This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2dbf8d60-f7e6-4049-8e45-9c0517e5045d.roa File: 2dbf8d60-f7e6-4049-8e45-9c0517e5045d.roa (raw, json) Hash identifier: KY37hl9M0nRZiQMV2a3TiNXtc/FPmwzTRsAetjHN1r8= Subject key identifier: 73:E2:5F:6C:D3:5A:12:0F:43:76:72:18:90:AA:21:67:EE:27:0E:E4 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 707BAFB3D31A3A78C6405B0A445DCEBD8A2A8D9D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2dbf8d60-f7e6-4049-8e45-9c0517e5045d.roa Signing time: Thu 27 Nov 2025 00:00:10 +0000 ROA not before: Thu 27 Nov 2025 00:00:10 +0000 ROA not after: Wed 25 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da60:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:7b:af:b3:d3:1a:3a:78:c6:40:5b:0a:44:5d:ce:bd:8a:2a:8d:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 27 00:00:10 2025 GMT Not After : Feb 25 23:59:59 2026 GMT Subject: serialNumber=85ce90ff09dfeb7838d222ae993b183b0ad46bdf29a0ae48682bca1df4ae2ea3, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:d7:29:0e:20:aa:2b:3b:fa:bd:76:f9:1e:81: 6e:ef:f1:de:84:51:f4:97:3d:7c:3e:9b:5d:bd:15: 8e:c8:63:8b:69:44:53:92:24:8a:65:fc:73:7b:9a: 9d:1c:e2:84:7e:78:1f:d3:c0:6d:33:2e:e8:d0:4c: 5c:8a:65:00:b4:7c:f1:78:0f:a9:0b:22:fa:97:44: bd:01:04:3d:28:a1:44:4a:e9:51:7b:5c:36:4d:eb: c9:57:7f:76:0a:9c:1e:9a:5e:d7:05:d2:81:92:87: 56:2c:57:16:d1:b0:1b:b7:09:46:4a:7b:a2:c4:d7: 8c:30:9a:f4:a2:fe:16:20:b7:54:fb:91:5e:dd:8c: f6:cd:b4:f6:1d:09:fd:b1:f3:60:ee:aa:43:a5:ce: d5:50:79:26:36:91:75:0a:82:b2:77:f4:ff:03:4b: 7e:03:80:88:d6:40:7a:28:a0:40:3e:9f:28:cb:31: 7b:95:22:52:a7:04:14:0d:d2:56:2d:de:7a:db:a1: 15:86:d2:68:5c:ec:9e:86:e5:0c:ab:04:20:03:58: 22:5e:61:a3:67:c0:f9:f6:f1:e9:fe:53:6b:98:4c: 28:98:c8:4e:7b:ec:b4:7c:6b:5b:db:8c:5e:f3:7b: a5:f9:c3:16:78:75:11:d0:b2:4a:5d:5f:6e:73:70: 90:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:E2:5F:6C:D3:5A:12:0F:43:76:72:18:90:AA:21:67:EE:27:0E:E4 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2dbf8d60-f7e6-4049-8e45-9c0517e5045d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da60:2000::/40 Signature Algorithm: sha256WithRSAEncryption be:b7:c3:6d:ed:84:b3:a7:d4:d7:0a:52:b5:1d:21:e9:c8:b7: 5a:b9:36:93:3e:90:9c:c3:17:ae:f6:17:4d:ce:2c:37:05:18: be:d9:64:f9:bb:b0:83:7e:ee:64:1b:e2:50:5e:a2:ec:a0:9a: 36:47:82:bc:ba:a8:c4:60:62:a4:9b:f7:8e:a5:92:94:b1:a9: ae:c4:8f:7d:b4:0c:34:c4:16:d5:58:45:38:ec:f6:52:09:4f: 9c:05:0c:7c:63:d7:84:ef:59:a5:7d:1b:c1:fa:86:21:78:ab: a1:b2:f5:0b:75:32:f5:b6:19:1e:33:df:53:a2:72:8e:54:21: dc:86:32:06:cb:ff:d0:20:65:b2:97:99:61:7b:76:4f:2a:1e: 0d:c8:3f:ef:07:98:0d:a2:b2:a8:2e:f9:97:b4:25:d2:a8:94: 07:c2:8f:54:ec:ba:ae:09:5f:93:02:cf:50:b0:a9:73:5d:0d: bf:c6:96:5a:a5:5e:b3:59:d5:9a:0d:68:8c:c5:ab:7e:9d:5b: 35:df:28:35:02:a0:8b:58:83:a2:92:82:3b:ab:6c:ee:54:6a: 81:18:6b:54:bb:35:6f:d5:6b:54:70:40:f8:ff:ba:d3:21:34: a1:6c:df:88:71:c4:01:67:5d:63:41:46:d6:a5:90:b3:fc:a3: ee:a1:dc:04 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUcHuvs9MaOnjGQFsKRF3OvYoqjZ0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyNzAwMDAxMFoX DTI2MDIyNTIzNTk1OVowejFJMEcGA1UEBRNAODVjZTkwZmYwOWRmZWI3ODM4ZDIy MmFlOTkzYjE4M2IwYWQ0NmJkZjI5YTBhZTQ4NjgyYmNhMWRmNGFlMmVhMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjtcpDiCqKzv6vXb5HoFu7/HehFH0 lz18PptdvRWOyGOLaURTkiSKZfxze5qdHOKEfngf08BtMy7o0ExcimUAtHzxeA+p CyL6l0S9AQQ9KKFESulRe1w2TevJV392Cpweml7XBdKBkodWLFcW0bAbtwlGSnui xNeMMJr0ov4WILdU+5Fe3Yz2zbT2HQn9sfNg7qpDpc7VUHkmNpF1CoKyd/T/A0t+ A4CI1kB6KKBAPp8oyzF7lSJSpwQUDdJWLd5626EVhtJoXOyehuUMqwQgA1giXmGj Z8D59vHp/lNrmEwomMhOe+y0fGtb24xe83ul+cMWeHUR0LJKXV9uc3CQCQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFHPiX2zTWhIPQ3ZyGJCqIWfuJw7kMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzJkYmY4ZDYwLWY3ZTYtNDA0OS04ZTQ1LTljMDUxN2U1MDQ1ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaYCAwDQYJKoZIhvcNAQELBQADggEBAL63w23thLOn1NcKUrUd IenIt1q5NpM+kJzDF672F03OLDcFGL7ZZPm7sIN+7mQb4lBeouygmjZHgry6qMRg YqSb946lkpSxqa7Ej320DDTEFtVYRTjs9lIJT5wFDHxj14TvWaV9G8H6hiF4q6Gy 9Qt1MvW2GR4z31Oico5UIdyGMgbL/9AgZbKXmWF7dk8qHg3IP+8HmA2isqgu+Ze0 JdKolAfCj1Tsuq4JX5MCz1CwqXNdDb/GllqlXrNZ1ZoNaIzFq36dWzXfKDUCoItY g6KSgjurbO5UaoEYa1S7NW/Va1RwQPj/utMhNKFs34hxxAFnXWNBRtalkLP8o+6h 3AQ= -----END CERTIFICATE-----Generated at Sat Dec 6 19:54:25 2025 by rpki-client