This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/1/323030313a6466343a363463303a3a2f34382d3438203d3e20313533313430.roa File: 323030313a6466343a363463303a3a2f34382d3438203d3e20313533313430.roa (raw, json) Hash identifier: tCFWfM3xPDNAE6hYqcghBjN3a3o8405nfAZiA3LJhEE= Subject key identifier: 63:57:0A:7B:59:55:00:D0:2C:53:E8:94:2C:78:04:78:EC:B3:F7:C9 Certificate issuer: /CN=B92F0FB3E141D52ED2A71FA483ED3C6D723F60E2 Certificate serial: 30D96350BD214350BAD1748007FE38CB33D345A3 Authority key identifier: B9:2F:0F:B3:E1:41:D5:2E:D2:A7:1F:A4:83:ED:3C:6D:72:3F:60:E2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B92F0FB3E141D52ED2A71FA483ED3C6D723F60E2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/1/323030313a6466343a363463303a3a2f34382d3438203d3e20313533313430.roa Signing time: Fri 21 Nov 2025 03:00:03 +0000 ROA not before: Fri 21 Nov 2025 02:55:03 +0000 ROA not after: Fri 20 Nov 2026 03:00:03 +0000 asID: 153140 IP address blocks: 2001:df4:64c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/1/B92F0FB3E141D52ED2A71FA483ED3C6D723F60E2.crl rsync://repo-rpki.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/1/B92F0FB3E141D52ED2A71FA483ED3C6D723F60E2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B92F0FB3E141D52ED2A71FA483ED3C6D723F60E2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 15:14:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:d9:63:50:bd:21:43:50:ba:d1:74:80:07:fe:38:cb:33:d3:45:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B92F0FB3E141D52ED2A71FA483ED3C6D723F60E2 Validity Not Before: Nov 21 02:55:03 2025 GMT Not After : Nov 20 03:00:03 2026 GMT Subject: CN=63570A7B595500D02C53E8942C780478ECB3F7C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:5b:c8:ee:f1:eb:26:ba:68:bd:59:86:ac:97: 23:54:f1:39:01:9b:df:8c:d0:cb:64:fd:b6:06:8c: 2d:d7:60:bd:10:a4:b2:f6:a7:1d:e6:71:96:b2:85: 17:6a:2b:ea:d6:00:c4:74:66:68:45:70:d5:bc:0d: fc:31:50:e8:56:d3:6d:ee:e6:a2:36:82:0e:d4:11: eb:18:2e:f7:a5:d3:5b:5c:16:7a:0f:76:4f:ca:0b: f9:c5:ea:2a:60:13:b6:78:51:9f:b7:9c:46:9f:c4: 45:f6:94:98:6a:01:a4:09:b3:9c:66:37:e9:2e:61: 22:97:28:06:c9:e9:eb:8d:ea:f0:90:54:85:05:3b: 98:b2:89:34:1d:fc:5d:95:cb:69:98:37:cd:72:de: 6e:53:8a:bb:fd:94:ab:36:1e:e4:12:f6:00:43:89: bb:40:ab:c5:c8:1b:f7:ea:1f:ff:e3:72:db:27:2e: 0a:2b:98:e4:0c:a7:ba:13:eb:e7:af:c3:c9:a2:be: 70:61:c8:54:83:b9:e0:dc:5f:54:53:fe:0c:c8:bb: c6:40:23:5b:30:d1:a6:37:44:1c:d9:bb:06:c6:a7: 1f:b0:25:d6:e2:8c:06:70:12:85:46:de:bf:24:be: 05:df:c1:f2:3e:f9:95:d7:be:dc:70:08:a1:a0:af: 18:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:57:0A:7B:59:55:00:D0:2C:53:E8:94:2C:78:04:78:EC:B3:F7:C9 X509v3 Authority Key Identifier: keyid:B9:2F:0F:B3:E1:41:D5:2E:D2:A7:1F:A4:83:ED:3C:6D:72:3F:60:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/1/B92F0FB3E141D52ED2A71FA483ED3C6D723F60E2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B92F0FB3E141D52ED2A71FA483ED3C6D723F60E2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/1/323030313a6466343a363463303a3a2f34382d3438203d3e20313533313430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:64c0::/48 Signature Algorithm: sha256WithRSAEncryption 94:e0:9d:3d:30:74:8a:65:28:3f:b0:13:79:88:f9:8e:7d:d4: 9d:e8:72:1f:ba:03:11:82:20:f1:00:7a:21:c5:11:1f:08:14: e5:aa:fc:e5:2b:2c:a3:96:e6:d0:66:a9:f9:1c:37:44:32:14: e9:dc:7d:cc:54:b8:0d:8f:96:dd:c2:ad:5d:51:5f:8c:69:76: 42:4a:ed:07:d8:49:b3:9f:df:a7:bd:8e:49:6e:eb:fb:2c:1a: 34:43:2d:79:d5:3d:4a:be:27:c8:b2:a7:1d:e5:bd:22:53:d6: 3c:15:aa:1b:59:85:14:4f:5c:9b:9a:ff:44:b0:67:99:96:5c: aa:f8:00:8c:28:61:5d:58:13:2d:31:f7:f5:83:8d:33:b6:a2: 56:77:a8:2b:c5:78:ee:ff:6e:b1:c5:1b:74:89:bc:8a:39:13: 23:b7:f8:2e:ab:da:9b:b7:94:78:50:c4:9e:72:6e:2b:56:f6: b9:40:6f:a7:cc:b1:b4:f9:63:4c:18:9d:04:f2:1f:46:74:7f: 81:e4:04:36:a9:55:08:5c:37:e8:fb:f4:d0:36:a0:22:21:73: d7:f6:6c:c0:56:c7:7c:97:c0:6c:40:95:1f:e7:2b:ef:37:1b: ad:97:6e:81:54:a8:73:21:fc:21:9a:ed:7e:cb:66:c9:bb:b2: 0d:50:e4:70 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUMNljUL0hQ1C60XSAB/44yzPTRaMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjkyRjBGQjNFMTQxRDUyRUQyQTcxRkE0ODNFRDNDNkQ3 MjNGNjBFMjAeFw0yNTExMjEwMjU1MDNaFw0yNjExMjAwMzAwMDNaMDMxMTAvBgNV BAMTKDYzNTcwQTdCNTk1NTAwRDAyQzUzRTg5NDJDNzgwNDc4RUNCM0Y3QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvW8ju8esmumi9WYaslyNU8TkB m9+M0Mtk/bYGjC3XYL0QpLL2px3mcZayhRdqK+rWAMR0ZmhFcNW8DfwxUOhW023u 5qI2gg7UEesYLvel01tcFnoPdk/KC/nF6ipgE7Z4UZ+3nEafxEX2lJhqAaQJs5xm N+kuYSKXKAbJ6euN6vCQVIUFO5iyiTQd/F2Vy2mYN81y3m5Tirv9lKs2HuQS9gBD ibtAq8XIG/fqH//jctsnLgormOQMp7oT6+evw8mivnBhyFSDueDcX1RT/gzIu8ZA I1sw0aY3RBzZuwbGpx+wJdbijAZwEoVG3r8kvgXfwfI++ZXXvtxwCKGgrxhjAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUY1cKe1lVANAsU+iULHgEeOyz98kwHwYDVR0j BBgwFoAUuS8Ps+FB1S7Spx+kg+08bXI/YOIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YWZjYmZiYi1iYTNmLTRkNTMtYTA0Zi0xNGQ2ZjRiZTBjYjEvMS9COTJGMEZCM0Ux NDFENTJFRDJBNzFGQTQ4M0VEM0M2RDcyM0Y2MEUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjkyRjBGQjNFMTQxRDUyRUQyQTcxRkE0ODNFRDNDNkQ3MjNG NjBFMi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhZmNiZmJiLWJhM2YtNGQ1My1h MDRmLTE0ZDZmNGJlMGNiMS8xLzMyMzAzMDMxM2E2NDY2MzQzYTM2MzQ2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMzMzEzNDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9GTAMA0GCSqGSIb3DQEBCwUAA4IBAQCU4J09MHSKZSg/sBN5iPmOfdSd6HIfugMR giDxAHohxREfCBTlqvzlKyyjlubQZqn5HDdEMhTp3H3MVLgNj5bdwq1dUV+MaXZC Su0H2Emzn9+nvY5Jbuv7LBo0Qy151T1KvifIsqcd5b0iU9Y8FaobWYUUT1ybmv9E sGeZllyq+ACMKGFdWBMtMff1g40ztqJWd6grxXju/26xxRt0ibyKORMjt/guq9qb t5R4UMSecm4rVva5QG+nzLG0+WNMGJ0E8h9GdH+B5AQ2qVUIXDfo+/TQNqAiIXPX 9mzAVsd8l8BsQJUf5yvvNxutl26BVKhzIfwhmu1+y2bJu7INUORw -----END CERTIFICATE-----Generated at Wed Dec 3 14:44:23 2025 by rpki-client