This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5f4fb3c5-ffd6-4ac8-9a84-32400beb25a7.roa File: 5f4fb3c5-ffd6-4ac8-9a84-32400beb25a7.roa (raw, json) Hash identifier: KDrmj4z8ws49MbkHNjhYnoFvjWUsB8hA8ovW1dhyxrY= Subject key identifier: 74:1D:12:17:A8:80:05:02:18:7B:12:99:78:AD:89:D3:FE:97:02:EA Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1FCB2D4B11AD48CC329CE1E68C15CF0C9D8556A0 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5f4fb3c5-ffd6-4ac8-9a84-32400beb25a7.roa Signing time: Tue 02 Dec 2025 00:11:04 +0000 ROA not before: Tue 02 Dec 2025 00:11:04 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:f040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:cb:2d:4b:11:ad:48:cc:32:9c:e1:e6:8c:15:cf:0c:9d:85:56:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 2 00:11:04 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=3d0c347e584b06ab4e20974d94bb6a25cb6fd0f8eec951561a73624d82107020, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ea:5f:8a:01:6f:a7:8d:0e:c0:b2:7e:da:f8: 56:73:a3:c1:08:b5:49:42:e2:83:8c:7d:78:0c:20: 18:ab:c3:34:e2:7b:00:b8:95:2f:ab:e8:32:6d:46: 15:c7:f5:15:7d:33:c4:3b:a7:45:9c:9b:0c:09:66: ed:1c:d1:25:70:13:76:42:36:4c:21:4d:88:1a:08: db:67:1d:b3:36:bb:ce:34:d1:b9:f7:d8:a1:31:be: 4b:0b:ac:1a:b7:16:fe:8b:5e:e1:d1:5d:3c:53:51: 30:39:97:43:70:c0:14:1d:88:5c:ea:ce:9a:45:03: 45:24:e8:d9:52:ba:45:a9:16:a5:54:73:d4:53:ca: e7:fd:be:93:ba:b9:3e:81:dc:e0:a8:a0:40:39:7a: a5:c8:de:84:e2:d3:cc:2c:20:a8:a0:33:d8:ad:f6: 36:ce:0d:53:87:89:db:89:59:de:9e:dc:32:dd:c5: 39:c8:c3:fb:83:5a:59:92:e8:54:f8:b4:41:2d:e8: b2:39:e7:fc:2a:b1:5b:59:ea:a2:23:84:f7:12:53: ea:b4:17:32:6d:15:4c:5a:4b:65:dd:99:70:79:69: d3:69:cc:00:24:8b:21:aa:68:a8:16:42:c5:88:39: f4:be:57:f4:d5:b2:ae:2f:f8:bd:48:f0:96:a5:38: fa:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:1D:12:17:A8:80:05:02:18:7B:12:99:78:AD:89:D3:FE:97:02:EA X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5f4fb3c5-ffd6-4ac8-9a84-32400beb25a7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:f040::/48 Signature Algorithm: sha256WithRSAEncryption 00:e9:b8:65:d0:8d:c5:83:d2:a0:ea:51:ab:09:2c:34:d7:50: be:59:89:59:f6:1d:df:3d:a7:2c:87:2d:eb:48:7c:f0:f7:df: ee:b0:3c:4f:d4:0a:4a:ef:db:fb:eb:6f:9b:f6:21:4b:8a:bd: d7:8b:c8:3d:67:78:79:3c:e9:da:a3:5a:04:0e:52:ce:e7:86: b8:ee:25:86:47:8c:f9:47:9f:50:b7:d6:87:68:b1:da:a7:d4: e7:8f:af:4f:c1:2c:fb:6c:20:ea:09:42:77:96:92:d0:f7:89: 7d:10:07:9c:a9:44:6d:20:dd:8f:52:97:da:ee:10:f1:16:58: 8d:30:c5:fc:82:50:45:6e:14:76:2b:e8:55:ab:62:2f:b0:93: c7:23:1b:03:3d:38:01:1e:86:e0:42:e0:39:3a:c5:69:3a:f6: 96:0f:fd:31:00:31:94:75:f0:85:78:79:56:01:9f:5f:81:06: ff:45:0d:7a:a2:9e:ff:03:e9:37:c8:82:28:d7:ba:5c:06:2d: dd:8c:44:df:bf:fe:5c:c0:56:bb:d8:1e:c5:0d:51:cf:87:58: 2c:6d:8e:ad:c5:b4:19:7a:19:72:4e:d2:18:4f:c6:cb:42:93: d3:99:82:a8:70:1e:00:67:28:ec:77:18:cb:36:a2:fa:91:29: 1e:d5:86:8c -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUH8stSxGtSMwynOHmjBXPDJ2FVqAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMjAwMTEwNFoX DTI2MDMwMjIzNTk1OVowejFJMEcGA1UEBRNAM2QwYzM0N2U1ODRiMDZhYjRlMjA5 NzRkOTRiYjZhMjVjYjZmZDBmOGVlYzk1MTU2MWE3MzYyNGQ4MjEwNzAyMDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3epfigFvp40OwLJ+2vhWc6PBCLVJ QuKDjH14DCAYq8M04nsAuJUvq+gybUYVx/UVfTPEO6dFnJsMCWbtHNElcBN2QjZM IU2IGgjbZx2zNrvONNG599ihMb5LC6watxb+i17h0V08U1EwOZdDcMAUHYhc6s6a RQNFJOjZUrpFqRalVHPUU8rn/b6Turk+gdzgqKBAOXqlyN6E4tPMLCCooDPYrfY2 zg1Th4nbiVnentwy3cU5yMP7g1pZkuhU+LRBLeiyOef8KrFbWeqiI4T3ElPqtBcy bRVMWktl3ZlweWnTacwAJIshqmioFkLFiDn0vlf01bKuL/i9SPCWpTj6fwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFHQdEheogAUCGHsSmXitidP+lwLqMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzVmNGZiM2M1LWZmZDYtNGFjOC05YTg0LTMyNDAwYmViMjVhNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYfBAMA0GCSqGSIb3DQEBCwUAA4IBAQAA6bhl0I3Fg9Kg6lGr CSw011C+WYlZ9h3fPacshy3rSHzw99/usDxP1ApK79v762+b9iFLir3Xi8g9Z3h5 POnao1oEDlLO54a47iWGR4z5R59Qt9aHaLHap9Tnj69PwSz7bCDqCUJ3lpLQ94l9 EAecqURtIN2PUpfa7hDxFliNMMX8glBFbhR2K+hVq2IvsJPHIxsDPTgBHobgQuA5 OsVpOvaWD/0xADGUdfCFeHlWAZ9fgQb/RQ16op7/A+k3yIIo17pcBi3djETfv/5c wFa72B7FDVHPh1gsbY6txbQZehlyTtIYT8bLQpPTmYKocB4AZyjsdxjLNqL6kSke 1YaM -----END CERTIFICATE-----Generated at Sat Dec 6 14:57:37 2025 by rpki-client