This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2d3756cb-3d90-4f28-96d5-2e8b14556142.roa File: 2d3756cb-3d90-4f28-96d5-2e8b14556142.roa (raw, json) Hash identifier: 16+jf2AkxWn9jKxOwb55UZFV4q3nsxRXyXZSLRMAJc8= Subject key identifier: 5F:29:DD:05:FF:24:E3:E6:E9:4F:AD:C1:49:18:57:0B:1C:C3:DD:65 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 46A9EA4D6FBE8A498E597084A324C67C5A0290C6 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2d3756cb-3d90-4f28-96d5-2e8b14556142.roa Signing time: Sun 30 Nov 2025 00:00:13 +0000 ROA not before: Sun 30 Nov 2025 00:00:13 +0000 ROA not after: Sat 28 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:40e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:a9:ea:4d:6f:be:8a:49:8e:59:70:84:a3:24:c6:7c:5a:02:90:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 30 00:00:13 2025 GMT Not After : Feb 28 23:59:59 2026 GMT Subject: serialNumber=faf0cd1a65b346c122edb62171552002cd27216cbcc47651930c29dc72451a7a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:85:af:47:95:12:2c:7c:91:da:06:d0:0e:9d: 2b:ce:d1:e7:54:f7:a0:8a:49:59:a9:63:73:e6:5f: 0e:10:57:03:f4:6b:f6:bd:c6:2e:7a:44:d8:f7:7e: 19:b3:cb:25:cb:3f:49:bb:e2:16:a7:69:14:02:1a: 4e:17:1a:90:51:ae:a1:ef:3c:da:05:66:fe:68:06: c8:a4:0f:67:64:9a:78:17:43:ef:27:ea:4b:28:61: 12:9d:52:16:37:45:88:41:81:35:cf:a3:cc:57:f2: 31:a3:db:32:8a:ba:23:6e:69:28:a8:15:04:fb:79: de:e5:6c:26:a2:02:a4:bd:80:01:08:a1:15:35:9c: 9d:4b:65:87:6d:f9:a9:30:65:44:f6:28:b5:79:3d: b0:59:7d:6a:23:6e:de:ab:5e:eb:b7:f9:60:29:22: 42:23:13:2f:02:e2:75:4e:47:60:b4:31:44:27:fc: df:48:79:89:0a:bb:97:42:ad:46:ec:bb:a0:c9:80: 4b:c7:42:81:34:c5:9f:c2:23:d8:a2:38:56:29:49: 6c:ee:4d:ba:b5:0f:ee:ee:5a:32:83:bb:80:cf:30: ec:37:07:9a:ea:f6:2a:08:a2:5d:b6:5f:62:57:86: c1:b0:46:31:c7:c1:aa:6d:5d:70:b8:dc:19:c6:3a: 71:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:29:DD:05:FF:24:E3:E6:E9:4F:AD:C1:49:18:57:0B:1C:C3:DD:65 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2d3756cb-3d90-4f28-96d5-2e8b14556142.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:40e0::/48 Signature Algorithm: sha256WithRSAEncryption 7d:64:fe:ad:69:38:2e:0e:9d:a9:2e:ff:e7:3a:8c:17:ec:c2: 82:47:8c:5f:b2:ce:34:bf:6f:4b:bb:cd:d9:b1:40:42:c5:7a: 81:88:2e:9f:61:8b:b3:ee:84:f7:24:30:0c:c5:9b:5c:d9:ab: 84:85:78:47:9d:11:ae:fe:a9:6c:99:a2:1b:77:8a:98:18:1e: dc:70:6e:d1:8d:a9:f4:3c:71:42:c3:a0:83:0e:64:ee:96:65: b6:ac:d2:8d:2e:3c:c2:3f:c6:5a:30:81:ba:5e:38:6a:33:69: 1b:a6:d9:7c:67:60:24:c7:da:a3:47:d4:d6:86:f2:68:60:c7: 1c:be:5f:93:f8:78:67:0a:b4:a2:92:14:fc:59:51:ea:31:05: 15:9e:04:9b:17:4d:ff:e2:e7:31:1f:1a:2e:c6:fd:10:49:10: e4:e5:43:5b:71:7b:19:a1:b1:cb:3a:4e:69:d6:fa:b8:88:dd: 13:2c:50:a7:07:e8:03:e1:01:65:5b:98:a0:13:7f:a1:83:0d: d6:26:c8:94:96:c3:4c:78:29:8d:31:7a:a4:31:51:1b:ca:47: 52:90:0f:06:16:af:fa:41:1f:c3:af:7b:19:ed:48:48:1e:b9: 19:c2:18:5e:07:98:f4:90:d4:f2:1e:4c:d5:94:53:d3:cd:91: b2:16:a6:74 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIURqnqTW++ikmOWXCEoyTGfFoCkMYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEzMDAwMDAxM1oX DTI2MDIyODIzNTk1OVowejFJMEcGA1UEBRNAZmFmMGNkMWE2NWIzNDZjMTIyZWRi NjIxNzE1NTIwMDJjZDI3MjE2Y2JjYzQ3NjUxOTMwYzI5ZGM3MjQ1MWE3YTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArIWvR5USLHyR2gbQDp0rztHnVPeg iklZqWNz5l8OEFcD9Gv2vcYuekTY934Zs8slyz9Ju+IWp2kUAhpOFxqQUa6h7zza BWb+aAbIpA9nZJp4F0PvJ+pLKGESnVIWN0WIQYE1z6PMV/Ixo9syirojbmkoqBUE +3ne5WwmogKkvYABCKEVNZydS2WHbfmpMGVE9ii1eT2wWX1qI27eq17rt/lgKSJC IxMvAuJ1TkdgtDFEJ/zfSHmJCruXQq1G7LugyYBLx0KBNMWfwiPYojhWKUls7k26 tQ/u7loyg7uAzzDsNwea6vYqCKJdtl9iV4bBsEYxx8GqbV1wuNwZxjpxpQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFF8p3QX/JOPm6U+twUkYVwscw91lMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzJkMzc1NmNiLTNkOTAtNGYyOC05NmQ1LTJlOGIxNDU1NjE0Mi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/0DgMA0GCSqGSIb3DQEBCwUAA4IBAQB9ZP6taTguDp2pLv/n OowX7MKCR4xfss40v29Lu83ZsUBCxXqBiC6fYYuz7oT3JDAMxZtc2auEhXhHnRGu /qlsmaIbd4qYGB7ccG7Rjan0PHFCw6CDDmTulmW2rNKNLjzCP8ZaMIG6XjhqM2kb ptl8Z2Akx9qjR9TWhvJoYMccvl+T+HhnCrSikhT8WVHqMQUVngSbF03/4ucxHxou xv0QSRDk5UNbcXsZobHLOk5p1vq4iN0TLFCnB+gD4QFlW5igE3+hgw3WJsiUlsNM eCmNMXqkMVEbykdSkA8GFq/6QR/Dr3sZ7UhIHrkZwhheB5j0kNTyHkzVlFPTzZGy FqZ0 -----END CERTIFICATE-----Generated at Sat Dec 6 12:04:47 2025 by rpki-client