This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/38ae37ad-50db-4547-8df2-8cdcc56e5ca1.roa File: 38ae37ad-50db-4547-8df2-8cdcc56e5ca1.roa (raw, json) Hash identifier: BF/1LuZJ21YYVns2S8lykQCjOx95Gs2K8yAkXQZXVoE= Subject key identifier: 3F:A2:D3:5A:96:2E:A2:7A:FC:17:53:15:B0:C0:FB:C5:A2:61:12:1D Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 085475D586508D50FFDDFE3C3AF4A8E8EA1877FE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/38ae37ad-50db-4547-8df2-8cdcc56e5ca1.roa Signing time: Thu 04 Dec 2025 00:20:08 +0000 ROA not before: Thu 04 Dec 2025 00:20:08 +0000 ROA not after: Wed 04 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da32::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:54:75:d5:86:50:8d:50:ff:dd:fe:3c:3a:f4:a8:e8:ea:18:77:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 4 00:20:08 2025 GMT Not After : Mar 4 23:59:59 2026 GMT Subject: serialNumber=396b3176a99ad787dd140e18eb8852b9cc38deba11e49318ddd11a4e8bba8594, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:fc:7b:56:03:b3:95:6d:df:0b:3a:9e:fd:62: b5:38:30:e0:0d:de:ed:9f:96:6e:45:b8:38:18:33: b0:4a:32:c7:d8:e0:58:b7:7c:89:fe:57:9d:25:84: d5:7e:f1:f0:96:43:2e:68:52:12:da:f2:71:90:c1: e0:97:90:f1:43:7f:27:15:29:e1:7f:79:ca:c9:6f: 06:28:28:86:88:fe:fd:12:23:f1:df:81:e9:2c:7e: 95:43:f9:4b:5d:5e:9d:77:b1:7f:80:11:d4:32:af: 06:32:73:d9:f3:5f:a7:ff:13:8b:ba:51:b8:b6:89: 22:1e:7f:93:7c:9b:b5:91:34:80:70:e1:07:f1:08: e4:d7:84:07:91:ae:25:b1:78:ad:87:a6:c3:ff:f3: aa:2e:02:9f:0d:ee:cb:6c:30:3f:c8:dd:fe:2c:f2: b0:b8:75:fb:44:23:20:7b:86:40:d5:23:24:e1:1c: b3:de:bf:0d:67:67:f5:02:3b:5e:68:81:f8:c7:c9: 71:8a:1e:ac:ef:30:39:21:58:97:e2:a2:4e:56:b7: 63:39:ad:6d:44:76:a7:a9:b6:d9:1d:6a:1a:7c:b3: 39:a9:ed:c2:8f:f1:b8:51:fd:2d:ae:e9:ae:7a:0e: 1f:c3:b5:15:13:68:23:e7:c1:da:a2:14:b0:2d:5e: 16:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:A2:D3:5A:96:2E:A2:7A:FC:17:53:15:B0:C0:FB:C5:A2:61:12:1D X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/38ae37ad-50db-4547-8df2-8cdcc56e5ca1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da32::/32 Signature Algorithm: sha256WithRSAEncryption c6:d4:5a:e9:74:98:66:59:62:80:c3:b6:d2:1c:3c:77:fe:c5: 41:6e:72:b8:e3:0c:61:72:d1:8f:c8:9e:9f:fa:cf:e9:32:d0: 1d:4c:60:3c:ac:dd:16:c4:6b:67:b5:77:56:b2:f2:14:bd:58: 77:4c:05:e1:0f:17:91:3d:3e:fc:6b:10:a0:d0:08:3b:c9:69: 85:c5:11:2f:b0:c1:e7:7f:78:34:40:11:ea:5b:5f:b3:aa:5f: 96:84:fb:b9:f5:63:02:e1:56:dc:2f:42:d9:0e:4c:87:31:b6: 12:84:3c:8d:de:f3:ef:5c:53:1b:83:e1:c1:20:ea:9e:ce:b4: 1f:37:27:1e:61:69:d4:43:54:e8:93:92:b5:4f:56:51:f6:68: 00:9a:a0:7b:19:10:f3:11:bc:fd:ac:c4:43:51:39:3f:10:b1: b1:53:6e:c9:c6:66:94:ab:b9:ba:fa:ca:34:b6:3b:ce:29:dc: cf:61:d3:d0:2d:bd:c8:4e:94:74:b4:60:0b:df:a4:1b:00:6a: fc:68:2b:67:b0:e1:e3:78:03:75:c5:33:fb:a0:ee:52:e9:6c: 55:0f:76:6a:ad:c8:b8:d3:77:70:01:42:7d:72:2f:60:02:31: 5d:2f:c3:8e:b0:98:f7:b8:85:d4:eb:53:8c:d2:65:88:ae:39: 00:3f:2c:a8 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUCFR11YZQjVD/3f48OvSo6OoYd/4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwNDAwMjAwOFoX DTI2MDMwNDIzNTk1OVowejFJMEcGA1UEBRNAMzk2YjMxNzZhOTlhZDc4N2RkMTQw ZTE4ZWI4ODUyYjljYzM4ZGViYTExZTQ5MzE4ZGRkMTFhNGU4YmJhODU5NDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyfx7VgOzlW3fCzqe/WK1ODDgDd7t n5ZuRbg4GDOwSjLH2OBYt3yJ/ledJYTVfvHwlkMuaFIS2vJxkMHgl5DxQ38nFSnh f3nKyW8GKCiGiP79EiPx34HpLH6VQ/lLXV6dd7F/gBHUMq8GMnPZ81+n/xOLulG4 tokiHn+TfJu1kTSAcOEH8Qjk14QHka4lsXith6bD//OqLgKfDe7LbDA/yN3+LPKw uHX7RCMge4ZA1SMk4Ryz3r8NZ2f1AjteaIH4x8lxih6s7zA5IViX4qJOVrdjOa1t RHanqbbZHWoafLM5qe3Cj/G4Uf0trumueg4fw7UVE2gj58HaohSwLV4WjwIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFD+i01qWLqJ6/BdTFbDA+8WiYRIdMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzM4YWUzN2FkLTUwZGItNDU0Ny04ZGYyLThjZGNjNTZlNWNhMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAbaMjANBgkqhkiG9w0BAQsFAAOCAQEAxtRa6XSYZlligMO20hw8 d/7FQW5yuOMMYXLRj8ien/rP6TLQHUxgPKzdFsRrZ7V3VrLyFL1Yd0wF4Q8XkT0+ /GsQoNAIO8lphcURL7DB5394NEAR6ltfs6pfloT7ufVjAuFW3C9C2Q5MhzG2EoQ8 jd7z71xTG4PhwSDqns60HzcnHmFp1ENU6JOStU9WUfZoAJqgexkQ8xG8/azEQ1E5 PxCxsVNuycZmlKu5uvrKNLY7zincz2HT0C29yE6UdLRgC9+kGwBq/GgrZ7Dh43gD dcUz+6DuUulsVQ92aq3IuNN3cAFCfXIvYAIxXS/DjrCY97iF1OtTjNJliK45AD8s qA== -----END CERTIFICATE-----Generated at Sat Dec 6 10:55:41 2025 by rpki-client