This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1633925d-77e5-4142-aee7-593dea039740.roa File: 1633925d-77e5-4142-aee7-593dea039740.roa (raw, json) Hash identifier: YYLOJQg2BLUZmduCotIDLnCbsfOJsoT0g3Deizhi3IY= Subject key identifier: A3:0C:50:19:69:6E:BA:74:73:C8:2C:E1:0B:20:D7:91:90:32:A8:3E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7FAE505AC56CA2FC34AE677042FEDD5215D156F3 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1633925d-77e5-4142-aee7-593dea039740.roa Signing time: Sat 29 Nov 2025 00:00:49 +0000 ROA not before: Sat 29 Nov 2025 00:00:49 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:f000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:ae:50:5a:c5:6c:a2:fc:34:ae:67:70:42:fe:dd:52:15:d1:56:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 29 00:00:49 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=f31963cc9a2febae3dbcff1831a552b0dc0aa0a5e2a0b8cbd55ab3103d0e6efe, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:24:1c:03:11:6a:fa:b5:f2:0b:b3:03:92:79: dd:5a:d2:c4:70:d5:4b:85:87:78:dc:9c:e1:d1:3c: b1:87:05:cf:54:95:a8:28:1a:49:28:c4:8d:ef:3a: 95:9e:d7:a8:b2:8f:dd:f6:0a:6a:5b:e4:e4:2b:e1: 15:4c:39:fe:c8:6b:39:23:14:52:c5:46:a4:6c:b9: d7:94:b9:55:49:85:0e:f4:08:ee:9d:e0:76:6c:91: 12:2f:ea:b3:d4:cf:ab:95:8f:60:00:14:2f:2f:d4: 89:4d:f8:51:57:9b:05:1d:0d:0b:8a:81:cb:2d:39: 44:88:70:d5:49:07:dd:8c:37:32:f2:1c:03:29:45: c1:5d:56:6d:f4:a9:b6:e0:6a:e2:33:31:46:03:ef: 56:e8:52:20:0d:0a:3c:3a:ee:65:09:72:68:3f:f2: dd:be:f2:97:59:ca:f1:17:b1:66:4e:07:91:f8:80: 1b:94:c0:74:fd:c3:e0:70:12:3d:6f:61:f7:bb:c6: cd:15:98:08:8f:45:92:2b:e0:b2:08:54:78:b3:ed: 9f:25:cc:c2:93:a3:1a:65:59:c1:c9:e2:aa:94:82: b7:9c:7e:5b:7f:a3:20:a8:2d:c5:c6:55:f4:85:32: 88:05:af:58:da:22:25:f4:ed:ac:cf:3d:d7:2b:62: d0:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:0C:50:19:69:6E:BA:74:73:C8:2C:E1:0B:20:D7:91:90:32:A8:3E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1633925d-77e5-4142-aee7-593dea039740.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:f000::/40 Signature Algorithm: sha256WithRSAEncryption 82:18:d6:73:a0:c5:00:4b:aa:45:6a:a9:68:7d:bd:85:14:65: ff:f3:7c:35:91:bc:43:e4:38:77:05:30:32:1f:70:fb:b7:b8: 47:34:f9:7e:66:96:fa:75:18:82:df:cb:12:02:d4:b6:cf:8b: 5c:62:46:c0:15:50:bb:43:4b:2c:57:ad:bd:07:56:e8:d6:53: 9d:df:b1:f7:b5:4e:13:9d:ad:0d:fd:1e:f4:4c:ca:8d:4e:d1: 96:53:17:22:83:ee:06:4b:14:70:a5:22:2f:48:63:04:a2:1c: d4:c9:92:95:31:43:ad:7c:b0:a0:e7:bc:ec:52:ca:02:e7:a5: db:0b:c3:bd:ee:08:71:ba:32:0d:8a:fa:a1:58:de:cd:8b:c6: 90:f5:5c:b5:38:ba:74:8e:3b:b2:53:fa:32:f2:4e:b8:04:af: 4c:99:d8:f0:36:c6:b5:8e:2a:65:9c:4e:b3:78:29:d6:b8:0f: 25:00:4d:7a:d4:34:27:f4:bf:73:bb:5c:a0:0c:fb:42:81:67: a5:b7:60:e2:e8:28:4e:16:29:48:72:3f:9a:27:10:e8:e5:46: 3c:b8:81:3f:3b:3b:ec:3c:7e:86:35:d5:ac:93:b2:a6:31:75: eb:50:5e:1e:12:8a:7e:2f:c1:ed:9c:97:07:bc:89:0f:c2:e7: b4:68:b0:1d -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUf65QWsVsovw0rmdwQv7dUhXRVvMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyOTAwMDA0OVoX DTI2MDIyNzIzNTk1OVowejFJMEcGA1UEBRNAZjMxOTYzY2M5YTJmZWJhZTNkYmNm ZjE4MzFhNTUyYjBkYzBhYTBhNWUyYTBiOGNiZDU1YWIzMTAzZDBlNmVmZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlyQcAxFq+rXyC7MDknndWtLEcNVL hYd43Jzh0TyxhwXPVJWoKBpJKMSN7zqVnteoso/d9gpqW+TkK+EVTDn+yGs5IxRS xUakbLnXlLlVSYUO9AjuneB2bJESL+qz1M+rlY9gABQvL9SJTfhRV5sFHQ0LioHL LTlEiHDVSQfdjDcy8hwDKUXBXVZt9Km24GriMzFGA+9W6FIgDQo8Ou5lCXJoP/Ld vvKXWcrxF7FmTgeR+IAblMB0/cPgcBI9b2H3u8bNFZgIj0WSK+CyCFR4s+2fJczC k6MaZVnByeKqlIK3nH5bf6MgqC3FxlX0hTKIBa9Y2iIl9O2szz3XK2LQ8QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFKMMUBlpbrp0c8gs4Qsg15GQMqg+MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzE2MzM5MjVkLTc3ZTUtNDE0Mi1hZWU3LTU5M2RlYTAzOTc0MC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9vAwDQYJKoZIhvcNAQELBQADggEBAIIY1nOgxQBLqkVqqWh9 vYUUZf/zfDWRvEPkOHcFMDIfcPu3uEc0+X5mlvp1GILfyxIC1LbPi1xiRsAVULtD SyxXrb0HVujWU53fsfe1ThOdrQ39HvRMyo1O0ZZTFyKD7gZLFHClIi9IYwSiHNTJ kpUxQ618sKDnvOxSygLnpdsLw73uCHG6Mg2K+qFY3s2LxpD1XLU4unSOO7JT+jLy TrgEr0yZ2PA2xrWOKmWcTrN4Kda4DyUATXrUNCf0v3O7XKAM+0KBZ6W3YOLoKE4W KUhyP5onEOjlRjy4gT87O+w8foY11ayTsqYxdetQXh4Sin4vwe2clwe8iQ/C57Ro sB0= -----END CERTIFICATE-----Generated at Sat Dec 6 16:24:00 2025 by rpki-client