This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a393937323a3a2f34382d3438203d3e20313339393732.roa File: 323430353a633434303a393937323a3a2f34382d3438203d3e20313339393732.roa (raw, json) Hash identifier: /Lq8uKWD+CacJahidfmR4A9rz6j7OmtaYT2A4cqn4+U= Subject key identifier: F4:84:FD:28:F4:18:8E:7F:2A:1F:15:DE:92:6F:59:8F:1E:60:53:26 Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 01562F5D8BC6F555A28B5982A27992455E509B1A Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a393937323a3a2f34382d3438203d3e20313339393732.roa Signing time: Mon 15 Dec 2025 09:02:33 +0000 ROA not before: Mon 15 Dec 2025 08:57:33 +0000 ROA not after: Mon 14 Dec 2026 09:02:33 +0000 asID: 139972 IP address blocks: 2405:c440:9972::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Dec 2025 15:17:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:56:2f:5d:8b:c6:f5:55:a2:8b:59:82:a2:79:92:45:5e:50:9b:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Dec 15 08:57:33 2025 GMT Not After : Dec 14 09:02:33 2026 GMT Subject: CN=F484FD28F4188E7F2A1F15DE926F598F1E605326 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:5d:07:ff:0e:e5:b4:64:84:69:c8:0a:6d:1a: be:27:09:0b:48:8f:1b:98:a4:83:a8:4b:66:5e:90: 03:f8:1e:0c:44:1d:12:4a:4e:b5:56:ed:b4:c4:c1: 84:7a:84:6a:0c:fa:36:5e:48:e6:c3:da:5c:3a:7f: 38:15:34:67:f0:a2:7e:35:cf:f3:ea:e2:ac:a5:91: a0:e5:fd:1c:0f:00:4d:ef:04:b0:e7:cd:2e:48:28: d9:90:5f:a7:f7:11:1b:73:b2:e2:5e:6e:1c:4a:4b: 14:29:f9:16:8c:04:ae:e4:78:96:b8:a1:99:40:40: 0e:24:38:7a:a4:0b:e2:37:d3:87:00:e7:f8:10:3f: 23:88:2e:e7:f1:a9:ce:24:5c:dd:b2:57:74:57:ce: d8:fc:13:ed:24:46:8f:30:a3:8a:a7:30:75:a8:12: 7a:ac:6a:3a:e7:6a:0d:fc:df:0c:d9:d2:fb:8d:42: ee:dd:5b:3a:86:ad:23:21:db:26:a7:17:5e:b7:0e: 50:d7:0c:de:89:f6:7c:ef:de:e7:5d:2c:fb:fd:ea: 76:22:08:24:47:be:f2:7f:64:41:09:fd:17:0d:d5: cc:a0:20:52:6c:b4:81:c5:60:b4:f0:84:6b:e2:87: 89:25:f8:63:47:b1:78:4b:52:e4:a0:a8:c0:13:b4: 1d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:84:FD:28:F4:18:8E:7F:2A:1F:15:DE:92:6F:59:8F:1E:60:53:26 X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/323430353a633434303a393937323a3a2f34382d3438203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c440:9972::/48 Signature Algorithm: sha256WithRSAEncryption 3a:4e:bb:93:f6:cf:1b:f1:fc:6a:ff:93:45:7d:e0:f9:5c:8b: c1:8c:cb:a3:d4:29:a3:09:64:0c:b2:d2:b0:d8:f4:cb:03:1d: af:18:29:83:c0:0e:0a:89:f3:62:16:19:0c:e6:fc:f0:bd:86: 00:54:d5:ad:9b:55:54:f9:fc:6d:23:ec:da:a0:6c:d5:c8:24: f3:dd:be:67:de:63:d6:fe:bd:37:3f:25:00:6f:85:90:e5:3b: dc:ec:53:ff:f9:86:12:d3:62:f5:75:dc:18:80:2e:30:30:97: d4:61:7f:6b:95:c0:e1:11:57:8f:ce:b1:33:d7:0e:a3:e6:38: 90:e8:6f:3f:c6:97:5c:43:0c:e8:b0:67:6c:89:69:69:e2:93: e8:72:1e:f7:ce:df:52:f0:1d:66:6e:f4:83:84:fa:42:a1:7d: 15:60:58:af:21:dc:00:20:d9:a8:6b:c2:97:7a:dc:90:89:cf: fa:f4:9e:4c:60:f1:1e:21:69:5e:9a:b1:7a:9a:97:cd:d3:9c: 6f:bb:81:ff:0d:da:55:24:92:9c:56:d9:75:18:c1:4b:58:e4: c3:d8:19:9d:4d:b9:94:ee:77:b6:20:db:a3:6d:2f:90:5d:ab: bb:2d:85:a5:d2:23:45:f2:48:d2:0a:d7:d4:4e:31:ec:7b:fb: f8:ac:85:f8 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUAVYvXYvG9VWii1mConmSRV5QmxowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNTEyMTUwODU3MzNaFw0yNjEyMTQwOTAyMzNaMDMxMTAvBgNV BAMTKEY0ODRGRDI4RjQxODhFN0YyQTFGMTVERTkyNkY1OThGMUU2MDUzMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaXQf/DuW0ZIRpyAptGr4nCQtI jxuYpIOoS2ZekAP4HgxEHRJKTrVW7bTEwYR6hGoM+jZeSObD2lw6fzgVNGfwon41 z/Pq4qylkaDl/RwPAE3vBLDnzS5IKNmQX6f3ERtzsuJebhxKSxQp+RaMBK7keJa4 oZlAQA4kOHqkC+I304cA5/gQPyOILufxqc4kXN2yV3RXztj8E+0kRo8wo4qnMHWo Enqsajrnag383wzZ0vuNQu7dWzqGrSMh2yanF163DlDXDN6J9nzv3uddLPv96nYi CCRHvvJ/ZEEJ/RcN1cygIFJstIHFYLTwhGvih4kl+GNHsXhLUuSgqMATtB1HAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU9IT9KPQYjn8qHxXekm9Zjx5gUyYwHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMyMzQzMDM1M2E2MzM0MzQzMDNhMzkzOTM3MzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BcRAmXIwDQYJKoZIhvcNAQELBQADggEBADpOu5P2zxvx/Gr/k0V94Plci8GMy6PU KaMJZAyy0rDY9MsDHa8YKYPADgqJ82IWGQzm/PC9hgBU1a2bVVT5/G0j7NqgbNXI JPPdvmfeY9b+vTc/JQBvhZDlO9zsU//5hhLTYvV13BiALjAwl9Rhf2uVwOERV4/O sTPXDqPmOJDobz/Gl1xDDOiwZ2yJaWnik+hyHvfO31LwHWZu9IOE+kKhfRVgWK8h 3AAg2ahrwpd63JCJz/r0nkxg8R4haV6asXqal83TnG+7gf8N2lUkkpxW2XUYwUtY 5MPYGZ1NuZTud7Yg26NtL5Bdq7sthaXSI0XySNIK19ROMex7+/ishfg= -----END CERTIFICATE-----Generated at Mon Dec 15 16:53:42 2025 by rpki-client