This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4a0a7106-352f-4541-b326-040109351c64.roa File: 4a0a7106-352f-4541-b326-040109351c64.roa (raw, json) Hash identifier: 7X1HKiDla+BGXF4FrATNKrDkqQl8USo1KB0JJcCVxe4= Subject key identifier: DA:87:08:17:CA:A3:B9:88:36:EE:A9:0F:51:FF:59:8A:15:5A:D5:14 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5E3CD597DDA846021FABE840DF324F658B901F7C Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4a0a7106-352f-4541-b326-040109351c64.roa Signing time: Tue 02 Dec 2025 00:30:45 +0000 ROA not before: Tue 02 Dec 2025 00:30:45 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:3c:d5:97:dd:a8:46:02:1f:ab:e8:40:df:32:4f:65:8b:90:1f:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 2 00:30:45 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=43bb9829cd04ead6e6cd89053fd38dbaab923e123f21fc0b86c00dd9e0d936e1, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:39:eb:f4:11:29:3e:f2:64:20:7a:cb:bb:e5: 31:67:79:89:b5:29:20:1b:df:9a:18:0d:f6:15:57: b3:7c:62:6b:f0:98:36:42:46:f9:82:db:fa:bd:4d: 4d:ec:e7:c6:e0:a2:96:ab:be:f4:35:89:35:59:1f: a7:35:87:25:eb:d4:a7:e5:53:d6:6e:3c:9d:c5:58: 37:4b:19:68:90:e9:b5:23:44:bf:07:5e:eb:84:2e: 52:12:46:ba:47:01:47:de:70:be:b7:f7:75:0c:c6: f9:0d:f4:b2:1b:8e:96:8a:49:e7:86:1e:11:e3:a1: af:24:ed:e8:a3:b9:a5:c6:65:84:92:c9:08:7b:5c: 0f:8b:6d:e4:60:a7:e9:96:de:40:b7:73:1f:a3:da: a1:7b:00:55:c7:9a:02:24:da:d5:85:c8:e3:25:d7: 2c:d6:40:35:a4:b1:87:d5:63:b5:34:c3:15:de:4f: d8:74:f5:e3:86:3f:d3:af:ff:16:03:a4:ee:12:16: e8:0e:78:6a:f8:f1:fa:90:c9:02:65:1b:a3:00:96: ab:42:29:7a:49:2b:ab:0c:f3:30:eb:26:7b:f6:b8: b0:97:ff:db:26:5c:c3:02:84:ea:45:f4:62:1c:70: ae:97:ab:b2:d8:6c:4b:61:21:29:ff:c0:15:89:9f: dd:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:87:08:17:CA:A3:B9:88:36:EE:A9:0F:51:FF:59:8A:15:5A:D5:14 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4a0a7106-352f-4541-b326-040109351c64.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:8c0::/48 Signature Algorithm: sha256WithRSAEncryption 01:8c:25:1d:e7:38:a2:9d:9d:03:ad:6a:34:d5:cc:33:91:c8: 92:b5:18:16:9a:76:01:00:90:1b:de:6f:48:36:ae:96:98:bb: 13:0e:a9:3c:9d:f8:27:dc:d7:a8:d1:02:2b:c9:82:24:27:b9: ca:24:c4:56:5b:09:2e:30:05:e0:23:ba:78:68:c9:01:90:65: c8:6c:0e:5d:b9:a7:4d:ce:cc:86:67:c6:77:c6:e4:a3:ce:aa: fe:d0:5b:58:6a:ca:57:c4:8f:9a:b9:cb:76:4c:73:d5:93:fc: 39:13:0d:06:70:0d:22:46:3f:7e:59:79:7e:2e:1c:12:aa:c8: 1b:44:1a:26:a8:aa:35:44:2d:dd:49:0e:22:f7:b0:91:54:a4: c4:f4:69:51:9f:8f:5a:b2:ac:6e:c7:70:4e:0e:e5:85:28:97: 1e:d7:a5:81:be:31:7b:61:ce:e8:1f:8d:7e:ae:c1:63:77:dc: c1:c2:6a:a5:bf:dd:44:44:7e:18:30:b3:58:e9:f5:f6:21:e6: 33:47:db:96:7a:c7:35:df:56:0d:20:6e:75:5b:aa:89:cc:78: b5:8a:a8:64:35:2a:f5:45:84:80:e6:12:11:c6:03:6a:e3:aa: 71:bb:54:1f:c6:63:5e:7f:8f:2d:23:b3:52:09:82:9f:46:76: 3f:2e:d5:d7 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUXjzVl92oRgIfq+hA3zJPZYuQH3wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMjAwMzA0NVoX DTI2MDMwMjIzNTk1OVowejFJMEcGA1UEBRNANDNiYjk4MjljZDA0ZWFkNmU2Y2Q4 OTA1M2ZkMzhkYmFhYjkyM2UxMjNmMjFmYzBiODZjMDBkZDllMGQ5MzZlMTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyznr9BEpPvJkIHrLu+UxZ3mJtSkg G9+aGA32FVezfGJr8Jg2Qkb5gtv6vU1N7OfG4KKWq770NYk1WR+nNYcl69Sn5VPW bjydxVg3SxlokOm1I0S/B17rhC5SEka6RwFH3nC+t/d1DMb5DfSyG46Wiknnhh4R 46GvJO3oo7mlxmWEkskIe1wPi23kYKfplt5At3Mfo9qhewBVx5oCJNrVhcjjJdcs 1kA1pLGH1WO1NMMV3k/YdPXjhj/Tr/8WA6TuEhboDnhq+PH6kMkCZRujAJarQil6 SSurDPMw6yZ79riwl//bJlzDAoTqRfRiHHCul6uy2GxLYSEp/8AViZ/dgwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFNqHCBfKo7mINu6pD1H/WYoVWtUUMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzRhMGE3MTA2LTM1MmYtNDU0MS1iMzI2LTA0MDEwOTM1MWM2NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba8gjAMA0GCSqGSIb3DQEBCwUAA4IBAQABjCUd5ziinZ0DrWo0 1cwzkciStRgWmnYBAJAb3m9INq6WmLsTDqk8nfgn3Neo0QIryYIkJ7nKJMRWWwku MAXgI7p4aMkBkGXIbA5duadNzsyGZ8Z3xuSjzqr+0FtYaspXxI+auct2THPVk/w5 Ew0GcA0iRj9+WXl+LhwSqsgbRBomqKo1RC3dSQ4i97CRVKTE9GlRn49asqxux3BO DuWFKJce16WBvjF7Yc7oH41+rsFjd9zBwmqlv91ERH4YMLNY6fX2IeYzR9uWesc1 31YNIG51W6qJzHi1iqhkNSr1RYSA5hIRxgNq46pxu1QfxmNef48tI7NSCYKfRnY/ LtXX -----END CERTIFICATE-----Generated at Sat Dec 6 13:50:43 2025 by rpki-client