This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7d2bce7b-37e2-4787-95fb-0e0d01dbc543.roa File: 7d2bce7b-37e2-4787-95fb-0e0d01dbc543.roa (raw, json) Hash identifier: kjIDkHM3kXNAYTg2lxsdmX9ov5oTtcVXU8seVeZTWds= Subject key identifier: AE:EF:BF:FC:5B:5B:4A:E4:69:EC:98:22:28:FD:7E:60:24:C2:4C:B4 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 760E5A545D7A74416BCDB0CF0E0A485A0358451E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7d2bce7b-37e2-4787-95fb-0e0d01dbc543.roa Signing time: Tue 02 Dec 2025 00:30:13 +0000 ROA not before: Tue 02 Dec 2025 00:30:13 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:80a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:0e:5a:54:5d:7a:74:41:6b:cd:b0:cf:0e:0a:48:5a:03:58:45:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 2 00:30:13 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=851c583635e49805e7a9fd65f12421a077b7ee0ad84815dc1d3882fd1892799e, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:f7:19:0c:62:fb:0f:84:0c:ab:a5:2a:01:95: 02:46:da:f3:37:9b:46:3b:9f:6b:6e:dc:38:f0:bd: e2:ec:e5:61:ee:de:ab:43:e8:3b:a1:84:2c:7f:ab: 9e:56:b4:61:e3:4b:fe:92:da:07:a0:55:2f:40:6f: dd:52:f8:66:d5:f7:6e:9b:a0:8e:55:6b:84:61:7d: d2:c7:89:a1:08:6d:08:85:1a:6c:7f:df:0c:6f:a3: 7d:cd:f4:c9:fd:f9:e2:2f:06:06:f8:1f:43:ac:1e: a2:df:ca:31:2f:e2:d4:d6:bc:e6:92:fd:de:54:6b: 9b:9a:15:4f:a3:13:22:ca:57:7b:8a:8b:ca:6c:f2: 7f:71:bc:04:c8:11:32:6e:c9:39:9d:4a:e6:aa:7b: f5:54:d2:97:ab:e3:6c:c0:7b:18:d7:e8:49:5e:5b: b1:d5:83:cb:a7:db:e3:6a:4e:a5:42:de:14:90:99: 09:ef:4c:04:22:ce:84:7e:1e:fe:96:52:97:b9:01: 89:34:53:8a:2c:b9:95:fc:a7:47:c6:c4:62:1f:2b: be:05:a6:2a:45:e1:e3:6b:14:34:cd:9f:fe:de:38: 0a:88:20:ea:46:01:ee:a6:47:62:fd:66:ba:c2:89: 88:ea:76:59:e7:cb:c4:d9:75:a3:31:0f:b0:dc:fc: 07:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:EF:BF:FC:5B:5B:4A:E4:69:EC:98:22:28:FD:7E:60:24:C2:4C:B4 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7d2bce7b-37e2-4787-95fb-0e0d01dbc543.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:80a0::/48 Signature Algorithm: sha256WithRSAEncryption 10:ef:d5:34:29:91:f3:79:60:23:62:12:d8:8a:91:b1:3e:8a: 02:30:c0:c9:69:52:7c:11:4e:8f:74:e9:03:b2:94:96:b3:a6: 59:1a:3a:0d:ea:ed:6a:e7:c0:2c:d8:26:73:43:d5:47:9f:24: cb:64:3e:4f:5d:1b:54:d9:58:25:fb:43:45:31:3e:96:f3:e4: 35:3d:57:79:14:a4:ff:61:03:f5:54:f5:5f:d4:1d:72:3a:8d: 30:f0:8d:70:14:8f:2b:c8:ae:3b:14:f9:63:eb:93:b6:e9:c5: 5c:41:b1:8c:b1:ee:22:3d:bd:17:11:8d:db:ca:8d:9c:03:bf: 73:60:23:11:2a:58:e1:1d:10:0e:73:ab:0b:ef:9a:91:42:78: ab:4b:54:ca:93:2d:6f:a4:78:ec:bf:58:05:34:bb:bb:6c:09: f6:d8:1c:dc:8d:f1:a4:d6:44:a1:35:c8:52:ed:35:35:e4:6c: 0e:af:73:35:66:b7:5e:d8:b2:f5:5c:bf:96:96:69:a6:a9:ba: 66:a9:84:b8:d2:50:b7:26:67:b3:15:7b:f7:1e:4b:d4:4a:38: cb:30:b2:ae:d1:35:25:33:8b:2d:ec:6c:eb:d1:98:d2:47:b8: d7:df:9d:9b:6d:ef:99:39:e3:e0:16:29:47:db:46:7b:b5:8c: 90:02:a5:0e -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUdg5aVF16dEFrzbDPDgpIWgNYRR4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMjAwMzAxM1oX DTI2MDMwMjIzNTk1OVowejFJMEcGA1UEBRNAODUxYzU4MzYzNWU0OTgwNWU3YTlm ZDY1ZjEyNDIxYTA3N2I3ZWUwYWQ4NDgxNWRjMWQzODgyZmQxODkyNzk5ZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlvcZDGL7D4QMq6UqAZUCRtrzN5tG O59rbtw48L3i7OVh7t6rQ+g7oYQsf6ueVrRh40v+ktoHoFUvQG/dUvhm1fdum6CO VWuEYX3Sx4mhCG0IhRpsf98Mb6N9zfTJ/fniLwYG+B9DrB6i38oxL+LU1rzmkv3e VGubmhVPoxMiyld7iovKbPJ/cbwEyBEybsk5nUrmqnv1VNKXq+NswHsY1+hJXlux 1YPLp9vjak6lQt4UkJkJ70wEIs6Efh7+llKXuQGJNFOKLLmV/KdHxsRiHyu+BaYq ReHjaxQ0zZ/+3jgKiCDqRgHupkdi/Wa6womI6nZZ58vE2XWjMQ+w3PwHAQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFK7vv/xbW0rkaeyYIij9fmAkwky0MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdkMmJjZTdiLTM3ZTItNDc4Ny05NWZiLTBlMGQwMWRiYzU0My5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/4CgMA0GCSqGSIb3DQEBCwUAA4IBAQAQ79U0KZHzeWAjYhLY ipGxPooCMMDJaVJ8EU6PdOkDspSWs6ZZGjoN6u1q58As2CZzQ9VHnyTLZD5PXRtU 2Vgl+0NFMT6W8+Q1PVd5FKT/YQP1VPVf1B1yOo0w8I1wFI8ryK47FPlj65O26cVc QbGMse4iPb0XEY3byo2cA79zYCMRKljhHRAOc6sL75qRQnirS1TKky1vpHjsv1gF NLu7bAn22BzcjfGk1kShNchS7TU15GwOr3M1Zrde2LL1XL+WlmmmqbpmqYS40lC3 JmezFXv3HkvUSjjLMLKu0TUlM4st7Gzr0ZjSR7jX352bbe+ZOePgFilH20Z7tYyQ AqUO -----END CERTIFICATE-----Generated at Sat Dec 6 12:05:21 2025 by rpki-client