This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/032cae3f-b329-441b-97fc-5bb9fcc051d2/0/323030313a6466353a323730303a3a2f34382d3438203d3e20313337333631.roa File: 323030313a6466353a323730303a3a2f34382d3438203d3e20313337333631.roa (raw, json) Hash identifier: GqPoKCikWixpTyaRkrl7PIpso4FRMb2kN+4gyGItvwo= Subject key identifier: E4:6A:4C:B0:E5:4C:EF:3B:08:1A:1B:0E:85:FE:3D:98:4B:11:F9:89 Certificate issuer: /CN=DBF71D6F8C24BDB80D692BE86D6F7AD3951B6CEE Certificate serial: 407302EBFC3045B3D4D91B4F88E81604B1341E8B Authority key identifier: DB:F7:1D:6F:8C:24:BD:B8:0D:69:2B:E8:6D:6F:7A:D3:95:1B:6C:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF71D6F8C24BDB80D692BE86D6F7AD3951B6CEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/032cae3f-b329-441b-97fc-5bb9fcc051d2/0/323030313a6466353a323730303a3a2f34382d3438203d3e20313337333631.roa Signing time: Mon 08 Dec 2025 16:00:02 +0000 ROA not before: Mon 08 Dec 2025 15:55:02 +0000 ROA not after: Mon 07 Dec 2026 16:00:02 +0000 asID: 137361 IP address blocks: 2001:df5:2700::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/032cae3f-b329-441b-97fc-5bb9fcc051d2/0/DBF71D6F8C24BDB80D692BE86D6F7AD3951B6CEE.crl rsync://repo-rpki.idnic.net/repo/032cae3f-b329-441b-97fc-5bb9fcc051d2/0/DBF71D6F8C24BDB80D692BE86D6F7AD3951B6CEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF71D6F8C24BDB80D692BE86D6F7AD3951B6CEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:73:02:eb:fc:30:45:b3:d4:d9:1b:4f:88:e8:16:04:b1:34:1e:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBF71D6F8C24BDB80D692BE86D6F7AD3951B6CEE Validity Not Before: Dec 8 15:55:02 2025 GMT Not After : Dec 7 16:00:02 2026 GMT Subject: CN=E46A4CB0E54CEF3B081A1B0E85FE3D984B11F989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:04:58:f9:05:1a:a4:87:56:14:54:8c:3a:30: 9c:cf:04:cd:87:ba:5f:b8:9d:7e:76:28:b3:2a:29: b8:1c:d3:7e:a9:53:56:8a:2d:23:05:fc:26:f2:50: 97:11:71:22:c2:ec:27:2f:a8:2f:7d:83:db:ef:c1: 39:fd:69:66:33:58:46:b1:cc:09:91:b3:46:fd:47: 35:6a:e7:2c:4b:ef:fa:00:db:ac:f9:d4:5c:61:9e: eb:cb:16:65:23:97:b2:b8:38:ba:57:91:8d:20:75: f9:dc:27:33:85:a4:89:5c:21:26:28:ea:17:2f:4d: 23:40:a4:a5:12:30:04:09:02:6c:c4:56:ca:5c:33: 95:16:c8:b2:3e:b4:8b:d0:60:73:43:5b:c7:71:dc: dd:01:d2:7a:df:35:d0:6c:df:7b:45:61:ce:23:f8: 04:9c:fd:52:bb:07:32:f1:ac:ea:b8:d8:7f:c4:2e: 26:a8:d8:8d:e5:64:3b:96:91:65:6e:13:78:7e:cd: c7:b4:65:91:a2:13:4b:62:63:4a:18:f3:a4:61:f0: 80:d9:48:4c:39:54:36:a9:ef:45:d3:dc:05:a2:c1: fa:18:83:dc:af:37:0a:1d:f3:e8:b2:64:2c:0c:25: b0:28:8d:e5:78:1d:a3:b7:0e:bf:91:04:e7:df:ec: d1:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:6A:4C:B0:E5:4C:EF:3B:08:1A:1B:0E:85:FE:3D:98:4B:11:F9:89 X509v3 Authority Key Identifier: keyid:DB:F7:1D:6F:8C:24:BD:B8:0D:69:2B:E8:6D:6F:7A:D3:95:1B:6C:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/032cae3f-b329-441b-97fc-5bb9fcc051d2/0/DBF71D6F8C24BDB80D692BE86D6F7AD3951B6CEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF71D6F8C24BDB80D692BE86D6F7AD3951B6CEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/032cae3f-b329-441b-97fc-5bb9fcc051d2/0/323030313a6466353a323730303a3a2f34382d3438203d3e20313337333631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:2700::/48 Signature Algorithm: sha256WithRSAEncryption 6b:cb:93:b6:3b:b0:6e:47:66:b1:6d:69:6c:80:36:35:df:51: 6c:db:03:ac:bf:86:93:54:6f:3b:43:6d:4a:41:05:03:c5:93: 71:7a:6e:25:37:92:c0:68:3e:2e:e9:a4:59:1b:98:b7:8b:cd: 2e:68:2d:e9:7f:98:79:3e:cd:d5:f2:93:b9:c1:2a:e4:25:2c: 10:0e:81:56:67:6c:fe:9d:90:ba:9c:08:4d:c7:f0:be:30:d1: 10:a8:06:bf:5a:50:ac:3d:a9:09:9c:0e:e5:97:f6:f9:c8:35: ad:ca:2c:53:08:de:8f:86:fb:96:93:87:5c:04:62:91:05:0c: bf:83:62:d5:8e:b9:40:6d:b3:8c:d7:14:47:37:ad:d2:fc:eb: 01:4d:d4:6c:6c:d3:2d:f8:33:d2:13:c4:03:dc:fa:8f:c0:0a: c6:cb:cc:cb:03:86:f7:de:c1:52:85:5e:f1:d4:e0:65:aa:12: e9:b9:d3:3e:1c:39:10:42:a3:1f:29:7d:54:5c:bf:a2:31:9f: cd:77:94:c8:95:7b:12:61:e9:37:79:f4:8b:5b:b7:36:fb:cb: 44:8f:a4:bf:06:c8:c3:f3:0b:c7:c4:39:fa:e0:91:c1:b5:32: 80:8b:9c:7d:00:fd:c4:fa:a3:f9:99:36:e2:28:34:07:c9:b3: fb:8d:c6:db -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUQHMC6/wwRbPU2RtPiOgWBLE0HoswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREJGNzFENkY4QzI0QkRCODBENjkyQkU4NkQ2RjdBRDM5 NTFCNkNFRTAeFw0yNTEyMDgxNTU1MDJaFw0yNjEyMDcxNjAwMDJaMDMxMTAvBgNV BAMTKEU0NkE0Q0IwRTU0Q0VGM0IwODFBMUIwRTg1RkUzRDk4NEIxMUY5ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgBFj5BRqkh1YUVIw6MJzPBM2H ul+4nX52KLMqKbgc036pU1aKLSMF/CbyUJcRcSLC7CcvqC99g9vvwTn9aWYzWEax zAmRs0b9RzVq5yxL7/oA26z51FxhnuvLFmUjl7K4OLpXkY0gdfncJzOFpIlcISYo 6hcvTSNApKUSMAQJAmzEVspcM5UWyLI+tIvQYHNDW8dx3N0B0nrfNdBs33tFYc4j +ASc/VK7BzLxrOq42H/ELiao2I3lZDuWkWVuE3h+zce0ZZGiE0tiY0oY86Rh8IDZ SEw5VDap70XT3AWiwfoYg9yvNwod8+iyZCwMJbAojeV4HaO3Dr+RBOff7NETAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU5GpMsOVM7zsIGhsOhf49mEsR+YkwHwYDVR0j BBgwFoAU2/cdb4wkvbgNaSvobW9605UbbO4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MzJjYWUzZi1iMzI5LTQ0MWItOTdmYy01YmI5ZmNjMDUxZDIvMC9EQkY3MUQ2RjhD MjRCREI4MEQ2OTJCRTg2RDZGN0FEMzk1MUI2Q0VFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREJGNzFENkY4QzI0QkRCODBENjkyQkU4NkQ2RjdBRDM5NTFC NkNFRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAzMmNhZTNmLWIzMjktNDQxYi05 N2ZjLTViYjlmY2MwNTFkMi8wLzMyMzAzMDMxM2E2NDY2MzUzYTMyMzczMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzNjMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9ScAMA0GCSqGSIb3DQEBCwUAA4IBAQBry5O2O7BuR2axbWlsgDY131Fs2wOsv4aT VG87Q21KQQUDxZNxem4lN5LAaD4u6aRZG5i3i80uaC3pf5h5Ps3V8pO5wSrkJSwQ DoFWZ2z+nZC6nAhNx/C+MNEQqAa/WlCsPakJnA7ll/b5yDWtyixTCN6PhvuWk4dc BGKRBQy/g2LVjrlAbbOM1xRHN63S/OsBTdRsbNMt+DPSE8QD3PqPwArGy8zLA4b3 3sFShV7x1OBlqhLpudM+HDkQQqMfKX1UXL+iMZ/Nd5TIlXsSYek3efSLW7c2+8tE j6S/BsjD8wvHxDn64JHBtTKAi5x9AP3E+qP5mTbiKDQHybP7jcbb -----END CERTIFICATE-----Generated at Wed Dec 24 22:08:33 2025 by rpki-client