This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a6bff16f-4159-48b7-bc80-a4353edd73ed.roa File: a6bff16f-4159-48b7-bc80-a4353edd73ed.roa (raw, json) Hash identifier: wODCWZyF6DKHDwE14N1gbkKI+OMpKY9UcvqwKSq8/MU= Subject key identifier: EE:C9:FD:13:CE:F3:79:A7:4C:BF:D0:D1:F5:60:BC:BE:96:B8:B2:E5 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 19C71181C15C6084ED2E1CA16F812F885B3A8707 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a6bff16f-4159-48b7-bc80-a4353edd73ed.roa Signing time: Thu 04 Dec 2025 00:30:09 +0000 ROA not before: Thu 04 Dec 2025 00:30:09 +0000 ROA not after: Wed 04 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da14:8000::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:c7:11:81:c1:5c:60:84:ed:2e:1c:a1:6f:81:2f:88:5b:3a:87:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 4 00:30:09 2025 GMT Not After : Mar 4 23:59:59 2026 GMT Subject: serialNumber=fd70a8ad619a277aca10385ecdb86adc7fbc815fa04b44172cb23afa0420de82, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6e:9d:a6:07:36:42:f5:93:c6:78:b4:01:2e: e7:b7:2a:50:17:45:4a:b7:62:0b:53:78:c1:3c:5a: d7:8d:02:53:a4:b3:f7:e5:e2:28:fb:21:bc:15:69: 7a:e8:36:47:97:3f:20:d2:2c:98:ad:22:66:bd:c8: 3e:77:23:ac:f1:94:cb:c6:07:c3:46:60:11:db:56: 93:74:8b:95:5d:ab:07:c3:1d:ac:b0:4b:69:09:b1: 9c:25:b0:01:0a:d4:c9:5b:4f:5d:e2:e4:5d:86:b5: 05:9e:ae:b7:a6:65:22:39:36:34:57:79:81:8f:5f: 35:10:bd:d3:f3:a0:d6:70:59:f2:5b:b3:b3:cd:5b: 28:2c:9e:59:99:74:5a:a3:e5:79:b6:ee:d4:7a:cc: 13:c7:40:ec:49:95:0e:a8:52:74:5f:63:c5:7d:e2: f4:b4:bd:47:75:76:35:37:ad:95:88:62:40:fa:1f: 5b:96:be:d8:9f:c2:56:cc:8d:7d:cf:39:6b:a1:eb: 86:a4:b3:49:1d:b0:4f:ca:4d:1b:d5:76:c2:89:df: 96:a1:33:87:22:4f:8c:0c:7c:d9:05:d1:93:98:b9: 5b:d3:e9:39:52:f3:17:64:a3:55:d4:f8:4d:fd:32: 4e:8d:d0:60:f2:e0:38:e4:9a:88:19:4f:81:52:04: 4c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:C9:FD:13:CE:F3:79:A7:4C:BF:D0:D1:F5:60:BC:BE:96:B8:B2:E5 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a6bff16f-4159-48b7-bc80-a4353edd73ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da14:8000::/38 Signature Algorithm: sha256WithRSAEncryption 73:4b:bc:8a:e5:73:91:da:24:55:c8:5f:dc:62:d3:de:52:f6: f4:66:88:f3:f0:59:61:14:1b:6c:8d:de:76:ce:25:8b:0f:e9: 54:31:94:30:96:17:0d:af:00:8a:b6:d4:c9:f5:be:62:fb:12: 6b:63:c1:2d:1a:97:40:21:e9:53:fe:a3:80:0b:8d:23:91:98: ff:61:c1:0a:fd:53:24:de:ec:41:02:7a:62:48:54:eb:a7:13: e1:0a:dc:ea:45:95:ba:df:3b:6d:c1:b0:3f:dc:fd:78:93:72: eb:88:ec:a4:a4:9d:7b:f1:ea:0e:e1:61:31:92:da:4e:66:5f: 50:74:47:da:f0:ad:92:69:de:24:82:35:d2:32:a3:9b:48:f2: b3:83:c3:4a:6a:36:85:16:f5:a6:c3:a3:77:0a:05:10:07:b8: 11:fe:84:9c:cf:7c:90:b2:6f:53:af:23:cd:ef:3b:48:79:74: c8:08:5e:ce:e1:71:de:00:61:94:f3:1f:91:0b:c3:ba:5c:d5: c2:e8:6f:c0:d5:b7:6a:05:c9:9e:fa:3a:05:55:9d:d6:b9:78: a2:90:ca:92:48:ba:0f:ac:18:50:bc:43:69:bd:8f:83:88:58: 47:22:b3:60:59:b5:97:23:91:0b:0e:ba:4e:e7:8b:de:0b:12: e3:3e:f0:53 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUGccRgcFcYITtLhyhb4EviFs6hwcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwNDAwMzAwOVoX DTI2MDMwNDIzNTk1OVowejFJMEcGA1UEBRNAZmQ3MGE4YWQ2MTlhMjc3YWNhMTAz ODVlY2RiODZhZGM3ZmJjODE1ZmEwNGI0NDE3MmNiMjNhZmEwNDIwZGU4MjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuW6dpgc2QvWTxni0AS7ntypQF0VK t2ILU3jBPFrXjQJTpLP35eIo+yG8FWl66DZHlz8g0iyYrSJmvcg+dyOs8ZTLxgfD RmAR21aTdIuVXasHwx2ssEtpCbGcJbABCtTJW09d4uRdhrUFnq63pmUiOTY0V3mB j181EL3T86DWcFnyW7OzzVsoLJ5ZmXRao+V5tu7UeswTx0DsSZUOqFJ0X2PFfeL0 tL1HdXY1N62ViGJA+h9blr7Yn8JWzI19zzlroeuGpLNJHbBPyk0b1XbCid+WoTOH Ik+MDHzZBdGTmLlb0+k5UvMXZKNV1PhN/TJOjdBg8uA45JqIGU+BUgRMJwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFO7J/RPO83mnTL/Q0fVgvL6WuLLlMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2E2YmZmMTZmLTQxNTktNDhiNy1iYzgwLWE0MzUzZWRkNzNlZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJAbaFIAwDQYJKoZIhvcNAQELBQADggEBAHNLvIrlc5HaJFXIX9xi 095S9vRmiPPwWWEUG2yN3nbOJYsP6VQxlDCWFw2vAIq21Mn1vmL7EmtjwS0al0Ah 6VP+o4ALjSORmP9hwQr9UyTe7EECemJIVOunE+EK3OpFlbrfO23BsD/c/XiTcuuI 7KSknXvx6g7hYTGS2k5mX1B0R9rwrZJp3iSCNdIyo5tI8rODw0pqNoUW9abDo3cK BRAHuBH+hJzPfJCyb1OvI83vO0h5dMgIXs7hcd4AYZTzH5ELw7pc1cLob8DVt2oF yZ76OgVVnda5eKKQypJIug+sGFC8Q2m9j4OIWEcis2BZtZcjkQsOuk7ni94LEuM+ 8FM= -----END CERTIFICATE-----Generated at Sat Dec 6 10:57:18 2025 by rpki-client