This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/24e2e024-4bd3-4f6b-874c-0ef7a4cbebc1.roa File: 24e2e024-4bd3-4f6b-874c-0ef7a4cbebc1.roa (raw, json) Hash identifier: ZrljGX628mQuboN4mT1yGGf7ZjTPthft7Rw21aK1gyI= Subject key identifier: 7F:48:32:87:B8:03:2D:A6:54:9B:EC:7A:B8:C7:18:01:0A:14:EE:49 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 69D16C28EC7A3D6DC0BF121862CF68FC399D54CF Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/24e2e024-4bd3-4f6b-874c-0ef7a4cbebc1.roa Signing time: Sat 29 Nov 2025 00:00:53 +0000 ROA not before: Sat 29 Nov 2025 00:00:53 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:e000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:d1:6c:28:ec:7a:3d:6d:c0:bf:12:18:62:cf:68:fc:39:9d:54:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 29 00:00:53 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=56ef5dad893ad364b506169a126869a77afe924bd6987677426594d4fb9d88f3, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:87:ca:22:2e:59:99:15:77:86:17:00:b1:bf: 37:27:1e:aa:de:f6:8c:47:e3:f8:8c:a1:64:d4:61: 07:29:e4:78:3d:45:84:74:5e:f7:a5:b1:d5:23:2a: 91:b3:65:29:70:2e:a9:ea:e0:e7:9c:1a:8a:37:35: 89:60:59:ce:65:ef:af:e3:30:a1:1b:cd:56:dc:b4: d6:f7:70:49:b2:d9:e8:81:35:67:65:43:1c:cc:6a: 25:a3:21:fb:e1:b6:87:8e:f1:3a:ce:29:d6:7a:69: 21:93:f3:ec:80:9e:fe:96:9c:1a:ad:aa:db:30:b2: 7c:a2:ed:8c:f4:3a:fb:27:e8:96:96:1a:21:78:6e: 54:dd:53:73:3a:44:b8:4c:d8:40:2a:e2:6c:24:3a: 78:08:e1:6b:d0:4f:c0:e6:b6:9a:eb:25:0e:60:70: 68:76:98:f7:c8:10:72:96:d2:b1:f6:59:b6:9c:f2: d1:44:f8:3f:b7:6b:16:3d:58:57:2d:3f:ae:7f:de: c6:d4:62:77:8f:5d:30:4f:89:e2:f8:97:c3:55:d4: 87:69:e1:7f:e8:79:4d:53:52:43:99:dc:eb:3d:8b: b5:de:73:40:72:9d:cb:c0:8f:1f:d3:35:1b:70:be: 92:88:51:81:7f:33:bb:ee:37:53:75:dd:86:ba:82: 55:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:48:32:87:B8:03:2D:A6:54:9B:EC:7A:B8:C7:18:01:0A:14:EE:49 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/24e2e024-4bd3-4f6b-874c-0ef7a4cbebc1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:e000::/48 Signature Algorithm: sha256WithRSAEncryption 3f:59:65:08:67:c2:24:28:dc:27:89:b8:2d:2d:13:06:41:45: a9:22:a1:60:38:7d:b7:12:2a:8a:92:53:0e:4c:d7:c6:ff:0c: ab:14:8f:ae:cf:2d:6b:b6:42:c1:3a:fa:38:0f:a0:1a:78:bf: 0d:8e:d6:fb:29:31:8d:dc:89:6c:cb:d2:43:0b:9f:fe:85:98: 87:30:c0:b1:af:a0:15:60:64:6d:91:4f:f9:5b:b8:7d:fe:3d: 3f:42:17:c8:37:90:e1:33:00:3d:db:9b:fd:88:db:75:2d:fe: 37:be:7f:ac:0c:71:79:d9:b5:a7:19:6a:63:54:6e:e7:e0:39: 2a:f4:30:0e:4f:f2:48:e4:4e:d7:c1:52:59:3c:7c:11:df:aa: 06:c5:c4:42:57:47:64:3e:b1:24:46:fa:26:bb:6d:1e:4b:83: 23:5b:9d:29:dd:ce:52:4a:b5:a4:eb:18:51:26:ae:fc:63:49: 61:3f:80:88:ce:85:64:df:18:aa:46:86:78:f5:e7:d0:78:d9: 4b:68:2c:c3:20:d9:88:9f:0a:05:fc:03:15:5d:05:72:da:e7: e6:2e:0a:46:ca:ef:bc:2c:8b:b8:a4:d7:c1:cc:e1:1c:40:ca: 85:df:bf:64:ab:c7:ea:4a:d7:c8:5a:3c:3e:ff:be:a0:41:11: cb:91:1c:99 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUadFsKOx6PW3AvxIYYs9o/DmdVM8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyOTAwMDA1M1oX DTI2MDIyNzIzNTk1OVowejFJMEcGA1UEBRNANTZlZjVkYWQ4OTNhZDM2NGI1MDYx NjlhMTI2ODY5YTc3YWZlOTI0YmQ2OTg3Njc3NDI2NTk0ZDRmYjlkODhmMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnYfKIi5ZmRV3hhcAsb83Jx6q3vaM R+P4jKFk1GEHKeR4PUWEdF73pbHVIyqRs2UpcC6p6uDnnBqKNzWJYFnOZe+v4zCh G81W3LTW93BJstnogTVnZUMczGoloyH74baHjvE6zinWemkhk/PsgJ7+lpwararb MLJ8ou2M9Dr7J+iWlhoheG5U3VNzOkS4TNhAKuJsJDp4COFr0E/A5raa6yUOYHBo dpj3yBByltKx9lm2nPLRRPg/t2sWPVhXLT+uf97G1GJ3j10wT4ni+JfDVdSHaeF/ 6HlNU1JDmdzrPYu13nNAcp3LwI8f0zUbcL6SiFGBfzO77jdTdd2GuoJV8QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFH9IMoe4Ay2mVJvserjHGAEKFO5JMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzI0ZTJlMDI0LTRiZDMtNGY2Yi04NzRjLTBlZjdhNGNiZWJjMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba9uAAMA0GCSqGSIb3DQEBCwUAA4IBAQA/WWUIZ8IkKNwnibgt LRMGQUWpIqFgOH23EiqKklMOTNfG/wyrFI+uzy1rtkLBOvo4D6AaeL8Njtb7KTGN 3Ilsy9JDC5/+hZiHMMCxr6AVYGRtkU/5W7h9/j0/QhfIN5DhMwA925v9iNt1Lf43 vn+sDHF52bWnGWpjVG7n4Dkq9DAOT/JI5E7XwVJZPHwR36oGxcRCV0dkPrEkRvom u20eS4MjW50p3c5SSrWk6xhRJq78Y0lhP4CIzoVk3xiqRoZ49efQeNlLaCzDINmI nwoF/AMVXQVy2ufmLgpGyu+8LIu4pNfBzOEcQMqF379kq8fqStfIWjw+/76gQRHL kRyZ -----END CERTIFICATE-----Generated at Sat Dec 6 12:06:09 2025 by rpki-client