This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1bc66f2e-41cb-465a-add7-471e408dd01e.roa File: 1bc66f2e-41cb-465a-add7-471e408dd01e.roa (raw, json) Hash identifier: ZKNBJ0OtcrpmIwoU5sic70qs2GtWbHOfg/4t/rPGkLg= Subject key identifier: 83:AF:C2:11:94:74:C7:5F:35:39:3C:99:EB:6C:71:CF:7F:E1:D2:8C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1D949DE75F2890AA849F8ECB1CEFEB58917941A2 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1bc66f2e-41cb-465a-add7-471e408dd01e.roa Signing time: Thu 04 Dec 2025 00:01:24 +0000 ROA not before: Thu 04 Dec 2025 00:01:24 +0000 ROA not after: Wed 04 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da14:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:94:9d:e7:5f:28:90:aa:84:9f:8e:cb:1c:ef:eb:58:91:79:41:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 4 00:01:24 2025 GMT Not After : Mar 4 23:59:59 2026 GMT Subject: serialNumber=ca20f2008901ae29f6af0448f0563c78f4271d9cee54fdb704985c29d4fc5a3b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:4f:a0:b2:1a:ad:13:f7:ec:57:ef:bf:c4:08: 9e:19:3a:b4:ec:eb:61:5c:0a:4b:f4:9c:07:cc:07: 99:c2:d0:65:02:d2:92:9e:a5:a3:50:08:03:41:6a: 50:a6:03:e9:fe:8e:31:99:00:2c:56:c5:8e:5b:83: 74:c2:bd:53:f4:d1:ea:5f:ac:8e:53:c6:67:3a:7c: 70:a6:5b:5d:8b:79:d7:b0:95:8c:6d:4a:0e:aa:c4: 3f:bc:05:3c:6a:9b:b5:43:57:88:18:e7:a1:09:8b: 60:1a:1d:d0:74:10:83:92:ad:c0:28:0e:21:2c:8e: 10:5d:0d:25:5d:9e:9e:81:17:a6:4e:1e:8a:16:93: 4f:05:da:90:5f:e0:14:5d:eb:a4:e5:4f:79:61:61: 49:82:04:f5:57:31:09:62:e0:d5:8a:6a:07:1a:31: 72:df:51:7f:20:47:25:8d:50:7f:78:33:4c:d2:a5: 32:b8:40:a1:be:44:87:ee:9d:8a:12:41:93:28:2b: f3:cc:ae:4f:60:07:87:03:ac:79:fa:63:20:b9:b6: 24:a0:73:14:0c:dd:f0:d7:7c:54:64:55:a4:89:de: e8:bd:17:4f:19:ad:2d:ee:70:96:65:db:88:d2:e8: 48:cb:d5:1f:00:6d:bf:d1:30:45:b1:0e:7c:50:4a: ca:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:AF:C2:11:94:74:C7:5F:35:39:3C:99:EB:6C:71:CF:7F:E1:D2:8C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1bc66f2e-41cb-465a-add7-471e408dd01e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da14:8000::/36 Signature Algorithm: sha256WithRSAEncryption be:07:65:7f:95:64:a6:4b:86:13:7a:36:68:09:95:e2:b1:13: 00:fa:55:b7:b8:63:81:78:02:6c:e8:d8:6c:cf:a5:bb:a2:48: a6:3c:72:ba:eb:31:18:05:da:65:e3:57:16:36:0c:c6:7d:1d: fc:72:de:9a:40:85:7a:ac:e8:59:28:ae:98:1d:4a:cd:b8:f2: d5:6b:75:20:e5:64:4d:01:3a:df:25:f8:ca:dc:15:8b:bf:e7: 4c:16:06:f3:4d:05:d7:15:11:9d:45:ea:99:e7:fd:42:be:e2: 8d:d5:82:bb:33:23:74:dd:7c:05:3b:4d:e8:92:2a:70:19:29: 3f:37:0e:c1:d2:ad:2b:83:b6:5d:32:d3:f8:d9:1e:50:44:4a: b4:17:97:e3:46:55:a9:18:65:33:60:3c:5c:b2:25:4c:49:dc: 12:c3:5d:48:58:88:b0:72:af:da:7b:44:6a:da:dc:ef:0c:f6: 43:fe:5e:60:92:35:dd:3a:19:74:d9:88:9f:31:bd:cb:08:2b: 6d:07:86:9e:c6:bb:74:96:78:46:e4:e8:9e:5b:ac:09:6c:80: 76:6e:5a:59:88:7d:24:4d:88:e5:26:d2:5c:60:54:14:9f:fc: 33:7d:5a:1e:3f:b8:cc:ce:ba:ae:5f:32:e8:c6:9f:6b:20:52: c4:91:5c:f9 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUHZSd518okKqEn47LHO/rWJF5QaIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwNDAwMDEyNFoX DTI2MDMwNDIzNTk1OVowejFJMEcGA1UEBRNAY2EyMGYyMDA4OTAxYWUyOWY2YWYw NDQ4ZjA1NjNjNzhmNDI3MWQ5Y2VlNTRmZGI3MDQ5ODVjMjlkNGZjNWEzYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnk+gshqtE/fsV++/xAieGTq07Oth XApL9JwHzAeZwtBlAtKSnqWjUAgDQWpQpgPp/o4xmQAsVsWOW4N0wr1T9NHqX6yO U8ZnOnxwpltdi3nXsJWMbUoOqsQ/vAU8apu1Q1eIGOehCYtgGh3QdBCDkq3AKA4h LI4QXQ0lXZ6egRemTh6KFpNPBdqQX+AUXeuk5U95YWFJggT1VzEJYuDVimoHGjFy 31F/IEcljVB/eDNM0qUyuEChvkSH7p2KEkGTKCvzzK5PYAeHA6x5+mMgubYkoHMU DN3w13xUZFWkid7ovRdPGa0t7nCWZduI0uhIy9UfAG2/0TBFsQ58UErK+wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFIOvwhGUdMdfNTk8metscc9/4dKMMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzFiYzY2ZjJlLTQxY2ItNDY1YS1hZGQ3LTQ3MWU0MDhkZDAxZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaFIAwDQYJKoZIhvcNAQELBQADggEBAL4HZX+VZKZLhhN6NmgJ leKxEwD6Vbe4Y4F4Amzo2GzPpbuiSKY8crrrMRgF2mXjVxY2DMZ9Hfxy3ppAhXqs 6FkorpgdSs248tVrdSDlZE0BOt8l+MrcFYu/50wWBvNNBdcVEZ1F6pnn/UK+4o3V grszI3TdfAU7TeiSKnAZKT83DsHSrSuDtl0y0/jZHlBESrQXl+NGVakYZTNgPFyy JUxJ3BLDXUhYiLByr9p7RGra3O8M9kP+XmCSNd06GXTZiJ8xvcsIK20Hhp7Gu3SW eEbk6J5brAlsgHZuWlmIfSRNiOUm0lxgVBSf/DN9Wh4/uMzOuq5fMujGn2sgUsSR XPk= -----END CERTIFICATE-----Generated at Sat Dec 6 12:06:24 2025 by rpki-client