This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/be0cb630-636a-4b6a-93df-b5d908fe6ee7/0/323030313a6466333a356334303a3a2f34382d3438203d3e20313431313236.roa File: 323030313a6466333a356334303a3a2f34382d3438203d3e20313431313236.roa (raw, json) Hash identifier: +I5heW9usC3g2V3ncP2BbzxquKjOSk/cY9LMtr15d84= Subject key identifier: CC:A1:91:86:67:9C:D9:45:56:3F:54:0C:A2:45:38:9B:23:44:40:DF Certificate issuer: /CN=6BFD656A9FA63FB89816B17CCED2832B43FE41CD Certificate serial: 42B5144598369600F3D7AC89B23F5847BEA27984 Authority key identifier: 6B:FD:65:6A:9F:A6:3F:B8:98:16:B1:7C:CE:D2:83:2B:43:FE:41:CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6BFD656A9FA63FB89816B17CCED2832B43FE41CD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/be0cb630-636a-4b6a-93df-b5d908fe6ee7/0/323030313a6466333a356334303a3a2f34382d3438203d3e20313431313236.roa Signing time: Mon 17 Nov 2025 06:00:03 +0000 ROA not before: Mon 17 Nov 2025 05:55:03 +0000 ROA not after: Mon 16 Nov 2026 06:00:03 +0000 asID: 141126 IP address blocks: 2001:df3:5c40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/be0cb630-636a-4b6a-93df-b5d908fe6ee7/0/6BFD656A9FA63FB89816B17CCED2832B43FE41CD.crl rsync://repo-rpki.idnic.net/repo/be0cb630-636a-4b6a-93df-b5d908fe6ee7/0/6BFD656A9FA63FB89816B17CCED2832B43FE41CD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6BFD656A9FA63FB89816B17CCED2832B43FE41CD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 01:38:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:b5:14:45:98:36:96:00:f3:d7:ac:89:b2:3f:58:47:be:a2:79:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6BFD656A9FA63FB89816B17CCED2832B43FE41CD Validity Not Before: Nov 17 05:55:03 2025 GMT Not After : Nov 16 06:00:03 2026 GMT Subject: CN=CCA19186679CD945563F540CA245389B234440DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:38:1d:dd:4e:1c:a9:4e:c5:9f:e6:74:d6:d0: ed:12:54:b2:ce:f1:5b:5a:8a:88:29:96:a0:65:29: 88:22:0b:5a:ba:5d:4c:a3:4c:c3:fc:94:c5:bb:21: ec:1c:63:81:05:0a:9c:03:1d:72:d8:cb:4c:a5:7e: f1:79:52:ac:80:2e:c0:9c:45:35:ef:3c:dd:83:eb: a2:f5:fb:72:1a:61:ea:c8:7e:0b:45:9d:b8:a7:11: c9:e5:be:de:26:a3:56:ae:6e:2c:31:4f:62:ba:c0: 06:73:e2:79:d2:6e:85:d5:fd:70:29:e6:64:b3:ab: fe:94:64:1c:c5:37:4a:44:0e:34:fb:f4:5a:fb:81: 5b:65:2f:74:4e:c5:74:66:86:61:79:73:46:7d:31: 68:aa:c5:9d:75:01:20:9a:9b:9c:14:df:83:49:a4: a0:bf:ea:b3:1b:74:48:82:6d:09:7d:b8:62:73:ca: d9:25:72:5d:56:0d:d8:a3:b7:f7:7a:7b:c8:8d:05: a8:a7:9d:0f:14:9d:36:0f:7c:de:db:5a:87:5b:52: 4c:ac:9a:f4:9a:36:ac:51:8d:3e:7d:fe:b8:79:e4: 7a:45:cd:a8:79:77:7e:0f:6b:25:d9:5a:98:55:5c: 1f:8e:6d:74:c6:9c:91:1f:0a:f3:2e:c9:b0:0d:3d: 78:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:A1:91:86:67:9C:D9:45:56:3F:54:0C:A2:45:38:9B:23:44:40:DF X509v3 Authority Key Identifier: keyid:6B:FD:65:6A:9F:A6:3F:B8:98:16:B1:7C:CE:D2:83:2B:43:FE:41:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/be0cb630-636a-4b6a-93df-b5d908fe6ee7/0/6BFD656A9FA63FB89816B17CCED2832B43FE41CD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6BFD656A9FA63FB89816B17CCED2832B43FE41CD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/be0cb630-636a-4b6a-93df-b5d908fe6ee7/0/323030313a6466333a356334303a3a2f34382d3438203d3e20313431313236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:5c40::/48 Signature Algorithm: sha256WithRSAEncryption 89:65:43:ef:6b:10:41:bb:10:1a:c7:ca:0f:df:a5:31:3a:74: 5c:0e:2e:72:b6:6a:dd:85:10:5e:77:b1:b6:0f:f6:4d:04:6c: 03:ad:9f:88:44:f5:ab:b0:99:28:d9:1e:83:d6:8c:46:45:4d: 47:0f:fd:59:a1:34:fb:32:30:20:c7:0a:fc:95:47:33:ca:e4: 86:03:b5:2e:1c:14:42:48:45:ff:37:4f:42:b5:80:c6:a5:56: c8:33:1a:dc:2a:aa:05:f2:d6:1e:45:89:08:7f:d9:5c:51:db: ee:b5:02:e4:d1:c8:9b:c6:db:b2:74:2c:a7:ed:7d:c6:a7:9e: d1:88:8b:9b:24:06:85:75:7c:97:a8:85:db:59:7d:d7:87:d7: 4a:0f:f9:66:68:79:3b:de:10:19:95:c0:23:12:3b:05:bb:53: 7a:56:4e:8c:01:a0:5a:bb:eb:b9:70:4e:b7:d3:55:52:ca:aa: b5:8e:c2:52:43:90:66:d3:b6:42:e3:55:fb:c5:ca:c8:5f:5c: 36:79:93:f5:9a:c4:38:33:92:6c:43:9b:a2:4d:3b:86:63:10: 42:3c:ab:11:66:d2:34:bd:b1:3c:96:0f:98:b9:49:65:c0:1e: 6b:76:83:0b:d6:dc:b3:84:0e:e7:e3:f4:1c:55:13:62:e7:da: 3d:38:ee:b2 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUQrUURZg2lgDz16yJsj9YR76ieYQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkJGRDY1NkE5RkE2M0ZCODk4MTZCMTdDQ0VEMjgzMkI0 M0ZFNDFDRDAeFw0yNTExMTcwNTU1MDNaFw0yNjExMTYwNjAwMDNaMDMxMTAvBgNV BAMTKENDQTE5MTg2Njc5Q0Q5NDU1NjNGNTQwQ0EyNDUzODlCMjM0NDQwREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9OB3dThypTsWf5nTW0O0SVLLO 8VtaiogplqBlKYgiC1q6XUyjTMP8lMW7IewcY4EFCpwDHXLYy0ylfvF5UqyALsCc RTXvPN2D66L1+3IaYerIfgtFnbinEcnlvt4mo1aubiwxT2K6wAZz4nnSboXV/XAp 5mSzq/6UZBzFN0pEDjT79Fr7gVtlL3ROxXRmhmF5c0Z9MWiqxZ11ASCam5wU34NJ pKC/6rMbdEiCbQl9uGJzytklcl1WDdijt/d6e8iNBainnQ8UnTYPfN7bWodbUkys mvSaNqxRjT59/rh55HpFzah5d34PayXZWphVXB+ObXTGnJEfCvMuybANPXjTAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUzKGRhmec2UVWP1QMokU4myNEQN8wHwYDVR0j BBgwFoAUa/1lap+mP7iYFrF8ztKDK0P+Qc0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZTBjYjYzMC02MzZhLTRiNmEtOTNkZi1iNWQ5MDhmZTZlZTcvMC82QkZENjU2QTlG QTYzRkI4OTgxNkIxN0NDRUQyODMyQjQzRkU0MUNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkJGRDY1NkE5RkE2M0ZCODk4MTZCMTdDQ0VEMjgzMkI0M0ZF NDFDRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JlMGNiNjMwLTYzNmEtNGI2YS05 M2RmLWI1ZDkwOGZlNmVlNy8wLzMyMzAzMDMxM2E2NDY2MzMzYTM1NjMzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzEzMjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 81xAMA0GCSqGSIb3DQEBCwUAA4IBAQCJZUPvaxBBuxAax8oP36UxOnRcDi5ytmrd hRBed7G2D/ZNBGwDrZ+IRPWrsJko2R6D1oxGRU1HD/1ZoTT7MjAgxwr8lUczyuSG A7UuHBRCSEX/N09CtYDGpVbIMxrcKqoF8tYeRYkIf9lcUdvutQLk0cibxtuydCyn 7X3Gp57RiIubJAaFdXyXqIXbWX3Xh9dKD/lmaHk73hAZlcAjEjsFu1N6Vk6MAaBa u+u5cE6301VSyqq1jsJSQ5Bm07ZC41X7xcrIX1w2eZP1msQ4M5JsQ5uiTTuGYxBC PKsRZtI0vbE8lg+YuUllwB5rdoML1tyzhA7n4/QcVRNi59o9OO6y -----END CERTIFICATE-----Generated at Wed Dec 3 16:08:21 2025 by rpki-client