This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9add10b6-9103-4c19-a99b-242367ce96bd.roa File: 9add10b6-9103-4c19-a99b-242367ce96bd.roa (raw, json) Hash identifier: VprtIEjs7p+KciaSAI8MkVJvLwczP1BtgKlsDs8TQR8= Subject key identifier: 76:17:ED:12:D7:F3:DC:74:79:BE:0C:94:B2:7E:D3:48:5B:32:2D:5F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0EA96D2941827E8005AAE3E3AACA30BDF16076E4 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9add10b6-9103-4c19-a99b-242367ce96bd.roa Signing time: Tue 02 Dec 2025 00:10:41 +0000 ROA not before: Tue 02 Dec 2025 00:10:41 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:4840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:a9:6d:29:41:82:7e:80:05:aa:e3:e3:aa:ca:30:bd:f1:60:76:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 2 00:10:41 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=155576e6a09bc530fd31c1f6cefe28965dab3870adad76a174da19bf8dbdaaf6, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:85:b5:6a:be:ab:5a:86:99:1a:b3:fc:96:ad: 5a:22:73:b6:4a:1b:37:c5:3b:bc:2b:3d:31:b1:59: f8:40:ba:e3:8c:33:ff:a6:7f:3e:f8:54:ed:7b:e5: 4f:ea:e0:11:f4:61:3c:63:a2:a5:22:b9:3c:d2:27: 6e:ea:70:af:1f:fa:82:8a:84:f0:a5:8e:e5:07:cf: fe:36:19:26:5b:19:01:d5:a0:3d:ab:51:63:8b:33: 3a:0d:54:cc:d6:53:9e:cd:87:ba:ed:13:6e:c1:50: 7a:ca:fe:b1:bf:65:58:13:dd:1f:30:9a:68:69:de: ab:62:02:22:71:69:0b:80:f2:c3:f6:ff:00:78:44: d6:15:eb:ff:24:6a:94:23:af:74:1d:e1:a4:1e:4c: ff:04:2c:83:d3:c7:e5:0b:52:52:4b:03:f0:e7:8c: 78:af:94:61:db:d1:ca:ae:de:db:e4:71:63:55:84: 80:37:43:0e:d7:44:8b:91:eb:08:cf:45:12:cf:0e: 0b:f3:d9:04:e0:dc:82:43:af:62:2d:38:6e:47:14: 08:03:9d:ab:dd:60:1f:33:6a:d2:74:b0:34:15:e3: fd:31:9a:2f:a9:65:32:0c:2c:9f:69:bc:5e:8d:18: 46:0b:ec:74:ae:79:5b:8b:4b:62:0f:1c:0f:e3:6d: 22:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:17:ED:12:D7:F3:DC:74:79:BE:0C:94:B2:7E:D3:48:5B:32:2D:5F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9add10b6-9103-4c19-a99b-242367ce96bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:4840::/48 Signature Algorithm: sha256WithRSAEncryption 02:93:77:5f:fa:d8:17:5d:8e:7d:1b:1c:05:6f:af:40:e2:42: 0b:26:f6:41:d6:8b:8c:d1:b3:e1:84:7d:52:4d:90:db:ad:dc: 41:99:4b:b7:22:45:19:c1:ec:f9:99:a9:13:9d:72:00:56:31: df:06:ed:93:40:54:bc:dc:81:b7:0d:6f:58:cd:ab:fc:ac:b6: 9b:aa:d3:e2:b9:c7:9b:ee:d6:2c:16:ad:67:64:92:97:85:09: 13:27:9d:f5:46:4f:51:97:15:d1:3f:b4:df:f7:bb:0f:33:8d: 34:4c:c6:2c:63:c1:b0:e5:00:83:b4:c6:48:d5:41:33:6f:85: eb:1a:49:d4:3b:8d:b3:a7:6e:ea:70:83:7e:10:48:03:50:b3: 62:4c:df:f9:03:a4:1a:10:d8:fa:24:f1:95:1f:a5:a6:1c:1b: 7d:59:20:d6:e6:37:bf:c7:90:6b:5d:35:d9:17:6b:4c:52:3f: d7:35:ae:c5:a7:f7:8d:1c:47:2c:30:af:ed:86:17:61:4b:66: 9e:55:7b:17:b8:97:2c:f1:ee:91:76:b8:c5:18:0f:b5:a5:fa: 46:ec:72:f2:05:9c:be:63:3f:f0:66:9e:16:7c:15:04:21:5d: a4:19:13:71:38:cb:45:81:9e:dd:a8:4a:42:98:81:ea:f1:6a: ce:fa:ad:20 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUDqltKUGCfoAFquPjqsowvfFgduQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMjAwMTA0MVoX DTI2MDMwMjIzNTk1OVowejFJMEcGA1UEBRNAMTU1NTc2ZTZhMDliYzUzMGZkMzFj MWY2Y2VmZTI4OTY1ZGFiMzg3MGFkYWQ3NmExNzRkYTE5YmY4ZGJkYWFmNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzYW1ar6rWoaZGrP8lq1aInO2Shs3 xTu8Kz0xsVn4QLrjjDP/pn8++FTte+VP6uAR9GE8Y6KlIrk80idu6nCvH/qCioTw pY7lB8/+NhkmWxkB1aA9q1FjizM6DVTM1lOezYe67RNuwVB6yv6xv2VYE90fMJpo ad6rYgIicWkLgPLD9v8AeETWFev/JGqUI690HeGkHkz/BCyD08flC1JSSwPw54x4 r5Rh29HKrt7b5HFjVYSAN0MO10SLkesIz0USzw4L89kE4NyCQ69iLThuRxQIA52r 3WAfM2rSdLA0FeP9MZovqWUyDCyfabxejRhGC+x0rnlbi0tiDxwP420iWQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFHYX7RLX89x0eb4MlLJ+00hbMi1fMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzlhZGQxMGI2LTkxMDMtNGMxOS1hOTliLTI0MjM2N2NlOTZiZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba/0hAMA0GCSqGSIb3DQEBCwUAA4IBAQACk3df+tgXXY59GxwF b69A4kILJvZB1ouM0bPhhH1STZDbrdxBmUu3IkUZwez5makTnXIAVjHfBu2TQFS8 3IG3DW9Yzav8rLabqtPiuceb7tYsFq1nZJKXhQkTJ531Rk9RlxXRP7Tf97sPM400 TMYsY8Gw5QCDtMZI1UEzb4XrGknUO42zp27qcIN+EEgDULNiTN/5A6QaENj6JPGV H6WmHBt9WSDW5je/x5BrXTXZF2tMUj/XNa7Fp/eNHEcsMK/thhdhS2aeVXsXuJcs 8e6RdrjFGA+1pfpG7HLyBZy+Yz/wZp4WfBUEIV2kGRNxOMtFgZ7dqEpCmIHq8WrO +q0g -----END CERTIFICATE-----Generated at Sat Dec 6 12:11:51 2025 by rpki-client