This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/86788001-2d2c-41b3-aade-12042b8560bb.roa File: 86788001-2d2c-41b3-aade-12042b8560bb.roa (raw, json) Hash identifier: +valDokEcGFQqnDTI8XZhOy8adaHHTp5N0/jw2GMsRA= Subject key identifier: E8:A8:C4:03:A7:A2:B9:B6:EC:CC:7C:02:FE:67:95:B1:E4:27:09:A8 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 372AC82DB60E7F81ABE3890DBAF163D1DBD2360E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/86788001-2d2c-41b3-aade-12042b8560bb.roa Signing time: Wed 26 Nov 2025 00:00:53 +0000 ROA not before: Wed 26 Nov 2025 00:00:53 +0000 ROA not after: Tue 24 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf4:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:2a:c8:2d:b6:0e:7f:81:ab:e3:89:0d:ba:f1:63:d1:db:d2:36:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 26 00:00:53 2025 GMT Not After : Feb 24 23:59:59 2026 GMT Subject: serialNumber=1d9d2e58b0bea2265ff15e2c661b96829a00599e5656da3883bddce05f08df6a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:70:ce:c0:44:21:59:9d:95:ef:60:18:90:80: 1c:d9:6f:e7:ba:c9:60:35:9c:81:fc:85:bd:fe:0a: e1:4f:2a:c3:98:5d:87:6e:fa:05:9b:2e:10:c7:c5: 9b:3e:83:71:bf:6a:7f:e2:df:0d:c5:7a:91:44:85: f9:f3:e9:80:09:d7:35:1f:dd:6d:24:52:95:fd:28: 54:1f:22:e9:57:9d:c2:ba:56:8b:dc:9a:8b:b7:ba: d0:d5:86:bf:f5:9d:93:1b:8d:47:0e:1b:94:2e:5c: 8b:34:5f:8b:7d:11:ec:c4:58:41:c2:f8:d0:9a:94: ad:0a:c8:e7:35:07:d8:06:ef:dc:ec:b6:ca:d9:d6: 03:e9:cd:55:8c:83:9e:24:06:f5:a9:08:6e:88:59: 66:d8:1f:ea:96:d8:19:2c:0a:2c:e5:a7:de:3f:61: d0:43:4e:71:a9:c3:f5:2d:fd:cb:38:82:4a:0b:b0: c9:9c:f3:af:10:6d:3d:78:b8:5b:9c:65:09:97:1c: 6f:25:4c:03:11:cf:0f:7f:c2:8b:15:7d:66:92:ba: 28:53:b6:e4:5e:3d:94:af:7a:a7:51:9b:08:d7:4b: 24:e9:92:30:3b:a1:f4:ca:49:fe:52:a5:1c:1a:85: 9b:bf:5f:2c:b0:3a:90:09:32:12:0f:b5:62:a6:11: db:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:A8:C4:03:A7:A2:B9:B6:EC:CC:7C:02:FE:67:95:B1:E4:27:09:A8 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/86788001-2d2c-41b3-aade-12042b8560bb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf4:6000::/40 Signature Algorithm: sha256WithRSAEncryption 01:d0:fa:5a:49:c5:ce:4c:11:dd:b4:f2:dd:8e:9b:49:ed:29: 1f:4c:a0:b9:07:1b:11:c5:8a:17:5a:c9:dd:7b:07:ad:df:06: 46:74:6c:fd:54:a8:d3:33:d8:d7:33:9e:b9:15:e6:a4:ff:fc: 15:43:ea:9c:3c:cb:2a:56:4d:1c:03:bb:c2:e1:c8:17:5e:25: 42:46:03:98:13:ce:dc:f5:ee:ee:a9:73:85:91:08:3d:f2:c2: 10:c5:c4:43:10:7a:d6:44:87:37:e1:63:50:0b:8d:d5:7e:7f: 12:05:05:25:9d:f5:bb:10:0f:2d:15:63:e5:f9:58:0d:ff:97: 88:78:9a:75:0a:ca:38:a6:f3:a5:2a:03:f5:85:2e:b4:b9:f6: 25:e8:e0:2c:33:ca:6b:6a:14:e7:74:61:4f:12:14:3c:5e:ef: 44:65:b9:55:af:fe:78:e1:52:bf:05:51:68:ed:4c:fc:bc:97: b2:78:a0:01:a2:93:2a:01:8e:a8:aa:b5:57:f2:b2:b3:9e:99: 54:26:89:67:f6:ed:4f:34:dd:71:46:e1:87:cc:eb:6a:ee:2b: f6:0d:da:4d:2a:a9:0b:26:98:e0:99:9f:28:4a:a5:fa:73:a7: e9:d9:65:b9:b8:45:fb:d0:fe:cc:e8:32:8f:50:42:d4:10:6a: 4f:25:03:77 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUNyrILbYOf4Gr44kNuvFj0dvSNg4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyNjAwMDA1M1oX DTI2MDIyNDIzNTk1OVowejFJMEcGA1UEBRNAMWQ5ZDJlNThiMGJlYTIyNjVmZjE1 ZTJjNjYxYjk2ODI5YTAwNTk5ZTU2NTZkYTM4ODNiZGRjZTA1ZjA4ZGY2YTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwXDOwEQhWZ2V72AYkIAc2W/nuslg NZyB/IW9/grhTyrDmF2HbvoFmy4Qx8WbPoNxv2p/4t8NxXqRRIX58+mACdc1H91t JFKV/ShUHyLpV53CulaL3JqLt7rQ1Ya/9Z2TG41HDhuULlyLNF+LfRHsxFhBwvjQ mpStCsjnNQfYBu/c7LbK2dYD6c1VjIOeJAb1qQhuiFlm2B/qltgZLAos5afeP2HQ Q05xqcP1Lf3LOIJKC7DJnPOvEG09eLhbnGUJlxxvJUwDEc8Pf8KLFX1mkrooU7bk Xj2Ur3qnUZsI10sk6ZIwO6H0ykn+UqUcGoWbv18ssDqQCTISD7ViphHbyQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFOioxAOnorm27Mx8Av5nlbHkJwmoMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzg2Nzg4MDAxLTJkMmMtNDFiMy1hYWRlLTEyMDQyYjg1NjBiYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9GAwDQYJKoZIhvcNAQELBQADggEBAAHQ+lpJxc5MEd208t2O m0ntKR9MoLkHGxHFihdayd17B63fBkZ0bP1UqNMz2NcznrkV5qT//BVD6pw8yypW TRwDu8LhyBdeJUJGA5gTztz17u6pc4WRCD3ywhDFxEMQetZEhzfhY1ALjdV+fxIF BSWd9bsQDy0VY+X5WA3/l4h4mnUKyjim86UqA/WFLrS59iXo4CwzymtqFOd0YU8S FDxe70RluVWv/njhUr8FUWjtTPy8l7J4oAGikyoBjqiqtVfysrOemVQmiWf27U80 3XFG4YfM62ruK/YN2k0qqQsmmOCZnyhKpfpzp+nZZbm4RfvQ/szoMo9QQtQQak8l A3c= -----END CERTIFICATE-----Generated at Sat Dec 6 17:54:13 2025 by rpki-client