This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b3ed934e-b507-4d1e-8108-d901f3b37b6d.roa File: b3ed934e-b507-4d1e-8108-d901f3b37b6d.roa (raw, json) Hash identifier: qeXiRYlcIUeNjK7koN+aEEQeq1xQSWbrWLcD48LLswY= Subject key identifier: ED:04:6F:7E:1C:1D:F9:1F:15:FC:E6:02:0C:6B:D2:66:1A:CD:83:18 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 53A9FEB3453C2A01BF7A05919769D54675F7836A Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b3ed934e-b507-4d1e-8108-d901f3b37b6d.roa Signing time: Wed 03 Dec 2025 00:10:48 +0000 ROA not before: Wed 03 Dec 2025 00:10:48 +0000 ROA not after: Tue 03 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daff:1000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:a9:fe:b3:45:3c:2a:01:bf:7a:05:91:97:69:d5:46:75:f7:83:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 3 00:10:48 2025 GMT Not After : Mar 3 23:59:59 2026 GMT Subject: serialNumber=c52cf6a90b96c8464d9cfb7bf16f336eedd3f6e00b4177ace3911bb93c5ddead, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0f:7b:11:2d:8c:f0:da:63:fc:ce:9a:43:61: 03:d1:21:d2:ff:af:6b:ac:96:60:81:73:8f:41:cf: a4:f6:4d:57:b8:45:a4:c4:e5:2b:77:be:59:5b:98: 99:83:29:d1:e9:28:15:73:44:4b:f5:41:76:6d:98: 30:b2:a0:3d:53:d7:7f:3d:e1:7e:04:2d:9c:af:f7: 21:20:55:9d:82:05:f0:99:59:72:06:b6:ea:d7:68: d1:0c:ce:fa:e8:f3:7c:d6:8a:86:79:64:ad:46:1b: 3e:4b:8e:98:37:69:c1:ca:1c:4f:af:7a:7e:00:0d: d5:75:80:9a:a8:05:46:d0:06:d1:93:6a:2e:44:22: db:05:27:bc:50:69:c5:8f:66:b7:27:7e:48:b3:6c: 81:0e:8c:73:3b:78:90:fb:3c:b0:2c:8c:e4:83:71: 9d:95:89:81:02:76:e7:0f:38:70:03:02:0a:2f:b6: 7b:b4:a6:3d:76:41:28:73:ea:64:6c:66:57:03:46: 09:9f:7c:98:c8:53:18:62:b2:a7:0c:81:3a:1d:22: b6:ce:b9:1a:9d:00:93:fd:c2:dc:15:46:c7:47:e0: 7a:eb:a1:c7:b5:dd:99:79:66:e7:d3:e0:99:b2:6c: 91:e8:d8:84:bf:bf:d7:8c:84:ce:d5:d6:2d:93:55: f7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:04:6F:7E:1C:1D:F9:1F:15:FC:E6:02:0C:6B:D2:66:1A:CD:83:18 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b3ed934e-b507-4d1e-8108-d901f3b37b6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daff:1000::/40 Signature Algorithm: sha256WithRSAEncryption 82:30:5b:98:2d:99:08:d2:2c:a7:08:a7:b4:df:08:3c:1e:93: fc:cd:f5:2c:03:6a:8d:07:93:ac:8e:ef:a1:44:d0:8e:2a:bd: 35:f3:fd:c7:44:c9:7d:62:6a:3e:95:db:58:5f:a5:40:98:2d: d1:14:96:b0:eb:7f:a8:69:88:38:be:87:18:65:5a:7a:d4:2e: f3:8f:51:51:33:94:97:1b:40:aa:38:f7:81:76:20:f7:04:da: 6d:73:94:99:42:a6:83:4f:04:aa:c6:13:6b:71:cf:67:42:4d: 54:ba:a7:b9:14:48:b4:40:e6:fd:6c:b1:60:13:83:cb:9e:c3: d5:3e:6d:25:1d:b0:bf:7f:db:62:ad:af:a9:42:29:ca:55:84: 12:1d:9f:03:bd:d7:74:4f:ab:0c:d4:28:d9:8f:83:7b:c3:72: 46:db:11:77:65:03:c4:12:94:69:fe:21:e7:e1:0d:0f:4a:cb: 0a:66:82:22:40:03:1c:9c:40:c1:b0:33:bc:fe:8b:2f:ff:41: 71:57:7f:c3:da:86:7e:91:65:40:a2:76:73:35:01:25:85:c4: de:d6:9b:3c:30:ae:1b:c0:53:62:5e:92:de:30:2d:1a:68:f3: 39:36:b9:37:52:42:e8:44:48:82:92:42:14:82:47:a6:4a:2e: 42:d6:1e:98 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUU6n+s0U8KgG/egWRl2nVRnX3g2owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMzAwMTA0OFoX DTI2MDMwMzIzNTk1OVowejFJMEcGA1UEBRNAYzUyY2Y2YTkwYjk2Yzg0NjRkOWNm YjdiZjE2ZjMzNmVlZGQzZjZlMDBiNDE3N2FjZTM5MTFiYjkzYzVkZGVhZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqg97ES2M8Npj/M6aQ2ED0SHS/69r rJZggXOPQc+k9k1XuEWkxOUrd75ZW5iZgynR6SgVc0RL9UF2bZgwsqA9U9d/PeF+ BC2cr/chIFWdggXwmVlyBrbq12jRDM766PN81oqGeWStRhs+S46YN2nByhxPr3p+ AA3VdYCaqAVG0AbRk2ouRCLbBSe8UGnFj2a3J35Is2yBDoxzO3iQ+zywLIzkg3Gd lYmBAnbnDzhwAwIKL7Z7tKY9dkEoc+pkbGZXA0YJn3yYyFMYYrKnDIE6HSK2zrka nQCT/cLcFUbHR+B666HHtd2ZeWbn0+CZsmyR6NiEv7/XjITO1dYtk1X3xQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFO0Eb34cHfkfFfzmAgxr0mYazYMYMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2IzZWQ5MzRlLWI1MDctNGQxZS04MTA4LWQ5MDFmM2IzN2I2ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/xAwDQYJKoZIhvcNAQELBQADggEBAIIwW5gtmQjSLKcIp7Tf CDwek/zN9SwDao0Hk6yO76FE0I4qvTXz/cdEyX1iaj6V21hfpUCYLdEUlrDrf6hp iDi+hxhlWnrULvOPUVEzlJcbQKo494F2IPcE2m1zlJlCpoNPBKrGE2txz2dCTVS6 p7kUSLRA5v1ssWATg8uew9U+bSUdsL9/22Ktr6lCKcpVhBIdnwO913RPqwzUKNmP g3vDckbbEXdlA8QSlGn+IefhDQ9KywpmgiJAAxycQMGwM7z+iy//QXFXf8Pahn6R ZUCidnM1ASWFxN7WmzwwrhvAU2Jekt4wLRpo8zk2uTdSQuhESIKSQhSCR6ZKLkLW Hpg= -----END CERTIFICATE-----Generated at Sat Dec 6 11:54:25 2025 by rpki-client