This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8fde959c-9c92-44e8-be7c-6f1ecd1985b2.roa File: 8fde959c-9c92-44e8-be7c-6f1ecd1985b2.roa (raw, json) Hash identifier: 3xlGH3YcTYdnetZWFMHD2qGm0AskzcNuKiOopaQRSpo= Subject key identifier: 9F:19:54:3A:F9:68:6D:CD:E9:2D:25:9B:F6:B0:F9:E6:7A:30:B0:B3 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5AD90EED91C2BD9ECA1CFA0134323EBE8DD141F1 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8fde959c-9c92-44e8-be7c-6f1ecd1985b2.roa Signing time: Wed 03 Dec 2025 00:01:31 +0000 ROA not before: Wed 03 Dec 2025 00:01:31 +0000 ROA not after: Tue 03 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafb:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:d9:0e:ed:91:c2:bd:9e:ca:1c:fa:01:34:32:3e:be:8d:d1:41:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 3 00:01:31 2025 GMT Not After : Mar 3 23:59:59 2026 GMT Subject: serialNumber=ca06c39b590a69a80a2b1f6e40796d55298c3358965b91d851b11f772c04acbc, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a4:61:1a:98:19:44:2e:5d:07:e7:30:f4:de: 96:b7:1d:27:19:8f:0a:a7:60:bb:ce:58:6c:6e:ec: da:88:7c:6b:72:63:17:1a:5a:ee:03:eb:aa:6d:e3: f1:49:fe:41:63:50:04:46:92:fc:25:9e:47:05:ae: f2:e8:45:8c:36:bf:02:f0:42:43:51:8f:ae:d1:7d: 33:e1:d4:f1:ba:3e:e4:37:16:6a:10:30:44:19:2c: 38:92:9c:fe:c4:ed:9a:ed:33:bd:40:35:33:3f:35: 8b:66:a2:1f:6d:ce:98:5d:22:e9:8e:64:50:b2:ec: fe:e2:e2:58:80:6b:15:e4:aa:ba:6f:04:a9:77:52: 85:a4:fe:88:09:98:18:49:94:16:8b:c2:c1:85:e0: 9e:f4:e0:3e:27:d6:8f:b8:25:2b:8c:24:62:33:67: 3f:0b:4a:6d:cb:b3:f6:ab:e7:33:6f:83:c9:13:f4: 1b:e7:bb:b2:eb:3a:9a:c3:2c:16:c6:ff:85:40:1b: c9:31:3e:04:45:d4:73:4c:be:13:c4:3b:45:32:31: c2:26:2e:f2:c4:60:fb:6b:19:41:a8:df:e2:3e:63: 63:07:ae:e7:59:2b:51:94:12:61:d2:5c:61:a2:48: f8:32:75:e8:68:06:40:f2:b5:4d:74:e7:1c:4e:84: c9:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:19:54:3A:F9:68:6D:CD:E9:2D:25:9B:F6:B0:F9:E6:7A:30:B0:B3 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8fde959c-9c92-44e8-be7c-6f1ecd1985b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafb:9000::/40 Signature Algorithm: sha256WithRSAEncryption 64:78:d1:0a:80:69:fc:da:18:71:28:92:06:e2:3f:ee:0a:9e: 19:38:bc:a5:33:b7:da:cf:b3:5d:a7:b5:7f:4b:b5:1c:5c:46: 7a:16:51:16:fb:a3:10:bb:da:90:97:6e:5b:a3:ea:36:49:79: 46:1e:03:68:75:fb:8f:03:e8:d9:4c:be:77:de:3b:05:34:37: fa:be:a6:22:f3:2a:16:15:f1:42:79:29:c4:cb:6b:4e:62:8e: 1d:36:89:6c:89:31:a5:16:ef:f7:dc:86:08:92:a3:e4:61:4a: d6:76:3e:8f:e0:1f:b3:f0:cf:01:12:7f:f6:1d:6f:ac:a3:4b: a5:95:59:c5:40:e9:f3:7c:cd:8d:87:36:23:ed:80:b1:fa:57: 34:9d:e5:3d:24:c8:39:20:2e:7c:17:79:13:8e:10:2a:59:eb: 5e:f3:c9:3f:a2:38:88:fc:4c:f9:6b:b2:44:be:14:0f:6a:15: af:e8:10:04:f7:a1:99:ef:66:f7:ed:6e:9e:40:2a:85:e2:7b: a4:d0:f2:3e:b7:26:d5:cc:df:79:4c:30:99:a5:d7:6b:df:39: 88:57:44:86:5e:08:4f:b5:a2:36:9a:35:79:f6:c1:8e:51:b5: 9d:ae:4c:d0:db:80:f1:c4:ad:2e:31:d1:f2:39:e9:fd:b5:50: 25:91:48:3a -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUWtkO7ZHCvZ7KHPoBNDI+vo3RQfEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMzAwMDEzMVoX DTI2MDMwMzIzNTk1OVowejFJMEcGA1UEBRNAY2EwNmMzOWI1OTBhNjlhODBhMmIx ZjZlNDA3OTZkNTUyOThjMzM1ODk2NWI5MWQ4NTFiMTFmNzcyYzA0YWNiYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArKRhGpgZRC5dB+cw9N6Wtx0nGY8K p2C7zlhsbuzaiHxrcmMXGlruA+uqbePxSf5BY1AERpL8JZ5HBa7y6EWMNr8C8EJD UY+u0X0z4dTxuj7kNxZqEDBEGSw4kpz+xO2a7TO9QDUzPzWLZqIfbc6YXSLpjmRQ suz+4uJYgGsV5Kq6bwSpd1KFpP6ICZgYSZQWi8LBheCe9OA+J9aPuCUrjCRiM2c/ C0pty7P2q+czb4PJE/Qb57uy6zqawywWxv+FQBvJMT4ERdRzTL4TxDtFMjHCJi7y xGD7axlBqN/iPmNjB67nWStRlBJh0lxhokj4MnXoaAZA8rVNdOccToTJVQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJ8ZVDr5aG3N6S0lm/aw+eZ6MLCzMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzhmZGU5NTljLTljOTItNDRlOC1iZTdjLTZmMWVjZDE5ODViMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba+5AwDQYJKoZIhvcNAQELBQADggEBAGR40QqAafzaGHEokgbi P+4Knhk4vKUzt9rPs12ntX9LtRxcRnoWURb7oxC72pCXbluj6jZJeUYeA2h1+48D 6NlMvnfeOwU0N/q+piLzKhYV8UJ5KcTLa05ijh02iWyJMaUW7/fchgiSo+RhStZ2 Po/gH7PwzwESf/Ydb6yjS6WVWcVA6fN8zY2HNiPtgLH6VzSd5T0kyDkgLnwXeROO ECpZ617zyT+iOIj8TPlrskS+FA9qFa/oEAT3oZnvZvftbp5AKoXie6TQ8j63JtXM 33lMMJml12vfOYhXRIZeCE+1ojaaNXn2wY5RtZ2uTNDbgPHErS4x0fI56f21UCWR SDo= -----END CERTIFICATE-----Generated at Sat Dec 6 09:52:27 2025 by rpki-client