This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/57e5a746-78cb-4122-b964-f449ba6f6e5f.roa File: 57e5a746-78cb-4122-b964-f449ba6f6e5f.roa (raw, json) Hash identifier: v+S7oxN7qM+QmDBS09lS5zGSOPB5TgFqo3osDehblZE= Subject key identifier: 8B:61:D7:92:58:8E:35:DC:6C:49:7D:4A:EC:03:4D:24:51:1C:49:18 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6A9E6AAEBC39BA4950F3ADA44C5C9D88B7589F3B Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/57e5a746-78cb-4122-b964-f449ba6f6e5f.roa Signing time: Wed 03 Dec 2025 00:11:00 +0000 ROA not before: Wed 03 Dec 2025 00:11:00 +0000 ROA not after: Tue 03 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da38:a000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:9e:6a:ae:bc:39:ba:49:50:f3:ad:a4:4c:5c:9d:88:b7:58:9f:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 3 00:11:00 2025 GMT Not After : Mar 3 23:59:59 2026 GMT Subject: serialNumber=4a2396ff6855892d5da27f1e4dea5de86cc61a6f8d6c4e564dc90aeff0cf754a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:28:6a:fb:af:1a:dc:32:88:13:65:99:43:cc: 5c:0b:59:48:ab:ed:e7:c5:53:66:a4:80:24:36:10: cb:06:00:a7:8c:85:dc:4c:c9:45:83:7b:58:6b:08: c9:58:fa:b8:ff:35:94:3f:b0:01:c2:52:01:62:ae: b5:ef:19:9b:a5:9f:14:9a:1f:83:32:56:98:35:5d: 5f:74:dd:4b:4a:f2:f2:b7:23:14:e7:dc:52:fe:54: d9:dc:91:54:fb:ad:97:33:69:da:02:cd:e9:61:c4: 38:0e:8a:34:a1:0c:5a:88:4e:0d:05:42:ed:27:97: e6:00:4e:32:29:f0:9e:a3:07:75:d5:c7:03:ed:e5: 0a:ee:a4:30:c9:cf:95:14:be:b9:4c:38:38:cc:39: b9:5b:58:d6:b0:f8:50:fd:ec:08:12:5b:62:bc:96: 4a:4b:ca:3a:5f:24:dc:3d:be:6d:8c:81:07:51:19: 37:15:37:05:84:f9:e0:5f:06:03:0b:82:0f:7a:99: 07:0d:6a:90:ed:b3:bb:18:10:f2:9c:22:5d:cb:aa: e9:94:2c:fd:91:58:ff:7c:f4:13:af:56:c5:9d:af: 72:72:89:ce:6e:1b:b2:49:ca:11:e1:1a:7b:07:d8: ce:3e:dc:c1:96:c6:6c:f6:cb:a0:41:9f:4b:2f:e3: 52:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:61:D7:92:58:8E:35:DC:6C:49:7D:4A:EC:03:4D:24:51:1C:49:18 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/57e5a746-78cb-4122-b964-f449ba6f6e5f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da38:a000::/40 Signature Algorithm: sha256WithRSAEncryption 4f:91:28:5a:47:80:81:08:97:b0:ad:9d:0c:23:0f:81:fb:29: 6c:66:8b:4c:a4:a5:d1:ff:77:85:30:44:33:71:ad:3d:e7:d8: 0d:e5:bb:6b:d6:de:d5:9b:95:91:88:3d:54:3a:f2:5e:bd:ed: 29:ba:de:6d:f9:85:d2:37:6a:92:59:69:19:ef:da:3a:8e:de: 1c:0e:30:ea:14:e3:64:ed:2b:b9:6f:1d:47:37:a7:71:e4:2d: b1:95:29:1f:5b:18:9b:29:4f:03:ea:d5:ee:a6:95:9e:ee:3e: d2:1d:6a:df:7e:4e:55:da:0f:65:2a:07:34:f0:fb:c9:f9:8f: 37:1c:a5:22:4f:83:bd:b5:00:38:e3:69:b7:00:05:fc:b8:76: 84:db:de:01:14:c8:70:8a:b9:76:20:e5:c3:2b:8f:81:b0:6f: 28:45:17:68:e9:ad:83:2c:aa:a4:5a:1c:58:f8:e4:00:53:29: 4d:ad:6c:36:aa:7a:78:41:1c:2d:bd:13:5b:53:5d:0d:30:66: 4f:42:b3:64:e8:f9:5e:98:08:48:24:e6:51:8e:f4:51:21:bf: d4:9f:e3:db:ca:a6:95:b5:5f:67:39:2a:c3:b7:ce:a5:a1:a5: 91:30:3c:f5:e0:5f:36:6d:c8:09:ff:94:f3:a8:37:46:d0:af: 0f:1f:40:57 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUap5qrrw5uklQ862kTFydiLdYnzswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMzAwMTEwMFoX DTI2MDMwMzIzNTk1OVowejFJMEcGA1UEBRNANGEyMzk2ZmY2ODU1ODkyZDVkYTI3 ZjFlNGRlYTVkZTg2Y2M2MWE2ZjhkNmM0ZTU2NGRjOTBhZWZmMGNmNzU0YTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsShq+68a3DKIE2WZQ8xcC1lIq+3n xVNmpIAkNhDLBgCnjIXcTMlFg3tYawjJWPq4/zWUP7ABwlIBYq617xmbpZ8Umh+D MlaYNV1fdN1LSvLytyMU59xS/lTZ3JFU+62XM2naAs3pYcQ4Doo0oQxaiE4NBULt J5fmAE4yKfCeowd11ccD7eUK7qQwyc+VFL65TDg4zDm5W1jWsPhQ/ewIEltivJZK S8o6XyTcPb5tjIEHURk3FTcFhPngXwYDC4IPepkHDWqQ7bO7GBDynCJdy6rplCz9 kVj/fPQTr1bFna9yconObhuyScoR4Rp7B9jOPtzBlsZs9sugQZ9LL+NS1QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFIth15JYjjXcbEl9SuwDTSRRHEkYMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU3ZTVhNzQ2LTc4Y2ItNDEyMi1iOTY0LWY0NDliYTZmNmU1Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaOKAwDQYJKoZIhvcNAQELBQADggEBAE+RKFpHgIEIl7CtnQwj D4H7KWxmi0ykpdH/d4UwRDNxrT3n2A3lu2vW3tWblZGIPVQ68l697Sm63m35hdI3 apJZaRnv2jqO3hwOMOoU42TtK7lvHUc3p3HkLbGVKR9bGJspTwPq1e6mlZ7uPtId at9+TlXaD2UqBzTw+8n5jzccpSJPg721ADjjabcABfy4doTb3gEUyHCKuXYg5cMr j4GwbyhFF2jprYMsqqRaHFj45ABTKU2tbDaqenhBHC29E1tTXQ0wZk9Cs2To+V6Y CEgk5lGO9FEhv9Sf49vKppW1X2c5KsO3zqWhpZEwPPXgXzZtyAn/lPOoN0bQrw8f QFc= -----END CERTIFICATE-----Generated at Sat Dec 6 12:58:20 2025 by rpki-client