This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2ebdc1e9-0e4b-42ff-9a27-800b739897a5.roa File: 2ebdc1e9-0e4b-42ff-9a27-800b739897a5.roa (raw, json) Hash identifier: D2Ckx4qkJiwAKLzWuRQ/z7nHXm8ThENwNYtQoRXfs0g= Subject key identifier: 43:30:C7:06:02:50:D0:17:09:3E:1C:E9:1B:25:C5:3A:05:22:3B:A4 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 581D57DE7F3786A97CC93478B12C02059AA3AB86 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2ebdc1e9-0e4b-42ff-9a27-800b739897a5.roa Signing time: Tue 02 Dec 2025 00:01:10 +0000 ROA not before: Tue 02 Dec 2025 00:01:10 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:a080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:1d:57:de:7f:37:86:a9:7c:c9:34:78:b1:2c:02:05:9a:a3:ab:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 2 00:01:10 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=c8e21cdcefd3fd6d8bb97ce52e841655194c007f2de20f44875effdcfd85851b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:09:95:f1:17:68:dc:b9:53:7d:96:01:d8:48: 91:34:fa:17:e5:72:7b:74:bc:9c:46:47:01:11:e5: d0:3b:98:17:d9:e6:41:b1:39:63:8b:0a:68:4c:f5: a7:bf:b3:d8:1b:25:f7:b9:12:60:d5:bc:c6:c5:86: 29:12:ed:83:d2:c5:06:0d:01:dc:30:d4:33:a4:ad: 46:95:7b:88:a3:63:92:13:da:69:20:76:da:92:07: bd:e0:22:cf:52:f8:c7:c5:9c:37:99:c5:8c:e9:71: a1:f6:b7:5c:cc:68:7e:0c:62:e9:e4:df:f5:3a:fc: 4d:67:ad:6a:b6:bd:ad:c1:79:5a:0a:36:3d:74:fe: 45:1f:c5:51:20:5f:d5:66:77:3a:2d:3b:c3:a5:53: b1:ba:af:f3:c2:4f:ba:03:80:c4:08:2d:d2:66:78: 23:0b:51:29:62:8e:12:62:88:55:f5:e9:d3:19:7e: b8:f5:c9:40:14:86:37:cd:15:58:c3:c0:40:36:c7: 36:0e:30:1b:52:1b:5b:ac:92:a6:ec:73:fd:be:11: df:e0:86:06:82:6f:1c:0c:16:8b:90:8f:65:81:46: ee:08:08:25:5c:ce:8e:ae:b4:31:fa:dc:cc:b4:c3: 2f:27:cb:ce:49:70:7d:dc:c2:66:4e:a2:95:23:32: 68:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:30:C7:06:02:50:D0:17:09:3E:1C:E9:1B:25:C5:3A:05:22:3B:A4 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2ebdc1e9-0e4b-42ff-9a27-800b739897a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:a080::/48 Signature Algorithm: sha256WithRSAEncryption af:35:71:7b:fc:f0:cf:c9:02:b6:97:d6:f7:64:87:00:50:66: 87:c3:e8:cb:c0:73:ec:74:ae:75:a2:b3:86:6f:35:49:bb:e0: f7:07:79:59:6b:04:fe:b2:79:14:8a:ac:a8:58:08:a8:86:c8: 54:46:c9:07:8d:a1:1f:40:2d:0e:92:17:ec:f5:7f:bc:0b:72: a2:5a:70:9e:d8:5d:1f:3e:0d:aa:64:09:5e:15:0c:55:06:ce: 69:7a:89:0b:9e:c5:a5:82:68:b0:6d:5b:41:f5:0a:3d:c3:96: 11:e4:b3:2c:09:b6:59:b2:7a:6f:da:9b:e1:dc:0f:a2:db:4b: 09:44:78:0d:6a:cf:b1:55:e3:bc:2f:1b:2b:2b:d2:35:03:05: ea:36:cc:2d:ee:ce:a2:a7:df:d0:14:a4:d9:d0:c9:3d:ad:73: cf:0e:a9:06:aa:1d:da:4e:8f:d8:b6:4d:03:d0:50:55:60:bb: b6:33:5f:af:1a:9a:34:68:b6:9f:f5:6a:44:79:f2:b8:29:68: 08:5b:19:32:02:06:c2:96:e3:28:cb:58:91:3d:bd:33:82:39: 53:ba:eb:fb:53:01:a8:63:80:2c:ed:25:2c:9d:50:39:4c:bf: da:5d:43:37:d4:23:32:de:49:82:4b:af:6d:22:5e:4c:f8:3b: 6e:5c:cf:4a -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUWB1X3n83hql8yTR4sSwCBZqjq4YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMjAwMDExMFoX DTI2MDMwMjIzNTk1OVowejFJMEcGA1UEBRNAYzhlMjFjZGNlZmQzZmQ2ZDhiYjk3 Y2U1MmU4NDE2NTUxOTRjMDA3ZjJkZTIwZjQ0ODc1ZWZmZGNmZDg1ODUxYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzgmV8Rdo3LlTfZYB2EiRNPoX5XJ7 dLycRkcBEeXQO5gX2eZBsTljiwpoTPWnv7PYGyX3uRJg1bzGxYYpEu2D0sUGDQHc MNQzpK1GlXuIo2OSE9ppIHbakge94CLPUvjHxZw3mcWM6XGh9rdczGh+DGLp5N/1 OvxNZ61qtr2twXlaCjY9dP5FH8VRIF/VZnc6LTvDpVOxuq/zwk+6A4DECC3SZngj C1EpYo4SYohV9enTGX649clAFIY3zRVYw8BANsc2DjAbUhtbrJKm7HP9vhHf4IYG gm8cDBaLkI9lgUbuCAglXM6OrrQx+tzMtMMvJ8vOSXB93MJmTqKVIzJo/QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFEMwxwYCUNAXCT4c6RslxToFIjukMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzJlYmRjMWU5LTBlNGItNDJmZi05YTI3LTgwMGI3Mzk4OTdhNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAKCAMA0GCSqGSIb3DQEBCwUAA4IBAQCvNXF7/PDPyQK2l9b3 ZIcAUGaHw+jLwHPsdK51orOGbzVJu+D3B3lZawT+snkUiqyoWAiohshURskHjaEf QC0Okhfs9X+8C3KiWnCe2F0fPg2qZAleFQxVBs5peokLnsWlgmiwbVtB9Qo9w5YR 5LMsCbZZsnpv2pvh3A+i20sJRHgNas+xVeO8LxsrK9I1AwXqNswt7s6ip9/QFKTZ 0Mk9rXPPDqkGqh3aTo/Ytk0D0FBVYLu2M1+vGpo0aLaf9WpEefK4KWgIWxkyAgbC luMoy1iRPb0zgjlTuuv7UwGoY4As7SUsnVA5TL/aXUM31CMy3kmCS69tIl5M+Dtu XM9K -----END CERTIFICATE-----Generated at Sat Dec 6 11:51:33 2025 by rpki-client