This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/be5aa93d-787b-4a17-87d0-7ef41b0f2def/0/323030313a6466373a616630303a3a2f34382d3438203d3e20313338313432.roa File: 323030313a6466373a616630303a3a2f34382d3438203d3e20313338313432.roa (raw, json) Hash identifier: +lfpXVJZZB7mX5EhQPkK63ZYtoy/YmVZrC57zXFlQBc= Subject key identifier: 24:71:A5:B7:64:58:E0:82:53:4B:1D:76:50:BE:2A:ED:66:63:7A:E0 Certificate issuer: /CN=FC4F8762524C3EBF98126E5F579CCB30C37EEF63 Certificate serial: 02880AD8363EDF0F3C73770F7F010DC23E055626 Authority key identifier: FC:4F:87:62:52:4C:3E:BF:98:12:6E:5F:57:9C:CB:30:C3:7E:EF:63 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC4F8762524C3EBF98126E5F579CCB30C37EEF63.cer Subject info access: rsync://repo-rpki.idnic.net/repo/be5aa93d-787b-4a17-87d0-7ef41b0f2def/0/323030313a6466373a616630303a3a2f34382d3438203d3e20313338313432.roa Signing time: Thu 20 Nov 2025 14:00:01 +0000 ROA not before: Thu 20 Nov 2025 13:55:01 +0000 ROA not after: Thu 19 Nov 2026 14:00:01 +0000 asID: 138142 IP address blocks: 2001:df7:af00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/be5aa93d-787b-4a17-87d0-7ef41b0f2def/0/FC4F8762524C3EBF98126E5F579CCB30C37EEF63.crl rsync://repo-rpki.idnic.net/repo/be5aa93d-787b-4a17-87d0-7ef41b0f2def/0/FC4F8762524C3EBF98126E5F579CCB30C37EEF63.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC4F8762524C3EBF98126E5F579CCB30C37EEF63.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 00:13:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:88:0a:d8:36:3e:df:0f:3c:73:77:0f:7f:01:0d:c2:3e:05:56:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC4F8762524C3EBF98126E5F579CCB30C37EEF63 Validity Not Before: Nov 20 13:55:01 2025 GMT Not After : Nov 19 14:00:01 2026 GMT Subject: CN=2471A5B76458E082534B1D7650BE2AED66637AE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f4:f4:00:08:60:d7:4a:1e:f3:9d:c8:7d:8f: 47:02:39:18:61:55:b2:c5:c1:62:35:74:e8:e6:59: 82:d8:26:1c:03:20:0a:ba:3d:72:9e:0c:39:fd:2d: 40:a5:58:4f:a6:43:f2:10:a3:55:76:2f:50:d8:04: 12:c8:47:fa:82:cf:ac:cb:10:75:5b:ac:7a:2a:bc: a5:0e:5c:52:e6:ea:83:44:bd:f5:75:da:11:9d:89: f7:1d:c4:b5:fd:c5:ad:e5:95:85:a0:b8:20:b2:60: 2a:e9:aa:d8:78:e4:31:ac:8c:00:fd:2a:5c:e3:65: 4a:1f:08:91:44:6d:46:02:e6:68:1c:ce:8c:01:af: 4c:ea:c0:38:fd:d0:44:cc:be:04:3b:98:a0:cf:3c: 2e:35:a4:d5:83:bc:f1:19:c2:c1:53:11:7b:c6:e3: 3b:bf:d6:8c:9d:83:a4:2c:6e:07:eb:5b:de:d3:ec: 4f:b5:55:95:f1:2b:fe:d4:d5:9e:15:fd:8d:ff:7b: 8c:3c:ed:67:cc:72:bf:65:41:8e:f0:34:17:2a:fa: b9:5a:72:59:35:d9:ce:bb:73:e7:c1:fc:9a:24:38: 9f:8e:81:97:be:27:14:23:fc:5a:12:ba:8b:dc:22: 20:ea:62:82:63:d7:d0:bc:1d:70:c7:69:97:e6:c0: 03:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:71:A5:B7:64:58:E0:82:53:4B:1D:76:50:BE:2A:ED:66:63:7A:E0 X509v3 Authority Key Identifier: keyid:FC:4F:87:62:52:4C:3E:BF:98:12:6E:5F:57:9C:CB:30:C3:7E:EF:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/be5aa93d-787b-4a17-87d0-7ef41b0f2def/0/FC4F8762524C3EBF98126E5F579CCB30C37EEF63.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC4F8762524C3EBF98126E5F579CCB30C37EEF63.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/be5aa93d-787b-4a17-87d0-7ef41b0f2def/0/323030313a6466373a616630303a3a2f34382d3438203d3e20313338313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:af00::/48 Signature Algorithm: sha256WithRSAEncryption aa:c1:78:5a:72:3f:7f:09:30:b1:33:52:2d:e3:7d:09:98:41: e9:0f:43:c7:6c:e5:14:18:50:b5:d8:b6:25:55:9e:8a:33:04: 5d:b8:9c:d7:3c:84:e0:75:22:56:f1:54:84:ca:56:55:ee:5e: ee:70:cf:82:92:3c:09:62:d8:d3:dd:4c:1b:1b:aa:3b:56:18: 70:55:c4:0a:21:c1:78:af:4e:f6:cb:d5:05:0c:c4:8a:1c:c7: 5d:c2:92:92:90:95:12:23:7b:b1:0e:5e:a6:1d:74:4c:76:95: bd:99:97:8a:54:06:38:5a:51:df:b7:09:33:c3:77:ca:98:7f: f1:a8:28:2d:f0:03:ca:90:24:7a:06:2e:bb:b5:e9:6a:36:a5: 59:be:fd:0a:6e:2c:6c:ac:93:bc:ed:a1:5b:42:c0:ca:48:44: 3e:5c:17:15:e2:c1:25:ea:50:1b:2f:57:2c:ea:05:fa:74:c5: c8:e2:cb:07:f3:86:48:a2:42:4f:96:1e:bb:dd:c2:5e:ce:4c: 9c:ad:52:4c:69:b8:2f:35:3a:bd:28:b5:23:64:20:78:ac:e8: 24:d9:fc:d2:b2:9d:75:32:c5:01:b8:05:b9:12:0c:4c:c5:21: be:fc:d0:5a:2e:48:9e:73:df:26:e6:30:d6:a7:1f:49:fe:b5: fc:2f:7e:df -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUAogK2DY+3w88c3cPfwENwj4FViYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkM0Rjg3NjI1MjRDM0VCRjk4MTI2RTVGNTc5Q0NCMzBD MzdFRUY2MzAeFw0yNTExMjAxMzU1MDFaFw0yNjExMTkxNDAwMDFaMDMxMTAvBgNV BAMTKDI0NzFBNUI3NjQ1OEUwODI1MzRCMUQ3NjUwQkUyQUVENjY2MzdBRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK9PQACGDXSh7znch9j0cCORhh VbLFwWI1dOjmWYLYJhwDIAq6PXKeDDn9LUClWE+mQ/IQo1V2L1DYBBLIR/qCz6zL EHVbrHoqvKUOXFLm6oNEvfV12hGdifcdxLX9xa3llYWguCCyYCrpqth45DGsjAD9 KlzjZUofCJFEbUYC5mgczowBr0zqwDj90ETMvgQ7mKDPPC41pNWDvPEZwsFTEXvG 4zu/1oydg6QsbgfrW97T7E+1VZXxK/7U1Z4V/Y3/e4w87WfMcr9lQY7wNBcq+rla clk12c67c+fB/JokOJ+OgZe+JxQj/FoSuovcIiDqYoJj19C8HXDHaZfmwAMbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUJHGlt2RY4IJTSx12UL4q7WZjeuAwHwYDVR0j BBgwFoAU/E+HYlJMPr+YEm5fV5zLMMN+72MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZTVhYTkzZC03ODdiLTRhMTctODdkMC03ZWY0MWIwZjJkZWYvMC9GQzRGODc2MjUy NEMzRUJGOTgxMjZFNUY1NzlDQ0IzMEMzN0VFRjYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkM0Rjg3NjI1MjRDM0VCRjk4MTI2RTVGNTc5Q0NCMzBDMzdF RUY2My5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JlNWFhOTNkLTc4N2ItNGExNy04 N2QwLTdlZjQxYjBmMmRlZi8wLzMyMzAzMDMxM2E2NDY2MzczYTYxNjYzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzEzNDMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 968AMA0GCSqGSIb3DQEBCwUAA4IBAQCqwXhacj9/CTCxM1It430JmEHpD0PHbOUU GFC12LYlVZ6KMwRduJzXPITgdSJW8VSEylZV7l7ucM+CkjwJYtjT3UwbG6o7Vhhw VcQKIcF4r072y9UFDMSKHMddwpKSkJUSI3uxDl6mHXRMdpW9mZeKVAY4WlHftwkz w3fKmH/xqCgt8APKkCR6Bi67telqNqVZvv0KbixsrJO87aFbQsDKSEQ+XBcV4sEl 6lAbL1cs6gX6dMXI4ssH84ZIokJPlh673cJezkycrVJMabgvNTq9KLUjZCB4rOgk 2fzSsp11MsUBuAW5EgxMxSG+/NBaLkiec98m5jDWpx9J/rX8L37f -----END CERTIFICATE-----Generated at Wed Dec 3 15:31:01 2025 by rpki-client