This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/61c0a164-da93-428a-bae0-35d34ec93555.roa File: 61c0a164-da93-428a-bae0-35d34ec93555.roa (raw, json) Hash identifier: TUkDrL0JsmrDvLP5J0m2Y6CAduEFID+L1WX+zGiAKvM= Subject key identifier: 6D:B3:3C:B0:27:CE:36:B7:4E:AE:77:4D:DA:2E:B3:96:9E:2F:ED:65 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 16161AB006A7D6050B50A0B9235BE15DEF3C10E7 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/61c0a164-da93-428a-bae0-35d34ec93555.roa Signing time: Thu 04 Dec 2025 00:10:09 +0000 ROA not before: Thu 04 Dec 2025 00:10:09 +0000 ROA not after: Wed 04 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da1a:400::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:16:1a:b0:06:a7:d6:05:0b:50:a0:b9:23:5b:e1:5d:ef:3c:10:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 4 00:10:09 2025 GMT Not After : Mar 4 23:59:59 2026 GMT Subject: serialNumber=4f9516adaca97f0473cc9531488c752e289f0363d3bd2ebcd9de7fcb91bbab8d, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b3:83:62:d3:d5:e8:53:c7:e8:4c:2a:aa:db: 06:0d:52:81:5e:85:74:9b:32:09:d9:c7:75:ba:69: 3d:61:58:aa:e4:05:8a:0b:dd:da:1b:3c:f8:de:a5: cb:f2:f4:48:b0:67:96:29:91:63:93:6f:03:1b:d3: ad:e2:93:f5:aa:49:ff:4c:2c:79:27:62:c0:25:59: 47:8a:b7:d5:ed:e8:23:49:e1:f7:ec:b7:9e:12:78: 29:46:c3:6b:67:18:4f:8d:1c:75:b2:00:21:ee:92: 25:20:bc:4a:28:6c:92:00:a9:63:ec:17:65:7c:03: 23:d4:f2:15:ac:8d:3c:a0:49:ca:70:f9:fc:da:c6: 10:6d:f8:0d:97:5b:3d:df:df:16:2a:29:c9:71:21: 5e:a2:06:8c:28:4d:3b:07:22:58:5c:1c:7d:a9:42: ec:dd:bb:10:4b:cf:33:98:30:ca:4c:c8:44:90:eb: ef:b3:28:4c:33:0d:32:94:1d:81:74:6f:53:28:a5: c6:71:20:ec:c6:11:df:e5:89:db:c8:de:e1:ff:20: 64:98:f2:b9:6f:47:8a:26:1d:c3:77:cf:d7:bb:f1: 23:63:75:af:01:ff:dd:93:30:3d:79:c7:69:16:38: 4e:2a:d5:53:31:7c:a6:d0:02:02:e0:78:ca:38:72: ff:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:B3:3C:B0:27:CE:36:B7:4E:AE:77:4D:DA:2E:B3:96:9E:2F:ED:65 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/61c0a164-da93-428a-bae0-35d34ec93555.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da1a:400::/38 Signature Algorithm: sha256WithRSAEncryption 3d:a3:a5:3d:18:a5:16:65:20:8c:45:89:2c:6f:99:94:29:51: 12:ee:42:b3:d7:5c:c8:86:b4:b7:f6:71:69:3a:46:ea:09:87: 7c:7e:0a:13:60:a8:8a:2b:54:8b:6f:3b:ca:5f:7d:a6:b1:7e: ee:b5:d7:31:67:d9:a1:66:ef:61:f2:76:7d:75:e1:14:ee:1c: 05:99:18:a2:3c:5a:99:5f:fb:bb:44:b1:53:64:d9:46:93:4f: 1f:40:6c:ac:10:12:09:c2:51:cb:32:9d:67:46:1c:3f:bb:7a: de:89:86:55:e2:14:5b:97:c7:c4:37:1e:3d:3e:58:ab:de:e8: 2f:30:78:f5:50:b4:42:9b:14:05:d0:a8:9b:5a:db:c4:42:db: c6:c4:83:90:8a:39:af:16:b5:0c:81:45:1c:24:ff:4e:b1:45: d6:50:11:85:4a:c6:7c:b2:5a:f7:88:c6:5b:9b:94:20:6e:3c: b0:82:a0:9c:ba:48:00:1d:d2:c0:51:ad:7a:de:c2:72:5f:f5: a4:46:6e:b8:dd:9c:a5:e8:af:1d:99:22:89:74:d9:5e:1c:98: 85:7a:ff:5e:10:2d:23:2c:8c:c5:c9:09:1e:ac:eb:53:80:1f: a8:bc:7c:2c:d9:22:b2:b3:a1:66:4b:02:02:d6:e8:bc:19:fd: 93:7f:15:8e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUFhYasAan1gULUKC5I1vhXe88EOcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwNDAwMTAwOVoX DTI2MDMwNDIzNTk1OVowejFJMEcGA1UEBRNANGY5NTE2YWRhY2E5N2YwNDczY2M5 NTMxNDg4Yzc1MmUyODlmMDM2M2QzYmQyZWJjZDlkZTdmY2I5MWJiYWI4ZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu7ODYtPV6FPH6EwqqtsGDVKBXoV0 mzIJ2cd1umk9YViq5AWKC93aGzz43qXL8vRIsGeWKZFjk28DG9Ot4pP1qkn/TCx5 J2LAJVlHirfV7egjSeH37LeeEngpRsNrZxhPjRx1sgAh7pIlILxKKGySAKlj7Bdl fAMj1PIVrI08oEnKcPn82sYQbfgNl1s9398WKinJcSFeogaMKE07ByJYXBx9qULs 3bsQS88zmDDKTMhEkOvvsyhMMw0ylB2BdG9TKKXGcSDsxhHf5YnbyN7h/yBkmPK5 b0eKJh3Dd8/Xu/EjY3WvAf/dkzA9ecdpFjhOKtVTMXym0AIC4HjKOHL/dwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFG2zPLAnzja3Tq53Tdous5aeL+1lMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzYxYzBhMTY0LWRhOTMtNDI4YS1iYWUwLTM1ZDM0ZWM5MzU1NS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJAbaGgQwDQYJKoZIhvcNAQELBQADggEBAD2jpT0YpRZlIIxFiSxv mZQpURLuQrPXXMiGtLf2cWk6RuoJh3x+ChNgqIorVItvO8pffaaxfu611zFn2aFm 72Hydn114RTuHAWZGKI8Wplf+7tEsVNk2UaTTx9AbKwQEgnCUcsynWdGHD+7et6J hlXiFFuXx8Q3Hj0+WKve6C8wePVQtEKbFAXQqJta28RC28bEg5CKOa8WtQyBRRwk /06xRdZQEYVKxnyyWveIxlublCBuPLCCoJy6SAAd0sBRrXrewnJf9aRGbrjdnKXo rx2ZIol02V4cmIV6/14QLSMsjMXJCR6s61OAH6i8fCzZIrKzoWZLAgLW6LwZ/ZN/ FY4= -----END CERTIFICATE-----Generated at Sat Dec 6 10:24:31 2025 by rpki-client