1c:52:e5:e4: 90:70:14:03:1f:d9:f4:58:bf:3c:78:ec:af:87:ca: 5c:0f:2f:fa:cb:ac:32:11:9a:3c:e9:69:5f:4c:63: fd:2c:e2:c1:c5:5f:84:8c:dd:eb:1a:ac:10:ce:0c: 7e:ae:59:a1:56:3c:e3:21:df:d9:c0:b1:9e:b4:0e: 92:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:CB:53:E2:59:8A:2B:45:80:F8:DE:68:A6:7E:53:B7:56:A2:B3:D1 X509v3 Authority Key Identifier: keyid:A0:75:EF:E6:5C:59:64:38:42:7C:6A:22:E6:0E:B0:A0:1A:DE:DA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/A075EFE65C596438427C6A22E60EB0A01ADEDA8A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A075EFE65C596438427C6A22E60EB0A01ADEDA8A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/323030313a6466303a6130303a3a2f34382d3438203d3e20313334363430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:a00::/48 Signature Algorithm: sha256WithRSAEncryption 95:df:2b:c8:80:3c:7e:b3:55:9b:8b:a2:62:d8:68:7a:01:a3: 02:cf:88:2a:91:fd:2d:8d:49:da:fb:a0:93:10:b3:b3:58:0f: 4e:7f:9a:b1:8e:51:c6:c3:02:48:49:e3:9c:ac:af:2d:79:77: f8:03:d0:f4:fc:df:ac:ef:25:f7:3b:86:a1:45:f1:58:40:d6: 57:99:e8:74:22:dd:f5:7c:c1:eb:a9:75:d7:d5:41:e2:f9:09: 10:b4:a1:7e:83:ce:b8:8f:7d:7c:b1:5a:cc:76:4f:29:47:08: f0:e9:44:a0:32:4c:7b:7f:1f:a2:c8:f5:c5:06:93:8c:91:46: 5d:e3:cf:85:ea:7f:62:72:c5:f5:65:48:0e:8c:ef:29:63:8f: 70:d2:9f:5d:07:d1:f1:4f:b7:fb:54:d3:0d:82:10:ed:35:6e: 4e:b8:57:01:2c:ff:df:b9:cc:a1:6b:07:b6:f5:3a:55:48:28: 53:01:15:cf:cc:cf:e0:2e:90:42:97:43:ac:3f:4e:fe:31:07: e4:8d:30:47:31:6f:34:e0:7b:44:be:86:bd:3e:30:7b:1b:95: f3:e8:4b:db:7d:65:10:23:b0:b3:16:01:11:ee:5b:41:32:30: b3:f8:d6:85:37:1a:fd:bb:46:ca:b1:1c:b5:3d:87:72:cf:3a: a2:d1:73:ab -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUAfV5HXQdB4orsSRqxuBrXoRsvIIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA3NUVGRTY1QzU5NjQzODQyN0M2QTIyRTYwRUIwQTAx QURFREE4QTAeFw0yNTEwMTcwMzU1MDFaFw0yNjEwMTYwNDAwMDFaMDMxMTAvBgNV BAMTKEIzQ0I1M0UyNTk4QTJCNDU4MEY4REU2OEE2N0U1M0I3NTZBMkIzRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ3id+VhSicynLw4vbVZP5Q8Dh z/ZarWS62kndjZ1x7kqz9lId+7b22XqFGQu0uqIeLDfHQdOIzhm8a3rB/0uxot5q ZX59ZJ+A2R2mloplW9yB/tb71rysyDYWLdXLZkxI2GsJRG690uRKSidyooYPpdDk HAKtC9l/ZZyt34XHLyB0TqGJS9Kx7VhEI8YGgKQ19zWMjMy+wL47bf342LcTldTp 0m6Ce8YcfOwen5dNzgWETUwCIzfNO5DJVjzYHFLl5JBwFAMf2fRYvzx47K+HylwP L/rLrDIRmjzpaV9MY/0s4sHFX4SM3esarBDODH6uWaFWPOMh39nAsZ60DpLdAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUs8tT4lmKK0WA+N5opn5Tt1ais9EwHwYDVR0j BBgwFoAUoHXv5lxZZDhCfGoi5g6woBre2oowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDRkMDM5Ny1mZmEwLTQ5MDMtODA1Zi0wODQ1MjdiYzQzMGMvMC9BMDc1RUZFNjVD NTk2NDM4NDI3QzZBMjJFNjBFQjBBMDFBREVEQThBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA3NUVGRTY1QzU5NjQzODQyN0M2QTIyRTYwRUIwQTAxQURF REE4QS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwNGQwMzk3LWZmYTAtNDkwMy04 MDVmLTA4NDUyN2JjNDMwYy8wLzMyMzAzMDMxM2E2NDY2MzAzYTYxMzAzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNDM2MzQzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfAK ADANBgkqhkiG9w0BAQsFAAOCAQEAld8ryIA8frNVm4uiYthoegGjAs+IKpH9LY1J 2vugkxCzs1gPTn+asY5RxsMCSEnjnKyvLXl3+APQ9PzfrO8l9zuGoUXxWEDWV5no dCLd9XzB66l119VB4vkJELShfoPOuI99fLFazHZPKUcI8OlEoDJMe38fosj1xQaT jJFGXePPhep/YnLF9WVIDozvKWOPcNKfXQfR8U+3+1TTDYIQ7TVuTrhXASz/37nM oWsHtvU6VUgoUwEVz8zP4C6QQpdDrD9O/jEH5I0wRzFvNOB7RL6GvT4wexuV8+hL 231lECOwsxYBEe5bQTIws/jWhTca/btGyrEctT2Hcs86otFzqw== -----END CERTIFICATE-----Generated at Wed Dec 3 18:16:50 2025 by rpki-client