This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/69b62cdf-1adc-4227-8782-99cecf187e33.roa File: 69b62cdf-1adc-4227-8782-99cecf187e33.roa (raw, json) Hash identifier: oeiGB0ZnsePEc73i7+Z2QanB20I2UA7FKFuWQVNH8XQ= Subject key identifier: D8:A9:61:10:F6:E5:59:AD:92:1F:CE:C5:EE:6B:A6:DB:E2:7C:45:58 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3C895DA6D03CA2B3FD4A8F2BAD375BE182996276 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/69b62cdf-1adc-4227-8782-99cecf187e33.roa Signing time: Tue 02 Dec 2025 00:10:07 +0000 ROA not before: Tue 02 Dec 2025 00:10:07 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:7080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:89:5d:a6:d0:3c:a2:b3:fd:4a:8f:2b:ad:37:5b:e1:82:99:62:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 2 00:10:07 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=817be59f928ce581ef291afdad1df4a58c4ffb77669d13443b521c46c41f83b5, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:25:34:c2:34:11:c3:58:4c:f0:5c:92:0c:e2: 85:28:ed:85:97:86:d4:ca:ae:94:1e:05:98:70:41: c3:4e:85:f3:1d:50:6f:ab:06:fe:a9:d0:9f:ae:b0: 42:1f:55:69:37:74:36:bc:da:c4:30:ea:20:b1:43: 14:ce:4c:be:ae:30:ac:ef:f4:37:b6:dc:3e:af:d3: a8:47:f6:70:c5:72:56:03:95:6c:5b:75:d2:b9:cd: e5:7b:7b:09:d7:6c:fc:5a:40:18:3f:7e:2a:d9:d8: ca:ab:8c:ca:f5:fd:43:21:cd:f6:0e:27:b0:c3:38: 73:9d:c4:17:c3:78:46:a5:5c:52:44:b4:f8:50:67: d1:1d:9d:74:c8:44:ab:da:ef:cd:92:cb:41:7d:89: 67:39:5b:fa:f6:78:ee:f5:e2:7c:82:99:70:60:5e: f5:31:f7:6f:d7:2a:15:84:85:3e:c0:c2:71:74:71: 78:88:db:33:fb:d7:5d:e5:01:a0:47:8e:fc:bc:0e: b7:cb:64:69:3f:7c:15:74:7d:43:85:6d:7a:bc:56: ae:d0:55:0f:f9:81:16:85:ca:a3:4e:e4:38:b7:67: 82:62:8b:04:e2:21:c2:f5:d1:d5:3e:67:95:7f:8c: cc:3a:0a:1e:f1:1f:aa:95:67:d4:b0:11:ce:55:f4: 88:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:A9:61:10:F6:E5:59:AD:92:1F:CE:C5:EE:6B:A6:DB:E2:7C:45:58 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/69b62cdf-1adc-4227-8782-99cecf187e33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:7080::/48 Signature Algorithm: sha256WithRSAEncryption 58:29:d1:6f:a3:87:d2:7b:3b:5f:34:69:bb:4c:25:c7:d8:f8: 1a:b2:0e:93:be:bf:02:fe:60:7e:be:11:0a:c5:f8:bf:12:1b: 65:ec:f2:cc:30:ca:79:d3:cd:12:a6:f6:1b:5c:50:3c:65:f5: 20:9e:05:7c:1f:1d:35:a8:db:1e:87:af:61:0c:84:1f:44:fc: 36:e3:a7:09:c0:d7:de:a6:cb:bc:8c:97:bb:3e:ce:ca:e9:fa: a0:40:e1:8b:72:d5:a6:b9:42:e4:92:a2:89:0b:89:87:da:9f: 2f:fd:4e:60:2a:ca:0d:d0:4b:69:d6:7e:3c:8f:e2:3c:89:90: d9:35:19:33:85:b9:6c:56:b2:19:32:63:07:f4:37:35:ba:93: 8a:5f:66:ec:4c:6e:8d:60:ba:04:5a:26:40:57:4e:59:89:f5: e9:33:1a:20:d4:f6:7b:c2:63:b7:89:b8:24:d3:a7:b8:c9:3f: cf:da:c6:df:fd:22:72:4b:54:30:5c:69:b2:69:54:26:a3:af: 0d:8f:bd:82:7b:f9:65:90:0d:bf:83:03:83:b7:64:3e:63:9c: b8:a2:4d:2f:27:2e:6f:bc:7e:4b:b1:e9:c4:52:ae:2c:51:00: c1:b4:02:e9:04:22:1e:94:58:ee:b3:a0:21:b8:80:63:99:76: 83:70:49:f6 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUPIldptA8orP9So8rrTdb4YKZYnYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMjAwMTAwN1oX DTI2MDMwMjIzNTk1OVowejFJMEcGA1UEBRNAODE3YmU1OWY5MjhjZTU4MWVmMjkx YWZkYWQxZGY0YTU4YzRmZmI3NzY2OWQxMzQ0M2I1MjFjNDZjNDFmODNiNTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmyU0wjQRw1hM8FySDOKFKO2Fl4bU yq6UHgWYcEHDToXzHVBvqwb+qdCfrrBCH1VpN3Q2vNrEMOogsUMUzky+rjCs7/Q3 ttw+r9OoR/ZwxXJWA5VsW3XSuc3le3sJ12z8WkAYP34q2djKq4zK9f1DIc32Diew wzhzncQXw3hGpVxSRLT4UGfRHZ10yESr2u/NkstBfYlnOVv69nju9eJ8gplwYF71 Mfdv1yoVhIU+wMJxdHF4iNsz+9dd5QGgR478vA63y2RpP3wVdH1DhW16vFau0FUP +YEWhcqjTuQ4t2eCYosE4iHC9dHVPmeVf4zMOgoe8R+qlWfUsBHOVfSIDQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFNipYRD25Vmtkh/Oxe5rptvifEVYMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzY5YjYyY2RmLTFhZGMtNDIyNy04NzgyLTk5Y2VjZjE4N2UzMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba8nCAMA0GCSqGSIb3DQEBCwUAA4IBAQBYKdFvo4fSeztfNGm7 TCXH2Pgasg6Tvr8C/mB+vhEKxfi/Ehtl7PLMMMp5080SpvYbXFA8ZfUgngV8Hx01 qNseh69hDIQfRPw246cJwNfepsu8jJe7Ps7K6fqgQOGLctWmuULkkqKJC4mH2p8v /U5gKsoN0Etp1n48j+I8iZDZNRkzhblsVrIZMmMH9Dc1upOKX2bsTG6NYLoEWiZA V05ZifXpMxog1PZ7wmO3ibgk06e4yT/P2sbf/SJyS1QwXGmyaVQmo68Nj72Ce/ll kA2/gwODt2Q+Y5y4ok0vJy5vvH5LsenEUq4sUQDBtALpBCIelFjus6AhuIBjmXaD cEn2 -----END CERTIFICATE-----Generated at Sat Dec 6 12:11:00 2025 by rpki-client