This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b772f459-72fe-4c7d-8f8c-61cce5a944c0.roa File: b772f459-72fe-4c7d-8f8c-61cce5a944c0.roa (raw, json) Hash identifier: LdBEnoRcHQ2X6InXArdvCSJjPoejHRlAmtRI4BOBflg= Subject key identifier: 0D:A8:F0:58:E0:8C:4E:BB:5E:40:DC:C5:9E:41:11:BA:65:FF:6E:C2 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: ADFDE18424CD4AABEC700494563C4226038ECA Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b772f459-72fe-4c7d-8f8c-61cce5a944c0.roa Signing time: Thu 27 Nov 2025 00:00:51 +0000 ROA not before: Thu 27 Nov 2025 00:00:51 +0000 ROA not after: Wed 25 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:7000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: ad:fd:e1:84:24:cd:4a:ab:ec:70:04:94:56:3c:42:26:03:8e:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 27 00:00:51 2025 GMT Not After : Feb 25 23:59:59 2026 GMT Subject: serialNumber=e1cde600cce1e93be5ce614636bb5514e426e726997dc056974f3bff98a58682, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:fb:28:5a:91:99:45:ad:aa:ca:0d:ff:8f:d2: 9d:d4:17:d8:68:b5:d4:72:57:94:25:72:d8:84:6f: a2:cf:59:2e:da:2a:cb:52:ba:09:a7:67:5b:8f:e0: 51:cb:c8:a6:54:16:85:94:83:b0:7f:7d:dd:67:8a: 8e:d6:a2:80:58:e6:5b:8a:11:54:36:40:a0:68:cf: 23:02:29:c9:5e:2c:6b:68:ed:a7:c8:c9:3a:29:60: e1:55:04:1c:63:d4:89:73:95:0f:4c:a5:95:8d:8e: 92:e3:0e:28:00:90:32:d7:69:ce:8f:23:94:61:4d: af:cc:78:6f:68:64:3f:5d:dd:58:94:30:3b:8a:b0: 65:b3:1f:7a:02:a4:43:dd:05:09:8a:f1:be:e2:09: 0a:8c:5e:a2:0b:4b:3b:83:6f:d4:c0:ca:59:68:70: 35:d1:11:34:22:fc:df:c3:4a:fa:e9:23:58:89:fd: 94:07:de:fd:fb:d9:07:90:a4:e0:3d:92:e9:c9:e2: 25:16:d5:7e:da:c5:2c:9f:8e:a6:8b:4a:2b:31:0b: c5:ec:29:8a:58:84:3f:7b:1a:fb:fc:25:c1:81:68: 54:aa:a6:d9:1d:16:d1:8e:25:e6:f7:bf:2c:c4:88: 11:8c:e7:1f:2a:ce:61:3b:b0:31:89:1a:36:c3:a4: 46:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:A8:F0:58:E0:8C:4E:BB:5E:40:DC:C5:9E:41:11:BA:65:FF:6E:C2 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b772f459-72fe-4c7d-8f8c-61cce5a944c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:7000::/48 Signature Algorithm: sha256WithRSAEncryption 42:06:f3:34:78:22:d8:81:20:e8:1f:fe:4f:72:5d:db:53:41: 5d:0e:08:7a:00:30:65:48:77:aa:41:b1:c9:e9:9d:87:af:fa: 6e:1e:57:ce:2e:9a:7c:bd:9b:3f:06:bb:31:98:9a:63:95:61: c4:8d:ad:4f:13:aa:ef:7e:9f:c7:04:26:04:c7:d5:20:64:37: 6a:66:83:40:09:8a:ad:0d:b5:dd:ac:17:37:d7:42:52:e7:07: bd:3e:90:c8:bc:fd:ba:a4:f2:9c:0d:89:91:7f:90:9c:5e:3c: d4:dc:34:83:71:bd:ee:d2:bb:81:79:74:7f:97:c6:42:b3:10: 0b:96:2e:69:6b:75:9f:b8:19:62:89:ed:e3:c4:23:1b:ba:fe: a0:0f:b9:db:94:56:bc:05:b0:c3:69:28:94:d1:5d:e4:31:ba: e9:67:ee:db:43:eb:79:e3:2d:3b:ab:7e:c2:c7:11:6c:f8:e6: a7:d4:83:fb:b9:96:3f:66:95:2b:ee:76:72:e7:ff:44:a7:ea: 7e:e3:2f:1d:d3:89:6f:35:ed:9d:52:30:d1:64:ff:46:3b:b9: 89:be:29:39:50:c4:a4:ee:53:f7:cd:9f:16:b3:44:16:b8:bc: 74:cf:16:db:af:80:40:d8:a0:90:e4:a1:3a:e7:b1:05:38:53: 33:5e:20:c4 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUAK394YQkzUqr7HAElFY8QiYDjsowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyNzAwMDA1MVoX DTI2MDIyNTIzNTk1OVowejFJMEcGA1UEBRNAZTFjZGU2MDBjY2UxZTkzYmU1Y2U2 MTQ2MzZiYjU1MTRlNDI2ZTcyNjk5N2RjMDU2OTc0ZjNiZmY5OGE1ODY4MjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7/soWpGZRa2qyg3/j9Kd1BfYaLXU cleUJXLYhG+iz1ku2irLUroJp2dbj+BRy8imVBaFlIOwf33dZ4qO1qKAWOZbihFU NkCgaM8jAinJXixraO2nyMk6KWDhVQQcY9SJc5UPTKWVjY6S4w4oAJAy12nOjyOU YU2vzHhvaGQ/Xd1YlDA7irBlsx96AqRD3QUJivG+4gkKjF6iC0s7g2/UwMpZaHA1 0RE0Ivzfw0r66SNYif2UB979+9kHkKTgPZLpyeIlFtV+2sUsn46mi0orMQvF7CmK WIQ/exr7/CXBgWhUqqbZHRbRjiXm978sxIgRjOcfKs5hO7AxiRo2w6RGRwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFA2o8FjgjE67XkDcxZ5BEbpl/27CMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2I3NzJmNDU5LTcyZmUtNGM3ZC04ZjhjLTYxY2NlNWE5NDRjMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba9nAAMA0GCSqGSIb3DQEBCwUAA4IBAQBCBvM0eCLYgSDoH/5P cl3bU0FdDgh6ADBlSHeqQbHJ6Z2Hr/puHlfOLpp8vZs/BrsxmJpjlWHEja1PE6rv fp/HBCYEx9UgZDdqZoNACYqtDbXdrBc310JS5we9PpDIvP26pPKcDYmRf5CcXjzU 3DSDcb3u0ruBeXR/l8ZCsxALli5pa3WfuBliie3jxCMbuv6gD7nblFa8BbDDaSiU 0V3kMbrpZ+7bQ+t54y07q37CxxFs+Oan1IP7uZY/ZpUr7nZy5/9Ep+p+4y8d04lv Ne2dUjDRZP9GO7mJvik5UMSk7lP3zZ8Ws0QWuLx0zxbbr4BA2KCQ5KE657EFOFMz XiDE -----END CERTIFICATE-----Generated at Sat Dec 6 13:38:54 2025 by rpki-client