This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/435e4f2b-d839-459a-86a5-1cfb7aa7d6f8.roa File: 435e4f2b-d839-459a-86a5-1cfb7aa7d6f8.roa (raw, json) Hash identifier: 5aj1lCt29/w7vuuivE7ZJQ6LZQHTnHefOOrnpHlqKfM= Subject key identifier: 61:AE:CE:6A:E6:23:29:CA:3C:8E:C2:C6:81:2C:70:D1:E5:A0:8E:69 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 05B4D2D7914B100C3627BD0EF4B86C47204B973E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/435e4f2b-d839-459a-86a5-1cfb7aa7d6f8.roa Signing time: Thu 04 Dec 2025 00:31:00 +0000 ROA not before: Thu 04 Dec 2025 00:31:00 +0000 ROA not after: Wed 04 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dab9:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:b4:d2:d7:91:4b:10:0c:36:27:bd:0e:f4:b8:6c:47:20:4b:97:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 4 00:31:00 2025 GMT Not After : Mar 4 23:59:59 2026 GMT Subject: serialNumber=dc02fddcfec5d48fbb5857f108df828f554cdd354c986f2dd51a5effcc38f0ce, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:24:38:68:eb:1b:a8:b8:20:fc:44:10:b8:7e: 2d:4e:c8:48:7e:2d:b5:56:63:d9:25:65:10:50:ac: e2:07:01:34:e4:d2:51:b8:35:8c:e5:08:d8:c1:2f: 61:e0:ea:76:72:57:43:9a:c3:b9:46:9c:cc:53:21: 4d:fa:b4:fe:17:4b:ae:ef:2c:0d:ee:18:81:d4:ec: 09:d0:0a:2f:a9:15:79:df:6a:4c:1a:e5:b4:49:8d: 3a:95:e7:9f:ca:2a:ab:4d:10:1c:73:63:b2:48:9e: 87:72:f9:49:c3:db:7b:33:64:86:7c:9a:e0:a0:95: ec:74:6b:b1:36:50:cd:e1:b9:ff:3c:dd:6b:1a:ec: 15:e4:d2:63:d9:80:90:6f:dd:6a:18:ed:7e:5a:ca: c4:77:04:55:87:cd:ee:44:eb:9a:ff:90:99:dd:96: fb:4b:d8:69:e0:37:8b:2c:db:c5:c3:4e:d6:ee:6a: c0:71:aa:41:5e:b2:58:b8:53:e8:6d:27:e5:42:0e: 49:1b:55:11:61:9f:31:a4:05:9a:b1:26:53:46:dc: d2:9a:19:f3:85:fe:9e:7b:a6:30:0d:4a:ff:93:4c: 1e:31:de:75:6c:cc:1f:de:71:67:9e:f1:b4:57:3f: e1:52:60:69:35:8f:ac:fc:2b:8c:4b:49:b3:fa:ed: b9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:AE:CE:6A:E6:23:29:CA:3C:8E:C2:C6:81:2C:70:D1:E5:A0:8E:69 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/435e4f2b-d839-459a-86a5-1cfb7aa7d6f8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab9:4000::/40 Signature Algorithm: sha256WithRSAEncryption 30:11:18:fb:ff:60:9a:41:b5:0e:e6:26:49:7a:f9:0d:35:01: d6:60:3f:be:18:9a:db:49:d3:02:76:0c:4a:ab:da:28:71:88: a9:f0:8e:48:4d:53:82:5a:09:0f:de:5d:7b:fd:fa:5e:e7:b8: 6d:84:c7:a9:5f:38:ea:32:3d:ad:ec:26:b7:64:8f:e2:bd:c7: 4a:28:e6:23:66:26:bf:4c:50:9c:40:df:b3:8f:84:9b:b1:a8: 0c:1b:cb:96:b8:4c:ac:c3:da:c1:2e:6e:54:76:a8:69:98:d3: 22:58:c1:9e:c3:48:73:c6:60:ef:eb:24:1e:c8:2d:19:00:e9: ac:e7:84:8c:d0:64:8a:aa:05:71:74:27:19:90:f9:24:3d:1f: 59:46:6f:8f:ef:51:b7:3d:7e:80:04:0a:f7:30:a0:2e:f0:7a: 42:79:65:de:29:a7:59:c7:48:d8:81:1e:35:10:03:b1:51:6d: 08:57:84:e1:c1:a3:b1:e6:2f:f7:fd:9a:b3:3d:4f:c1:b5:72: 6a:fc:2c:aa:4d:db:65:bd:9d:4a:30:e9:cf:dc:eb:5f:e5:52: c9:43:39:f6:ac:dc:7e:8b:0c:be:3c:cb:c8:92:85:1a:77:0c: b3:6f:4c:0c:54:3d:8e:fc:16:18:b8:88:ed:a3:27:5b:21:fe: 83:bb:e6:97 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUBbTS15FLEAw2J70O9LhsRyBLlz4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwNDAwMzEwMFoX DTI2MDMwNDIzNTk1OVowejFJMEcGA1UEBRNAZGMwMmZkZGNmZWM1ZDQ4ZmJiNTg1 N2YxMDhkZjgyOGY1NTRjZGQzNTRjOTg2ZjJkZDUxYTVlZmZjYzM4ZjBjZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoyQ4aOsbqLgg/EQQuH4tTshIfi21 VmPZJWUQUKziBwE05NJRuDWM5QjYwS9h4Op2cldDmsO5RpzMUyFN+rT+F0uu7ywN 7hiB1OwJ0AovqRV532pMGuW0SY06leefyiqrTRAcc2OySJ6HcvlJw9t7M2SGfJrg oJXsdGuxNlDN4bn/PN1rGuwV5NJj2YCQb91qGO1+WsrEdwRVh83uROua/5CZ3Zb7 S9hp4DeLLNvFw07W7mrAcapBXrJYuFPobSflQg5JG1URYZ8xpAWasSZTRtzSmhnz hf6ee6YwDUr/k0weMd51bMwf3nFnnvG0Vz/hUmBpNY+s/CuMS0mz+u25qwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGGuzmrmIynKPI7CxoEscNHloI5pMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzQzNWU0ZjJiLWQ4MzktNDU5YS04NmE1LTFjZmI3YWE3ZDZmOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbauUAwDQYJKoZIhvcNAQELBQADggEBADARGPv/YJpBtQ7mJkl6 +Q01AdZgP74YmttJ0wJ2DEqr2ihxiKnwjkhNU4JaCQ/eXXv9+l7nuG2Ex6lfOOoy Pa3sJrdkj+K9x0oo5iNmJr9MUJxA37OPhJuxqAwby5a4TKzD2sEublR2qGmY0yJY wZ7DSHPGYO/rJB7ILRkA6aznhIzQZIqqBXF0JxmQ+SQ9H1lGb4/vUbc9foAECvcw oC7wekJ5Zd4pp1nHSNiBHjUQA7FRbQhXhOHBo7HmL/f9mrM9T8G1cmr8LKpN22W9 nUow6c/c61/lUslDOfas3H6LDL48y8iShRp3DLNvTAxUPY78Fhi4iO2jJ1sh/oO7 5pc= -----END CERTIFICATE-----Generated at Sat Dec 6 09:58:15 2025 by rpki-client