This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/75fce456-5901-4b20-bd6e-e79945bb44d1.roa File: 75fce456-5901-4b20-bd6e-e79945bb44d1.roa (raw, json) Hash identifier: e2/6sHWDSBE3oY1ttaKcA5ioUndQnYl3lkeM1DfRh58= Subject key identifier: 88:4C:77:28:2D:CA:15:A0:DD:14:C3:14:C6:54:4A:9C:5B:0C:3F:50 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 77BB239FA90CA3DB926429C29FF0F1BA4EACFAAB Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/75fce456-5901-4b20-bd6e-e79945bb44d1.roa Signing time: Tue 25 Nov 2025 00:00:09 +0000 ROA not before: Tue 25 Nov 2025 00:00:09 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:a000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:bb:23:9f:a9:0c:a3:db:92:64:29:c2:9f:f0:f1:ba:4e:ac:fa:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 25 00:00:09 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=768efab1f744cc0dc54dea39797d7174337a01302221bd14026dd772b1e694f7, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c9:09:52:da:20:1e:67:16:3f:63:1d:bc:86: 68:60:62:c6:6f:67:f7:60:68:53:da:e0:70:54:69: 9b:5f:37:53:b0:03:2a:58:66:8d:6a:2e:ca:0b:b6: 2d:53:9d:de:6c:a7:ed:30:30:b7:37:e7:d5:6a:21: c0:21:fa:ff:8b:d5:73:bf:e4:ae:5f:73:64:80:85: d0:09:c6:8d:7d:fe:11:8e:9e:f7:f0:42:b8:83:ca: b7:3d:e4:ec:82:36:87:0f:71:f5:2b:4f:ae:28:07: fc:c2:21:17:bb:51:ab:c7:d8:f9:12:1a:85:98:76: cc:56:96:b1:81:de:fd:a0:05:19:44:b7:ff:54:35: d9:6c:02:b4:2e:76:ee:df:50:fd:36:7a:c9:83:12: 1f:97:73:6b:dc:fd:67:98:9d:30:a3:68:85:bb:7c: 55:f8:2d:4f:f0:40:22:a4:b4:78:5c:98:47:53:b8: f5:85:cc:df:30:58:fe:5c:de:10:f7:b8:25:99:d4: 8f:fe:9a:a0:99:f2:3a:ed:7e:38:8c:fa:0f:e9:41: 07:df:c1:d7:80:b9:fe:fc:c0:1a:0a:8e:22:19:ea: 2e:a6:77:e7:72:62:ff:f7:d7:21:34:87:0f:ef:72: e2:b0:2f:f4:90:e8:a8:85:68:02:d9:aa:c4:57:2e: 2f:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:4C:77:28:2D:CA:15:A0:DD:14:C3:14:C6:54:4A:9C:5B:0C:3F:50 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/75fce456-5901-4b20-bd6e-e79945bb44d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:a000::/48 Signature Algorithm: sha256WithRSAEncryption 1b:b0:84:b8:57:fd:3c:a4:b0:70:77:16:bd:94:17:f3:92:eb: 7f:f4:1a:d9:98:bb:64:8f:ff:8b:91:7f:af:71:0f:3d:f8:18: d3:3a:26:2a:57:13:37:83:24:21:d3:3b:ca:8a:17:48:61:12: 43:d2:8d:d5:34:64:a3:8c:00:72:ad:43:a7:ff:0f:25:2a:ff: 32:a1:02:32:9b:f4:71:d2:11:38:ec:5b:7c:fc:d8:0f:af:9f: 9a:fc:e0:fc:4e:f7:cd:b7:a6:4d:f3:b2:38:b0:09:f5:2a:bf: 33:5c:8f:89:1f:36:4f:ef:e4:04:49:c9:4d:41:54:e1:03:65: 71:93:97:b4:f6:01:83:67:39:36:9d:25:b1:ce:57:ca:e6:58: a8:b7:8a:7d:96:ae:24:c4:55:04:80:16:26:68:ff:97:1c:fb: 71:2b:a8:fe:46:c0:81:98:93:cb:a2:f0:21:68:dc:7e:5f:76: f6:56:b2:0e:c7:bc:95:37:52:30:78:77:f8:0e:2e:c5:1a:4e: f3:2e:3e:f4:c1:b1:f8:54:55:2a:65:75:12:14:62:c5:ec:42: 3f:c3:ed:67:61:62:0c:76:00:23:46:fa:4a:54:dc:39:0d:18: 64:cd:90:b1:fd:91:83:b7:05:68:f5:74:13:71:36:2a:6e:8e: 0a:89:0c:d2 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUd7sjn6kMo9uSZCnCn/Dxuk6s+qswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyNTAwMDAwOVoX DTI2MDIyMzIzNTk1OVowejFJMEcGA1UEBRNANzY4ZWZhYjFmNzQ0Y2MwZGM1NGRl YTM5Nzk3ZDcxNzQzMzdhMDEzMDIyMjFiZDE0MDI2ZGQ3NzJiMWU2OTRmNzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArMkJUtogHmcWP2MdvIZoYGLGb2f3 YGhT2uBwVGmbXzdTsAMqWGaNai7KC7YtU53ebKftMDC3N+fVaiHAIfr/i9Vzv+Su X3NkgIXQCcaNff4Rjp738EK4g8q3PeTsgjaHD3H1K0+uKAf8wiEXu1Grx9j5EhqF mHbMVpaxgd79oAUZRLf/VDXZbAK0Lnbu31D9NnrJgxIfl3Nr3P1nmJ0wo2iFu3xV +C1P8EAipLR4XJhHU7j1hczfMFj+XN4Q97glmdSP/pqgmfI67X44jPoP6UEH38HX gLn+/MAaCo4iGeoupnfncmL/99chNIcP73LisC/0kOiohWgC2arEVy4vPQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFIhMdygtyhWg3RTDFMZUSpxbDD9QMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzc1ZmNlNDU2LTU5MDEtNGIyMC1iZDZlLWU3OTk0NWJiNDRkMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba9qAAMA0GCSqGSIb3DQEBCwUAA4IBAQAbsIS4V/08pLBwdxa9 lBfzkut/9BrZmLtkj/+LkX+vcQ89+BjTOiYqVxM3gyQh0zvKihdIYRJD0o3VNGSj jAByrUOn/w8lKv8yoQIym/Rx0hE47Ft8/NgPr5+a/OD8TvfNt6ZN87I4sAn1Kr8z XI+JHzZP7+QESclNQVThA2Vxk5e09gGDZzk2nSWxzlfK5liot4p9lq4kxFUEgBYm aP+XHPtxK6j+RsCBmJPLovAhaNx+X3b2VrIOx7yVN1IweHf4Di7FGk7zLj70wbH4 VFUqZXUSFGLF7EI/w+1nYWIMdgAjRvpKVNw5DRhkzZCx/ZGDtwVo9XQTcTYqbo4K iQzS -----END CERTIFICATE-----Generated at Sat Dec 6 14:57:37 2025 by rpki-client