This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4139adfe-d65a-4074-992a-7d8b5eb9a1cf.roa File: 4139adfe-d65a-4074-992a-7d8b5eb9a1cf.roa (raw, json) Hash identifier: liHmaE62A3o8sY7yy0CBiJBlJLKykkIjg+plUsedM38= Subject key identifier: 3E:DC:45:84:7E:FB:04:48:A9:60:A1:A9:D7:A9:62:F5:4C:3E:9A:40 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 712C436A458254893B10843F29CF2251E17249B0 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4139adfe-d65a-4074-992a-7d8b5eb9a1cf.roa Signing time: Sun 30 Nov 2025 00:00:54 +0000 ROA not before: Sun 30 Nov 2025 00:00:54 +0000 ROA not after: Sat 28 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:6080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:2c:43:6a:45:82:54:89:3b:10:84:3f:29:cf:22:51:e1:72:49:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 30 00:00:54 2025 GMT Not After : Feb 28 23:59:59 2026 GMT Subject: serialNumber=4a0efec7ccaf46eaa853cff3320bce86cbfe093a38ff1221512640234643c7c4, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ae:15:53:15:20:a7:fc:1c:e3:25:0f:04:9e: f0:39:0e:b5:a6:63:b9:7c:4f:73:2a:e6:5e:ad:63: 8e:53:72:a5:8e:e4:1b:c3:e6:1c:12:2a:7f:76:28: 43:4c:20:bb:17:92:9c:a8:f5:f8:84:da:2b:3b:8d: 9e:1f:be:42:95:ce:6d:8a:23:aa:dc:2f:db:a7:80: 9f:8c:0d:dd:f1:57:d9:fa:69:b1:83:0c:d6:2e:8f: cd:19:00:42:33:ec:f9:3f:15:88:27:c8:a6:67:29: c6:5c:a3:c7:cc:3f:5c:bf:86:4a:f1:42:96:22:63: d7:01:7e:9b:6a:b9:97:5a:ec:d1:21:94:c9:9c:8d: 93:b0:53:bd:95:6f:aa:a6:04:9f:05:de:7e:97:57: d2:50:8d:5d:e1:35:85:1a:df:12:d1:2b:d5:74:70: 79:94:bc:76:7a:d6:7f:43:2b:94:72:66:90:8d:ac: d9:b5:63:9b:91:bd:df:ad:83:aa:da:3b:88:25:71: 38:de:42:cb:36:ea:5c:d2:fe:5f:65:4b:2e:dc:33: 84:6f:8d:69:89:77:27:eb:2b:3b:df:30:9b:7c:07: 6e:1d:59:2d:af:cd:ef:6f:ad:6d:69:c4:00:c3:38: 82:84:8e:ab:14:22:06:20:93:35:b0:ec:b2:fe:a3: e3:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:DC:45:84:7E:FB:04:48:A9:60:A1:A9:D7:A9:62:F5:4C:3E:9A:40 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4139adfe-d65a-4074-992a-7d8b5eb9a1cf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:6080::/48 Signature Algorithm: sha256WithRSAEncryption 9f:39:f9:90:18:c5:7e:2f:85:74:2f:4d:ef:d4:7a:e3:15:70: e3:c4:b8:48:93:3d:81:48:1e:71:cb:d8:67:9b:6a:d3:b8:a6: 66:6f:64:0c:37:ed:30:4a:43:a2:41:ba:3d:66:eb:d7:46:3b: 80:fa:19:27:d3:18:65:5f:38:24:3b:8d:71:1a:9a:3a:55:16: 0c:b8:f1:0c:a1:3c:bd:d8:53:63:97:ff:5d:21:4a:fc:31:ea: 68:d7:3b:4e:58:8a:ca:f3:84:ca:3a:d5:4f:79:33:1b:4a:cf: 32:69:10:1b:60:65:de:cf:87:cd:41:8c:b3:0b:8d:0b:c3:5b: d2:c0:ac:2f:ee:14:8e:87:da:44:ed:1d:3b:bf:f0:96:76:48: 37:4d:6b:21:bf:e3:c9:09:36:68:f2:1d:da:4f:c5:9b:68:46: a5:d5:74:13:8d:0b:93:c6:25:5c:23:8d:33:1c:f9:39:46:a0: 87:62:d6:9b:9d:c9:fb:05:de:a4:7e:55:8d:fd:eb:0d:83:32: 44:4c:1a:9a:9f:0a:33:f7:f1:8a:b9:c7:b2:36:a3:e0:b5:d4: 2d:64:56:ad:e1:f6:84:ab:e9:74:77:45:3d:89:90:b0:c6:56: f1:38:e5:5b:8e:8a:5e:c5:17:ca:07:b3:12:6d:f9:b2:ea:da: 38:79:f2:d1 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUcSxDakWCVIk7EIQ/Kc8iUeFySbAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEzMDAwMDA1NFoX DTI2MDIyODIzNTk1OVowejFJMEcGA1UEBRNANGEwZWZlYzdjY2FmNDZlYWE4NTNj ZmYzMzIwYmNlODZjYmZlMDkzYTM4ZmYxMjIxNTEyNjQwMjM0NjQzYzdjNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuK4VUxUgp/wc4yUPBJ7wOQ61pmO5 fE9zKuZerWOOU3KljuQbw+YcEip/dihDTCC7F5KcqPX4hNorO42eH75Clc5tiiOq 3C/bp4CfjA3d8VfZ+mmxgwzWLo/NGQBCM+z5PxWIJ8imZynGXKPHzD9cv4ZK8UKW ImPXAX6barmXWuzRIZTJnI2TsFO9lW+qpgSfBd5+l1fSUI1d4TWFGt8S0SvVdHB5 lLx2etZ/QyuUcmaQjazZtWObkb3frYOq2juIJXE43kLLNupc0v5fZUsu3DOEb41p iXcn6ys73zCbfAduHVktr83vb61tacQAwziChI6rFCIGIJM1sOyy/qPjrQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFD7cRYR++wRIqWChqdepYvVMPppAMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzQxMzlhZGZlLWQ2NWEtNDA3NC05OTJhLTdkOGI1ZWI5YTFjZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/2CAMA0GCSqGSIb3DQEBCwUAA4IBAQCfOfmQGMV+L4V0L03v 1HrjFXDjxLhIkz2BSB5xy9hnm2rTuKZmb2QMN+0wSkOiQbo9ZuvXRjuA+hkn0xhl XzgkO41xGpo6VRYMuPEMoTy92FNjl/9dIUr8Mepo1ztOWIrK84TKOtVPeTMbSs8y aRAbYGXez4fNQYyzC40Lw1vSwKwv7hSOh9pE7R07v/CWdkg3TWshv+PJCTZo8h3a T8WbaEal1XQTjQuTxiVcI40zHPk5RqCHYtabncn7Bd6kflWN/esNgzJETBqanwoz 9/GKuceyNqPgtdQtZFat4faEq+l0d0U9iZCwxlbxOOVbjopexRfKB7MSbfmy6to4 efLR -----END CERTIFICATE-----Generated at Sat Dec 6 14:56:49 2025 by rpki-client