This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030623a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030623a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: 9OP3B+S2BCfvvW61qEITqcxk4Y+mJB/2m+02NNVuSf8= Subject key identifier: 01:AF:85:07:E1:26:36:D3:ED:93:7B:31:D5:CD:5B:12:EE:31:31:D0 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 6DF1645E6F414EF15FE6B5DB95670DEE1CB812B7 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030623a3a2f34382d3438203d3e203338313536.roa Signing time: Wed 22 Oct 2025 16:00:02 +0000 ROA not before: Wed 22 Oct 2025 15:55:02 +0000 ROA not after: Wed 21 Oct 2026 16:00:02 +0000 asID: 38156 IP address blocks: 2405:a540:100b::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 21:07:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:f1:64:5e:6f:41:4e:f1:5f:e6:b5:db:95:67:0d:ee:1c:b8:12:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Oct 22 15:55:02 2025 GMT Not After : Oct 21 16:00:02 2026 GMT Subject: CN=01AF8507E12636D3ED937B31D5CD5B12EE3131D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:72:f1:d7:3b:96:a2:af:ba:00:e0:fc:39:0c: e1:37:71:ef:3a:9d:41:36:7e:2b:c7:46:ab:f4:44: 71:f7:c8:2a:28:6b:ae:30:b4:ab:9c:e6:92:24:d2: ea:9d:ab:d3:94:d8:21:8c:0c:3b:8e:13:93:fb:07: bf:da:bc:0e:ce:10:6b:46:c1:b9:b3:4e:80:97:b0: 6e:58:b9:b3:6e:5b:2e:30:32:2f:68:00:4f:14:85: 50:e0:ae:e0:d7:3a:29:06:95:03:44:15:8a:56:ca: 4f:f4:ad:f9:cf:2c:07:ac:1e:25:4f:99:6c:de:c4: 9b:fd:42:05:42:80:8f:3d:6d:41:80:36:ca:64:b3: 52:e8:b0:56:15:90:60:5a:4a:15:68:53:9f:a4:a6: 82:5c:65:c7:63:d4:2e:58:f9:e1:f6:0d:40:b0:f4: 85:09:0b:3e:35:7c:3c:47:03:2d:de:3c:01:8e:85: 2c:ca:01:1b:34:50:17:4c:f5:66:19:b5:ba:27:33: d4:a0:f2:ae:18:00:fe:f5:a1:da:6b:be:16:4d:13: ac:3a:4b:e7:f9:b6:af:40:87:46:39:8a:fb:ba:d1: ee:b3:80:09:9c:fd:71:f1:c0:72:4d:91:f7:23:a5: 71:46:c6:41:ff:65:f3:4f:c1:70:1a:e1:1b:7a:f0: 23:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:AF:85:07:E1:26:36:D3:ED:93:7B:31:D5:CD:5B:12:EE:31:31:D0 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030623a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:100b::/48 Signature Algorithm: sha256WithRSAEncryption c5:f6:5d:e8:78:99:c2:63:59:28:7f:24:1f:50:b2:6d:6f:a0: 7a:bb:c7:59:13:17:e6:8e:67:c8:95:38:a7:f3:70:bb:b4:18: 38:72:5b:44:6f:01:5b:dc:38:39:8b:8b:c7:79:78:82:c1:fc: 0f:20:d7:46:42:fa:3c:0a:c2:c6:d9:44:36:51:53:86:e5:a5: cf:9a:be:f2:2f:66:48:75:6c:a8:7b:1d:c0:ec:6e:f2:5e:69: 22:98:ad:84:aa:f7:77:57:c2:7c:16:fa:5a:69:45:83:c0:5a: 6d:22:16:36:80:bb:b3:16:c8:28:bb:55:c1:ef:08:f6:9a:d2: a7:eb:08:2d:25:db:95:f7:76:8e:0f:26:5e:a8:51:83:e0:06: 0e:c4:c3:ff:de:37:c2:c7:45:4d:14:8c:51:93:ef:0d:c0:c4: 6b:e4:af:2f:b3:11:31:61:7d:39:1d:ab:f0:81:af:d3:37:6f: 33:8b:74:e7:f0:8f:3f:8e:02:0b:1f:03:36:96:bb:7a:fa:bf: 34:f6:71:1f:3e:c5:47:6c:6b:5a:66:10:d1:12:e5:43:a0:28: ea:44:f6:bf:06:2b:87:fc:68:42:f6:de:6e:62:9b:cd:9e:f1: de:62:22:89:27:32:3b:56:c1:d4:05:da:a9:0e:91:66:bf:a2: cb:9c:62:a2 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUbfFkXm9BTvFf5rXblWcN7hy4ErcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNTEwMjIxNTU1MDJaFw0yNjEwMjExNjAwMDJaMDMxMTAvBgNV BAMTKDAxQUY4NTA3RTEyNjM2RDNFRDkzN0IzMUQ1Q0Q1QjEyRUUzMTMxRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhcvHXO5air7oA4Pw5DOE3ce86 nUE2fivHRqv0RHH3yCooa64wtKuc5pIk0uqdq9OU2CGMDDuOE5P7B7/avA7OEGtG wbmzToCXsG5YubNuWy4wMi9oAE8UhVDgruDXOikGlQNEFYpWyk/0rfnPLAesHiVP mWzexJv9QgVCgI89bUGANspks1LosFYVkGBaShVoU5+kpoJcZcdj1C5Y+eH2DUCw 9IUJCz41fDxHAy3ePAGOhSzKARs0UBdM9WYZtbonM9Sg8q4YAP71odprvhZNE6w6 S+f5tq9Ah0Y5ivu60e6zgAmc/XHxwHJNkfcjpXFGxkH/ZfNPwXAa4Rt68COxAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUAa+FB+EmNtPtk3sx1c1bEu4xMdAwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwNjIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBALMA0GCSqGSIb3DQEBCwUAA4IBAQDF9l3oeJnCY1kofyQfULJtb6B6u8dZExfm jmfIlTin83C7tBg4cltEbwFb3Dg5i4vHeXiCwfwPINdGQvo8CsLG2UQ2UVOG5aXP mr7yL2ZIdWyoex3A7G7yXmkimK2Eqvd3V8J8FvpaaUWDwFptIhY2gLuzFsgou1XB 7wj2mtKn6wgtJduV93aODyZeqFGD4AYOxMP/3jfCx0VNFIxRk+8NwMRr5K8vsxEx YX05Havwga/TN28zi3Tn8I8/jgILHwM2lrt6+r809nEfPsVHbGtaZhDREuVDoCjq RPa/BiuH/GhC9t5uYpvNnvHeYiKJJzI7VsHUBdqpDpFmv6LLnGKi -----END CERTIFICATE-----Generated at Wed Dec 3 14:47:34 2025 by rpki-client