This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d5fd65b7-7b6d-44c2-b189-8290e9cab2c0.roa File: d5fd65b7-7b6d-44c2-b189-8290e9cab2c0.roa (raw, json) Hash identifier: pFLQbcQlIcTwFfUrFSWXyYZL5n3TeOH1BC31ZMQOJl0= Subject key identifier: A9:89:3B:8F:0B:FD:0B:1F:06:79:3C:82:EC:68:7C:FD:20:AC:7A:89 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6CA5B310808B47F8B7517DF7CF6C8D719490BA4D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d5fd65b7-7b6d-44c2-b189-8290e9cab2c0.roa Signing time: Wed 26 Nov 2025 00:00:59 +0000 ROA not before: Wed 26 Nov 2025 00:00:59 +0000 ROA not after: Tue 24 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2406:daf4:7000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:a5:b3:10:80:8b:47:f8:b7:51:7d:f7:cf:6c:8d:71:94:90:ba:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 26 00:00:59 2025 GMT Not After : Feb 24 23:59:59 2026 GMT Subject: serialNumber=f88925bd8ff667c56631fdef9b3e50f33afd7a114f50f07976a0f8fce10049c5, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:bd:1a:ea:ae:a6:7f:1f:52:10:92:f6:83:11: af:92:da:c6:3a:58:ec:73:09:f5:53:4b:b1:94:e0: 1d:ce:6d:48:e5:d8:34:cb:df:f0:9a:a4:0a:96:2f: a4:f4:2f:f3:19:16:f0:36:bb:94:75:8c:65:3d:2f: b3:74:ed:4f:12:f3:04:13:8d:65:fe:5d:17:2c:2d: c1:50:f1:23:76:fd:ef:4a:ef:18:ec:e0:0e:22:35: 20:53:c3:3d:be:68:df:53:58:c2:06:75:18:ed:9d: 63:b0:88:56:0c:16:79:2f:56:a5:8d:22:ed:d8:35: 04:3c:59:d4:cc:90:ed:f9:1c:40:a6:c3:80:0a:13: 89:4a:2f:60:6c:68:5e:89:8b:d7:e5:cd:2f:e6:e5: 7b:5e:57:9c:ac:6b:72:e8:df:ec:0e:1a:ea:09:81: 27:ee:89:1d:b6:78:ad:5d:0f:eb:9c:01:88:a1:54: 53:a7:9c:f7:03:4d:e8:b4:a8:4b:b9:f7:db:7d:90: f2:e6:94:ba:44:ea:8d:16:ac:22:d4:02:88:94:60: fe:83:e7:7c:02:45:3c:be:a2:9a:27:7e:5a:35:f6: b5:30:ef:e1:37:5b:9c:08:d4:b5:f1:72:da:52:60: 6a:36:b2:f5:8a:41:2a:fa:7f:45:61:69:ba:df:03: 5a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:89:3B:8F:0B:FD:0B:1F:06:79:3C:82:EC:68:7C:FD:20:AC:7A:89 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d5fd65b7-7b6d-44c2-b189-8290e9cab2c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf4:7000::/40 Signature Algorithm: sha256WithRSAEncryption 0d:b5:c1:60:f3:93:bb:f7:21:d4:ec:8b:88:50:c1:e7:5d:51: 13:df:fe:08:4d:7e:a5:99:99:37:75:e0:d9:5d:4f:a7:97:e2: d6:72:74:91:9b:31:86:5b:58:e9:75:d5:9b:cd:31:bc:4d:fc: 59:b1:61:66:e1:c2:fe:50:05:1f:a4:18:33:20:a7:2a:5d:fd: fa:ed:1f:66:24:e7:f9:1d:9b:be:ed:f0:aa:b3:83:29:4c:9f: b7:49:da:08:0c:ca:90:10:13:35:12:45:ea:95:70:59:30:cf: 67:fd:34:2a:72:e5:cc:e9:11:ad:7e:aa:c2:33:54:58:8a:5a: 0d:62:87:76:72:f5:23:92:ee:88:6a:f7:46:f0:25:99:27:97: cf:71:64:6e:37:5c:c7:d7:bc:75:cb:c1:f9:a1:80:b8:53:65: 6e:b4:03:79:da:21:a8:c1:d9:3e:1c:9b:ef:87:1d:41:a5:58: 86:75:c6:7c:50:11:71:d4:3c:00:29:e8:0a:f6:15:46:30:63: 26:5c:c7:94:fb:94:a8:83:ca:1b:8c:43:5b:a9:7a:53:44:60: 6c:03:c3:bc:03:8b:2f:df:b2:3b:9d:ae:42:fc:0b:69:90:ae: 2a:ea:25:84:21:7b:22:12:e4:0e:bb:e3:b2:21:69:e4:81:14: be:74:1f:5b -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUbKWzEICLR/i3UX33z2yNcZSQuk0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyNjAwMDA1OVoX DTI2MDIyNDIzNTk1OVowejFJMEcGA1UEBRNAZjg4OTI1YmQ4ZmY2NjdjNTY2MzFm ZGVmOWIzZTUwZjMzYWZkN2ExMTRmNTBmMDc5NzZhMGY4ZmNlMTAwNDljNTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA070a6q6mfx9SEJL2gxGvktrGOljs cwn1U0uxlOAdzm1I5dg0y9/wmqQKli+k9C/zGRbwNruUdYxlPS+zdO1PEvMEE41l /l0XLC3BUPEjdv3vSu8Y7OAOIjUgU8M9vmjfU1jCBnUY7Z1jsIhWDBZ5L1aljSLt 2DUEPFnUzJDt+RxApsOAChOJSi9gbGheiYvX5c0v5uV7XlecrGty6N/sDhrqCYEn 7okdtnitXQ/rnAGIoVRTp5z3A03otKhLuffbfZDy5pS6ROqNFqwi1AKIlGD+g+d8 AkU8vqKaJ35aNfa1MO/hN1ucCNS18XLaUmBqNrL1ikEq+n9FYWm63wNa5QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFKmJO48L/QsfBnk8guxofP0grHqJMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Q1ZmQ2NWI3LTdiNmQtNDRjMi1iMTg5LTgyOTBlOWNhYjJjMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9HAwDQYJKoZIhvcNAQELBQADggEBAA21wWDzk7v3IdTsi4hQ weddURPf/ghNfqWZmTd14NldT6eX4tZydJGbMYZbWOl11ZvNMbxN/FmxYWbhwv5Q BR+kGDMgpypd/frtH2Yk5/kdm77t8KqzgylMn7dJ2ggMypAQEzUSReqVcFkwz2f9 NCpy5czpEa1+qsIzVFiKWg1ih3Zy9SOS7ohq90bwJZknl89xZG43XMfXvHXLwfmh gLhTZW60A3naIajB2T4cm++HHUGlWIZ1xnxQEXHUPAAp6Ar2FUYwYyZcx5T7lKiD yhuMQ1upelNEYGwDw7wDiy/fsjudrkL8C2mQrirqJYQheyIS5A6747IhaeSBFL50 H1s= -----END CERTIFICATE-----Generated at Sat Dec 6 11:56:30 2025 by rpki-client