This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a3a2f33322d3332203d3e20313339343137.roa File: 323430343a636163303a3a2f33322d3332203d3e20313339343137.roa (raw, json) Hash identifier: s53TJWJAv9flAi62r4hsK2rclk66IcAtKdIRIb1s/Ps= Subject key identifier: 63:19:15:50:AE:D2:79:69:B0:FA:55:97:EF:4B:38:22:FA:42:AC:51 Certificate issuer: /CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Certificate serial: 02DCFEB885FA3F8F39F2018E674C655D68A6CF67 Authority key identifier: 8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a3a2f33322d3332203d3e20313339343137.roa Signing time: Sat 22 Nov 2025 11:00:01 +0000 ROA not before: Sat 22 Nov 2025 10:55:01 +0000 ROA not after: Sat 21 Nov 2026 11:00:01 +0000 asID: 139417 IP address blocks: 2404:cac0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 00:25:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:dc:fe:b8:85:fa:3f:8f:39:f2:01:8e:67:4c:65:5d:68:a6:cf:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Validity Not Before: Nov 22 10:55:01 2025 GMT Not After : Nov 21 11:00:01 2026 GMT Subject: CN=63191550AED27969B0FA5597EF4B3822FA42AC51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a3:95:27:96:07:3f:b1:02:1d:92:7a:9a:e2: 39:c6:80:d3:71:bd:5c:5b:da:ba:51:b2:b0:dc:77: 01:25:f9:ec:8f:6c:3e:3f:77:77:e1:c1:66:e3:f4: f3:ab:05:8a:fb:3c:eb:56:ea:d1:19:fa:4e:5a:66: 9e:94:78:e0:35:f5:94:32:d3:0e:4f:8b:a5:94:36: be:86:51:3e:ed:76:8d:86:40:fd:b7:81:8e:59:73: 3e:14:42:dd:94:be:45:7f:47:83:7f:f8:af:47:3e: 63:1e:09:61:fa:e8:cd:94:1b:01:6a:43:e3:91:86: 17:5e:6f:93:71:03:e1:d9:69:fa:28:53:e3:59:ef: 12:68:a8:64:95:3c:d0:52:d5:db:9c:8d:c0:c5:ff: dd:c1:e9:e6:0f:a2:0c:15:84:33:d3:80:b6:72:dd: 0c:75:67:ca:98:41:fc:6f:1e:9d:82:82:12:3b:88: 2d:80:76:69:a7:04:41:36:17:ba:b6:0e:27:db:50: a3:b1:e4:fb:6f:15:2d:a2:d3:e0:f5:55:ad:07:39: 6c:0c:fe:45:00:05:20:93:4c:70:b9:78:e3:28:0d: 09:c4:b7:32:f2:d0:bf:4d:e5:a6:0e:f0:9d:22:d1: 1f:22:a1:97:2a:68:5d:cb:f6:2d:0e:55:5a:99:e0: c0:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:19:15:50:AE:D2:79:69:B0:FA:55:97:EF:4B:38:22:FA:42:AC:51 X509v3 Authority Key Identifier: keyid:8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a3a2f33322d3332203d3e20313339343137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:cac0::/32 Signature Algorithm: sha256WithRSAEncryption 94:e1:cc:e5:67:a4:45:bb:0a:40:f2:38:d6:8f:cb:26:ad:c9: 8e:42:85:59:0c:1b:c3:ff:db:0a:75:cc:c3:1c:ca:72:73:a9: 20:f7:72:68:5c:b2:40:43:8d:d1:1a:42:70:7b:24:a8:83:7e: f0:bb:55:86:c4:10:7a:ea:fe:52:0a:79:1e:c7:fd:20:57:63: 31:c0:2c:03:51:ae:37:95:64:14:90:90:49:8e:dc:df:cd:af: e4:37:05:11:07:96:14:08:b8:d7:6d:96:d1:2d:81:75:ee:6c: d6:3a:d6:22:22:a5:71:73:7e:56:0f:3f:05:22:f4:c7:18:aa: 61:33:c8:16:76:9e:e6:57:1a:d9:eb:7a:6c:92:74:a7:6b:c8: ec:22:f4:1e:03:82:6e:be:22:90:63:b8:ad:46:00:8a:90:a3: 94:42:72:88:1e:ea:0b:5b:f3:96:02:4f:f3:9a:66:34:4c:c5: eb:78:4d:0c:07:e1:fb:3a:53:49:0e:1d:f6:22:60:84:38:7a: 45:2d:b0:f9:7d:bb:04:54:32:19:a1:d5:45:ab:3d:9b:e7:e9: c1:8f:89:27:50:5a:55:07:4f:2f:c3:6d:5c:2a:45:c9:33:c1: ff:97:03:1f:3f:c1:c2:42:e0:72:75:dd:49:36:7c:73:c0:42: 56:5e:5f:78 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUAtz+uIX6P4858gGOZ0xlXWimz2cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3 MkRBRURENjAeFw0yNTExMjIxMDU1MDFaFw0yNjExMjExMTAwMDFaMDMxMTAvBgNV BAMTKDYzMTkxNTUwQUVEMjc5NjlCMEZBNTU5N0VGNEIzODIyRkE0MkFDNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIo5Unlgc/sQIdknqa4jnGgNNx vVxb2rpRsrDcdwEl+eyPbD4/d3fhwWbj9POrBYr7POtW6tEZ+k5aZp6UeOA19ZQy 0w5Pi6WUNr6GUT7tdo2GQP23gY5Zcz4UQt2UvkV/R4N/+K9HPmMeCWH66M2UGwFq Q+ORhhdeb5NxA+HZafooU+NZ7xJoqGSVPNBS1ducjcDF/93B6eYPogwVhDPTgLZy 3Qx1Z8qYQfxvHp2CghI7iC2AdmmnBEE2F7q2DifbUKOx5PtvFS2i0+D1Va0HOWwM /kUABSCTTHC5eOMoDQnEtzLy0L9N5aYO8J0i0R8ioZcqaF3L9i0OVVqZ4MAbAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUYxkVUK7SeWmw+lWX70s4IvpCrFEwHwYDVR0j BBgwFoAUj8SJnKPWEqRcHB3AKiH2M3La7dYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTQxM2ZmNC0yMDJiLTQ5OTktYjQ1ZC03M2M5NzJmMTAxMTYvMC84RkM0ODk5Q0Ez RDYxMkE0NUMxQzFEQzAyQTIxRjYzMzcyREFFREQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3MkRB RURENi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1NDEzZmY0LTIwMmItNDk5OS1i NDVkLTczYzk3MmYxMDExNi8wLzMyMzQzMDM0M2E2MzYxNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM0MzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEysAwDQYJKoZI hvcNAQELBQADggEBAJThzOVnpEW7CkDyONaPyyatyY5ChVkMG8P/2wp1zMMcynJz qSD3cmhcskBDjdEaQnB7JKiDfvC7VYbEEHrq/lIKeR7H/SBXYzHALANRrjeVZBSQ kEmO3N/Nr+Q3BREHlhQIuNdtltEtgXXubNY61iIipXFzflYPPwUi9McYqmEzyBZ2 nuZXGtnremySdKdryOwi9B4Dgm6+IpBjuK1GAIqQo5RCcoge6gtb85YCT/OaZjRM xet4TQwH4fs6U0kOHfYiYIQ4ekUtsPl9uwRUMhmh1UWrPZvn6cGPiSdQWlUHTy/D bVwqRckzwf+XAx8/wcJC4HJ13Uk2fHPAQlZeX3g= -----END CERTIFICATE-----Generated at Wed Dec 3 16:51:28 2025 by rpki-client