This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3e8909db-8041-4fde-8d76-0663b8b608ed.roa File: 3e8909db-8041-4fde-8d76-0663b8b608ed.roa (raw, json) Hash identifier: xY2vIv231Chos9U/1u0VyzKBWpX3vinxEL+vigKq40k= Subject key identifier: 42:0F:57:71:36:F0:1E:EE:51:2B:00:DB:78:AB:5F:CE:19:CC:88:77 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1EEEF2E3E48BF58EA0F5FF6BFB51B68A27CD4063 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3e8909db-8041-4fde-8d76-0663b8b608ed.roa Signing time: Thu 04 Dec 2025 00:00:09 +0000 ROA not before: Thu 04 Dec 2025 00:00:09 +0000 ROA not after: Wed 04 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da38::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:ee:f2:e3:e4:8b:f5:8e:a0:f5:ff:6b:fb:51:b6:8a:27:cd:40:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 4 00:00:09 2025 GMT Not After : Mar 4 23:59:59 2026 GMT Subject: serialNumber=07f0c6cdb9b3e632aed511fe17e198c51d134c696d763c50f34970deb3a75309, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:41:4a:9d:e4:64:ac:d1:27:cc:41:ab:ec:e6: 0c:23:4d:b0:ae:22:43:52:eb:7c:fd:ba:0c:11:96: 93:bb:24:66:29:7a:5e:54:ad:6e:55:ec:5f:de:ec: 56:2a:ed:cd:93:65:1d:e8:09:e5:5a:1f:96:da:eb: 4e:68:b4:e9:e9:f5:f8:c4:8a:76:28:4c:5b:02:b6: dc:d4:7d:54:b6:24:50:42:06:16:42:05:97:16:e5: e0:99:b3:91:ae:75:3b:ba:8c:be:87:de:5c:84:bb: be:39:bb:d8:c2:db:8c:16:c6:e8:7a:2a:71:17:f2: 76:05:96:f5:0c:58:ee:88:0b:bd:61:39:9f:bc:b7: 50:85:40:2e:2a:61:65:79:2a:33:db:17:74:ec:43: 43:e5:36:99:90:21:ac:ef:c7:d0:76:1e:dc:d5:ab: 2c:1a:a5:8d:34:d8:d4:78:90:48:06:9f:f8:d5:96: 6b:ad:6e:68:96:36:1e:f3:da:78:f3:cc:00:35:aa: a2:dc:86:4f:7b:77:b9:60:9d:0b:53:c5:03:de:f7: 91:e1:43:d1:86:2f:9f:5a:62:cf:51:c8:7b:b6:03: ff:2d:3f:a2:bd:da:4f:74:0b:a9:49:69:16:fe:77: d6:e8:4f:50:19:0b:d1:a6:21:75:33:3f:14:30:13: 74:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:0F:57:71:36:F0:1E:EE:51:2B:00:DB:78:AB:5F:CE:19:CC:88:77 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3e8909db-8041-4fde-8d76-0663b8b608ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da38::/32 Signature Algorithm: sha256WithRSAEncryption a0:4a:b6:ab:6b:9a:b9:b7:a5:7f:4c:a2:f3:16:1f:00:a2:01: c7:69:1e:20:44:08:cf:6d:fd:c1:11:d9:59:be:c5:7b:5a:4e: cd:f9:e3:45:06:3f:a6:4b:9b:a6:48:c6:aa:a4:26:4d:d0:7c: fe:52:f0:2d:f0:5c:4a:55:de:a5:b5:42:1f:1f:1d:4d:c8:cd: 1d:05:e1:3a:7c:fe:cb:b5:70:a4:f2:f3:39:7b:f2:d8:a9:1d: c9:92:c2:82:b8:0c:e6:cd:4f:e2:d4:f0:9f:a7:44:f9:83:9e: 8e:5c:9e:a4:39:80:23:cc:70:16:5f:fc:6a:de:84:ab:7e:33: 54:49:a7:df:09:29:b0:80:5a:d1:82:fd:60:47:79:10:e8:bc: ff:16:60:94:07:d2:cf:78:53:87:a4:6e:28:8d:c5:62:d4:81: 7d:ab:4d:40:8e:9e:91:df:74:02:d7:11:d4:8c:14:0f:f7:9f: 7d:d0:a6:a6:f0:20:e5:fb:8d:bb:31:30:a7:3c:23:b1:d0:fe: be:46:88:f6:d3:f7:34:80:68:b0:a3:19:32:9a:a1:cf:b8:db: fe:55:3d:6c:78:09:6a:d1:9c:d2:a0:90:80:9f:db:eb:5d:3f: f6:13:f5:f8:8a:cd:d4:19:91:1a:56:53:6c:61:63:f1:ab:4d: 39:9f:81:24 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUHu7y4+SL9Y6g9f9r+1G2iifNQGMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwNDAwMDAwOVoX DTI2MDMwNDIzNTk1OVowejFJMEcGA1UEBRNAMDdmMGM2Y2RiOWIzZTYzMmFlZDUx MWZlMTdlMTk4YzUxZDEzNGM2OTZkNzYzYzUwZjM0OTcwZGViM2E3NTMwOTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAykFKneRkrNEnzEGr7OYMI02wriJD Uut8/boMEZaTuyRmKXpeVK1uVexf3uxWKu3Nk2Ud6AnlWh+W2utOaLTp6fX4xIp2 KExbArbc1H1UtiRQQgYWQgWXFuXgmbORrnU7uoy+h95chLu+ObvYwtuMFsboeipx F/J2BZb1DFjuiAu9YTmfvLdQhUAuKmFleSoz2xd07END5TaZkCGs78fQdh7c1ass GqWNNNjUeJBIBp/41ZZrrW5oljYe89p488wANaqi3IZPe3e5YJ0LU8UD3veR4UPR hi+fWmLPUch7tgP/LT+ivdpPdAupSWkW/nfW6E9QGQvRpiF1Mz8UMBN0ZwIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFEIPV3E28B7uUSsA23irX84ZzIh3MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzNlODkwOWRiLTgwNDEtNGZkZS04ZDc2LTA2NjNiOGI2MDhlZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAbaODANBgkqhkiG9w0BAQsFAAOCAQEAoEq2q2uaubelf0yi8xYf AKIBx2keIEQIz239wRHZWb7Fe1pOzfnjRQY/pkubpkjGqqQmTdB8/lLwLfBcSlXe pbVCHx8dTcjNHQXhOnz+y7VwpPLzOXvy2KkdyZLCgrgM5s1P4tTwn6dE+YOejlye pDmAI8xwFl/8at6Eq34zVEmn3wkpsIBa0YL9YEd5EOi8/xZglAfSz3hTh6RuKI3F YtSBfatNQI6ekd90AtcR1IwUD/effdCmpvAg5fuNuzEwpzwjsdD+vkaI9tP3NIBo sKMZMpqhz7jb/lU9bHgJatGc0qCQgJ/b610/9hP1+IrN1BmRGlZTbGFj8atNOZ+B JA== -----END CERTIFICATE-----Generated at Sat Dec 6 10:55:30 2025 by rpki-client