This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3479d056-3c82-4999-8725-061e01b95c31.roa File: 3479d056-3c82-4999-8725-061e01b95c31.roa (raw, json) Hash identifier: 42HzvcDTWRDHEg4czuNCsTqUNA2e1tJHXpRMFkJ/gLs= Subject key identifier: 6B:9D:87:C4:AB:4C:D7:BD:1D:F9:59:31:7A:35:C4:B6:47:BB:0F:6E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 069F00C90C31A066F3728141136EEB982065384B Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3479d056-3c82-4999-8725-061e01b95c31.roa Signing time: Wed 03 Dec 2025 00:11:05 +0000 ROA not before: Wed 03 Dec 2025 00:11:05 +0000 ROA not after: Tue 03 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:90c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:9f:00:c9:0c:31:a0:66:f3:72:81:41:13:6e:eb:98:20:65:38:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 3 00:11:05 2025 GMT Not After : Mar 3 23:59:59 2026 GMT Subject: serialNumber=df9279d4f246a352e9269edb8bd1b33b74d4d434a24ae1b8b4fc4bde3115568b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:19:80:67:c0:bc:7e:0e:e0:cd:6a:a6:a3:55: d5:7a:c5:dd:3a:48:70:a7:da:8c:e0:77:16:5e:d1: 62:a0:63:6a:af:38:4d:f6:18:01:19:c7:74:2d:a9: 3e:a8:a5:6b:02:6f:30:a7:e1:c0:49:00:ae:83:b5: 87:38:29:a4:47:ab:cf:f3:c8:d4:39:83:89:01:3a: 63:d6:8d:66:3c:7a:3f:be:fa:56:09:f0:af:8f:48: 55:01:1d:61:df:6d:37:36:f1:70:0a:11:76:22:cb: e6:9b:54:2c:1b:e3:77:88:84:4f:d6:4b:09:2f:31: fb:d3:ac:3d:9b:94:66:69:c9:83:aa:fe:98:3f:1b: 90:d1:b4:48:7b:fd:73:ef:ac:5d:5e:66:4b:79:54: 4b:55:8e:11:fd:5d:44:98:36:3b:5a:dc:65:49:3f: af:52:4a:e4:99:dc:5f:a2:a0:97:ff:91:d7:97:2b: 79:45:b9:ee:74:22:93:3e:9a:2b:07:b8:b6:d1:15: bf:36:49:e2:d7:ab:fa:6e:d1:d0:03:1f:45:13:8c: 4f:19:ed:be:49:3d:88:4d:23:f3:f4:34:ce:7e:51: cf:43:00:74:36:10:4f:b4:37:5d:25:3d:c7:1a:cf: a2:4c:59:5d:6b:83:a9:5f:b3:63:ec:33:69:26:f9: 2f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:9D:87:C4:AB:4C:D7:BD:1D:F9:59:31:7A:35:C4:B6:47:BB:0F:6E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3479d056-3c82-4999-8725-061e01b95c31.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:90c0::/48 Signature Algorithm: sha256WithRSAEncryption b2:b4:f3:15:d5:e5:db:21:69:b0:7a:cf:d4:1b:a8:db:43:a2: 19:f0:be:9d:07:4e:d6:00:d6:21:0f:93:63:2b:0e:89:d5:37: 7f:af:60:53:6f:40:46:32:d2:6b:63:e4:ff:d6:90:93:e0:3d: a2:61:c7:a3:da:6f:22:27:af:16:46:85:6d:12:b5:19:14:92: 54:8f:0f:0d:3f:0e:a3:89:d7:81:1b:79:63:bb:a2:d3:b6:21: d9:22:15:5a:1e:9d:d7:36:3c:92:68:dc:05:3c:03:c5:ad:3d: 54:7a:57:e8:cf:b2:4b:42:97:df:6e:57:0d:fc:4b:7a:e2:f9: b1:5d:9c:fc:92:75:99:d2:0f:ca:d4:d9:31:80:10:87:00:ee: c6:b9:48:7b:90:d9:d9:8d:62:45:f4:e6:cd:86:7b:b2:5c:60: 7f:26:bd:40:de:75:57:a8:6b:92:1e:3d:cc:ed:8f:91:d9:27: 38:cc:be:3e:72:5a:0a:03:52:7c:a6:4a:68:ad:57:e7:83:3e: 01:2d:e3:ff:cc:ba:c5:a9:70:aa:d0:f7:40:46:27:88:18:9b: 95:03:ad:ac:2a:04:02:15:e0:5c:1a:53:06:45:d9:6b:45:8a: 32:45:f1:8f:b0:24:87:5d:6f:2c:0d:c1:23:b2:23:6d:c4:2b: 0c:68:df:ef -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUBp8AyQwxoGbzcoFBE27rmCBlOEswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMzAwMTEwNVoX DTI2MDMwMzIzNTk1OVowejFJMEcGA1UEBRNAZGY5Mjc5ZDRmMjQ2YTM1MmU5MjY5 ZWRiOGJkMWIzM2I3NGQ0ZDQzNGEyNGFlMWI4YjRmYzRiZGUzMTE1NTY4YjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtRmAZ8C8fg7gzWqmo1XVesXdOkhw p9qM4HcWXtFioGNqrzhN9hgBGcd0Lak+qKVrAm8wp+HASQCug7WHOCmkR6vP88jU OYOJATpj1o1mPHo/vvpWCfCvj0hVAR1h3203NvFwChF2Isvmm1QsG+N3iIRP1ksJ LzH706w9m5RmacmDqv6YPxuQ0bRIe/1z76xdXmZLeVRLVY4R/V1EmDY7WtxlST+v UkrkmdxfoqCX/5HXlyt5RbnudCKTPporB7i20RW/Nkni16v6btHQAx9FE4xPGe2+ ST2ITSPz9DTOflHPQwB0NhBPtDddJT3HGs+iTFlda4OpX7Nj7DNpJvkvGQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFGudh8SrTNe9HflZMXo1xLZHuw9uMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzM0NzlkMDU2LTNjODItNDk5OS04NzI1LTA2MWUwMWI5NWMzMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYZDAMA0GCSqGSIb3DQEBCwUAA4IBAQCytPMV1eXbIWmwes/U G6jbQ6IZ8L6dB07WANYhD5NjKw6J1Td/r2BTb0BGMtJrY+T/1pCT4D2iYcej2m8i J68WRoVtErUZFJJUjw8NPw6jideBG3lju6LTtiHZIhVaHp3XNjySaNwFPAPFrT1U elfoz7JLQpffblcN/Et64vmxXZz8knWZ0g/K1NkxgBCHAO7GuUh7kNnZjWJF9ObN hnuyXGB/Jr1A3nVXqGuSHj3M7Y+R2Sc4zL4+cloKA1J8pkporVfngz4BLeP/zLrF qXCq0PdARieIGJuVA62sKgQCFeBcGlMGRdlrRYoyRfGPsCSHXW8sDcEjsiNtxCsM aN/v -----END CERTIFICATE-----Generated at Sat Dec 6 13:23:17 2025 by rpki-client