This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/19c2d4e6-f756-4329-8ef7-563420636cfb.roa File: 19c2d4e6-f756-4329-8ef7-563420636cfb.roa (raw, json) Hash identifier: OO9Znqv9ylGXxEb2CVhNFVuAa/ZIeSWrn+e2uSedG58= Subject key identifier: 04:3C:31:A8:AA:D0:C2:44:B7:A1:6D:23:43:4E:5A:26:B8:00:8A:50 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4FE542CF3AE689D6AB783F96CD4B0651F65F1C7E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/19c2d4e6-f756-4329-8ef7-563420636cfb.roa Signing time: Sat 29 Nov 2025 00:00:31 +0000 ROA not before: Sat 29 Nov 2025 00:00:31 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:e5:42:cf:3a:e6:89:d6:ab:78:3f:96:cd:4b:06:51:f6:5f:1c:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 29 00:00:31 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=1a12041d8d626e5ba370f76b46f5eaf45720aa00109758b43db59dc3dea4ee11, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:79:bb:48:b8:4f:94:70:c0:61:32:bf:36:66: 50:c0:07:51:cd:a9:d1:18:fc:2d:79:49:f6:5f:5c: c5:59:6a:eb:57:91:16:22:e4:51:c8:1f:f2:18:49: 24:d2:43:62:8c:ac:1f:4b:2f:65:3f:d2:1b:fe:29: 77:cf:97:37:f4:74:98:21:93:df:41:20:57:6f:ee: d1:4d:32:57:59:34:d8:8a:64:24:cb:95:58:3f:16: 51:39:b8:06:b2:58:aa:e5:45:6c:9b:a6:3f:c7:42: 6b:c4:19:1c:a2:b9:9a:f8:a0:ba:a1:a6:cc:de:57: 49:08:c9:84:fc:3e:aa:28:69:52:4a:a6:bc:67:f8: 9b:bd:d4:23:67:8b:f5:0b:16:37:0b:86:26:cb:f1: b6:e2:7f:35:49:c9:50:88:d2:4c:35:22:fa:b0:b2: 64:d9:82:ab:0d:a8:22:2a:2d:dd:27:82:b6:1c:4d: b4:c8:f5:72:37:fe:8b:d3:77:26:4a:c8:94:19:f2: c7:d7:58:3b:0a:cc:60:29:7e:12:92:65:fd:c0:30: c0:6e:a0:2f:71:f9:00:26:de:f7:27:e8:f4:8f:c7: 53:fc:97:e5:11:02:ad:1e:db:46:8d:a7:4c:bf:69: c5:42:dc:c0:07:75:6d:50:67:22:2f:30:85:69:9a: 97:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:3C:31:A8:AA:D0:C2:44:B7:A1:6D:23:43:4E:5A:26:B8:00:8A:50 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/19c2d4e6-f756-4329-8ef7-563420636cfb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:4000::/48 Signature Algorithm: sha256WithRSAEncryption c5:a1:3d:cb:a8:b4:f6:03:a2:63:05:ae:4a:50:cc:2c:c1:0c: 08:d2:2b:0e:0d:52:e2:8b:e5:08:ce:94:7d:0b:f1:f1:f3:9b: 77:fe:93:25:3a:83:f9:47:c5:4c:d8:0a:4b:f3:d2:13:ed:98: cd:1b:c8:e0:1b:ea:b2:aa:a1:bf:d5:72:22:0c:09:b1:11:e7: 80:36:63:7d:d9:77:3c:b8:4b:73:c6:24:c4:6a:34:5a:b3:f8: f2:45:7d:df:1a:4b:f8:0a:8c:8a:c6:76:93:6f:9f:98:c9:4c: f0:06:87:af:ec:72:42:c9:24:a5:76:9e:27:0a:8a:43:a0:b6: 53:12:d4:8e:88:5e:45:c9:f6:f0:97:fd:43:a3:10:ca:9c:61: 43:56:20:da:5a:46:e5:e8:e7:07:ff:01:29:96:d4:87:dd:e5: 3a:a4:b8:3f:b6:26:1c:db:66:b5:cb:f3:6c:00:e9:89:92:91: ea:10:26:3f:d1:a2:2b:ca:7d:c4:ac:fc:21:c7:89:6c:18:7c: 46:fa:ae:2c:74:e6:6b:ae:3d:3a:69:1a:ee:70:a7:7c:09:70: e3:4a:dc:d6:0c:0e:b0:76:e3:24:d8:ff:90:a3:46:80:2a:9c: 52:ae:e8:31:d8:ba:d2:bf:61:48:f5:85:e5:ee:e6:f2:c6:4b: 7f:35:90:ff -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUT+VCzzrmidareD+WzUsGUfZfHH4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyOTAwMDAzMVoX DTI2MDIyNzIzNTk1OVowejFJMEcGA1UEBRNAMWExMjA0MWQ4ZDYyNmU1YmEzNzBm NzZiNDZmNWVhZjQ1NzIwYWEwMDEwOTc1OGI0M2RiNTlkYzNkZWE0ZWUxMTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAunm7SLhPlHDAYTK/NmZQwAdRzanR GPwteUn2X1zFWWrrV5EWIuRRyB/yGEkk0kNijKwfSy9lP9Ib/il3z5c39HSYIZPf QSBXb+7RTTJXWTTYimQky5VYPxZRObgGsliq5UVsm6Y/x0JrxBkcorma+KC6oabM 3ldJCMmE/D6qKGlSSqa8Z/ibvdQjZ4v1CxY3C4Ymy/G24n81SclQiNJMNSL6sLJk 2YKrDagiKi3dJ4K2HE20yPVyN/6L03cmSsiUGfLH11g7CsxgKX4SkmX9wDDAbqAv cfkAJt73J+j0j8dT/JflEQKtHttGjadMv2nFQtzAB3VtUGciLzCFaZqXtwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFAQ8Maiq0MJEt6FtI0NOWia4AIpQMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzE5YzJkNGU2LWY3NTYtNDMyOS04ZWY3LTU2MzQyMDYzNmNmYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba9kAAMA0GCSqGSIb3DQEBCwUAA4IBAQDFoT3LqLT2A6JjBa5K UMwswQwI0isODVLii+UIzpR9C/Hx85t3/pMlOoP5R8VM2ApL89IT7ZjNG8jgG+qy qqG/1XIiDAmxEeeANmN92Xc8uEtzxiTEajRas/jyRX3fGkv4CoyKxnaTb5+YyUzw Boev7HJCySSldp4nCopDoLZTEtSOiF5Fyfbwl/1DoxDKnGFDViDaWkbl6OcH/wEp ltSH3eU6pLg/tiYc22a1y/NsAOmJkpHqECY/0aIryn3ErPwhx4lsGHxG+q4sdOZr rj06aRrucKd8CXDjStzWDA6wduMk2P+Qo0aAKpxSrugx2LrSv2FI9YXl7ubyxkt/ NZD/ -----END CERTIFICATE-----Generated at Sat Dec 6 15:28:37 2025 by rpki-client