This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/12737cd4-afad-411e-b802-52f561374c59.roa File: 12737cd4-afad-411e-b802-52f561374c59.roa (raw, json) Hash identifier: 82amyWVffDHgOIRa/Wp2A7LylJgP29PnwNZXIuoHx0Y= Subject key identifier: 32:28:FE:68:68:48:65:F9:BD:A6:4D:98:40:4F:F2:B9:5E:AE:34:CE Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4B9AB490418A754D4D5508F9BF5CD7A859A0FA42 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/12737cd4-afad-411e-b802-52f561374c59.roa Signing time: Wed 26 Nov 2025 00:00:09 +0000 ROA not before: Wed 26 Nov 2025 00:00:09 +0000 ROA not after: Tue 24 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf4:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:9a:b4:90:41:8a:75:4d:4d:55:08:f9:bf:5c:d7:a8:59:a0:fa:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 26 00:00:09 2025 GMT Not After : Feb 24 23:59:59 2026 GMT Subject: serialNumber=c9f2e10a241f0af3b3a97f9a3a2f117914f411a32545b86d62f5ca5ae16ad26a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:ab:ab:69:bc:54:14:96:15:25:fa:61:28:a9: 3e:5b:2a:92:23:84:23:26:c7:f4:d4:b6:ce:c0:fe: a9:07:b9:ea:d6:27:29:02:30:6a:f0:a4:6c:13:c6: 16:cf:ca:c7:8a:3d:13:07:a8:df:35:f4:95:95:7c: 6c:5b:eb:8a:8a:09:2f:9d:c5:a0:4a:b7:0b:98:7c: c8:5d:76:b2:72:03:c5:82:7f:3c:ea:3c:04:a5:d1: fe:6d:7a:b3:ec:e8:6a:cb:b5:8e:f0:de:5a:7f:ab: 96:cd:49:40:a3:fd:07:b2:21:1d:81:f1:c3:ba:ee: ad:67:4b:7f:50:9f:a6:51:e2:50:8c:e9:d8:3d:c6: cd:a4:b6:94:ef:9e:0e:1c:6a:bd:f8:c9:a3:e5:e2: f5:0e:a6:2e:f4:1b:4e:6a:d4:da:6c:8b:c7:0e:32: 89:9f:1f:df:52:5c:53:b3:29:c6:10:5b:77:f3:29: 6f:26:f8:9f:70:53:f2:35:5c:fd:89:be:44:17:31: b6:d4:19:47:91:7c:de:36:f5:91:4a:19:4a:90:b4: 4f:6b:25:c7:96:fd:97:1e:e2:08:19:07:8c:61:aa: 2c:35:78:0d:38:49:8f:7c:75:b0:5b:11:a0:c6:b2: d1:57:7c:44:92:7b:4c:8f:64:11:14:c3:ce:9c:83: 22:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:28:FE:68:68:48:65:F9:BD:A6:4D:98:40:4F:F2:B9:5E:AE:34:CE X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/12737cd4-afad-411e-b802-52f561374c59.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf4:9000::/40 Signature Algorithm: sha256WithRSAEncryption 82:87:b4:7e:ca:77:bb:2c:d2:af:5a:00:54:78:bf:9c:1b:99: 09:d4:be:e9:8f:76:8a:c4:a0:d3:08:8f:d0:d2:d2:8e:b6:42: 5b:2d:6b:c7:d8:84:a4:37:fa:e7:c9:cf:c1:2e:5f:d1:c3:8e: 63:3f:41:5f:63:f5:55:bf:94:b3:31:26:e2:ba:ce:46:b2:81: 52:6f:19:da:b2:10:82:61:63:2c:3a:4f:7e:11:0f:61:53:49: c4:d7:53:c1:b2:d7:79:f0:f1:e5:16:34:2c:cb:09:ec:b1:7d: 53:1a:ac:74:c7:75:92:53:eb:e8:65:21:6b:56:bc:a3:4a:c4: 54:e0:e7:36:aa:82:ac:71:28:20:06:03:3a:4e:7e:85:fd:d0: d2:9a:e0:db:be:5a:c2:71:51:9f:bc:8e:06:84:3f:a4:42:ee: fb:7d:d4:10:7a:cb:7d:24:2c:02:09:a4:55:fe:65:1e:90:68: 47:14:cd:09:04:35:0b:36:93:99:5c:d9:78:5c:5a:d7:ff:de: 6b:39:3c:ce:e3:5e:07:0b:47:c3:37:4f:32:7b:39:2c:5b:dc: 78:af:51:bd:cb:80:dc:d1:bf:6d:64:60:ef:7b:cb:d6:35:56: 1a:b7:6e:89:68:7c:c1:7e:12:19:ff:40:e2:db:ea:1a:6f:a3: 36:28:20:65 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUS5q0kEGKdU1NVQj5v1zXqFmg+kIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyNjAwMDAwOVoX DTI2MDIyNDIzNTk1OVowejFJMEcGA1UEBRNAYzlmMmUxMGEyNDFmMGFmM2IzYTk3 ZjlhM2EyZjExNzkxNGY0MTFhMzI1NDViODZkNjJmNWNhNWFlMTZhZDI2YTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+KurabxUFJYVJfphKKk+WyqSI4Qj Jsf01LbOwP6pB7nq1icpAjBq8KRsE8YWz8rHij0TB6jfNfSVlXxsW+uKigkvncWg SrcLmHzIXXaycgPFgn886jwEpdH+bXqz7Ohqy7WO8N5af6uWzUlAo/0HsiEdgfHD uu6tZ0t/UJ+mUeJQjOnYPcbNpLaU754OHGq9+Mmj5eL1DqYu9BtOatTabIvHDjKJ nx/fUlxTsynGEFt38ylvJvifcFPyNVz9ib5EFzG21BlHkXzeNvWRShlKkLRPayXH lv2XHuIIGQeMYaosNXgNOEmPfHWwWxGgxrLRV3xEkntMj2QRFMPOnIMidwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFDIo/mhoSGX5vaZNmEBP8rlerjTOMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzEyNzM3Y2Q0LWFmYWQtNDExZS1iODAyLTUyZjU2MTM3NGM1OS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9JAwDQYJKoZIhvcNAQELBQADggEBAIKHtH7Kd7ss0q9aAFR4 v5wbmQnUvumPdorEoNMIj9DS0o62Qlsta8fYhKQ3+ufJz8EuX9HDjmM/QV9j9VW/ lLMxJuK6zkaygVJvGdqyEIJhYyw6T34RD2FTScTXU8Gy13nw8eUWNCzLCeyxfVMa rHTHdZJT6+hlIWtWvKNKxFTg5zaqgqxxKCAGAzpOfoX90NKa4Nu+WsJxUZ+8jgaE P6RC7vt91BB6y30kLAIJpFX+ZR6QaEcUzQkENQs2k5lc2XhcWtf/3ms5PM7jXgcL R8M3TzJ7OSxb3HivUb3LgNzRv21kYO97y9Y1Vhq3bolofMF+Ehn/QOLb6hpvozYo IGU= -----END CERTIFICATE-----Generated at Sun Dec 7 00:49:50 2025 by rpki-client