This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0c131403-c0db-4229-b10c-238da60a9c57.roa File: 0c131403-c0db-4229-b10c-238da60a9c57.roa (raw, json) Hash identifier: GLbIwTIhEEJ6H8i4JD23Fh1Jh8uJlhsE6FkNHyYSlbo= Subject key identifier: 02:CF:F2:86:09:FE:B9:CE:10:40:DE:BA:B1:C2:EB:23:70:D9:6A:8E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 59B8E257975779358CEE70FB19936EE7B5006C51 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0c131403-c0db-4229-b10c-238da60a9c57.roa Signing time: Tue 02 Dec 2025 00:01:13 +0000 ROA not before: Tue 02 Dec 2025 00:01:13 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:c880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:b8:e2:57:97:57:79:35:8c:ee:70:fb:19:93:6e:e7:b5:00:6c:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 2 00:01:13 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=9e8d256d45c29db260c3b02c993f91aa7054a9b61a68d52a9e0a2df3d9484ef9, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9e:bc:6f:84:61:1b:18:a9:34:1d:69:6d:fd: 92:44:7f:46:4d:89:f9:d2:a0:1f:c1:b3:18:02:30: 98:4c:a5:17:26:94:74:dd:93:ab:7c:90:e4:56:a9: 81:96:27:a3:42:0e:1a:03:37:f1:dc:0f:ef:8b:80: d2:5a:58:a9:22:70:04:1a:86:5b:b8:ce:ff:34:e9: 43:5b:db:5e:47:73:5e:99:06:6b:73:b8:5f:18:02: f1:53:e3:48:86:86:58:ac:a9:b5:4e:68:62:c7:23: 55:4f:1b:60:8a:59:5a:0c:7c:c5:e4:4f:53:45:c0: 68:24:47:c2:4c:c9:e8:d2:76:d8:f0:f0:22:64:b2: 5c:02:58:9a:97:1b:a8:b8:34:d1:bd:a5:ab:e3:55: 69:7b:c9:22:81:12:f8:8c:ce:d4:67:f6:b6:35:b0: 8a:4a:82:45:b4:33:ed:fd:cf:08:ba:3c:56:2e:f8: 19:c5:2b:4b:92:de:f9:d7:1d:40:a2:ab:31:b6:e6: ac:e6:21:81:44:39:b9:59:da:0d:c0:3b:64:c9:aa: f1:35:d6:a2:ea:8c:d8:ae:56:cd:fe:ab:4c:6e:5f: 69:b2:7a:52:98:b2:5a:49:3c:c6:48:ae:d3:00:a5: 2f:cc:3b:50:0a:ba:c3:f3:ae:72:cb:dc:e9:2f:1b: b4:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:CF:F2:86:09:FE:B9:CE:10:40:DE:BA:B1:C2:EB:23:70:D9:6A:8E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0c131403-c0db-4229-b10c-238da60a9c57.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:c880::/48 Signature Algorithm: sha256WithRSAEncryption ba:8d:ad:2c:ff:b2:e6:c9:5f:f1:77:ec:e8:31:06:6f:34:0f: 3a:6c:d9:4c:99:27:d9:e8:a6:ed:b3:bc:36:9d:5e:58:4b:23: d3:6b:52:70:38:7e:ed:02:80:0f:a4:66:b1:4a:32:d1:be:db: 24:cc:15:f3:57:c0:99:75:f1:59:bc:99:62:e6:44:f5:12:f9: 06:4c:a7:69:62:cd:e3:35:26:08:42:52:34:4a:4b:55:ef:f1: ea:79:4f:4e:6d:d8:c8:59:85:66:f9:76:46:ac:5e:a8:8e:4a: b8:59:4f:2b:f7:14:56:c1:78:8e:6d:95:55:e7:d3:2a:4c:e0: be:2a:97:dd:dc:37:29:f7:85:25:70:c0:f6:f8:bd:7d:d9:06: d5:f6:42:e1:c1:4f:6b:d7:c9:0c:14:36:0f:98:97:50:f0:6d: 5e:b6:30:9f:45:77:b4:57:7b:14:36:e9:10:f1:03:a7:53:56: b8:2b:59:3b:37:7e:50:55:3f:8d:c1:c8:29:96:8f:e8:5e:ed: 53:f7:c6:e7:dc:50:4c:a5:f0:d9:17:ee:a7:3b:a3:04:96:fe: c8:59:a0:fc:f4:48:d2:b4:25:ca:3c:07:1c:8a:01:dd:c5:05: fc:4b:5d:66:c6:5e:aa:6b:c2:f2:73:dc:c1:29:70:b0:0f:1d: 7b:60:95:64 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUWbjiV5dXeTWM7nD7GZNu57UAbFEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMjAwMDExM1oX DTI2MDMwMjIzNTk1OVowejFJMEcGA1UEBRNAOWU4ZDI1NmQ0NWMyOWRiMjYwYzNi MDJjOTkzZjkxYWE3MDU0YTliNjFhNjhkNTJhOWUwYTJkZjNkOTQ4NGVmOTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz568b4RhGxipNB1pbf2SRH9GTYn5 0qAfwbMYAjCYTKUXJpR03ZOrfJDkVqmBliejQg4aAzfx3A/vi4DSWlipInAEGoZb uM7/NOlDW9teR3NemQZrc7hfGALxU+NIhoZYrKm1TmhixyNVTxtgillaDHzF5E9T RcBoJEfCTMno0nbY8PAiZLJcAlialxuouDTRvaWr41Vpe8kigRL4jM7UZ/a2NbCK SoJFtDPt/c8IujxWLvgZxStLkt751x1Aoqsxtuas5iGBRDm5WdoNwDtkyarxNdai 6ozYrlbN/qtMbl9psnpSmLJaSTzGSK7TAKUvzDtQCrrD865yy9zpLxu0xQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFALP8oYJ/rnOEEDeurHC6yNw2WqOMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzBjMTMxNDAzLWMwZGItNDIyOS1iMTBjLTIzOGRhNjBhOWM1Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYciAMA0GCSqGSIb3DQEBCwUAA4IBAQC6ja0s/7LmyV/xd+zo MQZvNA86bNlMmSfZ6Kbts7w2nV5YSyPTa1JwOH7tAoAPpGaxSjLRvtskzBXzV8CZ dfFZvJli5kT1EvkGTKdpYs3jNSYIQlI0SktV7/HqeU9ObdjIWYVm+XZGrF6ojkq4 WU8r9xRWwXiObZVV59MqTOC+Kpfd3Dcp94UlcMD2+L192QbV9kLhwU9r18kMFDYP mJdQ8G1etjCfRXe0V3sUNukQ8QOnU1a4K1k7N35QVT+Nwcgplo/oXu1T98bn3FBM pfDZF+6nO6MElv7IWaD89EjStCXKPAccigHdxQX8S11mxl6qa8Lyc9zBKXCwDx17 YJVk -----END CERTIFICATE-----Generated at Sat Dec 6 22:36:15 2025 by rpki-client