This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/aba2318c-e96a-4058-8e0c-5aca2b56aad9.roa File: aba2318c-e96a-4058-8e0c-5aca2b56aad9.roa (raw, json) Hash identifier: wUJjJ3vKAgRRvXL7R24y50Rq1cdy8fGPhZ9CPqqAEx4= Subject key identifier: 99:61:A5:12:02:A2:A1:2B:4B:7A:CB:9E:5F:B3:25:B4:D4:64:DB:20 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 14FA7ADD7BBF32373706363BD0655B18515CA85C Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/aba2318c-e96a-4058-8e0c-5aca2b56aad9.roa Signing time: Sat 22 Nov 2025 00:00:39 +0000 ROA not before: Sat 22 Nov 2025 00:00:39 +0000 ROA not after: Fri 20 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da32:a000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:fa:7a:dd:7b:bf:32:37:37:06:36:3b:d0:65:5b:18:51:5c:a8:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 22 00:00:39 2025 GMT Not After : Feb 20 23:59:59 2026 GMT Subject: serialNumber=2e70bb76ddf06cfbb1091e783fdbd7e3f66788bb95dd7c2562d84db534bc76ee, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4b:37:4c:8c:92:83:09:7e:b7:5f:e3:1e:98: 94:8f:e5:f7:e2:d0:ce:e5:f8:ce:0f:41:3e:ea:4f: eb:d6:70:cc:3c:75:28:77:7b:94:d4:0e:fa:e4:4e: 7d:54:67:16:b9:21:09:ff:d2:98:c9:26:7d:aa:46: e5:cb:00:c7:51:d1:69:cf:4f:a8:cb:06:c3:d7:3c: 39:ae:c4:1a:6b:d7:4b:d8:26:ff:f9:e3:7b:8f:28: 46:df:d9:8c:e6:b9:34:58:48:97:4e:de:3e:7a:4e: 57:63:42:a1:30:e2:02:41:15:fc:2c:7a:47:89:37: 21:20:ab:f8:be:97:a9:74:0b:07:24:34:d4:da:96: 92:23:45:77:a3:d1:79:86:70:26:9c:ae:e7:c9:cd: 00:1e:ab:ed:8c:eb:8b:e3:16:db:2d:09:f7:41:fa: 28:d9:7d:2e:f8:a1:25:88:53:2b:bd:73:2d:04:0d: b2:57:4a:49:27:f6:47:ec:e0:62:24:75:58:15:79: b0:9b:c9:12:e5:08:c7:3b:c3:98:8e:ea:10:ec:3f: 22:a4:fe:e0:d5:54:fa:f4:6b:05:e4:3d:f5:72:91: 14:9e:94:94:f4:19:ab:57:27:8e:39:dc:6e:bb:c1: 90:9a:07:2e:6c:cc:79:d9:d1:bd:92:14:56:66:1f: 8d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:61:A5:12:02:A2:A1:2B:4B:7A:CB:9E:5F:B3:25:B4:D4:64:DB:20 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/aba2318c-e96a-4058-8e0c-5aca2b56aad9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da32:a000::/40 Signature Algorithm: sha256WithRSAEncryption 61:db:19:0c:7a:0f:ad:7f:05:1c:bf:70:d1:fd:e7:a0:c8:6d: b8:35:83:f8:04:4b:02:28:20:4a:7e:94:74:9d:71:eb:96:f1: a4:2c:2e:bb:45:83:64:f8:ce:33:24:7b:8c:56:6d:ec:20:96: 2e:15:50:fa:23:78:64:3e:a3:a6:c1:79:3e:b6:16:c5:27:e7: 66:9d:91:36:f2:53:05:3f:b4:bd:f9:c1:45:ed:bb:bf:6c:2f: e9:6f:74:b3:78:8a:44:73:21:f1:25:1b:83:40:ed:b0:ec:ab: 49:be:01:ca:92:6a:76:22:c9:3c:ff:50:eb:38:6f:5e:42:14: 9e:f3:1f:20:bf:19:ad:27:be:ff:e8:b4:8f:3b:44:45:63:06: 1f:75:40:fc:84:d4:6c:f6:c6:2b:ae:ba:d7:db:06:ca:05:60: 22:ca:a2:26:f0:ef:31:e4:2d:85:f8:34:63:52:5a:89:04:94: 9f:54:f2:66:74:2e:5d:26:92:94:7f:7f:53:3f:c2:ae:6f:f6: 17:6c:b9:46:b9:b9:2f:46:5c:54:e1:3e:fe:d9:59:1a:26:27: 12:d2:b5:f2:93:63:6f:f6:69:a4:c0:2f:ac:e2:a2:62:e4:61: 4b:90:e6:9b:76:64:b0:3e:ea:9c:7c:ca:09:e0:3b:0c:a6:14: e4:46:2a:dd -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUFPp63Xu/Mjc3BjY70GVbGFFcqFwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyMjAwMDAzOVoX DTI2MDIyMDIzNTk1OVowejFJMEcGA1UEBRNAMmU3MGJiNzZkZGYwNmNmYmIxMDkx ZTc4M2ZkYmQ3ZTNmNjY3ODhiYjk1ZGQ3YzI1NjJkODRkYjUzNGJjNzZlZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu0s3TIySgwl+t1/jHpiUj+X34tDO 5fjOD0E+6k/r1nDMPHUod3uU1A765E59VGcWuSEJ/9KYySZ9qkblywDHUdFpz0+o ywbD1zw5rsQaa9dL2Cb/+eN7jyhG39mM5rk0WEiXTt4+ek5XY0KhMOICQRX8LHpH iTchIKv4vpepdAsHJDTU2paSI0V3o9F5hnAmnK7nyc0AHqvtjOuL4xbbLQn3Qfoo 2X0u+KEliFMrvXMtBA2yV0pJJ/ZH7OBiJHVYFXmwm8kS5QjHO8OYjuoQ7D8ipP7g 1VT69GsF5D31cpEUnpSU9BmrVyeOOdxuu8GQmgcubMx52dG9khRWZh+NuQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFJlhpRICoqErS3rLnl+zJbTUZNsgMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2FiYTIzMThjLWU5NmEtNDA1OC04ZTBjLTVhY2EyYjU2YWFkOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaMqAwDQYJKoZIhvcNAQELBQADggEBAGHbGQx6D61/BRy/cNH9 56DIbbg1g/gESwIoIEp+lHSdceuW8aQsLrtFg2T4zjMke4xWbewgli4VUPojeGQ+ o6bBeT62FsUn52adkTbyUwU/tL35wUXtu79sL+lvdLN4ikRzIfElG4NA7bDsq0m+ AcqSanYiyTz/UOs4b15CFJ7zHyC/Ga0nvv/otI87REVjBh91QPyE1Gz2xiuuutfb BsoFYCLKoibw7zHkLYX4NGNSWokElJ9U8mZ0Ll0mkpR/f1M/wq5v9hdsuUa5uS9G XFThPv7ZWRomJxLStfKTY2/2aaTAL6ziomLkYUuQ5pt2ZLA+6px8ygngOwymFORG Kt0= -----END CERTIFICATE-----Generated at Sat Dec 6 10:55:46 2025 by rpki-client