This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/323030313a6466303a6134303a3a2f34382d3438203d3e20313439333532.roa File: 323030313a6466303a6134303a3a2f34382d3438203d3e20313439333532.roa (raw, json) Hash identifier: WvA2JFm1OCiObbV4owSHIvkJpV0e6REQe/TCSDG98G4= Subject key identifier: 53:17:2E:84:5E:DD:21:37:11:9B:13:B1:D1:6C:B1:41:7F:DB:4A:7D Certificate issuer: /CN=4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623 Certificate serial: 06248A9076931E9EB0DC440219ECC4DDFA50AF2E Authority key identifier: 4E:2A:A9:ED:35:DB:0F:27:6A:5F:F0:D4:02:0D:BE:A1:3E:04:C6:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/323030313a6466303a6134303a3a2f34382d3438203d3e20313439333532.roa Signing time: Mon 24 Nov 2025 03:00:01 +0000 ROA not before: Mon 24 Nov 2025 02:55:01 +0000 ROA not after: Mon 23 Nov 2026 03:00:01 +0000 asID: 149352 IP address blocks: 2001:df0:a40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.crl rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:24:8a:90:76:93:1e:9e:b0:dc:44:02:19:ec:c4:dd:fa:50:af:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623 Validity Not Before: Nov 24 02:55:01 2025 GMT Not After : Nov 23 03:00:01 2026 GMT Subject: CN=53172E845EDD2137119B13B1D16CB1417FDB4A7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:65:90:21:0a:dd:21:f0:8a:88:32:88:25:06: ac:14:a8:0a:da:7a:e3:81:96:d9:d2:97:9b:5a:33: a0:07:e0:e2:89:12:f7:24:58:80:1c:7f:84:9d:c1: 40:bd:1b:fb:9a:bf:5c:c0:9a:fa:ef:6c:6d:99:a9: 74:3c:a8:19:71:8b:7e:1e:51:78:97:f4:36:39:6b: c8:ce:14:56:65:59:45:fb:de:ed:c5:89:1f:13:5e: e1:28:6b:12:8a:73:c2:9c:71:56:0c:b5:ff:3f:e9: ca:5c:82:3c:b8:a6:ae:46:0c:cb:6a:c0:52:78:94: 1e:8a:ea:ca:40:e2:26:0e:60:19:86:30:45:77:65: 54:6c:4d:8d:1c:62:9a:be:4c:6e:b3:03:bd:62:36: 0a:7c:c8:9b:5b:64:cd:47:e9:83:64:09:5b:15:25: f7:09:52:64:0e:cc:9c:c4:8b:c5:56:42:b3:e2:21: 5f:b5:f0:83:23:2c:5b:43:58:9e:60:ba:2f:f5:1a: c4:9c:fe:74:f7:a8:a6:a2:38:96:b6:be:3a:0a:96: dc:12:94:19:77:a4:23:ef:fd:b9:fa:84:ba:65:a0: 46:fd:8a:76:59:46:30:87:1f:48:59:12:c1:ae:ab: 71:9c:86:0e:e9:cd:78:cc:88:20:60:28:77:e7:a7: cf:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:17:2E:84:5E:DD:21:37:11:9B:13:B1:D1:6C:B1:41:7F:DB:4A:7D X509v3 Authority Key Identifier: keyid:4E:2A:A9:ED:35:DB:0F:27:6A:5F:F0:D4:02:0D:BE:A1:3E:04:C6:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E2AA9ED35DB0F276A5FF0D4020DBEA13E04C623.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9eab0a01-8ee4-4825-840d-112daef0aca8/0/323030313a6466303a6134303a3a2f34382d3438203d3e20313439333532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:a40::/48 Signature Algorithm: sha256WithRSAEncryption 83:81:a5:a5:a3:b8:43:95:47:de:2d:03:22:b3:42:5a:a4:25: 21:b6:2c:79:01:69:c3:26:db:f5:12:92:72:51:87:b4:14:e8: 2f:76:07:2e:f9:d2:24:7c:c6:af:b0:4a:a0:e5:d5:f7:b7:36: 91:c1:7d:c8:37:32:55:d7:7a:86:10:24:8d:21:0f:e4:b3:2e: 62:bc:aa:49:86:27:0c:38:2d:93:c9:1c:47:18:47:58:dc:69: 25:da:93:6c:1e:27:12:c6:ff:9e:a8:40:cc:3b:5b:30:ea:36: 56:ba:b9:12:40:d5:b4:1b:68:8f:cb:09:4c:99:32:1b:41:8e: e5:b7:03:24:3c:97:33:bd:65:58:88:c1:78:c1:0d:48:d7:5f: d1:5c:8a:80:22:95:83:24:7c:17:bb:fc:08:28:ad:ed:54:b7: 3b:d4:c7:dd:44:9d:1e:c5:3b:b4:d8:95:64:38:0b:a1:ca:a5: 59:73:22:73:df:fb:0e:5d:53:07:5a:cd:c2:4a:87:c2:56:13: f7:04:a6:0d:15:3b:7f:1b:63:cd:94:76:62:46:d1:70:e6:d8: 21:25:9b:58:43:34:ec:da:6f:8c:f6:ca:fe:57:71:1c:88:e5: d1:d3:04:22:80:8f:d8:a0:c9:a0:76:d8:ae:97:ef:c1:ff:2e: c7:87:30:80 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUBiSKkHaTHp6w3EQCGezE3fpQry4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEUyQUE5RUQzNURCMEYyNzZBNUZGMEQ0MDIwREJFQTEz RTA0QzYyMzAeFw0yNTExMjQwMjU1MDFaFw0yNjExMjMwMzAwMDFaMDMxMTAvBgNV BAMTKDUzMTcyRTg0NUVERDIxMzcxMTlCMTNCMUQxNkNCMTQxN0ZEQjRBN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+ZZAhCt0h8IqIMoglBqwUqAra euOBltnSl5taM6AH4OKJEvckWIAcf4SdwUC9G/uav1zAmvrvbG2ZqXQ8qBlxi34e UXiX9DY5a8jOFFZlWUX73u3FiR8TXuEoaxKKc8KccVYMtf8/6cpcgjy4pq5GDMtq wFJ4lB6K6spA4iYOYBmGMEV3ZVRsTY0cYpq+TG6zA71iNgp8yJtbZM1H6YNkCVsV JfcJUmQOzJzEi8VWQrPiIV+18IMjLFtDWJ5gui/1GsSc/nT3qKaiOJa2vjoKltwS lBl3pCPv/bn6hLploEb9inZZRjCHH0hZEsGuq3Gchg7pzXjMiCBgKHfnp89zAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUUxcuhF7dITcRmxOx0WyxQX/bSn0wHwYDVR0j BBgwFoAUTiqp7TXbDydqX/DUAg2+oT4ExiMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZWFiMGEwMS04ZWU0LTQ4MjUtODQwZC0xMTJkYWVmMGFjYTgvMC80RTJBQTlFRDM1 REIwRjI3NkE1RkYwRDQwMjBEQkVBMTNFMDRDNjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEUyQUE5RUQzNURCMEYyNzZBNUZGMEQ0MDIwREJFQTEzRTA0 QzYyMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllYWIwYTAxLThlZTQtNDgyNS04 NDBkLTExMmRhZWYwYWNhOC8wLzMyMzAzMDMxM2E2NDY2MzAzYTYxMzQzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzOTMzMzUzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfAK QDANBgkqhkiG9w0BAQsFAAOCAQEAg4GlpaO4Q5VH3i0DIrNCWqQlIbYseQFpwybb 9RKSclGHtBToL3YHLvnSJHzGr7BKoOXV97c2kcF9yDcyVdd6hhAkjSEP5LMuYryq SYYnDDgtk8kcRxhHWNxpJdqTbB4nEsb/nqhAzDtbMOo2Vrq5EkDVtBtoj8sJTJky G0GO5bcDJDyXM71lWIjBeMENSNdf0VyKgCKVgyR8F7v8CCit7VS3O9TH3USdHsU7 tNiVZDgLocqlWXMic9/7Dl1TB1rNwkqHwlYT9wSmDRU7fxtjzZR2YkbRcObYISWb WEM07NpvjPbK/ldxHIjl0dMEIoCP2KDJoHbYrpfvwf8ux4cwgA== -----END CERTIFICATE-----Generated at Wed Dec 3 14:58:32 2025 by rpki-client