This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/af674e28-8a6b-4881-bc24-1bd1d459637c.roa File: af674e28-8a6b-4881-bc24-1bd1d459637c.roa (raw, json) Hash identifier: QujndTfRosbYguNrhaAbATWYgIMyD98U1a0smqK+Ofo= Subject key identifier: F4:D9:62:97:88:46:4A:D7:2F:37:88:DE:C5:54:22:11:83:2C:6E:F7 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 147AC218051299A7FF917B61D4305AA2915A7454 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/af674e28-8a6b-4881-bc24-1bd1d459637c.roa Signing time: Thu 04 Dec 2025 00:11:04 +0000 ROA not before: Thu 04 Dec 2025 00:11:04 +0000 ROA not after: Wed 04 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daa0:a000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:7a:c2:18:05:12:99:a7:ff:91:7b:61:d4:30:5a:a2:91:5a:74:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 4 00:11:04 2025 GMT Not After : Mar 4 23:59:59 2026 GMT Subject: serialNumber=c9066668a2b0bd7f076fa37d510f735afa4403d87b0ab3ae5ba03d2ed61ea413, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:a9:1a:04:99:c6:a9:1c:34:82:fb:38:d1:4c: e8:7c:27:de:84:57:9d:7e:23:7e:a1:1d:6b:aa:82: e9:5b:72:71:7d:ab:4d:c2:82:cc:94:03:81:33:a3: df:c6:3d:7a:d4:24:85:bb:d1:b9:38:23:a9:4a:dc: a7:95:5b:5a:ef:bf:7b:20:6f:cd:9d:ec:a8:d6:45: 84:f0:ac:a0:f0:3b:f7:3f:85:1f:1a:82:cc:6c:fb: 04:96:25:db:4a:8d:59:0b:25:93:a9:fc:45:8b:23: 5c:4f:84:09:d2:8b:a7:18:9a:cf:8d:7a:13:cb:51: 63:6f:a0:a5:55:ac:e7:f5:8a:a2:b3:3e:0c:0e:2e: 86:18:78:b6:ce:91:8e:cc:fc:35:5c:3e:d9:c4:a6: 3a:8e:43:fe:a6:ed:cb:72:19:25:c9:f7:b8:e6:e9: b0:b5:f4:cf:ea:6e:0d:b0:2e:85:86:00:7a:46:0f: da:31:d4:17:6c:5e:3d:5c:78:55:c6:8c:38:6e:ee: 26:57:4c:91:0b:d7:9b:7e:99:e7:3c:39:c2:06:4d: a7:52:92:43:02:c1:03:6a:fa:db:34:2e:ca:7f:c5: 24:4c:24:7e:a4:33:8d:eb:94:8a:06:25:1e:b1:a7: 38:08:ec:fe:1f:b1:55:cf:b2:1e:d0:19:53:4f:42: 03:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D9:62:97:88:46:4A:D7:2F:37:88:DE:C5:54:22:11:83:2C:6E:F7 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/af674e28-8a6b-4881-bc24-1bd1d459637c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daa0:a000::/40 Signature Algorithm: sha256WithRSAEncryption bb:36:05:6e:67:c2:bd:eb:65:f4:3e:4b:45:91:62:b1:f9:42: 60:6d:4d:04:23:f1:60:2e:fe:f9:e5:1c:2c:c1:85:f7:ba:8a: b4:84:4b:d9:ca:71:a9:fa:55:1a:91:f2:9e:c0:3b:0f:3c:6f: 8a:aa:a4:81:dc:af:f0:8a:2a:89:e6:ed:ec:de:6d:01:64:34: 19:b6:f7:1d:c7:3e:a0:8d:d2:cf:61:d9:99:f1:2d:ba:a1:5d: af:41:03:08:ec:bb:74:62:9e:91:9d:3e:3e:d0:dc:dd:b8:d1: 32:07:25:fa:0a:78:81:5d:38:9f:1c:40:a1:ee:d4:ee:b3:cb: 8d:b7:1b:06:62:32:cb:03:10:28:72:2d:57:6d:cc:9e:06:4c: ab:27:99:80:c7:d2:ba:5c:83:75:09:8d:75:cb:8d:a9:4c:be: 8f:86:dd:c0:cd:c1:44:94:70:7b:56:0d:38:3e:5b:a8:cc:dc: 5c:ac:ca:25:71:c9:85:f0:a1:f2:73:d2:44:1f:4e:1e:95:79: 14:48:32:b5:86:f1:5f:15:b2:db:e1:12:ad:ec:83:d6:fb:bf: b1:96:6a:b4:5b:6f:28:46:1f:e7:4d:ea:9d:53:a9:ad:1a:75: 62:6d:87:10:b5:5f:0e:f7:22:56:59:dd:0c:b4:d9:c3:4e:a9: 87:20:99:11 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUFHrCGAUSmaf/kXth1DBaopFadFQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwNDAwMTEwNFoX DTI2MDMwNDIzNTk1OVowejFJMEcGA1UEBRNAYzkwNjY2NjhhMmIwYmQ3ZjA3NmZh MzdkNTEwZjczNWFmYTQ0MDNkODdiMGFiM2FlNWJhMDNkMmVkNjFlYTQxMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7qkaBJnGqRw0gvs40UzofCfehFed fiN+oR1rqoLpW3JxfatNwoLMlAOBM6Pfxj161CSFu9G5OCOpStynlVta7797IG/N neyo1kWE8Kyg8Dv3P4UfGoLMbPsEliXbSo1ZCyWTqfxFiyNcT4QJ0ounGJrPjXoT y1Fjb6ClVazn9Yqisz4MDi6GGHi2zpGOzPw1XD7ZxKY6jkP+pu3Lchklyfe45umw tfTP6m4NsC6FhgB6Rg/aMdQXbF49XHhVxow4bu4mV0yRC9ebfpnnPDnCBk2nUpJD AsEDavrbNC7Kf8UkTCR+pDON65SKBiUesac4COz+H7FVz7Ie0BlTT0IDZQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFPTZYpeIRkrXLzeI3sVUIhGDLG73MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2FmNjc0ZTI4LThhNmItNDg4MS1iYzI0LTFiZDFkNDU5NjM3Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaoKAwDQYJKoZIhvcNAQELBQADggEBALs2BW5nwr3rZfQ+S0WR YrH5QmBtTQQj8WAu/vnlHCzBhfe6irSES9nKcan6VRqR8p7AOw88b4qqpIHcr/CK Konm7ezebQFkNBm29x3HPqCN0s9h2ZnxLbqhXa9BAwjsu3RinpGdPj7Q3N240TIH JfoKeIFdOJ8cQKHu1O6zy423GwZiMssDEChyLVdtzJ4GTKsnmYDH0rpcg3UJjXXL jalMvo+G3cDNwUSUcHtWDTg+W6jM3FysyiVxyYXwofJz0kQfTh6VeRRIMrWG8V8V stvhEq3sg9b7v7GWarRbbyhGH+dN6p1Tqa0adWJthxC1Xw73IlZZ3Qy02cNOqYcg mRE= -----END CERTIFICATE-----Generated at Sat Dec 6 10:56:47 2025 by rpki-client