This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa File: 323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa (raw, json) Hash identifier: xala12s6NGlWdt+lWB7nCyXhpdJkrQpRN4xo94j8YNU= Subject key identifier: A0:DE:05:46:71:7D:6D:4F:F6:AB:1C:E3:4D:3B:E1:96:F2:F3:F0:98 Certificate issuer: /CN=DF3717861F6521730921F11365C5A826CFF24DAA Certificate serial: 7A5F10E2641B265CA336449DC1C9A99A17CB8D54 Authority key identifier: DF:37:17:86:1F:65:21:73:09:21:F1:13:65:C5:A8:26:CF:F2:4D:AA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF3717861F6521730921F11365C5A826CFF24DAA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa Signing time: Thu 13 Nov 2025 05:02:31 +0000 ROA not before: Thu 13 Nov 2025 04:57:31 +0000 ROA not after: Thu 12 Nov 2026 05:02:31 +0000 asID: 152082 IP address blocks: 2001:df3:5bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/DF3717861F6521730921F11365C5A826CFF24DAA.crl rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/DF3717861F6521730921F11365C5A826CFF24DAA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF3717861F6521730921F11365C5A826CFF24DAA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 09:04:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:5f:10:e2:64:1b:26:5c:a3:36:44:9d:c1:c9:a9:9a:17:cb:8d:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF3717861F6521730921F11365C5A826CFF24DAA Validity Not Before: Nov 13 04:57:31 2025 GMT Not After : Nov 12 05:02:31 2026 GMT Subject: CN=A0DE0546717D6D4FF6AB1CE34D3BE196F2F3F098 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2c:cb:09:55:e6:29:e0:8b:59:e5:44:9e:33: 22:48:17:17:dc:5f:3a:32:04:7a:84:45:ef:43:9e: 50:58:62:80:1a:6e:b1:23:fe:2c:6d:2d:16:d8:42: cd:3e:30:eb:d9:31:3e:6c:d3:c0:41:4b:c7:1f:7f: 3d:89:a0:d3:db:ad:f4:8a:1a:b4:c5:9c:ea:be:a2: 42:ec:9f:d0:29:f8:32:1e:b4:28:90:bb:13:3a:f0: 24:e8:61:16:99:eb:53:2e:59:aa:f0:64:4a:1c:5a: e8:84:42:20:d4:fc:06:4a:19:49:60:5c:dc:0a:49: ed:dc:84:3d:5a:04:b0:fa:99:66:b5:c4:e0:1f:59: 40:ef:ec:e0:32:8d:ef:c8:d9:11:68:db:9a:95:ef: cf:2e:84:d8:e6:ac:a4:88:24:42:b0:76:73:80:06: fc:6b:fd:6b:38:e0:57:a5:53:34:77:08:7f:b2:ae: 40:38:60:82:f4:74:e2:fb:6a:b5:4b:f3:0c:2a:d6: df:4c:18:47:c2:4f:bd:e7:6f:49:63:b5:7e:b0:16: 7a:86:db:e3:64:3b:c6:7c:97:b3:fe:2f:c4:71:87: ee:ca:8d:af:58:6f:7e:01:07:74:eb:c7:dc:1b:37: d5:3b:16:05:22:fb:ff:d5:3d:92:60:cb:7a:63:90: 6f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:DE:05:46:71:7D:6D:4F:F6:AB:1C:E3:4D:3B:E1:96:F2:F3:F0:98 X509v3 Authority Key Identifier: keyid:DF:37:17:86:1F:65:21:73:09:21:F1:13:65:C5:A8:26:CF:F2:4D:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/DF3717861F6521730921F11365C5A826CFF24DAA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF3717861F6521730921F11365C5A826CFF24DAA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/323030313a6466333a356263303a3a2f34382d3438203d3e20313532303832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:5bc0::/48 Signature Algorithm: sha256WithRSAEncryption 92:c8:68:b1:3f:f9:f8:3a:73:04:15:2c:f8:7f:15:8e:a6:ba: 2c:54:3c:05:cb:a5:72:05:ae:5e:3f:c3:fb:7b:ae:25:7d:cd: 11:1c:91:d7:8c:c2:ce:62:f5:27:f9:3b:d8:c6:31:90:0d:0f: 35:8e:4b:be:e7:87:41:a7:72:82:63:1c:8f:fa:22:8c:9d:43: 64:77:94:82:c2:34:6d:a3:89:8b:7a:7d:3e:79:66:18:5c:3d: ca:84:ec:d2:d1:3a:a1:91:5f:a6:22:ec:fe:8f:59:9c:ed:1b: da:3e:d5:b5:d0:03:59:5b:23:39:11:5b:20:11:1a:01:1d:a4: 9e:34:08:78:fd:38:ad:52:83:6a:5f:ca:6b:af:4b:b4:4c:7a: 27:43:22:1b:6f:b6:40:7e:99:13:7d:be:7e:80:18:0e:40:8a: 3f:92:81:50:4a:44:e9:33:46:cc:e2:4b:e0:68:eb:cb:27:7f: 61:21:b9:79:3a:f7:f5:0f:8e:aa:28:ba:a9:58:cc:2d:c1:95: 62:bc:ed:e5:85:29:dd:10:25:59:6d:6f:25:a1:8e:50:20:bd: a5:6a:d8:2c:a1:01:9d:29:85:80:66:db:ea:8d:cd:3c:39:4e: 5c:a2:95:01:47:8d:2c:73:fb:21:d4:7d:23:0e:c3:9d:9c:9b: 14:35:7b:7c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUel8Q4mQbJlyjNkSdwcmpmhfLjVQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYzNzE3ODYxRjY1MjE3MzA5MjFGMTEzNjVDNUE4MjZD RkYyNERBQTAeFw0yNTExMTMwNDU3MzFaFw0yNjExMTIwNTAyMzFaMDMxMTAvBgNV BAMTKEEwREUwNTQ2NzE3RDZENEZGNkFCMUNFMzREM0JFMTk2RjJGM0YwOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4LMsJVeYp4ItZ5USeMyJIFxfc XzoyBHqERe9DnlBYYoAabrEj/ixtLRbYQs0+MOvZMT5s08BBS8cffz2JoNPbrfSK GrTFnOq+okLsn9Ap+DIetCiQuxM68CToYRaZ61MuWarwZEocWuiEQiDU/AZKGUlg XNwKSe3chD1aBLD6mWa1xOAfWUDv7OAyje/I2RFo25qV788uhNjmrKSIJEKwdnOA Bvxr/Ws44FelUzR3CH+yrkA4YIL0dOL7arVL8wwq1t9MGEfCT73nb0ljtX6wFnqG 2+NkO8Z8l7P+L8Rxh+7Kja9Yb34BB3Trx9wbN9U7FgUi+//VPZJgy3pjkG8vAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUoN4FRnF9bU/2qxzjTTvhlvLz8JgwHwYDVR0j BBgwFoAU3zcXhh9lIXMJIfETZcWoJs/yTaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NDdjZDVhMi1hNzQyLTQ1MGMtYjE5MC01MDBlNzU0NTIwZGUvMS9ERjM3MTc4NjFG NjUyMTczMDkyMUYxMTM2NUM1QTgyNkNGRjI0REFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREYzNzE3ODYxRjY1MjE3MzA5MjFGMTEzNjVDNUE4MjZDRkYy NERBQS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U0N2NkNWEyLWE3NDItNDUwYy1i MTkwLTUwMGU3NTQ1MjBkZS8xLzMyMzAzMDMxM2E2NDY2MzMzYTM1NjI2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzAzODMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 81vAMA0GCSqGSIb3DQEBCwUAA4IBAQCSyGixP/n4OnMEFSz4fxWOprosVDwFy6Vy Ba5eP8P7e64lfc0RHJHXjMLOYvUn+TvYxjGQDQ81jku+54dBp3KCYxyP+iKMnUNk d5SCwjRto4mLen0+eWYYXD3KhOzS0TqhkV+mIuz+j1mc7RvaPtW10ANZWyM5EVsg ERoBHaSeNAh4/TitUoNqX8prr0u0THonQyIbb7ZAfpkTfb5+gBgOQIo/koFQSkTp M0bM4kvgaOvLJ39hIbl5Ovf1D46qKLqpWMwtwZVivO3lhSndECVZbW8loY5QIL2l atgsoQGdKYWAZtvqjc08OU5copUBR40sc/sh1H0jDsOdnJsUNXt8 -----END CERTIFICATE-----Generated at Wed Dec 3 15:32:33 2025 by rpki-client