This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b334fca2-b2bc-4db5-956c-e3ff8d975b51.roa File: b334fca2-b2bc-4db5-956c-e3ff8d975b51.roa (raw, json) Hash identifier: aGsPzjWiiN/+CtUKk3+AuTvXYQkNy4VDHgbXWjVUEMk= Subject key identifier: 0A:08:B6:38:7E:DA:B2:A8:B4:58:9F:F7:00:58:9E:84:1C:F4:1F:13 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1AD79CDC6C25BEBB3848D1844406A7FDADE44312 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b334fca2-b2bc-4db5-956c-e3ff8d975b51.roa Signing time: Sun 30 Nov 2025 00:00:51 +0000 ROA not before: Sun 30 Nov 2025 00:00:51 +0000 ROA not after: Sat 28 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:4840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:d7:9c:dc:6c:25:be:bb:38:48:d1:84:44:06:a7:fd:ad:e4:43:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 30 00:00:51 2025 GMT Not After : Feb 28 23:59:59 2026 GMT Subject: serialNumber=d93654b382d6a39c61337216f519344d39ef70dc81eb69223ad6301f94824227, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:60:2c:7f:a7:e3:c8:35:4e:46:4a:38:9a:5f: f6:3c:f0:be:d3:95:62:2c:78:af:23:0e:da:5f:f8: b0:55:60:d2:ed:e4:0a:87:eb:7d:de:f4:c6:46:cc: 73:94:e1:84:e6:50:13:e2:2b:5b:16:22:1b:81:75: 58:bb:12:b9:88:5b:67:79:7d:9d:62:de:c5:61:0d: 03:b3:22:15:5c:90:13:e1:cf:7b:e6:01:ff:37:5a: f4:73:57:71:fb:21:d9:8e:7e:0d:75:14:48:ee:26: 53:bf:2a:44:fa:ac:66:ca:73:e1:2b:b1:d9:c7:4c: 8c:01:8f:02:b4:c0:1a:34:cd:8e:9e:0f:95:28:51: 7f:f7:b3:01:73:c4:fb:9e:e1:a5:91:67:c4:e1:a2: 1a:bc:e7:c9:d4:8d:09:3f:a3:8a:34:d3:95:f0:f1: 2a:7d:37:06:23:d8:2d:54:2d:a6:e8:fe:1c:19:6a: 1c:89:61:fc:19:78:04:63:9f:0e:dc:ec:bb:62:05: a5:37:b9:3a:72:31:75:1c:33:91:53:a7:63:1b:1f: 38:d8:37:3a:e1:85:5b:b0:5c:ac:11:24:c3:f8:57: 7f:db:d0:4c:bd:e8:b0:35:8b:3d:aa:4e:29:e1:36: d4:07:8c:73:c6:eb:bc:dd:50:c2:dc:91:e1:4c:cd: 9d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:08:B6:38:7E:DA:B2:A8:B4:58:9F:F7:00:58:9E:84:1C:F4:1F:13 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b334fca2-b2bc-4db5-956c-e3ff8d975b51.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:4840::/48 Signature Algorithm: sha256WithRSAEncryption 6b:24:0f:ea:97:6d:46:ea:d4:35:a1:d0:02:b9:6d:d2:92:78: 61:93:90:76:f4:e8:f6:52:cf:01:10:fe:18:4f:5d:ca:92:ee: 65:de:e5:02:fb:f6:75:b4:b0:7c:7d:b9:dd:6d:95:fd:9f:11: 99:ed:77:82:44:1e:8e:33:d1:15:6e:de:bb:e0:54:29:ca:54: 13:8f:43:e3:85:37:9e:3f:65:c8:40:d6:91:45:ef:ee:df:12: dc:ea:38:40:79:25:76:6f:e8:72:b8:35:4b:0b:96:88:0f:0d: 75:9d:6e:9f:6a:d4:4d:60:e9:10:53:67:19:f3:2f:2b:e6:7f: be:c9:2a:39:16:37:a0:56:5f:ce:1f:b2:e4:68:e1:f5:41:25: 3d:83:5a:10:fe:9c:b6:88:8d:52:3e:8e:59:ca:92:a4:26:1c: 06:78:1a:ee:1f:9b:68:09:ca:02:2a:82:8c:5a:60:00:94:cd: c7:58:87:e1:95:c6:b4:ae:72:50:84:56:c0:b5:37:d3:2a:7c: 4d:2f:b9:d5:e3:06:f9:95:bd:ec:93:5c:cd:85:f3:e6:77:08: b4:af:12:b0:0f:9b:82:84:2a:6a:a8:e0:52:4a:6e:33:32:d4: a3:63:c3:68:8d:41:34:01:fc:78:05:00:41:0b:13:85:d9:b7: 92:5b:65:1f -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUGtec3Gwlvrs4SNGERAan/a3kQxIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEzMDAwMDA1MVoX DTI2MDIyODIzNTk1OVowejFJMEcGA1UEBRNAZDkzNjU0YjM4MmQ2YTM5YzYxMzM3 MjE2ZjUxOTM0NGQzOWVmNzBkYzgxZWI2OTIyM2FkNjMwMWY5NDgyNDIyNzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmWAsf6fjyDVORko4ml/2PPC+05Vi LHivIw7aX/iwVWDS7eQKh+t93vTGRsxzlOGE5lAT4itbFiIbgXVYuxK5iFtneX2d Yt7FYQ0DsyIVXJAT4c975gH/N1r0c1dx+yHZjn4NdRRI7iZTvypE+qxmynPhK7HZ x0yMAY8CtMAaNM2Ong+VKFF/97MBc8T7nuGlkWfE4aIavOfJ1I0JP6OKNNOV8PEq fTcGI9gtVC2m6P4cGWociWH8GXgEY58O3Oy7YgWlN7k6cjF1HDORU6djGx842Dc6 4YVbsFysESTD+Fd/29BMveiwNYs9qk4p4TbUB4xzxuu83VDC3JHhTM2dTwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFAoItjh+2rKotFif9wBYnoQc9B8TMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2IzMzRmY2EyLWIyYmMtNGRiNS05NTZjLWUzZmY4ZDk3NWI1MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba8khAMA0GCSqGSIb3DQEBCwUAA4IBAQBrJA/ql21G6tQ1odAC uW3Sknhhk5B29Oj2Us8BEP4YT13Kku5l3uUC+/Z1tLB8fbndbZX9nxGZ7XeCRB6O M9EVbt674FQpylQTj0PjhTeeP2XIQNaRRe/u3xLc6jhAeSV2b+hyuDVLC5aIDw11 nW6fatRNYOkQU2cZ8y8r5n++ySo5FjegVl/OH7LkaOH1QSU9g1oQ/py2iI1SPo5Z ypKkJhwGeBruH5toCcoCKoKMWmAAlM3HWIfhlca0rnJQhFbAtTfTKnxNL7nV4wb5 lb3sk1zNhfPmdwi0rxKwD5uChCpqqOBSSm4zMtSjY8NojUE0Afx4BQBBCxOF2beS W2Uf -----END CERTIFICATE-----Generated at Sat Dec 6 09:50:25 2025 by rpki-client