This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/70781597-6edc-49bc-bd8c-c9adc68d1b2b.roa File: 70781597-6edc-49bc-bd8c-c9adc68d1b2b.roa (raw, json) Hash identifier: xcjk9WkkULjXN97qpmmNoaxywn8xktH/3EtkJljI1Rs= Subject key identifier: 66:E4:7D:8F:1A:76:2C:94:58:D3:D3:27:00:0D:16:CC:45:92:A6:90 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3238B413BB0A7382330AE1D1EE8976403353EF52 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/70781597-6edc-49bc-bd8c-c9adc68d1b2b.roa Signing time: Sun 30 Nov 2025 00:01:19 +0000 ROA not before: Sun 30 Nov 2025 00:01:19 +0000 ROA not after: Sat 28 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:a080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:38:b4:13:bb:0a:73:82:33:0a:e1:d1:ee:89:76:40:33:53:ef:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 30 00:01:19 2025 GMT Not After : Feb 28 23:59:59 2026 GMT Subject: serialNumber=bc4696ce158418eeffe32f60fb17e2505c205efc7bfedfdd4930c8767b88a697, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:54:47:aa:c1:82:ea:de:8f:64:93:ee:3d:fb: aa:8f:07:d8:ac:58:83:34:bd:61:d1:84:6b:ad:9b: 67:86:c3:d9:24:62:e9:c5:9a:d4:ea:8b:8f:34:58: be:76:fb:95:1a:31:48:ba:c4:75:50:af:78:4f:b5: 69:e0:fa:b6:69:5f:0b:d8:a4:f3:97:29:62:ba:4f: 8f:ee:5c:60:c8:9c:04:53:39:52:a2:c8:ee:d8:fe: 11:f1:0c:a8:d0:5a:f6:08:09:e7:cc:02:e0:34:4a: 05:5b:c7:a8:cd:8d:3e:75:34:c9:7f:5a:1e:e4:81: 05:6e:ba:19:25:99:ed:96:01:9b:59:ca:f5:c9:8f: d8:9b:3d:2f:36:a9:78:50:66:20:4d:c2:21:71:14: 7a:68:c1:d9:98:02:32:90:ec:87:0e:b2:43:ef:ad: 04:dd:e7:b6:7f:18:b8:58:5a:04:9f:51:27:1f:bb: 6b:b2:58:65:90:64:6f:7f:5b:bf:00:cd:55:02:63: 91:b2:63:50:e2:a0:04:eb:bf:b8:a0:43:c8:d6:e3: 9a:cd:17:49:4d:be:bd:82:17:53:25:4b:de:db:a5: 56:c8:0a:b3:ff:4d:7c:fe:4e:21:46:87:52:62:ed: 69:76:8d:fb:cc:dd:dd:15:ab:83:f7:41:e9:91:0d: a9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:E4:7D:8F:1A:76:2C:94:58:D3:D3:27:00:0D:16:CC:45:92:A6:90 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/70781597-6edc-49bc-bd8c-c9adc68d1b2b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:a080::/48 Signature Algorithm: sha256WithRSAEncryption 99:af:77:81:c0:41:10:c3:84:ab:6d:51:4b:5e:3b:c6:5f:e2: 9e:f5:ee:1c:53:32:a6:6e:9b:31:8f:94:7d:ad:27:a8:f5:1c: 74:b9:69:dd:4b:44:70:0d:83:a2:9c:3c:2d:22:81:62:03:6e: 95:64:fa:94:2c:dc:b0:80:e0:e8:70:65:46:0e:bd:ef:7d:ad: af:87:1e:3a:20:e1:09:c9:1f:65:a2:77:bd:f9:1c:77:d5:72: 36:74:bc:ab:54:3d:49:9c:6c:00:c6:63:ed:c0:01:cf:15:70: 0e:e3:95:91:bf:9f:52:5b:ef:83:ab:7a:06:f8:f5:a3:ff:d4: 42:b7:b2:77:e5:6f:5e:e9:59:89:7a:a7:29:54:34:4a:d1:ec: 99:8d:7f:c5:94:0a:28:3f:6f:38:a7:88:49:46:e6:bc:85:ee: 4f:10:89:ca:a2:1d:9e:78:03:ed:34:b9:eb:05:ec:7f:70:a7: 3d:9a:e9:44:4b:e9:79:96:18:89:fa:42:53:d0:c5:46:f7:49: 8d:09:65:3b:ac:89:43:b9:4b:bb:4f:f5:32:98:15:d7:c9:6b: b5:ec:9d:4e:60:5d:ca:99:e1:2e:92:cc:3e:ff:81:6a:1e:4f: 43:63:b4:a6:f7:88:66:0a:39:03:df:89:08:4c:a3:85:6d:9c: 07:2a:73:b0 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUMji0E7sKc4IzCuHR7ol2QDNT71IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEzMDAwMDExOVoX DTI2MDIyODIzNTk1OVowejFJMEcGA1UEBRNAYmM0Njk2Y2UxNTg0MThlZWZmZTMy ZjYwZmIxN2UyNTA1YzIwNWVmYzdiZmVkZmRkNDkzMGM4NzY3Yjg4YTY5NzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAulRHqsGC6t6PZJPuPfuqjwfYrFiD NL1h0YRrrZtnhsPZJGLpxZrU6ouPNFi+dvuVGjFIusR1UK94T7Vp4Pq2aV8L2KTz lyliuk+P7lxgyJwEUzlSosju2P4R8Qyo0Fr2CAnnzALgNEoFW8eozY0+dTTJf1oe 5IEFbroZJZntlgGbWcr1yY/Ymz0vNql4UGYgTcIhcRR6aMHZmAIykOyHDrJD760E 3ee2fxi4WFoEn1EnH7trslhlkGRvf1u/AM1VAmORsmNQ4qAE67+4oEPI1uOazRdJ Tb69ghdTJUve26VWyAqz/018/k4hRodSYu1pdo37zN3dFauD90HpkQ2p6QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFGbkfY8adiyUWNPTJwANFsxFkqaQMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzcwNzgxNTk3LTZlZGMtNDliYy1iZDhjLWM5YWRjNjhkMWIyYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYaCAMA0GCSqGSIb3DQEBCwUAA4IBAQCZr3eBwEEQw4SrbVFL XjvGX+Ke9e4cUzKmbpsxj5R9rSeo9Rx0uWndS0RwDYOinDwtIoFiA26VZPqULNyw gODocGVGDr3vfa2vhx46IOEJyR9lone9+Rx31XI2dLyrVD1JnGwAxmPtwAHPFXAO 45WRv59SW++Dq3oG+PWj/9RCt7J35W9e6VmJeqcpVDRK0eyZjX/FlAooP284p4hJ Rua8he5PEInKoh2eeAPtNLnrBex/cKc9mulES+l5lhiJ+kJT0MVG90mNCWU7rIlD uUu7T/UymBXXyWu17J1OYF3KmeEuksw+/4FqHk9DY7Sm94hmCjkD34kITKOFbZwH KnOw -----END CERTIFICATE-----Generated at Sat Dec 6 09:56:45 2025 by rpki-client