This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a2e0f9ff-5b8b-4b59-8bde-9f8617cadc06.roa File: a2e0f9ff-5b8b-4b59-8bde-9f8617cadc06.roa (raw, json) Hash identifier: sfQLmBN3uzkNgfvSVSYqVcJddTwn5abIbDTEzl08GN4= Subject key identifier: 27:2B:BE:F3:9F:9F:8E:1C:52:FC:A5:30:91:65:15:8A:33:01:DD:9A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1014CFB50837C9396AE4B6D5AA45A248E78847D8 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a2e0f9ff-5b8b-4b59-8bde-9f8617cadc06.roa Signing time: Tue 02 Dec 2025 00:30:11 +0000 ROA not before: Tue 02 Dec 2025 00:30:11 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:4010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:14:cf:b5:08:37:c9:39:6a:e4:b6:d5:aa:45:a2:48:e7:88:47:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 2 00:30:11 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=7047386a8ea7c1fd7e075cbc43c692027cce9f35679b0a670ea2dae4310e531b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a3:b7:96:6a:87:26:ca:9e:bf:d5:db:b6:01: f4:cf:bf:c9:48:f8:07:b7:a2:c2:64:86:e1:59:98: 05:88:7e:7a:a3:55:b6:70:01:be:8d:e8:b0:53:69: 01:00:00:30:f5:f7:e1:40:04:e8:09:97:20:8b:45: 69:dc:49:fc:0e:8f:f0:62:dd:92:b1:d2:ee:09:1c: 37:b3:fe:0b:35:a5:b0:7d:ba:c2:dd:61:d1:24:15: a8:6e:33:fa:59:3e:e3:89:82:91:f4:0d:79:b6:60: be:54:c7:8c:a9:ec:40:86:55:94:e5:d1:7e:01:ce: 34:a3:86:a4:a4:83:db:a5:b6:5f:25:86:4e:31:2e: d7:c3:07:81:a1:36:29:27:58:38:02:cd:c3:bf:4a: a0:83:71:13:54:4b:43:b1:87:5e:dd:da:ff:d6:67: 1a:5a:37:b1:ce:a0:16:61:6b:0b:97:eb:39:79:74: 4c:07:d1:62:97:f2:9c:53:7f:c2:66:e3:6e:ce:e8: d6:fe:8b:22:9e:62:fd:b8:18:12:a5:f5:29:69:2f: 11:9d:8b:6f:72:d4:52:95:69:98:2a:1f:fb:df:7a: 9a:21:ed:4a:ff:8f:43:8d:a3:7a:5a:cf:8d:c6:a1: 8a:38:8c:fd:6d:ce:75:fb:db:40:8c:27:df:37:3c: 06:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:2B:BE:F3:9F:9F:8E:1C:52:FC:A5:30:91:65:15:8A:33:01:DD:9A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a2e0f9ff-5b8b-4b59-8bde-9f8617cadc06.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:4010::/48 Signature Algorithm: sha256WithRSAEncryption 55:de:bd:4b:15:07:58:38:2b:bb:6d:9e:3f:54:d6:9c:8b:37: 63:88:b8:19:a6:a2:61:63:ae:ed:4d:ec:c7:1c:34:90:bc:cd: 4e:93:74:a8:b5:c9:27:33:17:d7:15:8e:fc:51:d7:02:6f:6f: ea:db:ca:d2:d0:b7:66:27:c9:26:60:1a:c9:41:b8:ca:84:02: 4c:ee:4f:4f:73:d9:2f:93:63:12:b2:47:37:8e:58:8a:dd:8f: 72:f7:c6:fa:23:34:15:59:96:86:de:0c:94:89:4a:55:f4:07: f1:de:2b:65:8e:78:ff:0a:bc:12:af:58:d2:8e:33:ed:20:e7: 8a:42:8b:29:4f:45:21:7d:8f:79:35:63:8c:a3:5b:63:b3:72: d7:2a:0d:be:88:43:68:1f:2b:67:83:fe:81:5d:a9:a4:91:ef: 04:8f:e2:b0:62:4f:a6:38:08:8a:d2:9c:eb:10:2f:63:1a:e7: 1b:41:a7:33:f6:c1:e7:b0:0e:ff:18:cd:e2:cd:77:df:40:72: b4:9d:42:84:ce:de:24:79:92:20:3a:74:7f:d4:01:7b:ca:8e: c6:92:53:52:4c:2f:a5:27:81:e4:bf:6e:7f:53:60:79:fc:d8: 43:e4:02:00:e2:fd:e7:8b:31:17:49:3c:91:3d:9d:0f:ec:2d: 16:56:f0:6d -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUEBTPtQg3yTlq5LbVqkWiSOeIR9gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMjAwMzAxMVoX DTI2MDMwMjIzNTk1OVowejFJMEcGA1UEBRNANzA0NzM4NmE4ZWE3YzFmZDdlMDc1 Y2JjNDNjNjkyMDI3Y2NlOWYzNTY3OWIwYTY3MGVhMmRhZTQzMTBlNTMxYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwaO3lmqHJsqev9XbtgH0z7/JSPgH t6LCZIbhWZgFiH56o1W2cAG+jeiwU2kBAAAw9ffhQAToCZcgi0Vp3En8Do/wYt2S sdLuCRw3s/4LNaWwfbrC3WHRJBWobjP6WT7jiYKR9A15tmC+VMeMqexAhlWU5dF+ Ac40o4akpIPbpbZfJYZOMS7XwweBoTYpJ1g4As3Dv0qgg3ETVEtDsYde3dr/1mca WjexzqAWYWsLl+s5eXRMB9Fil/KcU3/CZuNuzujW/osinmL9uBgSpfUpaS8RnYtv ctRSlWmYKh/733qaIe1K/49DjaN6Ws+NxqGKOIz9bc51+9tAjCffNzwGGwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFCcrvvOfn44cUvylMJFlFYozAd2aMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2EyZTBmOWZmLTViOGItNGI1OS04YmRlLTlmODYxN2NhZGMwNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAEAQMA0GCSqGSIb3DQEBCwUAA4IBAQBV3r1LFQdYOCu7bZ4/ VNacizdjiLgZpqJhY67tTezHHDSQvM1Ok3SotcknMxfXFY78UdcCb2/q28rS0Ldm J8kmYBrJQbjKhAJM7k9Pc9kvk2MSskc3jliK3Y9y98b6IzQVWZaG3gyUiUpV9Afx 3itljnj/CrwSr1jSjjPtIOeKQospT0UhfY95NWOMo1tjs3LXKg2+iENoHytng/6B Xamkke8Ej+KwYk+mOAiK0pzrEC9jGucbQacz9sHnsA7/GM3izXffQHK0nUKEzt4k eZIgOnR/1AF7yo7GklNSTC+lJ4Hkv25/U2B5/NhD5AIA4v3nizEXSTyRPZ0P7C0W VvBt -----END CERTIFICATE-----Generated at Sat Dec 6 11:48:35 2025 by rpki-client