This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/323030313a6466313a353438303a3a2f34382d3438203d3e20313339333737.roa File: 323030313a6466313a353438303a3a2f34382d3438203d3e20313339333737.roa (raw, json) Hash identifier: L5SSKiEo+E6kMD2pTjeK2EegAPOEaiDjUkwPgfIZ0H0= Subject key identifier: 59:18:B0:DF:69:9B:A7:9D:C3:34:09:9C:5C:E4:1B:90:47:8A:6A:EE Certificate issuer: /CN=C43D9C91D389ADDD2039882757F731CAFAAC740F Certificate serial: 182F8A3E774E889BD9C7A546FBCBD631AB15CE0B Authority key identifier: C4:3D:9C:91:D3:89:AD:DD:20:39:88:27:57:F7:31:CA:FA:AC:74:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C43D9C91D389ADDD2039882757F731CAFAAC740F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/323030313a6466313a353438303a3a2f34382d3438203d3e20313339333737.roa Signing time: Fri 31 Oct 2025 21:00:00 +0000 ROA not before: Fri 31 Oct 2025 20:55:00 +0000 ROA not after: Fri 30 Oct 2026 21:00:00 +0000 asID: 139377 IP address blocks: 2001:df1:5480::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/C43D9C91D389ADDD2039882757F731CAFAAC740F.crl rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/C43D9C91D389ADDD2039882757F731CAFAAC740F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C43D9C91D389ADDD2039882757F731CAFAAC740F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 11:32:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:2f:8a:3e:77:4e:88:9b:d9:c7:a5:46:fb:cb:d6:31:ab:15:ce:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C43D9C91D389ADDD2039882757F731CAFAAC740F Validity Not Before: Oct 31 20:55:00 2025 GMT Not After : Oct 30 21:00:00 2026 GMT Subject: CN=5918B0DF699BA79DC334099C5CE41B90478A6AEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d1:49:4f:50:83:b3:6b:f6:2a:2c:73:91:d9: c0:56:e0:22:15:87:69:a8:3c:85:59:51:02:9a:27: a7:5d:36:2a:7a:4f:f7:18:7c:ce:80:c0:68:f3:ae: 64:4b:3b:a7:f6:dd:0f:8d:f4:d9:e5:39:02:8d:85: 3b:51:3b:26:45:bf:e0:09:c2:bc:4d:73:a8:a3:d3: 50:27:26:94:8d:66:07:ea:89:c5:6c:33:e1:92:f8: 5f:a3:42:f8:2c:1a:ce:08:9c:9b:b7:4d:73:e1:2d: 53:b1:78:b8:3c:d8:b3:fe:a6:b4:32:5c:66:78:e8: e6:8e:2f:00:f7:e8:12:21:03:25:5c:fd:88:69:86: 6f:51:74:46:9d:f5:0e:af:63:a1:99:a2:93:b4:fc: 1f:53:db:48:54:42:8c:42:53:a9:96:92:aa:53:b7: 73:e2:52:1e:2f:c2:e0:f3:d5:fd:aa:66:0d:fe:eb: 82:77:d8:0e:9a:ec:49:bb:2b:56:cf:dd:d4:29:09: 18:f8:68:6f:ac:44:1c:4d:9e:12:14:b3:c6:dd:e6: 7a:90:d7:cf:7e:d4:e2:5a:48:a3:1a:ec:80:7a:8a: 12:1c:fe:2e:03:61:88:d4:e5:c9:57:48:e7:bb:fd: 9f:50:20:8e:f8:8f:fc:06:36:fe:77:6b:8c:3a:79: 42:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:18:B0:DF:69:9B:A7:9D:C3:34:09:9C:5C:E4:1B:90:47:8A:6A:EE X509v3 Authority Key Identifier: keyid:C4:3D:9C:91:D3:89:AD:DD:20:39:88:27:57:F7:31:CA:FA:AC:74:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/C43D9C91D389ADDD2039882757F731CAFAAC740F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C43D9C91D389ADDD2039882757F731CAFAAC740F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/323030313a6466313a353438303a3a2f34382d3438203d3e20313339333737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:5480::/48 Signature Algorithm: sha256WithRSAEncryption 31:4a:9e:55:90:51:5d:54:52:c4:c3:45:12:5b:a8:51:28:c4: e0:95:da:a8:e6:87:95:82:dd:93:e5:c7:88:61:8f:41:0a:68: 7e:1d:29:aa:dd:c4:e6:91:35:10:23:de:8c:89:06:93:3a:80: b4:ff:7e:ed:52:94:b5:2b:22:11:bf:a0:f5:a6:5f:66:32:37: d8:69:88:de:28:bb:4c:23:84:2e:55:83:70:74:bd:29:59:89: 27:13:60:9b:9e:9e:5a:09:30:7d:4b:9c:f1:7f:4f:13:9a:22: 2e:7b:9a:f8:12:61:cd:11:56:69:53:4a:d4:18:5f:b9:59:e8: 1a:23:71:06:50:8f:1d:10:17:6d:c3:ed:35:5e:d2:e6:07:50: 85:c1:43:51:0e:e4:79:6d:5e:bd:10:4d:7c:a9:d5:c9:72:06: 0a:b2:5d:b7:6a:8a:73:f4:2a:e1:2c:bd:f9:e2:99:9c:48:f1: 25:07:74:78:3b:2b:f6:39:1d:d9:73:af:b6:c0:5d:89:a7:06: 89:d1:25:eb:67:c1:28:c1:e4:fc:27:51:01:fa:94:ff:0a:1b: bf:d6:a5:55:8f:4a:53:45:ca:49:f8:52:57:a3:1c:79:34:fd: 03:ab:2c:aa:29:59:b7:79:df:57:8e:fe:38:b6:d7:7a:b7:49: 3d:42:b8:e0 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGC+KPndOiJvZx6VG+8vWMasVzgswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQzRDlDOTFEMzg5QURERDIwMzk4ODI3NTdGNzMxQ0FG QUFDNzQwRjAeFw0yNTEwMzEyMDU1MDBaFw0yNjEwMzAyMTAwMDBaMDMxMTAvBgNV BAMTKDU5MThCMERGNjk5QkE3OURDMzM0MDk5QzVDRTQxQjkwNDc4QTZBRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF0UlPUIOza/YqLHOR2cBW4CIV h2moPIVZUQKaJ6ddNip6T/cYfM6AwGjzrmRLO6f23Q+N9NnlOQKNhTtROyZFv+AJ wrxNc6ij01AnJpSNZgfqicVsM+GS+F+jQvgsGs4InJu3TXPhLVOxeLg82LP+prQy XGZ46OaOLwD36BIhAyVc/Yhphm9RdEad9Q6vY6GZopO0/B9T20hUQoxCU6mWkqpT t3PiUh4vwuDz1f2qZg3+64J32A6a7Em7K1bP3dQpCRj4aG+sRBxNnhIUs8bd5nqQ 189+1OJaSKMa7IB6ihIc/i4DYYjU5clXSOe7/Z9QII74j/wGNv53a4w6eUJlAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUWRiw32mbp53DNAmcXOQbkEeKau4wHwYDVR0j BBgwFoAUxD2ckdOJrd0gOYgnV/cxyvqsdA8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MmFhMmQxMC0zZmFhLTQyNzItYmUxZi04MTAyOTU3YjY1ZTYvMC9DNDNEOUM5MUQz ODlBREREMjAzOTg4Mjc1N0Y3MzFDQUZBQUM3NDBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQzRDlDOTFEMzg5QURERDIwMzk4ODI3NTdGNzMxQ0FGQUFD NzQwRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YyYWEyZDEwLTNmYWEtNDI3Mi1i ZTFmLTgxMDI5NTdiNjVlNi8wLzMyMzAzMDMxM2E2NDY2MzEzYTM1MzQzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzMzNzM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8VSAMA0GCSqGSIb3DQEBCwUAA4IBAQAxSp5VkFFdVFLEw0USW6hRKMTgldqo5oeV gt2T5ceIYY9BCmh+HSmq3cTmkTUQI96MiQaTOoC0/37tUpS1KyIRv6D1pl9mMjfY aYjeKLtMI4QuVYNwdL0pWYknE2Cbnp5aCTB9S5zxf08TmiIue5r4EmHNEVZpU0rU GF+5WegaI3EGUI8dEBdtw+01XtLmB1CFwUNRDuR5bV69EE18qdXJcgYKsl23aopz 9CrhLL354pmcSPElB3R4Oyv2OR3Zc6+2wF2JpwaJ0SXrZ8EoweT8J1EB+pT/Chu/ 1qVVj0pTRcpJ+FJXoxx5NP0DqyyqKVm3ed9Xjv44ttd6t0k9Qrjg -----END CERTIFICATE-----Generated at Mon Dec 15 01:31:30 2025 by rpki-client