This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ce6343d9-4647-4201-b1a6-8ca7ee4cc6b4.roa File: ce6343d9-4647-4201-b1a6-8ca7ee4cc6b4.roa (raw, json) Hash identifier: nx0x2/nJJjPbAuWkvhyFNE2SBC4vPhZ6AnWS6Mc6Bos= Subject key identifier: C2:3A:F5:2E:A5:C4:94:AD:83:33:3B:02:B5:8D:75:AC:F6:C2:07:5A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 107245BFC02C300F5E5195147159002416CEBCD1 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ce6343d9-4647-4201-b1a6-8ca7ee4cc6b4.roa Signing time: Sat 29 Nov 2025 00:00:49 +0000 ROA not before: Sat 29 Nov 2025 00:00:49 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf6:f000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:72:45:bf:c0:2c:30:0f:5e:51:95:14:71:59:00:24:16:ce:bc:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 29 00:00:49 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=40a79f84a219e8399808719dafea3f05cf51999e526c4c6bd5bfe30329c3beec, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:72:82:4a:1d:3b:21:58:d7:af:28:60:c1:dd: 7f:da:77:5a:20:db:62:bc:59:2f:9c:db:b6:e2:9c: 8a:c8:f4:97:2d:25:61:51:0e:8b:0f:44:ee:bd:60: d3:e0:ea:b8:f4:fe:9e:07:bd:77:20:4a:91:b5:8e: 60:43:70:9e:25:60:63:e6:8c:7e:6d:71:09:08:c4: 30:3a:bf:40:45:24:3e:68:1a:98:6a:60:77:2f:6c: 21:4a:1c:3a:c3:7a:39:90:69:2e:d8:54:ca:07:33: e1:b5:70:c3:70:71:2c:e6:ff:aa:3f:43:a6:f8:c8: f6:82:87:6d:e6:ee:6b:4a:85:8d:26:0f:d0:e8:a3: 16:d6:30:76:0d:2e:11:2d:b8:0e:51:89:04:9f:cc: c4:67:6d:dd:3a:49:17:1e:5b:46:2d:ae:f3:b3:9a: 09:c3:42:5f:36:07:f7:69:75:42:c7:9e:75:48:f5: 54:3b:b7:58:90:9c:f4:fc:a4:eb:ed:9e:d4:c9:1c: f9:ce:a3:42:a7:96:88:57:b2:ef:4a:ff:70:3e:33: 08:81:f3:f8:6e:7c:65:a6:b2:bc:c1:5a:0a:b9:10: 9c:de:c3:17:ac:f7:ca:ae:20:f8:da:5f:86:aa:f2: b4:6d:b4:d8:a0:e6:21:66:65:7a:15:75:8d:ee:a1: 25:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:3A:F5:2E:A5:C4:94:AD:83:33:3B:02:B5:8D:75:AC:F6:C2:07:5A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ce6343d9-4647-4201-b1a6-8ca7ee4cc6b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf6:f000::/48 Signature Algorithm: sha256WithRSAEncryption 2e:43:5e:00:fd:29:8c:30:84:ed:26:05:51:f2:89:8a:bc:61: bd:88:fb:7f:26:98:6f:11:66:0b:26:40:35:03:68:01:6f:fd: 9d:d1:4d:72:11:17:57:f4:39:a7:c7:8b:25:9a:c9:e5:dc:28: 30:98:5a:99:9c:13:23:e7:e2:72:31:29:19:f0:b5:17:1c:d3: c3:67:5f:1c:80:a3:34:c3:76:32:36:06:cd:88:83:82:e4:2e: 41:53:17:af:46:7d:43:9e:64:04:24:a9:97:38:8a:4e:1d:4b: d3:b1:a0:d4:38:45:26:2a:53:f8:90:73:0a:6d:c8:7a:2b:c1: 59:ca:9f:ff:75:21:dc:01:e2:51:2d:a8:20:09:99:56:fd:8d: cb:95:20:2d:71:0e:d2:5d:81:72:b7:3c:c4:aa:fd:8a:39:17: 64:45:69:2e:9b:b3:cd:25:18:47:e5:37:f0:39:3e:11:f6:01: 28:7d:01:bd:fe:de:df:27:9e:41:33:9b:d0:72:1f:fb:f2:48: e7:5c:79:e7:4e:07:1a:10:ef:48:88:67:8a:1b:b9:c6:aa:cd: e5:66:07:78:56:0a:33:0e:b4:74:ae:ff:69:ea:e1:9c:e2:97: 86:94:b8:5b:ce:38:2a:97:6b:f1:68:7a:2d:76:70:f6:9b:d3: 54:79:f5:ee -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUEHJFv8AsMA9eUZUUcVkAJBbOvNEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyOTAwMDA0OVoX DTI2MDIyNzIzNTk1OVowejFJMEcGA1UEBRNANDBhNzlmODRhMjE5ZTgzOTk4MDg3 MTlkYWZlYTNmMDVjZjUxOTk5ZTUyNmM0YzZiZDViZmUzMDMyOWMzYmVlYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtXKCSh07IVjXryhgwd1/2ndaINti vFkvnNu24pyKyPSXLSVhUQ6LD0TuvWDT4Oq49P6eB713IEqRtY5gQ3CeJWBj5ox+ bXEJCMQwOr9ARSQ+aBqYamB3L2whShw6w3o5kGku2FTKBzPhtXDDcHEs5v+qP0Om +Mj2godt5u5rSoWNJg/Q6KMW1jB2DS4RLbgOUYkEn8zEZ23dOkkXHltGLa7zs5oJ w0JfNgf3aXVCx551SPVUO7dYkJz0/KTr7Z7UyRz5zqNCp5aIV7LvSv9wPjMIgfP4 bnxlprK8wVoKuRCc3sMXrPfKriD42l+GqvK0bbTYoOYhZmV6FXWN7qEleQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFMI69S6lxJStgzM7ArWNdaz2wgdaMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2NlNjM0M2Q5LTQ2NDctNDIwMS1iMWE2LThjYTdlZTRjYzZiNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba9vAAMA0GCSqGSIb3DQEBCwUAA4IBAQAuQ14A/SmMMITtJgVR 8omKvGG9iPt/JphvEWYLJkA1A2gBb/2d0U1yERdX9Dmnx4slmsnl3CgwmFqZnBMj 5+JyMSkZ8LUXHNPDZ18cgKM0w3YyNgbNiIOC5C5BUxevRn1DnmQEJKmXOIpOHUvT saDUOEUmKlP4kHMKbch6K8FZyp//dSHcAeJRLaggCZlW/Y3LlSAtcQ7SXYFytzzE qv2KORdkRWkum7PNJRhH5TfwOT4R9gEofQG9/t7fJ55BM5vQch/78kjnXHnnTgca EO9IiGeKG7nGqs3lZgd4VgozDrR0rv9p6uGc4peGlLhbzjgql2vxaHotdnD2m9NU efXu -----END CERTIFICATE-----Generated at Sat Dec 6 11:00:17 2025 by rpki-client