This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9066b298-522a-482d-91c6-4b7ad82c743d.roa File: 9066b298-522a-482d-91c6-4b7ad82c743d.roa (raw, json) Hash identifier: wC/sXzjOzDznpAZ1EolnRByylcSdcDFHuE96t/9pz4A= Subject key identifier: 87:73:3C:15:2D:9C:02:8A:6C:B7:C6:A1:66:8B:8E:4C:E6:BB:C0:1B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 2D293CD08F131E3910921CBF99339EC377EADB62 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9066b298-522a-482d-91c6-4b7ad82c743d.roa Signing time: Wed 03 Dec 2025 00:01:09 +0000 ROA not before: Wed 03 Dec 2025 00:01:09 +0000 ROA not after: Tue 03 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:29:3c:d0:8f:13:1e:39:10:92:1c:bf:99:33:9e:c3:77:ea:db:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 3 00:01:09 2025 GMT Not After : Mar 3 23:59:59 2026 GMT Subject: serialNumber=c53740d79dba4dee818e9412543d719bbadc9f3fdd17e1eba1c83afed78aa17b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d9:e9:d9:c8:bf:65:7e:7e:6c:7e:f7:0b:e3: 03:db:d7:52:72:95:53:5d:21:b5:ae:b5:21:10:c0: 36:ed:f4:09:27:23:f4:25:9c:51:d9:25:df:3e:d3: ad:dc:88:b9:38:7b:e8:37:f7:a9:91:a6:30:0c:bd: a4:a1:3f:9c:15:5e:2a:57:02:c5:d1:07:a8:c4:46: a0:65:77:30:fe:c7:c7:73:77:33:50:6e:51:b1:9c: 42:a0:15:6e:b4:f4:3f:14:c0:c8:f4:86:36:0e:48: 98:68:e7:5f:a3:2f:ab:04:70:7d:db:ab:d4:1f:9c: a9:1c:ba:e0:0e:a5:1e:96:a5:70:ea:5b:2d:ec:b0: 06:cf:b8:eb:2d:17:77:8f:2f:f2:92:fc:6a:2d:58: aa:49:20:42:27:44:b7:5d:96:d4:23:88:8f:ca:5f: 05:8a:89:a8:47:dc:41:ca:40:cf:d8:93:90:01:5a: fa:8c:37:82:66:c6:09:da:c5:1b:a6:96:72:3e:07: ad:a2:b2:98:7e:d6:92:a4:d1:fc:9b:53:c4:f0:43: 84:fd:21:43:13:ca:29:74:80:ce:76:fb:47:a4:34: 60:04:f9:11:e6:41:4d:a8:0d:96:89:4a:f1:26:07: 7d:d3:e3:3b:6d:79:86:a8:fe:63:75:82:43:ad:76: d2:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:73:3C:15:2D:9C:02:8A:6C:B7:C6:A1:66:8B:8E:4C:E6:BB:C0:1B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9066b298-522a-482d-91c6-4b7ad82c743d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:800::/40 Signature Algorithm: sha256WithRSAEncryption 67:27:95:dd:e6:20:25:dc:51:08:d2:b9:c6:bd:af:d9:98:75: a0:a8:bc:5b:c5:b2:64:36:80:59:a6:d9:77:55:e1:51:24:66: bf:da:c0:02:4d:a2:34:2e:b1:21:2c:c6:a9:1d:6a:31:0b:4a: d4:f4:08:f7:96:e2:4e:4b:07:ed:61:b7:90:1e:b2:80:55:41: bc:c2:77:e2:07:2c:10:07:b0:e5:ef:62:ec:1b:aa:91:60:36: 2c:7c:7d:b4:86:84:7b:ba:fa:d8:15:94:97:b3:c2:8a:2f:57: 9a:41:9b:74:13:8d:e5:4a:2b:dd:90:4c:cd:b2:3b:5a:7d:18: 4c:02:42:3a:2b:50:1e:f7:a7:c4:e6:2d:2e:9d:9c:1b:18:de: 7a:65:01:09:48:5e:5b:77:08:10:50:2d:13:fa:77:9c:d5:39: 8b:7e:86:da:d0:cf:53:8f:28:a5:51:ae:81:bc:3b:0b:86:02: 81:a2:e7:93:c4:7d:bd:e4:d1:04:d0:49:15:f1:4d:10:5c:f1: 2c:44:e0:1f:80:5f:50:65:a3:8b:e0:f5:bd:cf:b7:d5:99:ab: 9b:ab:18:9e:25:f2:2d:cd:bc:df:04:8b:e3:24:b8:8c:19:f9: 41:ac:17:7c:a2:b2:f8:58:7d:6f:eb:15:54:7a:94:5d:07:1d: e2:48:56:1a -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIULSk80I8THjkQkhy/mTOew3fq22IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMzAwMDEwOVoX DTI2MDMwMzIzNTk1OVowejFJMEcGA1UEBRNAYzUzNzQwZDc5ZGJhNGRlZTgxOGU5 NDEyNTQzZDcxOWJiYWRjOWYzZmRkMTdlMWViYTFjODNhZmVkNzhhYTE3YjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvNnp2ci/ZX5+bH73C+MD29dScpVT XSG1rrUhEMA27fQJJyP0JZxR2SXfPtOt3Ii5OHvoN/epkaYwDL2koT+cFV4qVwLF 0QeoxEagZXcw/sfHc3czUG5RsZxCoBVutPQ/FMDI9IY2DkiYaOdfoy+rBHB926vU H5ypHLrgDqUelqVw6lst7LAGz7jrLRd3jy/ykvxqLViqSSBCJ0S3XZbUI4iPyl8F iomoR9xBykDP2JOQAVr6jDeCZsYJ2sUbppZyPgetorKYftaSpNH8m1PE8EOE/SFD E8opdIDOdvtHpDRgBPkR5kFNqA2WiUrxJgd90+M7bXmGqP5jdYJDrXbSwQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFIdzPBUtnAKKbLfGoWaLjkzmu8AbMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzkwNjZiMjk4LTUyMmEtNDgyZC05MWM2LTRiN2FkODJjNzQzZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaYQgwDQYJKoZIhvcNAQELBQADggEBAGcnld3mICXcUQjSuca9 r9mYdaCovFvFsmQ2gFmm2XdV4VEkZr/awAJNojQusSEsxqkdajELStT0CPeW4k5L B+1ht5AesoBVQbzCd+IHLBAHsOXvYuwbqpFgNix8fbSGhHu6+tgVlJezwoovV5pB m3QTjeVKK92QTM2yO1p9GEwCQjorUB73p8TmLS6dnBsY3nplAQlIXlt3CBBQLRP6 d5zVOYt+htrQz1OPKKVRroG8OwuGAoGi55PEfb3k0QTQSRXxTRBc8SxE4B+AX1Bl o4vg9b3Pt9WZq5urGJ4l8i3NvN8Ei+MkuIwZ+UGsF3yisvhYfW/rFVR6lF0HHeJI Vho= -----END CERTIFICATE-----Generated at Sat Dec 6 12:07:49 2025 by rpki-client