This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d8456f50-6ead-49e9-ad54-f384ac4008be.roa File: d8456f50-6ead-49e9-ad54-f384ac4008be.roa (raw, json) Hash identifier: kpX3bumqi89DmgnmgvMq9bqKeweYW06Z31Kb4H5ltrY= Subject key identifier: A1:23:2B:CF:7C:8C:B6:5D:52:3B:FD:A5:8E:3A:9A:C9:AE:40:B4:8F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7DC5353EA25A3912D037833A8B500043D3F1DFE9 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d8456f50-6ead-49e9-ad54-f384ac4008be.roa Signing time: Wed 26 Nov 2025 00:00:56 +0000 ROA not before: Wed 26 Nov 2025 00:00:56 +0000 ROA not after: Tue 24 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dab9:7000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:c5:35:3e:a2:5a:39:12:d0:37:83:3a:8b:50:00:43:d3:f1:df:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 26 00:00:56 2025 GMT Not After : Feb 24 23:59:59 2026 GMT Subject: serialNumber=99c4496e3823901fa86da28dea41f9fda8cc6104112e00251afa751391d4f0ff, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:87:eb:9c:03:c2:c3:2c:b3:ff:5e:f8:a2:a8: b7:f2:13:cf:9f:00:a2:3f:0c:f2:a2:80:77:a8:86: d9:b5:6b:d7:f3:5a:00:f3:59:61:a8:8c:96:b2:02: 4c:83:10:76:c6:5a:99:59:f4:2d:68:17:94:b7:74: 77:cb:2d:7e:27:23:c0:85:6a:0e:dd:fc:07:55:1e: 7e:fc:a2:5b:a5:52:59:86:e5:0f:55:b3:cf:e4:e5: 82:83:d1:a9:29:6f:3d:6b:8a:6c:63:ae:b4:7e:11: 44:20:b1:b6:2f:fb:70:5b:a1:b0:ba:8f:fd:e3:c1: 19:d2:b3:76:52:de:6d:62:60:83:32:d0:08:7c:36: e0:12:18:7b:d3:4e:6e:5d:7c:91:cd:6f:58:c8:45: db:1c:8a:cf:c7:1f:37:85:20:0f:d5:3b:14:b5:b1: 12:d4:a9:7a:59:5a:15:67:2f:b7:ad:bf:8c:3f:89: 11:1e:fa:e7:4e:cb:88:9d:a7:bd:0c:b8:09:47:fc: 65:38:85:f6:53:b1:2c:19:ff:54:ce:d3:a8:f3:54: 74:18:6c:51:6e:c3:cd:d5:2c:6f:6b:27:11:fa:8c: 7d:4b:14:2e:a9:52:ca:ef:69:58:f1:86:ff:eb:2a: 89:0b:75:9e:07:9f:9c:c1:a5:31:24:5f:af:15:b4: be:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:23:2B:CF:7C:8C:B6:5D:52:3B:FD:A5:8E:3A:9A:C9:AE:40:B4:8F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d8456f50-6ead-49e9-ad54-f384ac4008be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab9:7000::/40 Signature Algorithm: sha256WithRSAEncryption 8c:a9:1a:2b:35:a6:44:22:0e:ac:35:b3:b9:68:49:d5:11:ba: 61:11:c0:6d:a6:71:59:fd:96:c7:44:8c:51:3d:44:2e:0d:13: ac:fb:a5:48:c5:79:ab:89:8f:6d:9e:00:de:8e:88:2e:bb:20: 9b:f5:b2:5c:90:b5:4f:78:3e:b7:58:67:cb:f1:0b:5a:f1:6a: cb:af:d3:7f:7f:b0:23:72:87:ef:0a:af:f7:3a:6b:08:95:b5: 36:73:c0:32:54:94:e3:b4:85:fd:39:d5:59:0b:bb:7b:2c:de: 74:4a:3e:a4:dc:59:fc:a7:89:44:45:c5:ed:6d:05:c2:31:7e: 75:f7:10:67:02:ba:50:f2:bc:e5:8d:49:69:e8:a9:38:58:63: e9:21:01:11:cf:7a:c4:99:6b:dc:91:ba:2f:1f:ad:8f:b7:e3: fe:11:39:ba:3c:e9:b8:b1:31:59:b7:77:52:28:5b:5f:60:75: 2b:1b:bf:5f:35:3d:5c:d3:56:2c:61:ef:79:6a:bf:3e:93:9b: d6:28:98:30:46:9f:f5:d3:01:63:74:3b:42:fa:78:d5:6e:44: 81:c9:81:8c:da:c1:9f:11:e8:dd:99:0a:67:67:d3:5d:94:45: ee:17:f9:0b:07:f2:76:7d:19:ba:1d:9e:a8:54:5f:12:f9:7e: fd:39:f1:f5 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUfcU1PqJaORLQN4M6i1AAQ9Px3+kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyNjAwMDA1NloX DTI2MDIyNDIzNTk1OVowejFJMEcGA1UEBRNAOTljNDQ5NmUzODIzOTAxZmE4NmRh MjhkZWE0MWY5ZmRhOGNjNjEwNDExMmUwMDI1MWFmYTc1MTM5MWQ0ZjBmZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm4frnAPCwyyz/174oqi38hPPnwCi PwzyooB3qIbZtWvX81oA81lhqIyWsgJMgxB2xlqZWfQtaBeUt3R3yy1+JyPAhWoO 3fwHVR5+/KJbpVJZhuUPVbPP5OWCg9GpKW89a4psY660fhFEILG2L/twW6Gwuo/9 48EZ0rN2Ut5tYmCDMtAIfDbgEhh7005uXXyRzW9YyEXbHIrPxx83hSAP1TsUtbES 1Kl6WVoVZy+3rb+MP4kRHvrnTsuInae9DLgJR/xlOIX2U7EsGf9UztOo81R0GGxR bsPN1SxvaycR+ox9SxQuqVLK72lY8Yb/6yqJC3WeB5+cwaUxJF+vFbS+dwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFKEjK898jLZdUjv9pY46msmuQLSPMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Q4NDU2ZjUwLTZlYWQtNDllOS1hZDU0LWYzODRhYzQwMDhiZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbauXAwDQYJKoZIhvcNAQELBQADggEBAIypGis1pkQiDqw1s7lo SdURumERwG2mcVn9lsdEjFE9RC4NE6z7pUjFeauJj22eAN6OiC67IJv1slyQtU94 PrdYZ8vxC1rxasuv039/sCNyh+8Kr/c6awiVtTZzwDJUlOO0hf051VkLu3ss3nRK PqTcWfyniURFxe1tBcIxfnX3EGcCulDyvOWNSWnoqThYY+khARHPesSZa9yRui8f rY+34/4RObo86bixMVm3d1IoW19gdSsbv181PVzTVixh73lqvz6Tm9YomDBGn/XT AWN0O0L6eNVuRIHJgYzawZ8R6N2ZCmdn012URe4X+QsH8nZ9GbodnqhUXxL5fv05 8fU= -----END CERTIFICATE-----Generated at Sat Dec 6 13:53:53 2025 by rpki-client