This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/199e7f05-a6e2-4894-bef4-a2d943a718e7.roa File: 199e7f05-a6e2-4894-bef4-a2d943a718e7.roa (raw, json) Hash identifier: aK2mYZZ0pmkNLnYLmfRXkEz8Wylo4ux7bEp+fyPGwfE= Subject key identifier: 7A:5B:55:78:CD:8B:8B:B4:CC:43:B0:AC:06:F0:74:AA:05:E8:0F:FF Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 15CFAC1AB83860953AD6E0B4D9926BFB695E745E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/199e7f05-a6e2-4894-bef4-a2d943a718e7.roa Signing time: Wed 03 Dec 2025 00:00:11 +0000 ROA not before: Wed 03 Dec 2025 00:00:11 +0000 ROA not after: Tue 03 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da69:2800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:cf:ac:1a:b8:38:60:95:3a:d6:e0:b4:d9:92:6b:fb:69:5e:74:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 3 00:00:11 2025 GMT Not After : Mar 3 23:59:59 2026 GMT Subject: serialNumber=0f2e41baf59aa5d463b124ee5d461ea6fe6daacbdb0f411f55e7018b91bf8e1d, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:3b:0e:ea:71:44:6c:2a:a7:5e:27:ca:8b:c4: 04:e5:75:f1:e9:13:6c:52:ca:9b:f0:fe:95:e6:6a: 9d:04:11:cb:b6:7b:c2:91:e0:ac:d6:6e:47:0c:1d: 7f:cb:b9:44:eb:b3:63:da:2a:aa:0c:ea:38:d0:cd: c3:b9:39:44:34:0c:3b:47:40:09:57:90:ba:d7:35: 88:2a:a3:d3:95:87:e2:1d:f0:87:7b:2d:c0:7c:61: 62:69:98:82:2e:37:7d:a5:d5:5a:ff:78:dd:c7:fa: ca:4e:00:2d:a1:10:fc:57:69:8d:a6:fd:fc:ab:93: cb:47:3b:36:8c:2c:00:72:cc:8f:a2:13:52:de:45: 59:fd:5d:dc:db:c2:83:44:ab:f2:a7:3f:5f:8f:3d: ed:d5:2a:45:f3:c1:96:be:b0:92:cd:86:6d:bf:63: 6b:af:3e:e5:e0:9f:0f:c2:5a:74:1a:12:31:0b:bc: e0:5d:7c:34:0a:c7:2c:b0:aa:c4:85:aa:44:2f:68: 3a:93:61:24:60:9e:c5:60:fb:3c:a8:7f:78:46:24: 67:89:62:6b:66:74:49:af:40:89:ac:4a:7d:d2:9b: 38:4c:d0:12:a4:53:72:0f:7e:b6:c9:6b:50:f7:ac: a5:87:1d:14:c7:f5:07:63:03:d0:37:1d:e1:74:89: 22:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:5B:55:78:CD:8B:8B:B4:CC:43:B0:AC:06:F0:74:AA:05:E8:0F:FF X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/199e7f05-a6e2-4894-bef4-a2d943a718e7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da69:2800::/40 Signature Algorithm: sha256WithRSAEncryption 29:b6:23:45:37:9a:5a:f5:be:55:56:4c:50:e4:ad:8a:95:80: 0c:68:9a:51:7c:6e:6e:7d:30:c6:77:99:9b:c6:e4:27:7b:31: db:16:b7:28:72:06:a9:fc:cb:30:47:ff:1f:b2:00:4a:65:4c: c4:00:9d:e5:e5:96:a0:74:ec:bf:15:2f:93:3a:b2:70:0a:49: ef:fc:23:18:d7:58:f6:67:c1:00:3d:ff:65:f5:18:66:52:cf: 02:63:a9:d6:5d:f6:d7:50:c4:af:5b:ef:2b:c0:4e:6f:f9:81: 80:98:4a:74:97:67:93:8e:90:9e:b7:3e:24:d2:39:15:94:90: 6b:8c:80:fc:f0:f9:ca:70:eb:1b:5c:36:d5:e2:39:72:e4:e0: de:05:a0:09:e8:91:be:a9:fb:90:db:60:d7:57:1b:d4:54:eb: ff:25:1b:92:48:f8:aa:41:ab:8e:06:c8:e2:86:2a:db:9a:1f: 4e:dd:36:51:c1:e8:7c:6c:4b:84:f2:5c:0d:4e:fd:9e:3b:18: d4:a5:85:57:86:c8:b3:0c:a5:7e:f0:28:9e:0d:2e:5f:4d:37: 9b:be:cc:ca:49:a2:c2:c5:c6:52:43:5e:91:e4:e7:a0:5b:5d: 37:0e:be:96:8c:61:df:e5:70:e6:26:e7:1f:4b:5e:9c:62:da: 5b:a0:47:cb -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUFc+sGrg4YJU61uC02ZJr+2ledF4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMzAwMDAxMVoX DTI2MDMwMzIzNTk1OVowejFJMEcGA1UEBRNAMGYyZTQxYmFmNTlhYTVkNDYzYjEy NGVlNWQ0NjFlYTZmZTZkYWFjYmRiMGY0MTFmNTVlNzAxOGI5MWJmOGUxZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5DsO6nFEbCqnXifKi8QE5XXx6RNs Usqb8P6V5mqdBBHLtnvCkeCs1m5HDB1/y7lE67Nj2iqqDOo40M3DuTlENAw7R0AJ V5C61zWIKqPTlYfiHfCHey3AfGFiaZiCLjd9pdVa/3jdx/rKTgAtoRD8V2mNpv38 q5PLRzs2jCwAcsyPohNS3kVZ/V3c28KDRKvypz9fjz3t1SpF88GWvrCSzYZtv2Nr rz7l4J8Pwlp0GhIxC7zgXXw0CscssKrEhapEL2g6k2EkYJ7FYPs8qH94RiRniWJr ZnRJr0CJrEp90ps4TNASpFNyD362yWtQ96ylhx0Ux/UHYwPQNx3hdIki2wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFHpbVXjNi4u0zEOwrAbwdKoF6A//MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzE5OWU3ZjA1LWE2ZTItNDg5NC1iZWY0LWEyZDk0M2E3MThlNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaaSgwDQYJKoZIhvcNAQELBQADggEBACm2I0U3mlr1vlVWTFDk rYqVgAxomlF8bm59MMZ3mZvG5Cd7MdsWtyhyBqn8yzBH/x+yAEplTMQAneXllqB0 7L8VL5M6snAKSe/8IxjXWPZnwQA9/2X1GGZSzwJjqdZd9tdQxK9b7yvATm/5gYCY SnSXZ5OOkJ63PiTSORWUkGuMgPzw+cpw6xtcNtXiOXLk4N4FoAnokb6p+5DbYNdX G9RU6/8lG5JI+KpBq44GyOKGKtuaH07dNlHB6HxsS4TyXA1O/Z47GNSlhVeGyLMM pX7wKJ4NLl9NN5u+zMpJosLFxlJDXpHk56BbXTcOvpaMYd/lcOYm5x9LXpxi2lug R8s= -----END CERTIFICATE-----Generated at Sat Dec 6 09:52:04 2025 by rpki-client