This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/97d80f39-e7d5-4a6b-aba1-3798e0c96546.roa File: 97d80f39-e7d5-4a6b-aba1-3798e0c96546.roa (raw, json) Hash identifier: TQt4uEprE4wIaoJRCj+tTFK8rhXzSGnYvsVmFc/jRrI= Subject key identifier: 32:36:0C:64:3A:CB:31:3B:14:02:51:CC:67:AF:76:D4:F5:4C:AE:B5 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 75CDAF87A22EAB363FFE06AA6C3105DCF055A898 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/97d80f39-e7d5-4a6b-aba1-3798e0c96546.roa Signing time: Tue 02 Dec 2025 00:00:12 +0000 ROA not before: Tue 02 Dec 2025 00:00:12 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:f080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:cd:af:87:a2:2e:ab:36:3f:fe:06:aa:6c:31:05:dc:f0:55:a8:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 2 00:00:12 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=e62ad8ada976c3035d38848d96821ec0e3cb52da4804934e5148c085bab7af1d, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:16:36:45:8e:d8:81:40:d9:cb:94:4a:8e:ef: 8b:cb:61:1b:52:a4:b6:13:a6:03:2a:87:6a:02:3e: c2:38:ec:69:14:b7:15:9e:1d:8f:c0:79:10:13:45: 39:4d:61:98:0c:ad:40:7c:17:70:3f:14:9e:9a:b5: 33:16:c4:c2:fe:70:5c:1e:6e:c1:1c:3c:8c:0b:c6: bb:49:cb:da:be:d7:fd:7c:37:18:e0:8f:97:58:67: 0c:a8:1e:ea:e7:9b:4f:15:37:ee:46:d3:cd:a5:a2: 73:5e:3c:a6:70:0c:ed:ad:26:1b:6c:71:61:3e:ff: e5:ca:0f:c8:6d:c1:8d:2b:68:b2:0c:95:61:33:0d: e0:cf:fc:f4:1c:38:5a:41:aa:f7:6f:c6:3c:4b:e2: ca:2a:02:fb:c2:8b:ac:82:fa:de:15:87:b7:73:bb: c3:29:4d:ba:ad:b8:86:67:0b:a5:6c:a6:a1:58:c0: 63:9f:93:3c:70:dd:f4:8e:a6:20:34:ef:ba:81:e3: ce:ba:4c:03:15:00:64:ab:67:de:f3:4d:5e:4f:c6: b0:89:3c:e2:3b:5a:e3:12:d2:6b:0c:25:aa:de:64: 4a:34:fb:f4:b1:b9:c2:e4:7c:51:0c:ed:dd:b3:23: 62:56:ed:db:f1:ce:00:a7:e1:b5:db:f9:f8:d6:3f: 9c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:36:0C:64:3A:CB:31:3B:14:02:51:CC:67:AF:76:D4:F5:4C:AE:B5 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/97d80f39-e7d5-4a6b-aba1-3798e0c96546.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:f080::/48 Signature Algorithm: sha256WithRSAEncryption 3a:09:41:fd:63:71:f6:02:0f:21:6b:d0:02:a5:4a:97:1b:b7: 60:77:07:3e:6e:41:e8:47:85:8f:1f:0f:d6:78:e0:ff:62:73: 53:b3:b0:6d:a1:09:ec:05:86:25:79:3b:92:3d:cb:67:6d:c6: 95:a7:9e:30:5a:41:2e:17:48:e7:08:0c:7c:c7:3c:67:0c:05: aa:ec:08:c0:6b:17:f5:e8:46:30:05:84:bf:84:bf:c0:48:89: 57:bd:76:a0:b3:af:63:07:90:78:f3:db:4d:21:4d:86:92:fa: a4:c4:43:3c:53:4e:46:15:fe:cc:07:ce:c2:9c:49:3b:74:55: dc:06:c9:0a:77:62:56:d2:8b:7f:8d:96:62:49:c6:d0:28:81: 83:93:61:cb:b0:f7:60:0c:e8:41:80:a9:5f:68:60:3c:03:16: 46:0d:4a:c9:59:69:1b:ee:ab:a0:3d:a5:29:77:31:ca:75:22: 5e:19:3b:de:09:d8:81:55:c2:0b:2a:aa:6a:d3:0b:e4:45:aa: 62:57:82:69:79:e6:c0:7f:19:60:02:d5:b6:fa:db:0e:33:cc: dd:e7:df:fa:59:76:fe:40:05:eb:98:60:89:f3:c6:b1:ad:c5: 6b:70:9b:23:3d:28:53:9a:4b:a0:35:ac:9a:66:0e:03:0f:97: 19:32:21:96 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUdc2vh6IuqzY//gaqbDEF3PBVqJgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMjAwMDAxMloX DTI2MDMwMjIzNTk1OVowejFJMEcGA1UEBRNAZTYyYWQ4YWRhOTc2YzMwMzVkMzg4 NDhkOTY4MjFlYzBlM2NiNTJkYTQ4MDQ5MzRlNTE0OGMwODViYWI3YWYxZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7BY2RY7YgUDZy5RKju+Ly2EbUqS2 E6YDKodqAj7COOxpFLcVnh2PwHkQE0U5TWGYDK1AfBdwPxSemrUzFsTC/nBcHm7B HDyMC8a7Scvavtf9fDcY4I+XWGcMqB7q55tPFTfuRtPNpaJzXjymcAztrSYbbHFh Pv/lyg/IbcGNK2iyDJVhMw3gz/z0HDhaQar3b8Y8S+LKKgL7wousgvreFYe3c7vD KU26rbiGZwulbKahWMBjn5M8cN30jqYgNO+6gePOukwDFQBkq2fe801eT8awiTzi O1rjEtJrDCWq3mRKNPv0sbnC5HxRDO3dsyNiVu3b8c4Ap+G12/n41j+cNwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFDI2DGQ6yzE7FAJRzGevdtT1TK61MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzk3ZDgwZjM5LWU3ZDUtNGE2Yi1hYmExLTM3OThlMGM5NjU0Ni5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba//CAMA0GCSqGSIb3DQEBCwUAA4IBAQA6CUH9Y3H2Ag8ha9AC pUqXG7dgdwc+bkHoR4WPHw/WeOD/YnNTs7BtoQnsBYYleTuSPctnbcaVp54wWkEu F0jnCAx8xzxnDAWq7AjAaxf16EYwBYS/hL/ASIlXvXags69jB5B489tNIU2Gkvqk xEM8U05GFf7MB87CnEk7dFXcBskKd2JW0ot/jZZiScbQKIGDk2HLsPdgDOhBgKlf aGA8AxZGDUrJWWkb7qugPaUpdzHKdSJeGTveCdiBVcILKqpq0wvkRapiV4JpeebA fxlgAtW2+tsOM8zd59/6WXb+QAXrmGCJ88axrcVrcJsjPShTmkugNayaZg4DD5cZ MiGW -----END CERTIFICATE-----Generated at Sat Dec 6 14:00:25 2025 by rpki-client