This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8b7cd613-3f52-4755-9c7b-f7e5f07b4ff6.roa File: 8b7cd613-3f52-4755-9c7b-f7e5f07b4ff6.roa (raw, json) Hash identifier: l80+tcvp+1tGxPsBUCHHxmp4Nz2j7b6hah+t8MgBSyE= Subject key identifier: 4A:DA:D4:B2:46:EE:4F:F5:9A:EC:4F:D0:F0:29:91:39:74:2E:F7:96 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3146C7B86739789DACF5930D4E70064202A3CA97 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8b7cd613-3f52-4755-9c7b-f7e5f07b4ff6.roa Signing time: Sun 23 Nov 2025 00:00:07 +0000 ROA not before: Sun 23 Nov 2025 00:00:07 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daea:4840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:46:c7:b8:67:39:78:9d:ac:f5:93:0d:4e:70:06:42:02:a3:ca:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 23 00:00:07 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=216ebc922865b05e3ccfb4deb9ed1e28043943c3b321fe680322a3a074183ce8, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ee:7c:08:a9:b7:6d:c5:ff:7e:ee:64:59:b4: cc:0e:27:b5:27:77:b9:dd:da:a7:1b:a7:fe:30:b9: 97:ba:c9:72:be:62:df:9d:e4:41:ed:01:ac:aa:28: 54:bf:cb:de:82:33:46:65:68:a4:45:35:5a:b3:3f: 3a:cd:a7:3f:21:3e:3b:4b:a5:98:2a:40:b4:b8:13: bc:00:27:42:28:33:fc:04:93:6a:1c:e2:83:8c:86: 99:8a:b3:db:8f:2f:26:26:c0:33:53:c1:c3:06:81: 90:b0:80:b1:37:d8:4a:81:95:bf:fe:d1:17:25:96: 24:7f:2a:88:8c:60:ad:6d:e8:44:3a:2b:dd:5d:af: 48:01:db:1f:c9:8b:71:ce:04:a4:96:22:be:99:3c: a4:5e:28:c7:c2:fe:2d:2f:ce:a6:4a:3c:54:2f:fe: 99:c9:e1:ec:4e:ae:f1:b5:e3:ae:57:68:ed:58:2f: 5d:67:a1:52:ff:7f:3a:a5:39:e1:14:05:ab:13:dd: 2b:3a:a9:88:25:8b:0e:fc:48:5a:89:33:f3:2d:37: 69:1e:76:11:47:42:a8:f3:6f:eb:69:16:0b:fc:90: e1:d6:7a:8c:a5:3e:86:20:96:7f:cf:0b:15:64:c6: c8:1d:72:f1:8c:b8:7d:e7:bf:9a:ea:54:41:e8:58: 6e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:DA:D4:B2:46:EE:4F:F5:9A:EC:4F:D0:F0:29:91:39:74:2E:F7:96 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8b7cd613-3f52-4755-9c7b-f7e5f07b4ff6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daea:4840::/48 Signature Algorithm: sha256WithRSAEncryption 6d:5e:83:2e:6a:f1:e6:af:6e:b1:db:15:a1:cf:1a:0d:2d:75: 03:4d:4f:2c:25:8a:92:4c:6d:ef:72:55:af:ba:11:f8:f6:83: 3f:b6:ea:08:d1:dc:71:f7:c3:4c:83:77:5c:56:4a:72:63:db: 8d:f9:55:5d:11:5b:4d:b4:5b:74:0b:23:c6:32:49:dd:55:ec: 7a:f1:84:02:70:22:95:e7:5c:bc:2d:f8:c5:5b:7f:4f:e5:f2: 71:1f:78:9f:14:36:40:05:33:6c:f8:d7:83:8f:18:19:d8:ab: 4e:e9:4c:49:14:80:79:7f:32:d7:8a:3e:a0:67:26:37:91:01: 6f:dc:37:d8:7c:dd:75:86:c6:bc:e3:3e:e0:e2:24:86:31:b3: 8a:e1:a0:a2:a9:4f:31:e2:72:da:fe:9d:f2:54:eb:af:85:f8: 72:3e:8f:39:0d:0e:d2:8d:1c:44:0a:36:69:bc:82:b1:18:a1: bc:1e:a7:66:28:af:0f:92:fe:98:42:10:16:42:f5:07:4d:ac: b9:e4:ed:9f:1b:90:e7:e2:89:61:84:cd:c0:cf:e9:43:7d:49: 79:f0:9c:1c:ac:9a:f3:e8:d6:0a:3b:0f:d5:d4:ca:d3:b9:c0: d4:7e:ac:10:be:d5:92:53:02:e5:cb:a1:2b:ec:b3:c1:24:17: 69:57:53:9c -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUMUbHuGc5eJ2s9ZMNTnAGQgKjypcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyMzAwMDAwN1oX DTI2MDIyMTIzNTk1OVowejFJMEcGA1UEBRNAMjE2ZWJjOTIyODY1YjA1ZTNjY2Zi NGRlYjllZDFlMjgwNDM5NDNjM2IzMjFmZTY4MDMyMmEzYTA3NDE4M2NlODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtu58CKm3bcX/fu5kWbTMDie1J3e5 3dqnG6f+MLmXuslyvmLfneRB7QGsqihUv8vegjNGZWikRTVasz86zac/IT47S6WY KkC0uBO8ACdCKDP8BJNqHOKDjIaZirPbjy8mJsAzU8HDBoGQsICxN9hKgZW//tEX JZYkfyqIjGCtbehEOivdXa9IAdsfyYtxzgSkliK+mTykXijHwv4tL86mSjxUL/6Z yeHsTq7xteOuV2jtWC9dZ6FS/386pTnhFAWrE90rOqmIJYsO/EhaiTPzLTdpHnYR R0Ko82/raRYL/JDh1nqMpT6GIJZ/zwsVZMbIHXLxjLh957+a6lRB6FhuNwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFEra1LJG7k/1muxP0PApkTl0LveWMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzhiN2NkNjEzLTNmNTItNDc1NS05YzdiLWY3ZTVmMDdiNGZmNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba6khAMA0GCSqGSIb3DQEBCwUAA4IBAQBtXoMuavHmr26x2xWh zxoNLXUDTU8sJYqSTG3vclWvuhH49oM/tuoI0dxx98NMg3dcVkpyY9uN+VVdEVtN tFt0CyPGMkndVex68YQCcCKV51y8LfjFW39P5fJxH3ifFDZABTNs+NeDjxgZ2KtO 6UxJFIB5fzLXij6gZyY3kQFv3DfYfN11hsa84z7g4iSGMbOK4aCiqU8x4nLa/p3y VOuvhfhyPo85DQ7SjRxECjZpvIKxGKG8HqdmKK8Pkv6YQhAWQvUHTay55O2fG5Dn 4olhhM3Az+lDfUl58JwcrJrz6NYKOw/V1MrTucDUfqwQvtWSUwLly6Er7LPBJBdp V1Oc -----END CERTIFICATE-----Generated at Sat Dec 6 09:48:55 2025 by rpki-client