This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7105aadf-8449-4060-98c4-d4b349ff7892.roa File: 7105aadf-8449-4060-98c4-d4b349ff7892.roa (raw, json) Hash identifier: H7jgVPbYOADFOaLXC75IHbOmFlSfNuGMzRvERrom3AM= Subject key identifier: 84:B2:59:68:AE:05:A2:52:B7:63:E8:BD:75:EC:AD:CF:EA:27:E6:AC Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6427E042670831E4969EBABF0E6DF5C900076246 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7105aadf-8449-4060-98c4-d4b349ff7892.roa Signing time: Tue 25 Nov 2025 00:00:45 +0000 ROA not before: Tue 25 Nov 2025 00:00:45 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf5:b000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:27:e0:42:67:08:31:e4:96:9e:ba:bf:0e:6d:f5:c9:00:07:62:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 25 00:00:45 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=3f5898d58a9045b8c7e8ed7874738ba8fcc3d6a6c1cc87932c976f11f33cc20d, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:78:34:24:3a:e2:ac:aa:c3:1a:a9:82:83:ac: b3:4b:06:69:53:99:a6:86:3f:b5:69:e2:04:16:7d: c9:b6:98:82:4d:8f:5a:d1:aa:fb:7c:ea:c8:22:2a: d5:40:d2:aa:81:12:cb:4e:a3:f0:d1:57:59:36:05: 4e:c5:ae:67:99:c8:ba:ad:a1:8f:85:bf:4c:fc:ca: bd:45:24:db:1f:1b:04:c1:c6:5f:6e:b0:b3:ed:b5: 1a:af:0c:9c:fb:de:09:27:5e:30:b8:21:b8:55:bb: 41:c9:00:4d:1f:7e:67:80:4a:da:0b:52:59:b3:4c: 64:25:1e:69:5c:ee:7a:7c:f3:f3:a4:34:a1:14:a6: 22:1b:65:9d:3e:47:58:9f:ef:f0:7c:4a:fd:fa:8e: 20:38:85:43:8d:41:84:2c:8c:6a:0b:df:5f:05:51: 37:a7:6b:35:27:37:5a:e8:fb:77:e8:a5:a9:2b:1a: 35:fb:86:fb:0f:7e:58:5e:97:4a:d0:62:2e:07:64: f3:4d:f9:85:02:ec:97:99:2e:7a:b4:0a:10:8f:2b: 44:ed:81:e3:d5:3b:87:7a:31:c9:ba:bc:20:61:ac: 14:fc:24:49:80:d9:1a:e1:38:fc:43:a6:3b:50:c6: e6:13:4a:e4:c7:ab:e0:5f:1f:6e:cb:67:28:4b:7b: e9:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:B2:59:68:AE:05:A2:52:B7:63:E8:BD:75:EC:AD:CF:EA:27:E6:AC X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7105aadf-8449-4060-98c4-d4b349ff7892.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf5:b000::/40 Signature Algorithm: sha256WithRSAEncryption 05:fe:c5:d3:23:a9:2c:1a:bb:c0:1f:05:76:fc:3f:42:ce:15: d2:87:00:9a:6f:0e:1e:1e:c4:9d:46:d8:5b:c4:30:9d:e5:09: 95:49:aa:83:8b:d7:5f:2a:28:51:a0:78:c3:2b:63:e3:29:75: 83:43:33:40:c0:c8:ce:0b:20:fc:7d:55:a3:f8:f1:69:29:5b: 26:77:7b:7e:32:37:1e:87:f2:53:4c:6f:70:1e:d3:e8:d0:ec: eb:96:f4:aa:36:cb:ef:7b:0e:db:2f:89:04:ea:b1:de:2e:46: 5f:c0:f2:d9:81:72:38:8b:a4:cf:6e:58:99:b1:05:a6:87:3f: ca:ea:a6:ca:0e:a6:f9:4d:b4:a7:cc:1f:60:3e:5f:4a:50:22: de:b3:f8:74:12:4b:08:2b:ce:54:62:bc:48:52:6a:1e:7c:15: d1:55:b1:e6:91:24:dc:19:99:17:a0:2b:1a:30:de:69:8e:cf: d9:33:95:15:b1:50:47:b6:c9:79:92:cd:bf:c0:56:04:6b:7b: ac:0c:e0:ac:bc:31:2b:ef:55:b8:98:e6:30:c4:d0:27:7f:b2: 6a:f7:9e:5a:84:f8:e1:98:b4:b1:46:00:26:82:5c:eb:a9:89: 30:b3:44:74:06:8a:a0:d2:02:f8:b4:85:b9:26:00:eb:a0:7f: 83:d0:b3:a1 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUZCfgQmcIMeSWnrq/Dm31yQAHYkYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyNTAwMDA0NVoX DTI2MDIyMzIzNTk1OVowejFJMEcGA1UEBRNAM2Y1ODk4ZDU4YTkwNDViOGM3ZThl ZDc4NzQ3MzhiYThmY2MzZDZhNmMxY2M4NzkzMmM5NzZmMTFmMzNjYzIwZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxHg0JDrirKrDGqmCg6yzSwZpU5mm hj+1aeIEFn3JtpiCTY9a0ar7fOrIIirVQNKqgRLLTqPw0VdZNgVOxa5nmci6raGP hb9M/Mq9RSTbHxsEwcZfbrCz7bUarwyc+94JJ14wuCG4VbtByQBNH35ngEraC1JZ s0xkJR5pXO56fPPzpDShFKYiG2WdPkdYn+/wfEr9+o4gOIVDjUGELIxqC99fBVE3 p2s1Jzda6Pt36KWpKxo1+4b7D35YXpdK0GIuB2TzTfmFAuyXmS56tAoQjytE7YHj 1TuHejHJurwgYawU/CRJgNka4Tj8Q6Y7UMbmE0rkx6vgXx9uy2coS3vpYwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFISyWWiuBaJSt2PovXXsrc/qJ+asMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzcxMDVhYWRmLTg0NDktNDA2MC05OGM0LWQ0YjM0OWZmNzg5Mi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9bAwDQYJKoZIhvcNAQELBQADggEBAAX+xdMjqSwau8AfBXb8 P0LOFdKHAJpvDh4exJ1G2FvEMJ3lCZVJqoOL118qKFGgeMMrY+MpdYNDM0DAyM4L IPx9VaP48WkpWyZ3e34yNx6H8lNMb3Ae0+jQ7OuW9Ko2y+97DtsviQTqsd4uRl/A 8tmBcjiLpM9uWJmxBaaHP8rqpsoOpvlNtKfMH2A+X0pQIt6z+HQSSwgrzlRivEhS ah58FdFVseaRJNwZmRegKxow3mmOz9kzlRWxUEe2yXmSzb/AVgRre6wM4Ky8MSvv VbiY5jDE0Cd/smr3nlqE+OGYtLFGACaCXOupiTCzRHQGiqDSAvi0hbkmAOugf4PQ s6E= -----END CERTIFICATE-----Generated at Sat Dec 6 14:08:44 2025 by rpki-client