This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/323030313a6466303a623538303a3a2f34382d3438203d3e20313338383736.roa File: 323030313a6466303a623538303a3a2f34382d3438203d3e20313338383736.roa (raw, json) Hash identifier: a0pLp5FVIOKCyynC3nqEg0f7XooNhe6lSNrvEp9yAtY= Subject key identifier: 71:D5:F0:2D:67:4C:59:23:70:7E:BA:D2:9E:B2:73:E9:16:18:4D:6D Certificate issuer: /CN=456957B6E32ABD1576136BF4B39EC4CCAD972FCD Certificate serial: 55652DC9FA212BDF5A93459FE1E0779D8130BD6F Authority key identifier: 45:69:57:B6:E3:2A:BD:15:76:13:6B:F4:B3:9E:C4:CC:AD:97:2F:CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/323030313a6466303a623538303a3a2f34382d3438203d3e20313338383736.roa Signing time: Thu 13 Nov 2025 09:02:35 +0000 ROA not before: Thu 13 Nov 2025 08:57:35 +0000 ROA not after: Thu 12 Nov 2026 09:02:35 +0000 asID: 138876 IP address blocks: 2001:df0:b580::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.crl rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 16:08:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:65:2d:c9:fa:21:2b:df:5a:93:45:9f:e1:e0:77:9d:81:30:bd:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=456957B6E32ABD1576136BF4B39EC4CCAD972FCD Validity Not Before: Nov 13 08:57:35 2025 GMT Not After : Nov 12 09:02:35 2026 GMT Subject: CN=71D5F02D674C5923707EBAD29EB273E916184D6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:f7:04:71:93:58:68:54:75:8f:97:da:a4:ea: 3b:fc:d7:2e:93:47:1a:ac:d2:ec:11:a0:75:f1:66: 6d:8b:75:9b:c9:f8:ce:23:04:e7:98:f5:3b:90:1c: b4:64:c4:2d:60:b3:bb:e9:ab:49:61:a2:c6:ee:02: 85:68:be:bb:88:79:e0:8b:7b:1c:4f:e3:fa:82:ad: 66:a1:78:2b:3b:88:17:45:f1:bf:09:10:b2:8f:90: ac:04:5d:0f:84:57:4a:6c:9e:de:c1:11:51:8d:c1: cb:39:b6:d7:6c:fd:0b:0e:92:d6:43:3e:6e:2c:05: 2b:0c:f1:4f:c2:d2:aa:06:ed:b6:ae:6e:4d:b1:d2: be:5e:78:f7:81:b8:4f:ea:52:25:15:24:75:df:28: 1f:4a:3b:15:2d:d7:40:22:97:a8:6d:c8:57:0f:06: 1e:4d:c5:7f:4d:6e:69:d1:8c:38:44:eb:29:e6:6a: 15:9d:2d:c3:df:80:67:c3:d6:57:fd:25:95:80:56: 38:b9:6e:02:96:cc:1e:be:32:c8:18:67:9b:ef:d3: d8:e5:57:20:a1:20:4d:c4:b0:b1:e3:8c:53:21:b5: c5:dd:4e:8b:20:b3:e7:d4:12:c6:8d:10:9b:32:9b: 34:bd:ca:f2:e4:53:2a:f6:12:8a:77:75:4d:51:94: 1b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:D5:F0:2D:67:4C:59:23:70:7E:BA:D2:9E:B2:73:E9:16:18:4D:6D X509v3 Authority Key Identifier: keyid:45:69:57:B6:E3:2A:BD:15:76:13:6B:F4:B3:9E:C4:CC:AD:97:2F:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/456957B6E32ABD1576136BF4B39EC4CCAD972FCD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6a9ddf7-576a-4a58-89bb-7e8928902270/0/323030313a6466303a623538303a3a2f34382d3438203d3e20313338383736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:b580::/48 Signature Algorithm: sha256WithRSAEncryption 81:35:60:5a:5d:bf:5a:6d:60:cb:fc:34:0c:15:9a:71:5b:e0: ba:fb:62:45:1c:f7:39:1d:6d:f1:f4:b2:65:17:a5:99:e9:28: 7a:26:87:43:74:32:8d:1a:20:11:5f:c7:cf:3b:5d:b4:4a:8e: 88:96:31:4b:27:26:86:dd:0a:bb:0a:db:ec:82:1d:e7:df:0a: ff:15:6a:34:e7:10:c4:7b:4b:78:88:6b:75:27:21:f2:b3:88: 77:00:79:01:86:a3:e7:4e:e0:f4:da:88:cc:8c:21:5f:47:af: 5d:c1:d6:ba:82:6a:17:c6:92:4a:c4:80:93:0a:00:68:b2:b4: 86:8d:a9:3d:f4:4d:ee:b7:de:ca:d2:e6:2e:4b:e3:be:1d:d8: bd:02:06:c9:8d:66:a4:f6:5a:c4:13:ed:88:73:ff:5e:a4:82: d1:5e:5e:88:89:22:c7:6c:9b:72:11:b3:aa:de:3e:b1:7c:0f: 2f:e7:32:82:9d:15:70:3c:76:ce:a7:92:2d:42:69:86:5d:a7: c1:1a:4e:8f:60:79:c0:c9:c9:60:2b:24:42:d5:26:89:35:c8: 1c:3b:dd:3c:f0:c0:78:03:67:34:ac:f2:10:2c:f4:ee:30:a1: 11:a8:34:aa:a7:15:04:d5:ec:0a:99:98:36:6b:08:64:4b:d0: 7c:ad:81:38 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUVWUtyfohK99ak0Wf4eB3nYEwvW8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU2OTU3QjZFMzJBQkQxNTc2MTM2QkY0QjM5RUM0Q0NB RDk3MkZDRDAeFw0yNTExMTMwODU3MzVaFw0yNjExMTIwOTAyMzVaMDMxMTAvBgNV BAMTKDcxRDVGMDJENjc0QzU5MjM3MDdFQkFEMjlFQjI3M0U5MTYxODRENkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDo9wRxk1hoVHWPl9qk6jv81y6T Rxqs0uwRoHXxZm2LdZvJ+M4jBOeY9TuQHLRkxC1gs7vpq0lhosbuAoVovruIeeCL exxP4/qCrWaheCs7iBdF8b8JELKPkKwEXQ+EV0psnt7BEVGNwcs5ttds/QsOktZD Pm4sBSsM8U/C0qoG7baubk2x0r5eePeBuE/qUiUVJHXfKB9KOxUt10Ail6htyFcP Bh5NxX9NbmnRjDhE6ynmahWdLcPfgGfD1lf9JZWAVji5bgKWzB6+MsgYZ5vv09jl VyChIE3EsLHjjFMhtcXdTosgs+fUEsaNEJsymzS9yvLkUyr2Eop3dU1RlBtlAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUcdXwLWdMWSNwfrrSnrJz6RYYTW0wHwYDVR0j BBgwFoAURWlXtuMqvRV2E2v0s57EzK2XL80wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NmE5ZGRmNy01NzZhLTRhNTgtODliYi03ZTg5Mjg5MDIyNzAvMC80NTY5NTdCNkUz MkFCRDE1NzYxMzZCRjRCMzlFQzRDQ0FEOTcyRkNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU2OTU3QjZFMzJBQkQxNTc2MTM2QkY0QjM5RUM0Q0NBRDk3 MkZDRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2YTlkZGY3LTU3NmEtNGE1OC04 OWJiLTdlODkyODkwMjI3MC8wLzMyMzAzMDMxM2E2NDY2MzAzYTYyMzUzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzgzNzM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8LWAMA0GCSqGSIb3DQEBCwUAA4IBAQCBNWBaXb9abWDL/DQMFZpxW+C6+2JFHPc5 HW3x9LJlF6WZ6Sh6JodDdDKNGiARX8fPO120So6IljFLJyaG3Qq7Ctvsgh3n3wr/ FWo05xDEe0t4iGt1JyHys4h3AHkBhqPnTuD02ojMjCFfR69dwda6gmoXxpJKxICT CgBosrSGjak99E3ut97K0uYuS+O+Hdi9AgbJjWak9lrEE+2Ic/9epILRXl6IiSLH bJtyEbOq3j6xfA8v5zKCnRVwPHbOp5ItQmmGXafBGk6PYHnAyclgKyRC1SaJNcgc O9088MB4A2c0rPIQLPTuMKERqDSqpxUE1ewKmZg2awhkS9B8rYE4 -----END CERTIFICATE-----Generated at Wed Dec 3 17:16:35 2025 by rpki-client