This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/70cb3d39-6b23-41ec-a7e4-58ff8f16eaac.roa File: 70cb3d39-6b23-41ec-a7e4-58ff8f16eaac.roa (raw, json) Hash identifier: IUAmDgmJiKdw/a2hYRRbmYBxtPta82APaHV6FRycDf4= Subject key identifier: 26:24:02:FB:AB:D9:22:3E:4E:ED:E7:18:72:42:35:C5:4D:F2:31:19 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 02D8E176BDC49FA1D2B70EB42ED7643DF09A032E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/70cb3d39-6b23-41ec-a7e4-58ff8f16eaac.roa Signing time: Sun 23 Nov 2025 00:10:12 +0000 ROA not before: Sun 23 Nov 2025 00:10:12 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daea:8880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:d8:e1:76:bd:c4:9f:a1:d2:b7:0e:b4:2e:d7:64:3d:f0:9a:03:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 23 00:10:12 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=04f69500b2a2834be33d476326272220177918baa12604f0da2492380e9c2947, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a1:60:31:d8:6b:72:7f:ac:96:13:f6:f3:57: 53:20:3a:23:7c:ea:c6:58:f2:47:28:d2:5c:00:a2: a9:10:32:39:1e:32:47:ea:2e:de:b8:30:e9:8f:0e: c9:9f:c5:5f:b2:3c:20:67:2c:b5:f0:d3:1f:a3:77: 76:cf:84:93:ba:f9:d1:15:6b:f4:9d:af:6e:10:83: 65:64:3d:ad:72:7d:6b:02:1d:6d:92:63:4f:f5:9c: d9:56:26:72:0e:e2:57:65:e5:29:54:aa:58:82:aa: 93:18:78:f7:70:1c:40:13:92:15:6d:57:48:6a:e6: 52:1d:7a:a6:fd:ef:1b:4c:8d:03:c6:64:67:f0:0b: cf:82:d8:15:e2:cd:39:ea:ad:90:ba:1e:79:60:6f: ca:d8:0a:2d:8d:b6:3f:35:99:d4:d2:d8:42:c0:81: 16:00:34:64:71:e3:73:0b:72:76:4d:72:fb:48:ca: b2:72:68:bf:49:25:2e:09:5f:48:41:ed:ad:4d:d7: f7:e1:af:6f:f5:ee:82:48:39:a0:51:77:4c:af:3c: b6:bb:25:02:a2:94:9d:7c:37:b5:e9:4f:1c:02:12: a8:cc:17:c6:50:f7:53:c5:c3:86:5e:c6:89:c6:70: 96:dc:2f:37:56:a3:df:54:a2:16:7a:c5:3b:b1:5f: bf:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:24:02:FB:AB:D9:22:3E:4E:ED:E7:18:72:42:35:C5:4D:F2:31:19 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/70cb3d39-6b23-41ec-a7e4-58ff8f16eaac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daea:8880::/48 Signature Algorithm: sha256WithRSAEncryption 85:20:85:1e:63:e0:71:20:bc:df:1a:66:c1:ba:2c:64:28:43: 60:f6:6f:b1:f5:13:d1:c0:0e:b9:ba:0d:8e:9b:1a:38:97:85: 8c:64:6d:92:bc:71:c4:a7:e3:97:f4:d4:64:bc:78:50:e6:2c: da:a9:46:7d:a6:0a:40:a1:fb:68:88:52:8b:70:00:9d:04:19: d4:1f:90:24:2b:df:69:50:fd:1a:a4:05:de:bc:39:35:bf:89: cb:10:7d:ce:8f:e2:14:10:74:55:eb:82:89:0b:8b:99:a4:4a: 6d:7f:de:02:e4:e3:e8:9d:ed:12:6e:b3:1f:68:32:ca:08:c4: cd:d0:31:9c:8b:d8:1e:50:56:d8:8c:08:01:50:da:02:23:b3: ee:dd:d6:ea:fd:91:4d:79:17:d6:4b:f5:a0:d1:a9:11:5b:6e: 33:64:5f:a1:e9:da:70:3d:5f:a6:e6:22:b5:df:d5:11:65:4d: 01:bd:e8:ca:73:06:df:44:30:c8:a9:6a:e9:cb:db:bb:b4:98: 81:02:1a:0d:91:e3:68:5f:76:20:3a:87:fa:d3:e0:5d:bf:62: db:5a:52:a2:f6:50:63:05:42:63:05:9e:0d:8c:92:5d:47:63: b1:09:38:6f:cb:6b:21:5c:58:8a:8a:56:b2:4c:c7:f7:98:91: e6:75:06:b0 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUAtjhdr3En6HStw60LtdkPfCaAy4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyMzAwMTAxMloX DTI2MDIyMTIzNTk1OVowejFJMEcGA1UEBRNAMDRmNjk1MDBiMmEyODM0YmUzM2Q0 NzYzMjYyNzIyMjAxNzc5MThiYWExMjYwNGYwZGEyNDkyMzgwZTljMjk0NzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoaFgMdhrcn+slhP281dTIDojfOrG WPJHKNJcAKKpEDI5HjJH6i7euDDpjw7Jn8VfsjwgZyy18NMfo3d2z4STuvnRFWv0 na9uEINlZD2tcn1rAh1tkmNP9ZzZViZyDuJXZeUpVKpYgqqTGHj3cBxAE5IVbVdI auZSHXqm/e8bTI0DxmRn8AvPgtgV4s056q2Quh55YG/K2AotjbY/NZnU0thCwIEW ADRkceNzC3J2TXL7SMqycmi/SSUuCV9IQe2tTdf34a9v9e6CSDmgUXdMrzy2uyUC opSdfDe16U8cAhKozBfGUPdTxcOGXsaJxnCW3C83VqPfVKIWesU7sV+/9QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFCYkAvur2SI+Tu3nGHJCNcVN8jEZMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzcwY2IzZDM5LTZiMjMtNDFlYy1hN2U0LTU4ZmY4ZjE2ZWFhYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba6oiAMA0GCSqGSIb3DQEBCwUAA4IBAQCFIIUeY+BxILzfGmbB uixkKENg9m+x9RPRwA65ug2Omxo4l4WMZG2SvHHEp+OX9NRkvHhQ5izaqUZ9pgpA oftoiFKLcACdBBnUH5AkK99pUP0apAXevDk1v4nLEH3Oj+IUEHRV64KJC4uZpEpt f94C5OPone0SbrMfaDLKCMTN0DGci9geUFbYjAgBUNoCI7Pu3dbq/ZFNeRfWS/Wg 0akRW24zZF+h6dpwPV+m5iK139URZU0BvejKcwbfRDDIqWrpy9u7tJiBAhoNkeNo X3YgOof60+Bdv2LbWlKi9lBjBUJjBZ4NjJJdR2OxCThvy2shXFiKilayTMf3mJHm dQaw -----END CERTIFICATE-----Generated at Sat Dec 6 15:35:29 2025 by rpki-client