This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4c10d3b9-c357-4dde-9e35-8b451ebe7bad.roa File: 4c10d3b9-c357-4dde-9e35-8b451ebe7bad.roa (raw, json) Hash identifier: d8T4GHhOvRidnA5sNOBDPDDzTg68vzkgpNCXB+WoshI= Subject key identifier: 01:59:70:16:9B:32:EA:30:B3:24:30:0A:6F:D1:86:FE:C4:5D:B5:5E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3C027B321D18330B15E8207AA0804D2BD1350C82 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4c10d3b9-c357-4dde-9e35-8b451ebe7bad.roa Signing time: Thu 27 Nov 2025 00:00:07 +0000 ROA not before: Thu 27 Nov 2025 00:00:07 +0000 ROA not after: Wed 25 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:1000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:02:7b:32:1d:18:33:0b:15:e8:20:7a:a0:80:4d:2b:d1:35:0c:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 27 00:00:07 2025 GMT Not After : Feb 25 23:59:59 2026 GMT Subject: serialNumber=de26e032fe4f161aef0e139124474f430689d7bf0ca8642aa1a6a8ee3a4484f6, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:48:b2:50:fe:d8:53:91:e3:d8:b5:29:ab:bc: 9f:06:66:db:fd:c1:8c:4e:17:f4:db:b6:72:cb:e9: fc:16:07:bc:e2:ee:fd:51:18:24:f1:b6:fa:72:36: 59:a2:7f:40:e1:1a:d0:dd:7a:36:49:95:d7:d1:69: 08:2c:3e:51:e7:24:8f:0f:8a:70:62:ad:57:47:01: 33:70:ff:e1:8f:7d:76:12:21:56:0f:32:3b:aa:f9: 87:a1:ad:44:36:3d:84:24:8f:17:dd:cb:63:85:0b: b9:1f:eb:da:72:32:d8:ce:cf:0d:a7:7f:02:d7:51: 51:18:3b:a8:80:b4:0e:60:e7:93:03:a2:8e:06:61: c7:a4:91:f4:b4:e0:20:e6:df:41:ed:84:bb:40:6b: 95:19:71:9d:24:f5:46:5e:1a:1c:2b:c6:fc:3b:a6: 06:b2:4f:9c:c2:e7:70:dd:ee:6f:19:c0:c6:0b:91: 96:0d:1f:78:03:af:d3:ae:b6:3b:4b:e2:d4:02:59: 36:04:e7:dd:ae:fd:27:16:55:82:80:9e:69:0e:8c: 72:a1:51:f1:88:57:21:e6:05:f4:aa:bf:68:fb:57: dc:8b:d1:56:45:e6:eb:6c:01:f7:c5:8d:c4:1d:4d: 6d:b3:b1:15:95:48:8c:39:52:2f:8f:5d:6f:7e:93: ac:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:59:70:16:9B:32:EA:30:B3:24:30:0A:6F:D1:86:FE:C4:5D:B5:5E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4c10d3b9-c357-4dde-9e35-8b451ebe7bad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:1000::/40 Signature Algorithm: sha256WithRSAEncryption 16:81:d5:87:a4:fa:ca:c0:b3:6b:84:19:af:69:f3:5d:a6:39: e3:63:c3:53:5e:18:6b:11:10:f1:3c:27:3a:e2:04:dd:c3:a7: 64:35:aa:45:3b:a4:7a:b0:7d:e7:4b:d9:9e:ae:ba:3d:e9:c8: 66:f3:e7:11:7a:0d:f1:c8:02:fe:69:b9:7d:f6:ed:ff:ea:65: c2:70:75:c3:93:85:9a:91:33:b2:9e:b5:5d:1b:01:b3:be:54: 8c:fc:cc:02:b6:de:0c:62:a5:4f:52:b3:dd:d3:f5:3d:9f:10: 95:c7:35:d3:73:6f:83:d0:fa:98:9d:41:ea:1b:aa:db:02:b4: 3b:4b:1a:1d:94:f0:5c:5f:6e:b8:c5:f6:8e:60:fb:e8:1a:de: 61:57:a0:3f:a7:15:fb:02:81:38:02:77:e6:7b:85:bd:ff:6b: 86:f4:c7:da:e3:e8:cc:da:5b:01:96:a8:f2:48:11:97:73:07: 84:65:f5:70:80:02:72:32:17:04:b1:c4:97:7a:e1:d7:3b:a2: fb:04:4a:bf:44:98:f1:03:f1:c9:1d:fc:55:52:d1:d8:5d:71: 2e:1b:18:0b:1b:85:06:93:b3:63:95:d3:4a:a4:2f:62:44:97: 8a:52:de:87:96:70:78:3e:dd:32:2e:f6:63:77:22:c0:80:62: e4:d6:06:2b -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUPAJ7Mh0YMwsV6CB6oIBNK9E1DIIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyNzAwMDAwN1oX DTI2MDIyNTIzNTk1OVowejFJMEcGA1UEBRNAZGUyNmUwMzJmZTRmMTYxYWVmMGUx MzkxMjQ0NzRmNDMwNjg5ZDdiZjBjYTg2NDJhYTFhNmE4ZWUzYTQ0ODRmNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo0iyUP7YU5Hj2LUpq7yfBmbb/cGM Thf027Zyy+n8Fge84u79URgk8bb6cjZZon9A4RrQ3Xo2SZXX0WkILD5R5ySPD4pw Yq1XRwEzcP/hj312EiFWDzI7qvmHoa1ENj2EJI8X3ctjhQu5H+vacjLYzs8Np38C 11FRGDuogLQOYOeTA6KOBmHHpJH0tOAg5t9B7YS7QGuVGXGdJPVGXhocK8b8O6YG sk+cwudw3e5vGcDGC5GWDR94A6/TrrY7S+LUAlk2BOfdrv0nFlWCgJ5pDoxyoVHx iFch5gX0qr9o+1fci9FWRebrbAH3xY3EHU1ts7EVlUiMOVIvj11vfpOsOQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFAFZcBabMuowsyQwCm/Rhv7EXbVeMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzRjMTBkM2I5LWMzNTctNGRkZS05ZTM1LThiNDUxZWJlN2JhZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9hAwDQYJKoZIhvcNAQELBQADggEBABaB1Yek+srAs2uEGa9p 812mOeNjw1NeGGsREPE8JzriBN3Dp2Q1qkU7pHqwfedL2Z6uuj3pyGbz5xF6DfHI Av5puX327f/qZcJwdcOThZqRM7KetV0bAbO+VIz8zAK23gxipU9Ss93T9T2fEJXH NdNzb4PQ+pidQeobqtsCtDtLGh2U8FxfbrjF9o5g++ga3mFXoD+nFfsCgTgCd+Z7 hb3/a4b0x9rj6MzaWwGWqPJIEZdzB4Rl9XCAAnIyFwSxxJd64dc7ovsESr9EmPED 8ckd/FVS0dhdcS4bGAsbhQaTs2OV00qkL2JEl4pS3oeWcHg+3TIu9mN3IsCAYuTW Bis= -----END CERTIFICATE-----Generated at Sat Dec 6 10:59:57 2025 by rpki-client