This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d8ebfb4d-f771-4efb-821c-cd11d5a24a47.roa File: d8ebfb4d-f771-4efb-821c-cd11d5a24a47.roa (raw, json) Hash identifier: 37n3/XnDlTSkRaTvi9bqTYOQoPYik8/JWSnpsmmyXEE= Subject key identifier: 33:A6:0A:F4:EA:C3:ED:BB:1B:17:59:D1:BC:90:F9:D6:CB:CB:BC:1F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3275DCD1514E39A9D2CC20CC7203C11C7322DA9C Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d8ebfb4d-f771-4efb-821c-cd11d5a24a47.roa Signing time: Sun 30 Nov 2025 00:01:22 +0000 ROA not before: Sun 30 Nov 2025 00:01:22 +0000 ROA not after: Sat 28 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:c080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:75:dc:d1:51:4e:39:a9:d2:cc:20:cc:72:03:c1:1c:73:22:da:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 30 00:01:22 2025 GMT Not After : Feb 28 23:59:59 2026 GMT Subject: serialNumber=1e74ec25da5721dcabe437e3a622805db717f9707b85d4dd02994fba7cb6faaa, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:58:89:d6:71:a8:c9:19:e3:41:b2:57:34:79: 7b:3c:a5:cb:0f:d2:1c:12:90:06:e6:cf:00:12:22: fc:99:9d:46:ae:cf:a6:0d:1f:be:f6:99:01:22:c6: 57:02:53:8b:5b:40:c4:eb:7c:ee:38:68:05:1c:eb: 3c:4c:32:dc:69:87:97:6f:6c:84:0d:fa:2a:db:c0: cd:6e:04:8a:11:70:d7:0f:55:60:7c:f0:69:60:16: 83:4a:11:87:7b:fc:fc:bb:13:b1:24:27:27:c6:c5: 5a:50:2e:55:97:73:5b:86:05:ca:c2:fd:c1:5f:13: 6d:e1:20:c4:af:12:0d:30:02:8d:82:e0:bf:85:8a: f5:f6:d6:44:e6:5b:66:5a:bb:d7:37:4a:cf:e3:bc: 61:b3:13:b2:0d:83:19:18:76:e6:13:e4:8a:ac:16: f5:88:bf:be:2b:35:46:f7:d9:14:cc:a2:32:c0:6c: 8f:bd:f1:11:c2:7b:f1:74:f0:21:38:0c:d2:d4:f3: 65:c1:65:6a:2f:81:de:02:4d:53:31:f5:bc:a5:ab: 8a:c3:20:1f:5d:9e:fe:16:33:62:d9:d1:e0:51:8f: 7a:51:41:e1:3b:8b:6e:01:8a:d3:6a:6e:ac:8a:63: 06:07:2f:53:33:fb:ba:46:3a:6f:d5:40:9f:46:ad: 62:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:A6:0A:F4:EA:C3:ED:BB:1B:17:59:D1:BC:90:F9:D6:CB:CB:BC:1F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d8ebfb4d-f771-4efb-821c-cd11d5a24a47.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:c080::/48 Signature Algorithm: sha256WithRSAEncryption ac:61:86:59:d9:29:89:4e:54:06:62:24:7f:94:4a:21:2c:65: 28:fb:7e:70:46:48:27:eb:f4:5c:6b:80:2f:fb:28:63:82:9e: 3f:3e:83:8d:bf:78:5f:9e:b5:73:cd:71:a7:83:79:50:a3:aa: 5e:e2:25:d8:a2:81:98:c8:a1:47:26:6b:a2:04:c8:c7:fd:50: 23:87:b8:86:7f:5a:27:be:38:f4:08:bf:ad:9a:6c:76:11:16: d7:d2:8e:be:09:4d:7d:bf:6e:0c:9e:4f:5d:ee:9c:24:51:e1: a7:3c:e1:c5:4a:52:0a:d1:9a:06:29:aa:9e:34:08:f7:45:10: 23:e9:e5:e0:d5:e7:30:a5:a9:74:6a:cc:5a:0e:6e:95:f2:41: 2c:b1:6e:be:f6:34:a7:5a:4f:95:69:95:ab:bf:3e:eb:4d:e1: 35:fd:3e:5e:f6:16:55:09:01:eb:96:db:0f:31:9f:53:25:3d: 4d:93:a8:a1:36:3e:1d:0f:d0:a0:63:9f:5d:3c:2a:c6:4f:61: 55:b4:3c:10:0a:f6:db:25:dc:c3:16:33:b3:9f:95:4d:01:d0: 95:26:ab:a5:ad:eb:0e:3f:51:a3:cc:ca:a9:9f:32:92:58:73: 17:5a:28:c8:1d:25:6d:c1:92:16:89:25:f6:ba:59:cf:bd:27: 40:58:69:55 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUMnXc0VFOOanSzCDMcgPBHHMi2pwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEzMDAwMDEyMloX DTI2MDIyODIzNTk1OVowejFJMEcGA1UEBRNAMWU3NGVjMjVkYTU3MjFkY2FiZTQz N2UzYTYyMjgwNWRiNzE3Zjk3MDdiODVkNGRkMDI5OTRmYmE3Y2I2ZmFhYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvFiJ1nGoyRnjQbJXNHl7PKXLD9Ic EpAG5s8AEiL8mZ1Grs+mDR++9pkBIsZXAlOLW0DE63zuOGgFHOs8TDLcaYeXb2yE Dfoq28DNbgSKEXDXD1VgfPBpYBaDShGHe/z8uxOxJCcnxsVaUC5Vl3NbhgXKwv3B XxNt4SDErxINMAKNguC/hYr19tZE5ltmWrvXN0rP47xhsxOyDYMZGHbmE+SKrBb1 iL++KzVG99kUzKIywGyPvfERwnvxdPAhOAzS1PNlwWVqL4HeAk1TMfW8pauKwyAf XZ7+FjNi2dHgUY96UUHhO4tuAYrTam6simMGBy9TM/u6Rjpv1UCfRq1iXwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFDOmCvTqw+27GxdZ0byQ+dbLy7wfMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Q4ZWJmYjRkLWY3NzEtNGVmYi04MjFjLWNkMTFkNWEyNGE0Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYcCAMA0GCSqGSIb3DQEBCwUAA4IBAQCsYYZZ2SmJTlQGYiR/ lEohLGUo+35wRkgn6/Rca4Av+yhjgp4/PoONv3hfnrVzzXGng3lQo6pe4iXYooGY yKFHJmuiBMjH/VAjh7iGf1onvjj0CL+tmmx2ERbX0o6+CU19v24Mnk9d7pwkUeGn POHFSlIK0ZoGKaqeNAj3RRAj6eXg1ecwpal0asxaDm6V8kEssW6+9jSnWk+VaZWr vz7rTeE1/T5e9hZVCQHrltsPMZ9TJT1Nk6ihNj4dD9CgY59dPCrGT2FVtDwQCvbb JdzDFjOzn5VNAdCVJqulresOP1GjzMqpnzKSWHMXWijIHSVtwZIWiSX2ulnPvSdA WGlV -----END CERTIFICATE-----Generated at Sat Dec 6 10:55:18 2025 by rpki-client