This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/63206b2b-d620-415f-9dee-e3c63ab27be0.roa File: 63206b2b-d620-415f-9dee-e3c63ab27be0.roa (raw, json) Hash identifier: R9jDhB+zr9OmRnsakjIJ9yYH7ChphcnBCHGfB9x7BwE= Subject key identifier: B1:A7:98:34:C8:2F:A5:0F:34:A6:5F:41:45:6E:B8:14:BD:38:6F:97 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 172E65E5EF66E90B074FE9ABD632754AE9856788 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/63206b2b-d620-415f-9dee-e3c63ab27be0.roa Signing time: Sat 29 Nov 2025 00:00:52 +0000 ROA not before: Sat 29 Nov 2025 00:00:52 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:2e:65:e5:ef:66:e9:0b:07:4f:e9:ab:d6:32:75:4a:e9:85:67:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 29 00:00:52 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=0ebd64e71ea3d0a115bdaa349149cb175e17dc3a4299211a26b36a90497e5a65, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:25:ca:ff:7d:8e:27:81:d6:2c:fd:75:24:8a: 80:d7:41:4e:70:e3:63:fa:45:a2:9c:45:61:db:54: a6:51:ec:9f:7c:e0:e8:24:ad:56:03:1a:d9:c2:9f: 23:a6:d7:c0:d6:41:4d:28:44:4a:d6:a7:46:47:19: c1:fd:11:6d:3c:c9:b7:0e:ec:65:50:aa:75:55:2d: eb:eb:64:02:93:9d:ad:df:b2:ea:ef:8c:54:1e:63: c4:c7:d9:9a:05:7a:70:28:27:05:78:06:57:ce:75: dc:95:d2:07:86:ba:7a:43:f5:8e:df:f1:6a:d6:df: ad:0f:80:af:52:31:c2:79:4a:ca:db:1e:b1:ec:cf: e0:3d:33:d4:64:4c:78:be:67:56:9f:42:ed:8f:33: 35:02:87:5c:58:79:f3:7c:9c:2d:f4:d7:cb:ab:c7: cb:11:2f:1f:1c:3e:14:81:5c:22:3b:c9:2f:82:8a: 98:d9:3a:81:4e:66:70:76:a3:90:2e:25:a1:6e:02: 18:ba:c9:1d:79:92:eb:be:64:45:e9:01:57:33:ee: b9:3b:38:c7:a3:33:b4:69:2f:30:c8:4b:10:58:b6: 67:35:1a:f2:e5:b8:2b:43:41:87:f0:ad:11:ab:af: 55:c7:29:1e:fc:af:67:ff:1b:a9:2f:99:d1:59:d6: 0c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:A7:98:34:C8:2F:A5:0F:34:A6:5F:41:45:6E:B8:14:BD:38:6F:97 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/63206b2b-d620-415f-9dee-e3c63ab27be0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:8000::/48 Signature Algorithm: sha256WithRSAEncryption 68:14:46:6f:06:40:68:93:97:fc:df:37:c6:ad:6b:60:d8:2c: 20:9b:4d:d4:8f:01:62:d4:a7:bf:43:5e:df:46:50:02:9b:c1: fe:91:0e:5c:cc:41:3c:11:12:cb:10:08:14:25:32:fa:80:ae: 3b:3d:18:71:5d:e6:35:e1:bc:7c:23:51:92:e1:17:e7:dc:4c: 17:93:37:cb:98:e6:5b:37:3f:ab:dd:df:19:e3:90:37:b1:c7: 60:8d:56:3c:8b:42:a8:b7:f3:54:0e:87:4c:90:6e:b0:e6:cb: d4:55:87:9f:92:eb:f9:85:a7:ef:74:72:c3:91:4f:3f:9e:8f: c6:43:9a:e4:4e:83:d6:3d:87:ad:05:d0:14:b2:25:a7:b3:4f: d9:b2:28:fd:24:01:a8:35:df:03:6d:ef:a0:5f:56:ef:71:21: 4d:97:1e:ba:d6:2c:ab:0a:1b:d4:ad:5d:23:4d:6a:1a:c3:94: 74:b9:92:a6:50:79:ff:38:de:59:a7:15:44:2c:5e:0e:1d:35: fb:ce:7b:24:11:96:b8:5f:38:61:73:1f:f8:89:82:5a:54:c4: e6:db:cd:87:9c:a4:e9:6f:d2:a5:8d:f6:7e:47:b8:bf:22:6a: 00:9f:97:c5:d3:53:8a:62:f5:64:28:cb:69:cf:6e:1b:80:9a: aa:da:1d:a4 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUFy5l5e9m6QsHT+mr1jJ1SumFZ4gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyOTAwMDA1MloX DTI2MDIyNzIzNTk1OVowejFJMEcGA1UEBRNAMGViZDY0ZTcxZWEzZDBhMTE1YmRh YTM0OTE0OWNiMTc1ZTE3ZGMzYTQyOTkyMTFhMjZiMzZhOTA0OTdlNWE2NTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5SXK/32OJ4HWLP11JIqA10FOcONj +kWinEVh21SmUeyffODoJK1WAxrZwp8jptfA1kFNKERK1qdGRxnB/RFtPMm3Duxl UKp1VS3r62QCk52t37Lq74xUHmPEx9maBXpwKCcFeAZXznXcldIHhrp6Q/WO3/Fq 1t+tD4CvUjHCeUrK2x6x7M/gPTPUZEx4vmdWn0LtjzM1AodcWHnzfJwt9NfLq8fL ES8fHD4UgVwiO8kvgoqY2TqBTmZwdqOQLiWhbgIYuskdeZLrvmRF6QFXM+65OzjH ozO0aS8wyEsQWLZnNRry5bgrQ0GH8K0Rq69Vxyke/K9n/xupL5nRWdYMjwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFLGnmDTIL6UPNKZfQUVuuBS9OG+XMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzYzMjA2YjJiLWQ2MjAtNDE1Zi05ZGVlLWUzYzYzYWIyN2JlMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba9oAAMA0GCSqGSIb3DQEBCwUAA4IBAQBoFEZvBkBok5f83zfG rWtg2Cwgm03UjwFi1Ke/Q17fRlACm8H+kQ5czEE8ERLLEAgUJTL6gK47PRhxXeY1 4bx8I1GS4Rfn3EwXkzfLmOZbNz+r3d8Z45A3scdgjVY8i0Kot/NUDodMkG6w5svU VYefkuv5hafvdHLDkU8/no/GQ5rkToPWPYetBdAUsiWns0/Zsij9JAGoNd8Dbe+g X1bvcSFNlx661iyrChvUrV0jTWoaw5R0uZKmUHn/ON5ZpxVELF4OHTX7znskEZa4 Xzhhcx/4iYJaVMTm282HnKTpb9KljfZ+R7i/ImoAn5fF01OKYvVkKMtpz24bgJqq 2h2k -----END CERTIFICATE-----Generated at Sat Dec 6 14:00:39 2025 by rpki-client