This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8c6b3e2f-c441-4d2e-a3fb-511aebd72aa2.roa File: 8c6b3e2f-c441-4d2e-a3fb-511aebd72aa2.roa (raw, json) Hash identifier: 9LltmzdIuvrJ75FlkxNWZxxvhQh/9BVpB3ogmuR+Wo8= Subject key identifier: DE:2A:9A:AE:FD:99:98:D4:57:2F:20:DC:78:8E:4D:C9:92:3F:60:79 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 2C1681B7022D6CF931845647BF4674DB389539BE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8c6b3e2f-c441-4d2e-a3fb-511aebd72aa2.roa Signing time: Tue 02 Dec 2025 00:30:47 +0000 ROA not before: Tue 02 Dec 2025 00:30:47 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:2040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:16:81:b7:02:2d:6c:f9:31:84:56:47:bf:46:74:db:38:95:39:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 2 00:30:47 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=c1afe54f718e2b9de68504a64807d4365b26c356dfce48d276f01c15ae8daa36, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:14:ef:85:d3:75:f0:ad:20:cc:0a:b5:9b:eb: b0:a6:a6:13:bb:0a:49:2e:3c:61:0c:e8:74:06:8b: d6:68:e6:1f:c7:69:46:2f:5f:b8:9a:46:93:68:5b: 62:b4:aa:19:fc:b6:63:9e:bb:a4:84:69:d0:b5:71: 9d:4c:7f:05:87:7e:dc:62:cf:11:c4:c6:de:c7:0b: 68:13:98:5c:bf:70:62:87:af:dd:3e:40:31:07:67: de:8b:7c:04:a9:1b:9d:96:28:33:87:0e:ea:0e:15: 0f:25:a6:97:a4:a2:be:6e:36:7b:83:d4:c4:62:ae: 79:9b:9e:09:de:44:b8:a7:c3:cb:e4:79:6f:8a:4c: 0b:3b:0e:68:8c:3c:81:1e:c7:c7:aa:e7:48:8e:1f: 4e:19:00:33:a2:2d:a0:93:cc:26:57:2f:53:52:68: be:ad:91:af:57:fd:ab:e2:b5:69:6a:8d:fc:31:45: 4b:b1:39:ef:ca:c7:31:be:eb:92:b3:f7:05:cc:c2: 7d:f6:3b:5e:45:64:6b:06:80:c6:4b:41:f0:79:83: 88:10:d5:2d:1e:04:6d:14:65:39:10:c7:42:31:8b: 82:a6:ae:20:a5:07:8d:e7:93:e6:eb:95:16:af:87: 9b:ea:55:c6:41:8a:96:af:d0:d1:c3:bc:00:63:2c: f8:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:2A:9A:AE:FD:99:98:D4:57:2F:20:DC:78:8E:4D:C9:92:3F:60:79 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8c6b3e2f-c441-4d2e-a3fb-511aebd72aa2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:2040::/48 Signature Algorithm: sha256WithRSAEncryption 80:16:52:1b:a3:98:d4:c5:e8:6f:21:c9:dd:00:22:c5:44:2f: 40:12:12:ed:1a:84:3a:6d:29:eb:db:b4:77:a7:f6:a0:c2:a7: 4c:72:8f:5f:d6:32:05:60:1d:08:f6:79:83:5c:fb:66:f6:61: 52:7d:81:60:a7:c1:44:27:9a:59:44:2a:80:ba:9c:a9:a3:d1: 31:45:3b:d0:b0:bf:3f:36:72:55:c3:c3:77:c8:36:73:5f:93: eb:c9:b2:81:cf:c7:56:f8:69:c6:31:47:1a:29:3f:5a:8d:a6: 47:e2:b2:b2:d8:78:4f:65:97:02:fc:69:47:2d:8f:3d:f3:d8: 50:a4:64:7f:b7:6d:eb:7e:95:fd:c3:78:82:28:7f:17:92:d0: f3:6e:24:d1:8d:b0:00:72:0a:b8:77:0c:43:00:b3:31:20:f1: 0a:f1:8d:11:dd:89:3b:1a:a2:7d:87:91:8e:21:55:5e:bc:99: e4:03:6d:7d:41:2f:67:ef:3d:d6:9b:7a:10:54:fe:0e:82:17: c9:bb:89:09:dd:d7:3e:e4:97:e0:e6:a9:cc:37:81:a3:30:2d: ab:87:78:74:31:3e:42:82:e9:f4:e9:dd:59:56:0a:b8:d4:57: 66:e4:71:5e:ed:79:30:3b:a3:08:67:9f:6d:19:05:d1:49:a8: 5b:6a:8b:8c -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIULBaBtwItbPkxhFZHv0Z02ziVOb4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMjAwMzA0N1oX DTI2MDMwMjIzNTk1OVowejFJMEcGA1UEBRNAYzFhZmU1NGY3MThlMmI5ZGU2ODUw NGE2NDgwN2Q0MzY1YjI2YzM1NmRmY2U0OGQyNzZmMDFjMTVhZThkYWEzNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0RTvhdN18K0gzAq1m+uwpqYTuwpJ LjxhDOh0BovWaOYfx2lGL1+4mkaTaFtitKoZ/LZjnrukhGnQtXGdTH8Fh37cYs8R xMbexwtoE5hcv3Bih6/dPkAxB2fei3wEqRudligzhw7qDhUPJaaXpKK+bjZ7g9TE Yq55m54J3kS4p8PL5HlvikwLOw5ojDyBHsfHqudIjh9OGQAzoi2gk8wmVy9TUmi+ rZGvV/2r4rVpao38MUVLsTnvyscxvuuSs/cFzMJ99jteRWRrBoDGS0HweYOIENUt HgRtFGU5EMdCMYuCpq4gpQeN55Pm65UWr4eb6lXGQYqWr9DRw7wAYyz4MQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFN4qmq79mZjUVy8g3HiOTcmSP2B5MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzhjNmIzZTJmLWM0NDEtNGQyZS1hM2ZiLTUxMWFlYmQ3MmFhMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/yBAMA0GCSqGSIb3DQEBCwUAA4IBAQCAFlIbo5jUxehvIcnd ACLFRC9AEhLtGoQ6bSnr27R3p/agwqdMco9f1jIFYB0I9nmDXPtm9mFSfYFgp8FE J5pZRCqAupypo9ExRTvQsL8/NnJVw8N3yDZzX5PrybKBz8dW+GnGMUcaKT9ajaZH 4rKy2HhPZZcC/GlHLY8989hQpGR/t23rfpX9w3iCKH8XktDzbiTRjbAAcgq4dwxD ALMxIPEK8Y0R3Yk7GqJ9h5GOIVVevJnkA219QS9n7z3Wm3oQVP4OghfJu4kJ3dc+ 5Jfg5qnMN4GjMC2rh3h0MT5Cgun06d1ZVgq41Fdm5HFe7XkwO6MIZ59tGQXRSahb aouM -----END CERTIFICATE-----Generated at Sat Dec 6 10:56:37 2025 by rpki-client