This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/bc5867d8-3d6f-4816-b84f-fdd5c502b634/0/323430343a636263303a3a2f33322d3332203d3e20313338383433.roa File: 323430343a636263303a3a2f33322d3332203d3e20313338383433.roa (raw, json) Hash identifier: ekiTRUXlXGfIdpnyynvPIh11dLh8SkdkAtK+PUzrwAE= Subject key identifier: F5:F3:96:F4:E7:93:86:69:04:AC:70:7E:EA:1A:AC:02:A6:50:8C:A2 Certificate issuer: /CN=E0D54A271CD04583E0304613C7075C15FA03E497 Certificate serial: 06D055E2B905C0F65E249246CDA46201100DC0E9 Authority key identifier: E0:D5:4A:27:1C:D0:45:83:E0:30:46:13:C7:07:5C:15:FA:03:E4:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0D54A271CD04583E0304613C7075C15FA03E497.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bc5867d8-3d6f-4816-b84f-fdd5c502b634/0/323430343a636263303a3a2f33322d3332203d3e20313338383433.roa Signing time: Wed 31 Dec 2025 12:00:03 +0000 ROA not before: Wed 31 Dec 2025 11:55:03 +0000 ROA not after: Wed 30 Dec 2026 12:00:03 +0000 asID: 138843 IP address blocks: 2404:cbc0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bc5867d8-3d6f-4816-b84f-fdd5c502b634/0/E0D54A271CD04583E0304613C7075C15FA03E497.crl rsync://repo-rpki.idnic.net/repo/bc5867d8-3d6f-4816-b84f-fdd5c502b634/0/E0D54A271CD04583E0304613C7075C15FA03E497.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0D54A271CD04583E0304613C7075C15FA03E497.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 Jan 2026 00:21:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:d0:55:e2:b9:05:c0:f6:5e:24:92:46:cd:a4:62:01:10:0d:c0:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E0D54A271CD04583E0304613C7075C15FA03E497 Validity Not Before: Dec 31 11:55:03 2025 GMT Not After : Dec 30 12:00:03 2026 GMT Subject: CN=F5F396F4E793866904AC707EEA1AAC02A6508CA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f1:33:c7:bf:36:ab:a6:aa:22:d7:17:90:90: 19:12:6b:be:8b:a8:1b:c3:e5:a5:a7:01:12:76:3f: 91:35:f0:a7:db:e5:76:21:8e:dd:48:59:63:ca:d4: 94:dd:d2:51:8a:c8:b2:9b:6e:b6:c6:c5:e3:16:36: b8:ac:56:11:c5:0e:ec:b9:98:ba:58:75:1f:40:45: 05:79:d8:30:1a:08:8b:65:cc:b4:7c:d3:26:d5:99: e8:28:1e:e9:8b:12:31:28:64:71:23:97:e4:5e:25: 14:82:30:90:7c:5c:c4:ed:5b:01:f8:c7:83:df:17: ef:35:84:93:2b:23:72:79:4b:f8:e3:6b:6a:a3:01: 70:a5:54:f9:70:91:5a:42:82:54:8a:57:f9:bf:a0: 19:0c:64:16:4b:6f:a7:15:0f:ed:22:2b:44:3c:1f: 7b:5e:a8:5b:5a:05:d7:5c:2b:6f:48:a1:62:cc:cc: 0a:9e:15:14:ce:cc:ec:50:bb:93:a0:72:c2:45:7d: d2:90:45:c6:34:43:c4:ef:e5:a7:c3:4e:5b:9c:f3: b5:95:e2:03:53:e1:be:92:15:b2:4d:11:b4:5e:5c: f9:6d:e7:8b:2a:2b:e3:ff:ce:18:0b:cf:65:61:7f: a6:3d:ac:cf:69:28:01:6d:88:4e:73:fd:be:09:91: bf:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:F3:96:F4:E7:93:86:69:04:AC:70:7E:EA:1A:AC:02:A6:50:8C:A2 X509v3 Authority Key Identifier: keyid:E0:D5:4A:27:1C:D0:45:83:E0:30:46:13:C7:07:5C:15:FA:03:E4:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bc5867d8-3d6f-4816-b84f-fdd5c502b634/0/E0D54A271CD04583E0304613C7075C15FA03E497.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0D54A271CD04583E0304613C7075C15FA03E497.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bc5867d8-3d6f-4816-b84f-fdd5c502b634/0/323430343a636263303a3a2f33322d3332203d3e20313338383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:cbc0::/32 Signature Algorithm: sha256WithRSAEncryption 1e:4e:5c:ed:16:a3:b0:a6:ab:b1:42:5d:94:c3:89:fd:3d:1f: 86:b5:d1:78:4b:cb:6e:80:bb:b1:5e:cb:5f:d2:38:91:45:cd: 65:c1:43:bf:26:41:61:ce:cc:46:9f:5f:a5:6e:18:40:e7:3a: fc:33:a7:e5:61:8d:9a:14:58:a0:8c:36:fd:19:11:71:a9:b6: ab:e6:f0:77:53:df:1c:0d:68:5c:25:95:ba:0c:cd:f5:2b:9a: 1e:b9:3e:d6:82:ba:41:0c:a8:45:57:6a:ce:66:a4:a8:8e:23: f3:49:b4:d3:3d:ba:6a:9e:28:e4:78:94:1c:df:b5:e6:4b:2c: 4c:b0:86:b8:fd:e4:83:6d:64:c4:f2:55:4a:45:fb:10:d6:16: 58:22:3d:e7:06:1f:99:0b:b9:73:bb:70:72:8e:3b:53:78:d8: cf:87:68:eb:23:84:c4:19:e5:fb:7a:e5:17:a6:db:8c:ab:91: 3a:a0:41:56:ec:28:3e:8c:89:0d:92:5d:63:09:20:f7:1e:22: 5c:a7:5c:46:5b:b0:a3:a0:b3:d3:c1:b2:9e:2f:99:5d:38:9c: 04:b9:4d:3a:dc:98:d5:d3:13:17:0f:1f:73:5e:f8:3c:2c:cf: db:30:4b:7c:70:19:64:40:3b:37:67:0b:54:21:b1:04:e6:13: 85:ae:a0:3b -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUBtBV4rkFwPZeJJJGzaRiARANwOkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTBENTRBMjcxQ0QwNDU4M0UwMzA0NjEzQzcwNzVDMTVG QTAzRTQ5NzAeFw0yNTEyMzExMTU1MDNaFw0yNjEyMzAxMjAwMDNaMDMxMTAvBgNV BAMTKEY1RjM5NkY0RTc5Mzg2NjkwNEFDNzA3RUVBMUFBQzAyQTY1MDhDQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA8TPHvzarpqoi1xeQkBkSa76L qBvD5aWnARJ2P5E18Kfb5XYhjt1IWWPK1JTd0lGKyLKbbrbGxeMWNrisVhHFDuy5 mLpYdR9ARQV52DAaCItlzLR80ybVmegoHumLEjEoZHEjl+ReJRSCMJB8XMTtWwH4 x4PfF+81hJMrI3J5S/jja2qjAXClVPlwkVpCglSKV/m/oBkMZBZLb6cVD+0iK0Q8 H3teqFtaBddcK29IoWLMzAqeFRTOzOxQu5OgcsJFfdKQRcY0Q8Tv5afDTluc87WV 4gNT4b6SFbJNEbReXPlt54sqK+P/zhgLz2Vhf6Y9rM9pKAFtiE5z/b4Jkb9RAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU9fOW9OeThmkErHB+6hqsAqZQjKIwHwYDVR0j BBgwFoAU4NVKJxzQRYPgMEYTxwdcFfoD5JcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YzU4NjdkOC0zZDZmLTQ4MTYtYjg0Zi1mZGQ1YzUwMmI2MzQvMC9FMEQ1NEEyNzFD RDA0NTgzRTAzMDQ2MTNDNzA3NUMxNUZBMDNFNDk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTBENTRBMjcxQ0QwNDU4M0UwMzA0NjEzQzcwNzVDMTVGQTAz RTQ5Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JjNTg2N2Q4LTNkNmYtNDgxNi1i ODRmLWZkZDVjNTAyYjYzNC8wLzMyMzQzMDM0M2E2MzYyNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzODM4MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEy8AwDQYJKoZI hvcNAQELBQADggEBAB5OXO0Wo7Cmq7FCXZTDif09H4a10XhLy26Au7Fey1/SOJFF zWXBQ78mQWHOzEafX6VuGEDnOvwzp+VhjZoUWKCMNv0ZEXGptqvm8HdT3xwNaFwl lboMzfUrmh65PtaCukEMqEVXas5mpKiOI/NJtNM9umqeKOR4lBzfteZLLEywhrj9 5INtZMTyVUpF+xDWFlgiPecGH5kLuXO7cHKOO1N42M+HaOsjhMQZ5ft65Rem24yr kTqgQVbsKD6MiQ2SXWMJIPceIlynXEZbsKOgs9PBsp4vmV04nAS5TTrcmNXTExcP H3Ne+Dwsz9swS3xwGWRAOzdnC1QhsQTmE4WuoDs= -----END CERTIFICATE-----Generated at Sun Jan 18 09:34:21 2026 by rpki-client