This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3e10b881-cc4d-4575-9034-6eacfc118456.roa File: 3e10b881-cc4d-4575-9034-6eacfc118456.roa (raw, json) Hash identifier: GzzhsXHVU3zWmIUCZ2xvHkV+6tx3dgoSPPF5+wL15UQ= Subject key identifier: 17:68:DE:67:01:14:2F:28:03:4F:D8:B2:61:27:51:5A:3A:CF:9B:C1 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 2D1C0FB4C2ACAECD5A7B8830533ECCC8DEC57DEE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3e10b881-cc4d-4575-9034-6eacfc118456.roa Signing time: Tue 02 Dec 2025 00:10:41 +0000 ROA not before: Tue 02 Dec 2025 00:10:41 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:2000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:1c:0f:b4:c2:ac:ae:cd:5a:7b:88:30:53:3e:cc:c8:de:c5:7d:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 2 00:10:41 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=ab437256852972cae71cadfd2ea3df9f18b5015a53c14ac1ee3dcd598467c4a3, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a3:fa:53:fb:f6:4f:39:f2:6f:2f:03:6b:26: 29:d1:bf:e3:e2:78:76:65:da:cb:94:63:31:5f:95: e9:1a:ac:50:2d:88:13:25:b8:63:6f:97:38:f4:10: fc:95:f0:f5:5b:aa:f5:96:ed:32:f2:87:2b:1f:13: f7:fa:fa:94:45:5a:25:5c:0a:85:86:36:60:48:9d: 84:22:e5:8c:50:a9:38:8b:9b:39:6d:e4:b3:21:3f: 52:15:ee:cd:31:e5:f8:bf:36:be:65:d5:69:d8:9d: 1d:95:fb:df:8b:86:ea:4e:a7:91:d4:91:f6:e6:02: c0:e4:c5:a0:15:aa:90:2e:bf:9b:e8:c8:35:95:6c: e8:1a:eb:a5:4e:ad:57:85:ec:3a:cf:5a:9e:b2:23: f2:a2:b6:a9:d9:8e:cc:43:4b:66:8a:71:ab:47:18: 8b:cf:68:c1:57:b6:1a:a0:88:79:a4:ee:43:67:5d: 42:de:e2:73:eb:3c:4c:9b:c9:ac:e0:a3:c9:c3:bb: 92:43:07:3a:e5:eb:f5:48:3d:69:88:73:9e:3e:3e: e6:e2:48:55:aa:b1:e1:3a:27:fd:47:17:33:1d:35: 5f:7b:52:c5:bf:e2:aa:fd:d1:3f:17:4e:4f:b2:96: f7:04:0f:1d:8e:59:8a:4b:5b:60:0e:6d:b4:21:db: 06:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:68:DE:67:01:14:2F:28:03:4F:D8:B2:61:27:51:5A:3A:CF:9B:C1 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3e10b881-cc4d-4575-9034-6eacfc118456.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:2000::/40 Signature Algorithm: sha256WithRSAEncryption 1b:46:6b:24:5a:80:38:df:c5:69:2a:98:cb:bf:ae:8f:26:5f: 7d:27:ed:0c:21:b7:52:57:a6:d5:63:c5:a4:95:ec:2d:54:df: 94:f6:71:1b:79:0a:80:f7:2e:cf:1e:57:21:f2:65:1c:fe:bf: 9e:53:d8:bd:df:e1:13:1c:76:30:df:2f:ef:c8:a6:8b:a0:62: da:7e:78:ac:d4:75:dd:01:42:a0:c9:70:57:93:fe:42:01:ca: ef:f2:77:12:e6:85:64:50:00:25:06:cf:11:db:b5:26:32:86: d6:13:e3:c7:ac:c3:37:86:f8:b5:6c:ef:58:57:2d:29:84:dd: 8e:a8:34:04:bb:f8:e5:ba:f5:b7:54:e4:5b:35:9c:5b:fc:77: 32:8d:d4:e8:8e:2e:5d:59:a7:1b:1b:78:f4:49:ab:64:3c:22: 1e:ee:22:d9:49:e8:95:13:58:b0:92:a1:27:8e:b2:80:4f:09: 92:e9:12:60:97:13:61:2b:52:07:11:45:1a:ad:ab:c1:bb:18: bb:34:a4:0f:7d:5c:64:2e:f9:86:28:0c:b3:95:67:71:63:ab: eb:e8:f3:b6:74:0e:aa:af:b1:01:3f:b9:6a:a1:20:50:db:8a: 92:70:67:50:03:e7:10:76:21:41:3d:46:fb:c0:3e:d0:d7:39: f6:49:94:ae -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIULRwPtMKsrs1ae4gwUz7MyN7Ffe4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMjAwMTA0MVoX DTI2MDMwMjIzNTk1OVowejFJMEcGA1UEBRNAYWI0MzcyNTY4NTI5NzJjYWU3MWNh ZGZkMmVhM2RmOWYxOGI1MDE1YTUzYzE0YWMxZWUzZGNkNTk4NDY3YzRhMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsaP6U/v2Tznyby8DayYp0b/j4nh2 ZdrLlGMxX5XpGqxQLYgTJbhjb5c49BD8lfD1W6r1lu0y8ocrHxP3+vqURVolXAqF hjZgSJ2EIuWMUKk4i5s5beSzIT9SFe7NMeX4vza+ZdVp2J0dlfvfi4bqTqeR1JH2 5gLA5MWgFaqQLr+b6Mg1lWzoGuulTq1Xhew6z1qesiPyorap2Y7MQ0tminGrRxiL z2jBV7YaoIh5pO5DZ11C3uJz6zxMm8ms4KPJw7uSQwc65ev1SD1piHOePj7m4khV qrHhOif9RxczHTVfe1LFv+Kq/dE/F05Pspb3BA8djlmKS1tgDm20IdsGYQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBdo3mcBFC8oA0/YsmEnUVo6z5vBMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzNlMTBiODgxLWNjNGQtNDU3NS05MDM0LTZlYWNmYzExODQ1Ni5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaYSAwDQYJKoZIhvcNAQELBQADggEBABtGayRagDjfxWkqmMu/ ro8mX30n7Qwht1JXptVjxaSV7C1U35T2cRt5CoD3Ls8eVyHyZRz+v55T2L3f4RMc djDfL+/IpougYtp+eKzUdd0BQqDJcFeT/kIByu/ydxLmhWRQACUGzxHbtSYyhtYT 48eswzeG+LVs71hXLSmE3Y6oNAS7+OW69bdU5Fs1nFv8dzKN1OiOLl1ZpxsbePRJ q2Q8Ih7uItlJ6JUTWLCSoSeOsoBPCZLpEmCXE2ErUgcRRRqtq8G7GLs0pA99XGQu +YYoDLOVZ3Fjq+vo87Z0DqqvsQE/uWqhIFDbipJwZ1AD5xB2IUE9RvvAPtDXOfZJ lK4= -----END CERTIFICATE-----Generated at Sat Dec 6 12:21:42 2025 by rpki-client