This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/388cbd89-4c8e-4d67-99e2-dd53b6b7d2c6.roa File: 388cbd89-4c8e-4d67-99e2-dd53b6b7d2c6.roa (raw, json) Hash identifier: LhKCktxTiy3mfbm/WRg1i0FhW0EhlSjEdtnwUIqrt94= Subject key identifier: 1B:B7:47:7D:95:48:34:EB:7B:94:05:CE:D0:8F:06:92:95:02:B2:9A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7CD9FAE4728AD25A13FB9AB23ABF55DC86F76A2B Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/388cbd89-4c8e-4d67-99e2-dd53b6b7d2c6.roa Signing time: Sun 30 Nov 2025 00:01:41 +0000 ROA not before: Sun 30 Nov 2025 00:01:41 +0000 ROA not after: Sat 28 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:d9:fa:e4:72:8a:d2:5a:13:fb:9a:b2:3a:bf:55:dc:86:f7:6a:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 30 00:01:41 2025 GMT Not After : Feb 28 23:59:59 2026 GMT Subject: serialNumber=1f90e90ee827386929f184c08419fd45e9c4fd00c27324423d860c33129de4cd, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:59:0a:be:14:c0:17:65:a4:68:0d:08:ce:47: 92:f2:4e:74:4b:b1:ef:71:5d:78:44:10:f1:22:ea: 29:56:89:19:cb:c7:9b:d9:8a:0e:d8:3b:73:6b:94: be:98:81:4c:b7:4c:76:3f:6e:a9:de:0a:55:23:5b: e7:16:12:1e:ee:4a:5e:d4:ae:f3:49:05:3a:dc:36: 8d:6e:ff:08:f0:30:64:52:4c:83:5d:9d:c8:f1:42: 1e:36:86:a6:66:6d:d0:ec:84:fb:17:a5:18:bc:5a: 4a:89:e0:9d:51:bc:b0:56:d9:e9:e0:d1:66:50:55: d4:0d:ec:42:5f:bc:c5:6e:60:9a:f6:9f:7c:ff:22: f8:89:a1:06:a7:f2:d8:ec:ac:c3:a0:44:04:3a:b7: 01:f5:be:c2:81:55:e4:2d:0c:39:2e:30:ef:04:23: 9e:3c:90:50:2e:22:c7:0e:6a:10:2b:71:82:8c:d2: 5c:8a:5f:b8:83:7f:ee:7c:97:79:58:f3:d5:78:e8: d1:34:c9:99:92:5a:f6:1d:a1:da:cf:3f:26:0a:8c: 5a:c9:d2:71:6f:fe:2f:c2:d1:a1:7e:b9:15:6b:18: 0c:78:62:fc:10:be:af:36:34:b3:99:ae:f5:5a:a1: 2d:7a:21:7c:8e:f6:8a:90:25:59:08:9a:87:14:00: bc:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:B7:47:7D:95:48:34:EB:7B:94:05:CE:D0:8F:06:92:95:02:B2:9A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/388cbd89-4c8e-4d67-99e2-dd53b6b7d2c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:880::/48 Signature Algorithm: sha256WithRSAEncryption 49:12:52:59:55:b2:77:af:5a:e1:76:a3:b1:a5:b1:95:e0:de: 55:03:fd:3c:72:c6:0e:91:14:97:46:57:04:a0:36:ef:e8:7c: 80:cf:6d:f2:bd:b1:ce:cd:ad:19:aa:55:e2:17:4e:84:cc:53: 57:a7:c8:a3:06:10:40:44:fa:ce:c7:49:eb:cd:20:31:64:af: 91:fd:70:81:b1:ef:49:8a:89:23:be:86:76:ac:8c:8b:cf:af: 8a:69:85:5c:66:71:81:3f:20:d4:9a:91:17:42:b9:64:c7:a1: a3:f2:44:61:56:f9:28:2f:29:3a:6b:01:2c:69:1c:57:37:1a: cc:26:6b:3b:c9:49:e3:c3:89:26:e7:24:5b:3d:06:8b:ba:08: 7f:8a:79:35:26:8e:c5:78:eb:5b:33:fc:c5:ab:38:44:59:a1: 77:52:6d:4b:90:0c:8f:d1:75:7d:21:9d:c3:16:d7:76:14:71: 8f:f3:15:62:5a:7d:82:d2:d1:ad:2a:84:28:f7:fb:43:d2:7b: d0:e3:64:6a:a6:46:6e:54:fb:be:cb:ed:1f:aa:23:ee:df:fe: 09:fa:39:5f:39:3d:46:82:15:e5:a1:78:85:33:fd:98:5b:b3: 03:f9:dd:66:f1:e3:3f:95:e5:40:04:11:9e:45:92:c3:52:2f: 23:6d:a2:51 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUfNn65HKK0loT+5qyOr9V3Ib3aiswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEzMDAwMDE0MVoX DTI2MDIyODIzNTk1OVowejFJMEcGA1UEBRNAMWY5MGU5MGVlODI3Mzg2OTI5ZjE4 NGMwODQxOWZkNDVlOWM0ZmQwMGMyNzMyNDQyM2Q4NjBjMzMxMjlkZTRjZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArlkKvhTAF2WkaA0IzkeS8k50S7Hv cV14RBDxIuopVokZy8eb2YoO2Dtza5S+mIFMt0x2P26p3gpVI1vnFhIe7kpe1K7z SQU63DaNbv8I8DBkUkyDXZ3I8UIeNoamZm3Q7IT7F6UYvFpKieCdUbywVtnp4NFm UFXUDexCX7zFbmCa9p98/yL4iaEGp/LY7KzDoEQEOrcB9b7CgVXkLQw5LjDvBCOe PJBQLiLHDmoQK3GCjNJcil+4g3/ufJd5WPPVeOjRNMmZklr2HaHazz8mCoxaydJx b/4vwtGhfrkVaxgMeGL8EL6vNjSzma71WqEteiF8jvaKkCVZCJqHFAC8+QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFBu3R32VSDTre5QFztCPBpKVArKaMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzM4OGNiZDg5LTRjOGUtNGQ2Ny05OWUyLWRkNTNiNmI3ZDJjNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAAiAMA0GCSqGSIb3DQEBCwUAA4IBAQBJElJZVbJ3r1rhdqOx pbGV4N5VA/08csYOkRSXRlcEoDbv6HyAz23yvbHOza0ZqlXiF06EzFNXp8ijBhBA RPrOx0nrzSAxZK+R/XCBse9JiokjvoZ2rIyLz6+KaYVcZnGBPyDUmpEXQrlkx6Gj 8kRhVvkoLyk6awEsaRxXNxrMJms7yUnjw4km5yRbPQaLugh/ink1Jo7FeOtbM/zF qzhEWaF3Um1LkAyP0XV9IZ3DFtd2FHGP8xViWn2C0tGtKoQo9/tD0nvQ42RqpkZu VPu+y+0fqiPu3/4J+jlfOT1GghXloXiFM/2YW7MD+d1m8eM/leVABBGeRZLDUi8j baJR -----END CERTIFICATE-----Generated at Sat Dec 6 10:58:30 2025 by rpki-client