This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a3130303a3a2f34382d3438203d3e203338373533.roa File: 323430313a616530303a3130303a3a2f34382d3438203d3e203338373533.roa (raw, json) Hash identifier: SHl2KuSRWHh3Qm2EDWysD7DFG5RufagW3Es1/BAOICY= Subject key identifier: A4:5E:C5:C6:3F:A5:7F:D9:E5:CC:88:55:20:0C:DB:0E:6A:98:45:43 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 326A0387D93945A7E70BCE638F136C476B068C80 Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a3130303a3a2f34382d3438203d3e203338373533.roa Signing time: Wed 31 Dec 2025 04:03:36 +0000 ROA not before: Wed 31 Dec 2025 03:58:36 +0000 ROA not after: Wed 30 Dec 2026 04:03:36 +0000 asID: 38753 IP address blocks: 2401:ae00:100::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 08:54:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:6a:03:87:d9:39:45:a7:e7:0b:ce:63:8f:13:6c:47:6b:06:8c:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Dec 31 03:58:36 2025 GMT Not After : Dec 30 04:03:36 2026 GMT Subject: CN=A45EC5C63FA57FD9E5CC8855200CDB0E6A984543 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:98:2f:51:bd:c3:72:f4:47:7c:fc:d9:a5:63: 92:bf:0c:08:ac:81:21:8e:bc:ab:83:79:7f:bb:53: 62:49:9f:b1:47:d9:28:96:e8:c5:0f:b1:98:0f:f9: 8e:77:12:a6:2c:38:ba:ae:85:f9:5b:87:51:c8:8e: 74:33:da:3a:d0:4e:ea:ce:4a:58:a0:b7:0e:47:8c: ff:b4:9c:a5:a2:a7:e4:3e:81:e8:ce:04:45:93:3c: 1a:8a:c9:6c:03:35:34:07:f7:8c:3a:3f:19:92:04: 59:0c:e9:0c:2c:f1:bf:4c:2e:18:1b:4d:63:5e:c6: 28:24:7a:9e:a9:c7:d5:e2:3e:b8:ea:07:7a:bf:2c: dc:03:da:7d:bd:0b:a5:51:28:71:44:87:bd:3b:93: d1:1e:83:21:4e:06:6e:86:3d:04:8c:aa:7a:fb:b2: 1d:6f:18:7c:ea:bd:66:de:1d:7c:ed:c3:00:0b:01: 00:ac:26:d0:6a:87:6e:17:0d:55:bc:4b:40:4e:91: af:ee:9b:89:a7:23:b0:8f:74:48:7a:40:c9:78:ba: 4a:40:d5:2d:0e:88:1f:ee:88:8e:13:5b:c7:7b:19: 72:83:00:c3:ed:a5:7d:3f:05:5d:17:78:fd:81:e3: 77:ab:66:6e:58:34:66:b6:76:d4:d3:9c:40:25:c3: 10:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:5E:C5:C6:3F:A5:7F:D9:E5:CC:88:55:20:0C:DB:0E:6A:98:45:43 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a3130303a3a2f34382d3438203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:ae00:100::/48 Signature Algorithm: sha256WithRSAEncryption 49:42:cf:86:f7:ec:05:f1:ae:d8:ae:54:5c:3f:52:b2:6a:65: 65:d1:d4:78:15:8a:c3:3d:01:d0:8c:dc:32:37:50:d9:d1:7d: 25:30:ab:c1:ab:82:d6:c0:6d:ae:3f:61:d0:e0:99:e8:74:9b: 44:32:2c:fb:42:95:a7:24:91:0a:5a:9e:d4:66:7b:9c:d4:01: db:8c:46:87:b0:2d:c4:2f:e4:b5:7d:7a:64:e9:c0:1f:f4:71: 1d:1c:a9:4a:93:93:fb:d8:49:09:6f:3e:75:99:8a:c6:51:78: 28:e3:fd:eb:6d:62:fa:f1:9c:33:10:18:6e:e8:5c:f8:c0:2b: f5:01:3b:51:93:ec:01:28:d9:3d:36:13:81:5e:b2:dd:e4:12: a6:8b:27:a0:d9:40:eb:b1:3b:94:75:9a:f8:4f:01:d8:00:9b: ae:c7:47:bf:5a:c2:07:2e:84:3b:d2:35:67:90:f2:ad:81:0d: c1:3c:8b:91:38:39:0e:a5:74:26:20:1d:19:62:e1:a6:bd:ff: 28:ff:88:8f:7e:1b:69:ad:88:59:bb:87:1c:4f:5a:1b:9d:d7: ec:74:f1:6b:53:2f:ec:2a:55:99:32:fb:da:8c:d3:e5:08:2c: c3:f8:97:a9:63:67:8e:45:97:7a:ed:34:f6:28:31:d5:08:d3: 72:3d:e2:88 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUMmoDh9k5RafnC85jjxNsR2sGjIAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNTEyMzEwMzU4MzZaFw0yNjEyMzAwNDAzMzZaMDMxMTAvBgNV BAMTKEE0NUVDNUM2M0ZBNTdGRDlFNUNDODg1NTIwMENEQjBFNkE5ODQ1NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrmC9RvcNy9Ed8/NmlY5K/DAis gSGOvKuDeX+7U2JJn7FH2SiW6MUPsZgP+Y53EqYsOLquhflbh1HIjnQz2jrQTurO Sligtw5HjP+0nKWip+Q+gejOBEWTPBqKyWwDNTQH94w6PxmSBFkM6Qws8b9MLhgb TWNexigkep6px9XiPrjqB3q/LNwD2n29C6VRKHFEh707k9EegyFOBm6GPQSMqnr7 sh1vGHzqvWbeHXztwwALAQCsJtBqh24XDVW8S0BOka/um4mnI7CPdEh6QMl4ukpA 1S0OiB/uiI4TW8d7GXKDAMPtpX0/BV0XeP2B43erZm5YNGa2dtTTnEAlwxCbAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUpF7Fxj+lf9nlzIhVIAzbDmqYRUMwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMyMzQzMDMxM2E2MTY1MzAzMDNhMzEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzMzODM3MzUzMy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQBrgAB ADANBgkqhkiG9w0BAQsFAAOCAQEASULPhvfsBfGu2K5UXD9SsmplZdHUeBWKwz0B 0IzcMjdQ2dF9JTCrwauC1sBtrj9h0OCZ6HSbRDIs+0KVpySRClqe1GZ7nNQB24xG h7AtxC/ktX16ZOnAH/RxHRypSpOT+9hJCW8+dZmKxlF4KOP9621i+vGcMxAYbuhc +MAr9QE7UZPsASjZPTYTgV6y3eQSposnoNlA67E7lHWa+E8B2ACbrsdHv1rCBy6E O9I1Z5DyrYENwTyLkTg5DqV0JiAdGWLhpr3/KP+Ij34baa2IWbuHHE9aG53X7HTx a1Mv7CpVmTL72ozT5Qgsw/iXqWNnjkWXeu009igx1QjTcj3iiA== -----END CERTIFICATE-----Generated at Sun Jan 25 22:12:21 2026 by rpki-client