This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/361d936c-1adc-484a-92e0-91a674c8ad9d.roa File: 361d936c-1adc-484a-92e0-91a674c8ad9d.roa (raw, json) Hash identifier: ptWC5O+v+snDPF5f4G9OhqWP6Ddidm9xdIFWVGr3pJc= Subject key identifier: BC:2F:C3:5A:D3:62:F4:A8:6B:1A:11:66:26:E8:57:22:05:A4:FC:FD Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7AAD5DD8147AE1B47A54181FC4F88B63DBABAB45 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/361d936c-1adc-484a-92e0-91a674c8ad9d.roa Signing time: Tue 02 Dec 2025 00:10:44 +0000 ROA not before: Tue 02 Dec 2025 00:10:44 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da38:c0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:ad:5d:d8:14:7a:e1:b4:7a:54:18:1f:c4:f8:8b:63:db:ab:ab:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 2 00:10:44 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=d5ced96f0fd2d899ec8bdc65f660a24672e576ffd60fa5ee77513f4c87d376a6, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0b:27:ec:05:da:35:2c:da:87:0e:6e:b7:f5: 47:3e:68:b0:16:57:23:23:ac:43:e8:21:98:2c:89: 56:56:24:8e:d1:9b:e9:6e:66:43:70:46:b2:4d:bc: f3:86:72:d8:b8:1e:4b:3d:ed:7c:a0:6f:e2:e8:6b: 72:24:b1:5f:5f:8f:e0:55:ec:b0:09:c8:ea:71:26: 78:74:51:78:70:93:c6:05:c4:c9:bf:1c:3a:af:b8: 19:50:ca:d5:44:4e:3f:af:6a:82:81:20:fd:d5:30: 67:1f:af:91:97:bd:7c:e1:ef:7b:1f:fc:c9:6c:12: c5:c9:7a:f6:a9:31:11:61:8f:7d:87:b6:65:d6:d4: 1d:36:9a:ab:42:3b:49:73:33:d4:70:ca:4e:ca:9d: 62:af:98:b7:1e:0a:2d:a9:8c:e5:64:60:5e:8c:d6: 2b:71:72:14:b5:6e:93:2c:a4:d3:ca:ae:59:14:a4: 65:de:5d:23:cf:e5:80:a8:12:19:6e:5c:6b:b5:18: 27:a0:bb:32:55:27:0b:66:5b:4c:1c:b7:9a:66:32: eb:65:b3:a1:76:8a:b7:1a:68:ff:96:d6:f8:c4:98: a9:01:bc:1f:1e:fb:52:cb:72:e2:2e:e1:a4:a8:6d: 5f:42:34:b4:45:60:ff:8d:ae:1d:b8:3a:61:61:0b: 2e:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:2F:C3:5A:D3:62:F4:A8:6B:1A:11:66:26:E8:57:22:05:A4:FC:FD X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/361d936c-1adc-484a-92e0-91a674c8ad9d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da38:c0c0::/48 Signature Algorithm: sha256WithRSAEncryption be:9c:2a:08:41:ec:31:07:bc:dd:ca:88:59:db:79:f6:26:10: 96:a1:7a:e2:44:b0:0a:e3:b9:e3:1d:a0:79:a5:c8:e0:2a:3c: 30:85:00:66:44:11:89:a1:ce:d6:0c:70:d4:7b:46:31:15:48: 6b:f9:61:41:cc:90:36:f4:1d:e3:74:87:b5:f0:6f:8d:6c:11: 31:22:05:1e:f2:53:f0:e2:87:a6:0f:4b:70:e8:fb:b2:09:37: 83:86:c0:d6:e2:42:79:40:1c:f9:04:2b:42:bf:cd:f9:ee:3d: 45:85:36:45:96:d9:30:b4:27:72:2a:e1:5f:18:18:a0:16:f2: fe:4c:8b:67:95:7b:0c:e5:57:a2:20:64:51:66:ad:6c:fb:26: 59:bf:2e:dd:b9:27:26:b4:be:20:c8:c6:27:e1:2b:c1:67:58: 3b:9e:6f:9c:3e:f4:c0:54:10:a7:db:f8:cc:c5:9f:9b:c3:78: d8:a5:e9:f5:9d:47:4c:02:f7:5f:38:e0:0d:7e:94:d8:97:a9: c9:c0:47:17:c3:c3:32:19:45:1f:e7:a9:f6:ea:d6:05:34:fa: 7e:db:99:cb:7c:6b:fb:a2:2b:51:47:41:37:f7:2d:7f:ad:81: 64:34:a6:53:be:81:37:fa:8e:b0:c4:cd:10:c5:ab:51:86:81: 3f:59:a8:23 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUeq1d2BR64bR6VBgfxPiLY9urq0UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMjAwMTA0NFoX DTI2MDMwMjIzNTk1OVowejFJMEcGA1UEBRNAZDVjZWQ5NmYwZmQyZDg5OWVjOGJk YzY1ZjY2MGEyNDY3MmU1NzZmZmQ2MGZhNWVlNzc1MTNmNGM4N2QzNzZhNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxAsn7AXaNSzahw5ut/VHPmiwFlcj I6xD6CGYLIlWViSO0ZvpbmZDcEayTbzzhnLYuB5LPe18oG/i6GtyJLFfX4/gVeyw CcjqcSZ4dFF4cJPGBcTJvxw6r7gZUMrVRE4/r2qCgSD91TBnH6+Rl7184e97H/zJ bBLFyXr2qTERYY99h7Zl1tQdNpqrQjtJczPUcMpOyp1ir5i3HgotqYzlZGBejNYr cXIUtW6TLKTTyq5ZFKRl3l0jz+WAqBIZblxrtRgnoLsyVScLZltMHLeaZjLrZbOh doq3Gmj/ltb4xJipAbwfHvtSy3LiLuGkqG1fQjS0RWD/ja4duDphYQsukQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFLwvw1rTYvSoaxoRZiboVyIFpPz9MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzM2MWQ5MzZjLTFhZGMtNDg0YS05MmUwLTkxYTY3NGM4YWQ5ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaOMDAMA0GCSqGSIb3DQEBCwUAA4IBAQC+nCoIQewxB7zdyohZ 23n2JhCWoXriRLAK47njHaB5pcjgKjwwhQBmRBGJoc7WDHDUe0YxFUhr+WFBzJA2 9B3jdIe18G+NbBExIgUe8lPw4oemD0tw6PuyCTeDhsDW4kJ5QBz5BCtCv8357j1F hTZFltkwtCdyKuFfGBigFvL+TItnlXsM5VeiIGRRZq1s+yZZvy7duScmtL4gyMYn 4SvBZ1g7nm+cPvTAVBCn2/jMxZ+bw3jYpen1nUdMAvdfOOANfpTYl6nJwEcXw8My GUUf56n26tYFNPp+25nLfGv7oitRR0E39y1/rYFkNKZTvoE3+o6wxM0QxatRhoE/ Wagj -----END CERTIFICATE-----Generated at Sat Dec 6 10:58:31 2025 by rpki-client