This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c936087d-df40-4ca4-a8f2-4bf8f6aceb6f.roa File: c936087d-df40-4ca4-a8f2-4bf8f6aceb6f.roa (raw, json) Hash identifier: FDImbf2t5mkwDwoZzERNLgFWfuK6pHEWOriztYJzI78= Subject key identifier: A4:E2:2C:80:6D:AA:9F:41:83:FB:9E:D9:98:1A:E0:C0:AA:10:4B:E8 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5200C04F8BBD6090B4DCA93976A0F8CF59354CAE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c936087d-df40-4ca4-a8f2-4bf8f6aceb6f.roa Signing time: Tue 02 Dec 2025 00:30:47 +0000 ROA not before: Tue 02 Dec 2025 00:30:47 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:9080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:00:c0:4f:8b:bd:60:90:b4:dc:a9:39:76:a0:f8:cf:59:35:4c:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 2 00:30:47 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=1649dd3f0bcd4b0196677c66f01328a623c07557d478fff4cc26e5e09957040e, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:01:40:a7:ed:35:c1:0b:5d:13:07:db:64:20: fc:aa:5d:5f:ba:46:5b:8b:f1:11:28:c5:e5:14:27: 91:fa:20:71:ac:88:ca:0f:9d:27:9e:ed:3a:f7:1f: da:fc:bc:1b:97:27:8b:0f:08:04:9e:82:3e:4d:08: 29:ea:d9:f0:92:87:77:04:ac:25:83:13:2a:f9:71: 3e:66:75:ad:8c:9c:96:da:26:57:56:4c:1a:67:e2: a1:c5:39:1c:b3:d8:61:36:bf:bc:d9:f0:2c:91:13: a8:84:ff:d6:c9:53:81:6f:da:62:35:e0:3b:81:50: aa:03:b1:1d:75:4f:05:35:3f:71:45:a0:4d:9f:b9: b5:c8:f0:f1:63:52:42:cb:57:1d:d5:8a:1d:a2:14: 14:91:1d:62:28:7b:18:9f:cc:95:d6:51:e4:10:29: f7:96:5e:68:1c:11:ac:5a:5b:38:19:4b:44:68:26: 48:fd:59:0a:63:96:a4:06:51:8d:19:ba:26:cb:25: c3:3f:60:61:70:2c:94:00:a5:46:cb:8f:e6:10:e3: fe:05:2e:d9:85:97:05:a0:a3:cc:ce:9d:8a:a2:c1: f8:cc:11:4f:f3:53:b1:81:58:0b:3d:bc:d2:4d:28: 65:dd:f8:d8:2d:b2:5b:34:ef:c9:dd:25:cd:78:f1: 2a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:E2:2C:80:6D:AA:9F:41:83:FB:9E:D9:98:1A:E0:C0:AA:10:4B:E8 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c936087d-df40-4ca4-a8f2-4bf8f6aceb6f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:9080::/48 Signature Algorithm: sha256WithRSAEncryption 9b:59:ac:49:b5:9c:de:4b:b7:75:f3:8b:f6:25:97:14:5c:a0: 92:97:b0:35:e9:c2:e3:e2:0e:93:84:17:ff:b9:70:4c:04:19: a9:a4:1e:5f:dd:d3:dd:17:66:ea:9a:d6:b7:d6:40:6d:cf:6e: b2:f3:1f:e1:dc:27:0c:f8:3c:cf:9a:67:e7:c4:8c:20:4c:5e: c2:d1:9a:74:2a:16:d4:a3:5c:a1:30:41:3c:79:8a:56:7f:80: 99:95:62:5b:ad:d5:da:b8:a0:bd:b4:3b:9a:25:2a:c3:b5:9f: a9:81:69:cf:d0:e6:0a:68:ee:0c:44:ca:db:13:90:04:cc:d4: aa:df:5b:ab:41:d6:0d:0e:2a:3d:37:2a:8c:c6:21:13:44:05: d1:ee:53:15:52:35:8d:1a:5e:f2:75:3f:23:e8:58:70:76:56: 68:bd:92:63:73:d3:b3:9c:76:9c:c0:5e:5b:ee:3d:f1:d3:d8: 54:77:06:99:61:2e:b8:74:07:1e:7e:1e:ba:b4:fd:ab:65:09: c6:e4:06:48:ed:5c:1b:ea:2e:b4:b8:a5:c1:0e:64:09:39:a1: d7:59:54:cc:fc:c9:6f:d8:89:c7:44:99:95:bf:39:35:f6:27: fe:ea:4d:55:76:70:d9:08:cf:cf:76:6b:f9:5d:36:a4:1e:8a: 8c:18:01:3a -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUUgDAT4u9YJC03Kk5dqD4z1k1TK4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMjAwMzA0N1oX DTI2MDMwMjIzNTk1OVowejFJMEcGA1UEBRNAMTY0OWRkM2YwYmNkNGIwMTk2Njc3 YzY2ZjAxMzI4YTYyM2MwNzU1N2Q0NzhmZmY0Y2MyNmU1ZTA5OTU3MDQwZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3AFAp+01wQtdEwfbZCD8ql1fukZb i/ERKMXlFCeR+iBxrIjKD50nnu069x/a/LwblyeLDwgEnoI+TQgp6tnwkod3BKwl gxMq+XE+ZnWtjJyW2iZXVkwaZ+KhxTkcs9hhNr+82fAskROohP/WyVOBb9piNeA7 gVCqA7EddU8FNT9xRaBNn7m1yPDxY1JCy1cd1YodohQUkR1iKHsYn8yV1lHkECn3 ll5oHBGsWls4GUtEaCZI/VkKY5akBlGNGbomyyXDP2BhcCyUAKVGy4/mEOP+BS7Z hZcFoKPMzp2KosH4zBFP81OxgVgLPbzSTShl3fjYLbJbNO/J3SXNePEqNQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFKTiLIBtqp9Bg/ue2Zga4MCqEEvoMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2M5MzYwODdkLWRmNDAtNGNhNC1hOGYyLTRiZjhmNmFjZWI2Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba8pCAMA0GCSqGSIb3DQEBCwUAA4IBAQCbWaxJtZzeS7d184v2 JZcUXKCSl7A16cLj4g6ThBf/uXBMBBmppB5f3dPdF2bqmta31kBtz26y8x/h3CcM +DzPmmfnxIwgTF7C0Zp0KhbUo1yhMEE8eYpWf4CZlWJbrdXauKC9tDuaJSrDtZ+p gWnP0OYKaO4MRMrbE5AEzNSq31urQdYNDio9NyqMxiETRAXR7lMVUjWNGl7ydT8j 6FhwdlZovZJjc9OznHacwF5b7j3x09hUdwaZYS64dAcefh66tP2rZQnG5AZI7Vwb 6i60uKXBDmQJOaHXWVTM/Mlv2InHRJmVvzk19if+6k1VdnDZCM/Pdmv5XTakHoqM GAE6 -----END CERTIFICATE-----Generated at Sat Dec 6 10:56:33 2025 by rpki-client