This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4340d3ab-0665-4d5d-b19f-2f3cef58b325.roa File: 4340d3ab-0665-4d5d-b19f-2f3cef58b325.roa (raw, json) Hash identifier: OSAUxNCIsGbCqhvqW0ABZsqKXHTpmCx3ZpptvfE0WPc= Subject key identifier: 56:22:2E:2C:D6:D7:5E:1E:54:59:5A:22:4F:65:F6:08:32:DB:9F:13 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4355569E1BA52C4F64872DF1299BF7FAA1CA8A12 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4340d3ab-0665-4d5d-b19f-2f3cef58b325.roa Signing time: Tue 02 Dec 2025 00:20:06 +0000 ROA not before: Tue 02 Dec 2025 00:20:06 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:2840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:55:56:9e:1b:a5:2c:4f:64:87:2d:f1:29:9b:f7:fa:a1:ca:8a:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 2 00:20:06 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=f26d9337ff1886db754187516b8d84d5dafc38fe97bf280bdb50290fd8d05f18, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8b:30:9a:c7:24:e0:92:dc:46:2e:e3:bd:9f: c7:b1:bc:79:0d:03:9c:09:d7:81:47:8d:c4:cb:c7: bf:a6:a3:47:38:aa:e0:74:f8:3f:8f:cc:ca:fd:81: 13:f6:6b:32:e7:fe:35:9c:9a:76:04:7a:eb:67:7e: 83:2f:1c:61:5f:d7:ef:07:cb:1a:1b:9a:1e:d8:fd: e8:60:8b:ad:ef:dd:17:58:86:76:f4:bc:f6:24:55: 18:1d:a3:7d:4a:ba:82:15:5e:67:8e:4b:57:e3:89: 6d:41:9c:ce:1b:e9:d3:b6:b8:fd:8b:4d:d8:6f:69: 65:3c:38:2d:1b:23:d4:95:9b:52:82:ed:a3:55:ca: c0:dd:88:0c:19:68:de:17:e9:08:e4:f5:f8:36:e7: d2:cb:22:a4:39:57:e5:56:ed:a9:f2:ce:1b:e9:df: 42:a6:65:ab:bc:78:9f:08:20:2a:cf:8e:97:88:04: 35:71:28:0a:fa:b4:4c:b5:0d:33:a1:a3:d6:9b:7b: 09:0a:29:86:d8:96:7d:8a:2a:1b:cb:de:27:62:0b: f6:15:60:76:aa:45:36:0e:90:7e:22:52:e9:ed:cc: d4:ff:bf:9e:87:c0:69:33:ec:e7:5c:42:3f:0c:63: 50:9e:97:68:89:6f:a3:6c:1b:34:af:e9:cb:ed:fd: 1d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:22:2E:2C:D6:D7:5E:1E:54:59:5A:22:4F:65:F6:08:32:DB:9F:13 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4340d3ab-0665-4d5d-b19f-2f3cef58b325.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:2840::/48 Signature Algorithm: sha256WithRSAEncryption 0c:51:18:a2:9d:52:49:24:3c:2b:20:f2:d7:93:03:a2:63:1d: 56:4a:45:91:96:fb:ef:da:fd:6f:ea:c9:b4:ac:bd:62:38:b7: b0:01:69:60:90:3b:de:18:bc:92:bf:9a:0e:36:0b:a5:15:ad: d5:ce:8d:ca:5c:e0:f0:8b:39:f4:b5:51:e1:68:eb:03:d3:fe: 92:d4:52:40:3f:ea:d8:3e:3f:4d:ee:25:5c:09:cc:c7:4b:93: 5e:02:97:e0:4f:8e:ef:46:07:e8:98:ff:65:cb:f4:ca:87:36: fb:b7:5c:62:a0:08:1c:86:de:48:de:82:d7:2e:93:4c:3b:06: 8c:e8:3e:9e:3b:28:91:14:f5:c1:fb:15:cd:21:d1:43:52:fa: 00:08:b4:55:77:a4:30:56:b2:81:e3:08:7a:d8:02:3c:93:48: 1f:f2:06:f8:ee:3a:8c:6a:7f:42:a9:cd:c8:43:ad:33:23:af: a2:1c:66:fb:f6:cb:eb:ab:34:13:0a:f9:b4:da:46:e0:aa:00: d3:0f:df:39:cc:0b:3d:d5:50:29:88:22:25:77:24:2c:65:a5: ba:b2:c6:25:1f:ea:0d:62:06:ce:11:70:ce:1d:2e:72:50:8e: 35:c4:ec:d7:82:56:b1:1c:fc:c0:cb:49:63:c9:19:3a:e0:17: 2f:74:94:ea -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUQ1VWnhulLE9khy3xKZv3+qHKihIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMjAwMjAwNloX DTI2MDMwMjIzNTk1OVowejFJMEcGA1UEBRNAZjI2ZDkzMzdmZjE4ODZkYjc1NDE4 NzUxNmI4ZDg0ZDVkYWZjMzhmZTk3YmYyODBiZGI1MDI5MGZkOGQwNWYxODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqoswmsck4JLcRi7jvZ/Hsbx5DQOc CdeBR43Ey8e/pqNHOKrgdPg/j8zK/YET9msy5/41nJp2BHrrZ36DLxxhX9fvB8sa G5oe2P3oYIut790XWIZ29Lz2JFUYHaN9SrqCFV5njktX44ltQZzOG+nTtrj9i03Y b2llPDgtGyPUlZtSgu2jVcrA3YgMGWjeF+kI5PX4NufSyyKkOVflVu2p8s4b6d9C pmWrvHifCCAqz46XiAQ1cSgK+rRMtQ0zoaPWm3sJCimG2JZ9iioby94nYgv2FWB2 qkU2DpB+IlLp7czU/7+eh8BpM+znXEI/DGNQnpdoiW+jbBs0r+nL7f0d3wIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFFYiLizW114eVFlaIk9l9ggy258TMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzQzNDBkM2FiLTA2NjUtNGQ1ZC1iMTlmLTJmM2NlZjU4YjMyNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/yhAMA0GCSqGSIb3DQEBCwUAA4IBAQAMURiinVJJJDwrIPLX kwOiYx1WSkWRlvvv2v1v6sm0rL1iOLewAWlgkDveGLySv5oONgulFa3Vzo3KXODw izn0tVHhaOsD0/6S1FJAP+rYPj9N7iVcCczHS5NeApfgT47vRgfomP9ly/TKhzb7 t1xioAgcht5I3oLXLpNMOwaM6D6eOyiRFPXB+xXNIdFDUvoACLRVd6QwVrKB4wh6 2AI8k0gf8gb47jqMan9Cqc3IQ60zI6+iHGb79svrqzQTCvm02kbgqgDTD985zAs9 1VApiCIldyQsZaW6ssYlH+oNYgbOEXDOHS5yUI41xOzXglaxHPzAy0ljyRk64Bcv dJTq -----END CERTIFICATE-----Generated at Sat Dec 6 12:07:29 2025 by rpki-client