This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/53dc8acc-0c30-42d3-abfa-5792ea5bf7de.roa File: 53dc8acc-0c30-42d3-abfa-5792ea5bf7de.roa (raw, json) Hash identifier: +kUHMmkzQCI4qbnoGuomWExuKIlFoqomLvAR1VgvCSU= Subject key identifier: 79:67:8C:4F:F7:98:D4:94:AB:EC:59:58:7D:71:09:42:18:72:33:1C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 573ADC48ECB0A3E7CB08DAE5314CA26190211B7D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/53dc8acc-0c30-42d3-abfa-5792ea5bf7de.roa Signing time: Wed 03 Dec 2025 00:01:33 +0000 ROA not before: Wed 03 Dec 2025 00:01:33 +0000 ROA not after: Tue 03 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:2000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:3a:dc:48:ec:b0:a3:e7:cb:08:da:e5:31:4c:a2:61:90:21:1b:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 3 00:01:33 2025 GMT Not After : Mar 3 23:59:59 2026 GMT Subject: serialNumber=deca3e51849fba5df153980b471aea2ff1e2abad0585e68ba89d3e22228c52ac, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8b:45:00:b8:dd:2d:e4:6b:8a:a7:92:4a:3b: 63:5c:87:af:eb:3a:f7:f8:57:1f:67:81:88:df:98: 04:e5:13:ca:25:2d:78:47:44:ea:04:af:48:70:46: 28:31:33:73:b5:b6:25:cf:a9:43:b4:c7:ed:c2:88: 8d:7b:e8:f1:01:ff:ac:df:a3:c9:06:2e:79:dc:38: 30:87:69:ee:41:85:3f:bd:f7:d4:4f:1d:fe:a8:86: 56:e9:f0:3d:99:a9:fb:72:2d:a2:d8:cb:1d:9e:af: 73:b9:5b:67:2a:ed:98:13:0f:4f:e0:e0:bd:02:a7: 69:06:76:e8:f5:b0:51:5e:48:9d:db:e9:8f:b7:4a: d6:f0:0e:68:4d:91:0c:cc:db:94:c4:06:77:c2:63: 5f:f7:be:d6:7c:db:a9:ad:2b:49:2b:96:f9:50:ab: f0:fd:78:f7:31:f4:fa:c5:0b:5f:7b:c2:3c:10:0b: 1c:f7:1c:a2:00:d8:96:30:2a:98:4e:6f:31:d2:64: c7:de:07:63:33:a5:c1:46:3f:22:47:b1:f8:2e:08: 61:11:e2:61:48:28:4f:b9:ea:b1:b5:92:22:d8:ff: 58:34:06:73:84:62:f2:7f:b1:2e:80:66:df:4e:eb: 8a:63:fb:fc:c7:6e:60:2b:3d:b5:e9:95:11:49:8a: bd:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:67:8C:4F:F7:98:D4:94:AB:EC:59:58:7D:71:09:42:18:72:33:1C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/53dc8acc-0c30-42d3-abfa-5792ea5bf7de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:2000::/40 Signature Algorithm: sha256WithRSAEncryption 10:22:10:92:19:3c:47:66:cc:e5:e6:47:d4:c7:a4:64:ac:20: 14:ca:14:78:74:63:2a:63:14:8c:ad:4d:fa:3c:78:7c:db:d0: b5:1e:22:14:18:30:0b:93:be:91:41:fd:dc:7a:75:cb:2a:95: 0b:bc:04:23:12:ba:64:f3:48:6d:ea:4b:c9:68:59:c0:15:fc: 3a:18:8f:28:1b:80:3d:14:26:39:20:76:16:0d:55:ce:2f:79: 73:49:78:41:ba:ae:75:7e:25:5d:44:ba:1a:36:7f:88:0d:7c: f7:45:78:6e:38:4a:ce:d8:74:70:3a:c6:c9:4f:8e:9e:12:7a: 22:c1:ed:81:a4:a0:6b:27:80:bf:cd:2c:05:d8:0e:4b:e7:89: 87:9a:83:ae:9b:de:b5:95:29:b9:4c:2e:56:38:5f:79:45:c7: 19:dc:57:e8:5d:29:13:7b:6a:e4:d6:28:dd:21:a8:58:dc:93: 83:f7:62:de:00:60:c6:e7:6f:83:ae:01:3a:47:01:b6:49:ef: 3f:76:3c:02:92:23:de:b8:e2:e8:95:95:c0:f9:e7:ab:f1:26: 9d:4d:b4:58:49:82:31:86:1c:48:61:e9:9c:fb:95:26:52:b5: c0:c3:31:c5:5d:a1:35:4f:ec:ba:2d:95:9b:21:a0:ce:82:c4: dc:37:75:fe -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUVzrcSOywo+fLCNrlMUyiYZAhG30wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMzAwMDEzM1oX DTI2MDMwMzIzNTk1OVowejFJMEcGA1UEBRNAZGVjYTNlNTE4NDlmYmE1ZGYxNTM5 ODBiNDcxYWVhMmZmMWUyYWJhZDA1ODVlNjhiYTg5ZDNlMjIyMjhjNTJhYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA04tFALjdLeRriqeSSjtjXIev6zr3 +FcfZ4GI35gE5RPKJS14R0TqBK9IcEYoMTNztbYlz6lDtMftwoiNe+jxAf+s36PJ Bi553Dgwh2nuQYU/vffUTx3+qIZW6fA9man7ci2i2Msdnq9zuVtnKu2YEw9P4OC9 AqdpBnbo9bBRXkid2+mPt0rW8A5oTZEMzNuUxAZ3wmNf977WfNuprStJK5b5UKvw /Xj3MfT6xQtfe8I8EAsc9xyiANiWMCqYTm8x0mTH3gdjM6XBRj8iR7H4LghhEeJh SChPueqxtZIi2P9YNAZzhGLyf7EugGbfTuuKY/v8x25gKz216ZURSYq9RQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFHlnjE/3mNSUq+xZWH1xCUIYcjMcMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzUzZGM4YWNjLTBjMzAtNDJkMy1hYmZhLTU3OTJlYTViZjdkZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/yAwDQYJKoZIhvcNAQELBQADggEBABAiEJIZPEdmzOXmR9TH pGSsIBTKFHh0YypjFIytTfo8eHzb0LUeIhQYMAuTvpFB/dx6dcsqlQu8BCMSumTz SG3qS8loWcAV/DoYjygbgD0UJjkgdhYNVc4veXNJeEG6rnV+JV1Euho2f4gNfPdF eG44Ss7YdHA6xslPjp4SeiLB7YGkoGsngL/NLAXYDkvniYeag66b3rWVKblMLlY4 X3lFxxncV+hdKRN7auTWKN0hqFjck4P3Yt4AYMbnb4OuATpHAbZJ7z92PAKSI964 4uiVlcD556vxJp1NtFhJgjGGHEhh6Zz7lSZStcDDMcVdoTVP7LotlZshoM6CxNw3 df4= -----END CERTIFICATE-----Generated at Sat Dec 6 11:00:07 2025 by rpki-client