This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/63fa6d0e-6726-46dd-8ccc-34d86aee4374.roa File: 63fa6d0e-6726-46dd-8ccc-34d86aee4374.roa (raw, json) Hash identifier: VHZlyFd/oK+dQVCwuSWWe1MzhkPL0MusVhm1QKA4QD8= Subject key identifier: 16:CD:DA:6B:AD:83:35:24:D0:F7:A4:A9:03:49:77:8D:58:81:78:1F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 644E574122375D632AD5C8FC5735DE0D32B5B1A6 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/63fa6d0e-6726-46dd-8ccc-34d86aee4374.roa Signing time: Tue 02 Dec 2025 00:10:12 +0000 ROA not before: Tue 02 Dec 2025 00:10:12 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:e000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:4e:57:41:22:37:5d:63:2a:d5:c8:fc:57:35:de:0d:32:b5:b1:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 2 00:10:12 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=7cdb5e5ea2620d85218ef5790dfcb80db8713be88fb5c97a51be355d123b2f75, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:65:b0:45:5c:12:19:ee:0c:06:12:f2:32:9b: 94:f1:80:f3:c8:24:fb:a5:2a:e9:73:da:48:83:00: 0d:08:cb:e9:df:1a:5f:39:04:90:25:0b:a5:31:8b: 60:e5:e3:f9:38:6f:3d:05:32:95:cf:a4:11:f4:98: d5:88:44:49:53:3d:5f:eb:78:33:22:3d:c1:5c:6a: e4:f4:2d:fb:78:fe:b4:a0:1a:9a:09:6d:c0:7b:99: 45:d4:76:17:9d:05:4b:d1:3e:49:d2:8d:03:8e:58: 65:1b:a5:3e:09:30:83:15:2f:6e:90:99:9c:ec:43: 01:e3:c9:2f:9b:99:b1:c7:f1:e3:27:fb:10:ce:14: a4:ca:98:8b:29:75:de:fc:19:91:97:b0:0a:65:71: a1:6a:45:b9:88:f4:2a:b6:b7:9e:d4:59:51:a1:d6: 19:9c:23:e6:b4:9d:e2:ef:6b:38:9a:ed:38:56:7f: 99:30:f3:78:49:04:93:53:10:53:b3:72:7b:d2:2a: 0c:84:73:a0:4e:fe:f5:b7:16:3b:3f:98:5c:51:54: ff:72:04:6e:90:e8:96:98:89:1b:4b:75:79:9d:52: ad:4a:8f:3f:f7:83:b9:1d:52:a8:d5:08:93:55:aa: 27:2f:dc:44:36:a1:2e:be:ab:c2:56:15:d4:75:81: cd:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:CD:DA:6B:AD:83:35:24:D0:F7:A4:A9:03:49:77:8D:58:81:78:1F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/63fa6d0e-6726-46dd-8ccc-34d86aee4374.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:e000::/40 Signature Algorithm: sha256WithRSAEncryption 97:2f:12:96:09:61:af:6f:0b:64:2f:01:20:59:2e:1f:52:ba: d7:3a:e8:a8:44:c6:8f:d8:cb:57:2b:46:43:ed:24:40:0a:b9: 1c:94:3a:41:19:97:79:c7:05:d2:9f:8b:f9:e9:cd:d1:af:7d: 74:82:64:ef:6f:10:a1:db:14:80:7c:4b:cd:b1:47:c1:52:64: cf:4a:ee:37:46:06:bf:76:ae:19:3f:47:dc:dc:7f:ef:e6:78: ac:af:1e:1f:71:68:a0:00:a3:13:9e:b6:fb:f5:29:79:b3:5b: 95:68:3d:da:5c:32:8a:be:3d:c5:78:e3:0b:c1:e3:70:d5:f8: 38:7e:ba:32:d1:9b:8b:2a:e5:bb:ad:19:bc:01:02:3c:e3:bb: 22:ee:01:ac:a3:0a:3b:e6:96:e6:c4:76:7d:11:71:c9:43:20: 03:cb:c9:4d:f4:47:eb:f3:8e:98:2c:14:b0:1f:5d:24:fe:fe: c8:ef:7f:0e:d6:98:05:03:d7:44:5a:46:7a:60:c2:64:67:f1: 38:7a:46:2c:53:27:c4:66:5b:3d:09:06:ed:63:4c:61:f4:ca: da:12:a6:df:2b:cf:f5:1c:86:5e:aa:1a:01:90:57:7c:7d:2d: 47:0c:0b:12:57:ba:bd:45:0f:7a:b8:1a:9f:de:73:af:b5:f0: cd:d2:48:df -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUZE5XQSI3XWMq1cj8VzXeDTK1saYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMjAwMTAxMloX DTI2MDMwMjIzNTk1OVowejFJMEcGA1UEBRNAN2NkYjVlNWVhMjYyMGQ4NTIxOGVm NTc5MGRmY2I4MGRiODcxM2JlODhmYjVjOTdhNTFiZTM1NWQxMjNiMmY3NTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvWWwRVwSGe4MBhLyMpuU8YDzyCT7 pSrpc9pIgwANCMvp3xpfOQSQJQulMYtg5eP5OG89BTKVz6QR9JjViERJUz1f63gz Ij3BXGrk9C37eP60oBqaCW3Ae5lF1HYXnQVL0T5J0o0DjlhlG6U+CTCDFS9ukJmc 7EMB48kvm5mxx/HjJ/sQzhSkypiLKXXe/BmRl7AKZXGhakW5iPQqtree1FlRodYZ nCPmtJ3i72s4mu04Vn+ZMPN4SQSTUxBTs3J70ioMhHOgTv71txY7P5hcUVT/cgRu kOiWmIkbS3V5nVKtSo8/94O5HVKo1QiTVaonL9xENqEuvqvCVhXUdYHN5QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBbN2mutgzUk0PekqQNJd41YgXgfMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzYzZmE2ZDBlLTY3MjYtNDZkZC04Y2NjLTM0ZDg2YWVlNDM3NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8uAwDQYJKoZIhvcNAQELBQADggEBAJcvEpYJYa9vC2QvASBZ Lh9Sutc66KhExo/Yy1crRkPtJEAKuRyUOkEZl3nHBdKfi/npzdGvfXSCZO9vEKHb FIB8S82xR8FSZM9K7jdGBr92rhk/R9zcf+/meKyvHh9xaKAAoxOetvv1KXmzW5Vo PdpcMoq+PcV44wvB43DV+Dh+ujLRm4sq5butGbwBAjzjuyLuAayjCjvmlubEdn0R cclDIAPLyU30R+vzjpgsFLAfXST+/sjvfw7WmAUD10RaRnpgwmRn8Th6RixTJ8Rm Wz0JBu1jTGH0ytoSpt8rz/Uchl6qGgGQV3x9LUcMCxJXur1FD3q4Gp/ec6+18M3S SN8= -----END CERTIFICATE-----Generated at Sat Dec 6 12:05:20 2025 by rpki-client