This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/323430343a613463303a666163653a3a2f34382d3438203d3e20313338383232.roa File: 323430343a613463303a666163653a3a2f34382d3438203d3e20313338383232.roa (raw, json) Hash identifier: Ymw3mKUJLuc3UElUh0Nq2GfPGIEzD27CcOXD4JJbHT8= Subject key identifier: 20:01:D4:01:64:13:35:A7:60:E1:A1:2D:B5:68:63:20:93:3E:31:9C Certificate issuer: /CN=2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4 Certificate serial: 2A9F57F4F9C6DC4514FA53EB13B1B6D5D7E5E41E Authority key identifier: 2D:EC:7D:B2:A5:C9:62:CF:A5:3D:57:8D:EA:7D:C8:43:83:A6:33:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/323430343a613463303a666163653a3a2f34382d3438203d3e20313338383232.roa Signing time: Tue 28 Oct 2025 10:00:01 +0000 ROA not before: Tue 28 Oct 2025 09:55:01 +0000 ROA not after: Tue 27 Oct 2026 10:00:01 +0000 asID: 138822 IP address blocks: 2404:a4c0:face::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 05:23:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:9f:57:f4:f9:c6:dc:45:14:fa:53:eb:13:b1:b6:d5:d7:e5:e4:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4 Validity Not Before: Oct 28 09:55:01 2025 GMT Not After : Oct 27 10:00:01 2026 GMT Subject: CN=2001D401641335A760E1A12DB5686320933E319C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9a:70:4c:20:28:45:a2:1c:86:6f:11:6f:ae: 0e:e7:da:47:da:79:68:65:62:3b:19:43:50:21:a1: 36:3c:f4:60:bf:d4:8e:fa:d9:7c:a0:9e:95:be:61: 37:89:71:b1:2c:5b:e1:e4:cc:b0:ee:30:7d:62:5a: 17:36:2e:9b:fc:72:e5:73:b6:bd:3d:41:fc:58:99: 61:bc:ef:b7:75:f8:b1:9c:b9:d1:d7:69:1d:5c:69: 7b:36:f0:0a:ba:e6:c7:7c:dd:d8:62:7d:2f:f6:59: a5:e7:eb:b1:bd:30:0e:40:48:54:8b:b3:df:47:8f: 03:82:da:87:e0:0a:9b:0e:32:15:18:7e:0e:0a:66: b9:19:49:1e:cb:c7:4e:aa:0c:c2:79:44:19:f2:c8: b1:13:a2:b2:6f:ae:b7:0e:e9:13:23:dc:79:82:db: 8d:81:b7:b1:bf:ff:28:d4:1a:93:ad:3d:bc:f8:1d: a0:d9:31:c5:7e:fa:3d:a5:9f:4b:36:4e:37:2a:d7: 9c:9d:4b:d9:7e:71:a2:6e:d1:e8:50:58:34:88:99: af:14:c9:8f:be:b7:8a:b2:75:ff:02:71:d1:8e:0e: d6:ed:f7:ec:89:fd:b5:20:cc:f8:eb:7c:f3:11:ae: a7:e1:db:36:f5:93:23:0f:4a:e7:0d:29:16:2c:3f: f5:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:01:D4:01:64:13:35:A7:60:E1:A1:2D:B5:68:63:20:93:3E:31:9C X509v3 Authority Key Identifier: keyid:2D:EC:7D:B2:A5:C9:62:CF:A5:3D:57:8D:EA:7D:C8:43:83:A6:33:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/323430343a613463303a666163653a3a2f34382d3438203d3e20313338383232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:a4c0:face::/48 Signature Algorithm: sha256WithRSAEncryption cb:22:dd:4b:51:fe:ac:19:13:a1:f4:b7:33:37:81:3b:88:29: a6:50:04:d2:20:8c:71:02:ed:e5:65:c5:c7:5c:68:4d:2d:91: e2:fb:6a:67:2b:db:4d:97:d3:20:d5:2f:2a:8e:c8:bf:38:35: 42:31:01:75:53:fe:08:a4:85:c5:15:fb:af:28:c9:b2:ef:4c: 74:5e:5a:9e:c3:82:81:61:9a:b7:22:2c:c0:4c:a0:72:65:9c: f1:16:e8:b9:2e:fe:bd:9e:51:1f:19:54:f7:90:23:6d:68:42: a0:5b:7d:46:36:1c:1a:b2:3b:6c:5a:aa:59:2f:d4:67:36:4e: 66:d3:e1:c5:2b:d4:89:a7:62:8f:64:c8:d7:02:22:1e:62:fa: 25:51:dc:ed:b3:03:4a:15:31:d7:c1:ab:80:dc:9a:5d:3b:28: 3b:76:14:35:d8:a4:14:51:66:14:40:e9:af:07:66:5a:52:81: 4e:f8:96:2e:2f:6e:89:9c:01:8d:73:fe:d0:95:fa:18:08:fc: cb:03:a1:c7:1b:de:a5:61:71:f1:b7:cc:c8:ca:42:5f:10:3e: 7a:a6:2d:b7:59:38:e8:d1:d3:6b:dd:9d:5c:57:97:32:4c:d3: 19:7a:d7:57:1d:63:2c:47:75:b6:27:fa:8e:41:f1:c9:66:23: 76:33:07:c6 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUKp9X9PnG3EUU+lPrE7G21dfl5B4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4NDM4 M0E2MzNENDAeFw0yNTEwMjgwOTU1MDFaFw0yNjEwMjcxMDAwMDFaMDMxMTAvBgNV BAMTKDIwMDFENDAxNjQxMzM1QTc2MEUxQTEyREI1Njg2MzIwOTMzRTMxOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDImnBMIChFohyGbxFvrg7n2kfa eWhlYjsZQ1AhoTY89GC/1I762XygnpW+YTeJcbEsW+HkzLDuMH1iWhc2Lpv8cuVz tr09QfxYmWG877d1+LGcudHXaR1caXs28Aq65sd83dhifS/2WaXn67G9MA5ASFSL s99HjwOC2ofgCpsOMhUYfg4KZrkZSR7Lx06qDMJ5RBnyyLETorJvrrcO6RMj3HmC 242Bt7G//yjUGpOtPbz4HaDZMcV++j2ln0s2Tjcq15ydS9l+caJu0ehQWDSIma8U yY++t4qydf8CcdGODtbt9+yJ/bUgzPjrfPMRrqfh2zb1kyMPSucNKRYsP/VDAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUIAHUAWQTNadg4aEttWhjIJM+MZwwHwYDVR0j BBgwFoAULex9sqXJYs+lPVeN6n3IQ4OmM9QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l M2JiZjFkYS1lMzE3LTQ4ZWYtYWQ2ZC1mZThhOGJmMDg0MDAvMC8yREVDN0RCMkE1 Qzk2MkNGQTUzRDU3OERFQTdEQzg0MzgzQTYzM0Q0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4NDM4M0E2 MzNENC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UzYmJmMWRhLWUzMTctNDhlZi1h ZDZkLWZlOGE4YmYwODQwMC8wLzMyMzQzMDM0M2E2MTM0NjMzMDNhNjY2MTYzNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODMyMzIucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BKTA+s4wDQYJKoZIhvcNAQELBQADggEBAMsi3UtR/qwZE6H0tzM3gTuIKaZQBNIg jHEC7eVlxcdcaE0tkeL7amcr202X0yDVLyqOyL84NUIxAXVT/gikhcUV+68oybLv THReWp7DgoFhmrciLMBMoHJlnPEW6Lku/r2eUR8ZVPeQI21oQqBbfUY2HBqyO2xa qlkv1Gc2TmbT4cUr1ImnYo9kyNcCIh5i+iVR3O2zA0oVMdfBq4Dcml07KDt2FDXY pBRRZhRA6a8HZlpSgU74li4vbomcAY1z/tCV+hgI/MsDoccb3qVhcfG3zMjKQl8Q PnqmLbdZOOjR02vdnVxXlzJM0xl611cdYyxHdbYn+o5B8clmI3YzB8Y= -----END CERTIFICATE-----Generated at Wed Dec 3 16:51:00 2025 by rpki-client