This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/323030313a6466323a6634303a3a2f34382d3438203d3e20313530393232.roa File: 323030313a6466323a6634303a3a2f34382d3438203d3e20313530393232.roa (raw, json) Hash identifier: C3HGpl1ThenH4EorAZEJtVKi4KUYV7opK2C6bqklYfw= Subject key identifier: 68:90:21:34:73:B4:85:7A:9C:0D:6F:62:3A:59:87:74:60:57:89:59 Certificate issuer: /CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Certificate serial: 242DC7B9C55662BD366F72CC2CE47000364224A5 Authority key identifier: 03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/323030313a6466323a6634303a3a2f34382d3438203d3e20313530393232.roa Signing time: Wed 10 Dec 2025 10:01:07 +0000 ROA not before: Wed 10 Dec 2025 09:56:07 +0000 ROA not after: Wed 09 Dec 2026 10:01:07 +0000 asID: 150922 IP address blocks: 2001:df2:f40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 01:30:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:2d:c7:b9:c5:56:62:bd:36:6f:72:cc:2c:e4:70:00:36:42:24:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Validity Not Before: Dec 10 09:56:07 2025 GMT Not After : Dec 9 10:01:07 2026 GMT Subject: CN=6890213473B4857A9C0D6F623A59877460578959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:bd:f5:6e:70:e4:df:4c:68:55:57:6c:67:4b: 9f:40:b7:a5:d2:45:ae:55:39:c6:11:46:a5:76:50: 6e:0b:12:48:f7:9e:c9:99:b2:25:7f:66:f6:55:c4: ce:b3:b8:dd:49:3d:19:48:e4:22:ee:2d:92:3c:8e: 2a:b3:90:06:82:8c:8a:f7:98:6f:ec:d9:16:ca:ab: e1:7b:6e:25:ef:81:77:f8:f4:b9:5b:60:22:86:80: e5:42:19:36:99:b4:83:9e:4b:ec:a3:1b:b2:68:6c: 03:cf:86:bb:2d:bd:49:dc:34:c8:f2:af:3c:fb:d8: 83:97:93:4d:11:60:e0:24:fd:0c:f7:e4:31:ed:65: aa:aa:07:f9:29:44:05:f3:f6:1d:94:d3:70:f2:fe: ce:43:aa:84:b7:8e:16:2d:3b:a5:75:a4:03:36:ad: e2:f7:c0:64:87:e3:58:52:42:b2:c2:51:66:48:c4: 90:ff:b3:dd:db:66:24:6b:a9:eb:9d:c6:27:29:1d: ba:18:36:6e:eb:00:e8:f5:af:94:a9:30:4f:0c:2d: d6:4c:6a:58:57:1c:3d:c8:4c:f9:b9:f9:65:91:84: 00:31:b2:9a:43:5f:49:ad:35:f6:0f:0d:66:c4:d7: 10:00:4e:6e:cc:d8:38:19:19:9b:8c:fb:b1:d2:a7: b5:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:90:21:34:73:B4:85:7A:9C:0D:6F:62:3A:59:87:74:60:57:89:59 X509v3 Authority Key Identifier: keyid:03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/323030313a6466323a6634303a3a2f34382d3438203d3e20313530393232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:f40::/48 Signature Algorithm: sha256WithRSAEncryption 57:3e:76:d2:25:85:72:e2:9d:98:4c:7d:3d:fb:61:10:19:0e: 70:38:45:d1:71:1e:d7:18:3c:6c:76:2e:cc:df:3b:e6:19:01: 05:57:c8:fc:31:55:d4:dd:78:7c:bc:a4:5e:08:06:3e:f0:fd: a0:73:41:02:0d:c2:8b:0d:86:81:c7:54:b8:36:7f:52:10:20: de:f2:bf:9e:93:fa:99:89:6b:47:26:a6:38:90:75:17:b1:7c: 56:6a:b8:f0:f3:eb:72:23:76:cd:d5:94:b2:74:e3:5f:e4:d9: 62:fe:19:0a:0d:77:32:e0:d6:be:f6:8b:b3:39:68:bd:02:80: e0:95:cb:c5:e0:1c:03:7f:dd:b8:04:a6:7a:ce:e3:45:4a:2c: a9:f6:2c:a9:68:57:95:b9:79:a9:d9:3c:f0:bc:df:af:e0:d4: 50:ca:6c:9f:1d:20:79:8b:52:97:e8:33:b3:72:1a:40:36:24: 36:9d:89:fd:ec:5a:4f:c2:aa:15:92:91:a7:1f:26:fb:a0:7d: 5f:d7:30:13:99:6b:bc:40:d0:e7:c2:84:b4:99:f5:c0:1e:40: 36:ba:9a:dc:0e:4a:50:66:e1:9c:d4:cd:0f:97:a0:e8:15:54: 4b:7d:7b:69:e7:d1:32:72:4b:92:ce:99:de:af:d9:94:bb:0e: ba:2a:62:69 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUJC3HucVWYr02b3LMLORwADZCJKUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2 ODY3QkY3OTAeFw0yNTEyMTAwOTU2MDdaFw0yNjEyMDkxMDAxMDdaMDMxMTAvBgNV BAMTKDY4OTAyMTM0NzNCNDg1N0E5QzBENkY2MjNBNTk4Nzc0NjA1Nzg5NTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpvfVucOTfTGhVV2xnS59At6XS Ra5VOcYRRqV2UG4LEkj3nsmZsiV/ZvZVxM6zuN1JPRlI5CLuLZI8jiqzkAaCjIr3 mG/s2RbKq+F7biXvgXf49LlbYCKGgOVCGTaZtIOeS+yjG7JobAPPhrstvUncNMjy rzz72IOXk00RYOAk/Qz35DHtZaqqB/kpRAXz9h2U03Dy/s5DqoS3jhYtO6V1pAM2 reL3wGSH41hSQrLCUWZIxJD/s93bZiRrqeudxicpHboYNm7rAOj1r5SpME8MLdZM alhXHD3ITPm5+WWRhAAxsppDX0mtNfYPDWbE1xAATm7M2DgZGZuM+7HSp7UbAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUaJAhNHO0hXqcDW9iOlmHdGBXiVkwHwYDVR0j BBgwFoAUAyHIkqaqwKbqSjA12IymvGhnv3kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTFjNGMxZi03MTQxLTQ3ZDYtYTdmOC1lMzVmZmUxMTc0MDQvMC8wMzIxQzg5MkE2 QUFDMEE2RUE0QTMwMzVEODhDQTZCQzY4NjdCRjc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2ODY3 QkY3OS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhMWM0YzFmLTcxNDEtNDdkNi1h N2Y4LWUzNWZmZTExNzQwNC8wLzMyMzAzMDMxM2E2NDY2MzIzYTY2MzQzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMDM5MzIzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfIP QDANBgkqhkiG9w0BAQsFAAOCAQEAVz520iWFcuKdmEx9PfthEBkOcDhF0XEe1xg8 bHYuzN875hkBBVfI/DFV1N14fLykXggGPvD9oHNBAg3Ciw2GgcdUuDZ/UhAg3vK/ npP6mYlrRyamOJB1F7F8Vmq48PPrciN2zdWUsnTjX+TZYv4ZCg13MuDWvvaLszlo vQKA4JXLxeAcA3/duASmes7jRUosqfYsqWhXlbl5qdk88Lzfr+DUUMpsnx0geYtS l+gzs3IaQDYkNp2J/exaT8KqFZKRpx8m+6B9X9cwE5lrvEDQ58KEtJn1wB5ANrqa 3A5KUGbhnNTND5eg6BVUS317aefRMnJLks6Z3q/ZlLsOuipiaQ== -----END CERTIFICATE-----Generated at Fri Dec 19 18:48:25 2025 by rpki-client