This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/db5682b0-dca6-45be-b164-56698b11cc97.roa File: db5682b0-dca6-45be-b164-56698b11cc97.roa (raw, json) Hash identifier: OAzcSifr2Wft93r2mykVNds3SBkMB4+/fvBosLZqhRo= Subject key identifier: 51:FE:41:38:62:27:48:85:11:A5:B6:03:CA:04:C1:65:FC:E3:33:8F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0FD0520C6C5609FAB633D6365038D7CBEF450F15 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/db5682b0-dca6-45be-b164-56698b11cc97.roa Signing time: Tue 02 Dec 2025 00:20:35 +0000 ROA not before: Tue 02 Dec 2025 00:20:35 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:10c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:d0:52:0c:6c:56:09:fa:b6:33:d6:36:50:38:d7:cb:ef:45:0f:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 2 00:20:35 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=ed8008b380d2fc599ac3e88c0fb3368748c12f0c67865bf786b1696ddbff7b5a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f1:59:38:57:de:0a:d7:4c:7f:94:1d:89:dd: 84:ea:34:c2:b2:2c:a1:d1:2d:a9:8e:e2:b8:64:a8: d6:b7:6a:1a:5e:cf:68:d9:9e:30:5a:e1:1f:86:be: e4:90:7d:6b:62:35:34:7e:e4:5b:03:f5:74:45:29: e4:b4:9d:9c:ab:1a:ed:95:04:65:5d:de:3e:a0:5e: 93:0b:ed:78:fe:6a:d8:39:78:99:64:37:4f:68:b9: 48:89:ac:5c:05:82:9c:1c:89:81:31:a5:f4:0f:0b: 50:e6:51:de:d7:08:61:60:e0:98:5c:1a:23:92:06: 80:39:d3:e1:e3:4d:14:f8:a7:b5:70:78:e1:87:9f: 2a:b2:db:85:24:7a:d7:ad:b1:f9:62:c2:aa:4e:03: bd:61:b6:d0:10:9d:5f:5d:57:dc:59:4a:dd:67:c5: 6a:76:f1:04:57:83:6d:7f:4c:77:d6:2f:ef:97:b9: 9d:cc:48:a1:eb:94:4a:ff:a5:56:92:c8:af:a8:eb: 77:af:5f:bc:e7:ca:ef:2e:6d:df:8e:c9:95:c1:4d: 8e:c2:eb:66:51:56:d4:16:fc:0a:25:86:e0:bf:aa: ec:08:12:56:a0:6c:37:66:03:14:0a:56:81:5f:7a: 88:7e:b7:76:6c:b5:b4:4b:ca:60:5d:d5:65:3d:09: 55:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:FE:41:38:62:27:48:85:11:A5:B6:03:CA:04:C1:65:FC:E3:33:8F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/db5682b0-dca6-45be-b164-56698b11cc97.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:10c0::/48 Signature Algorithm: sha256WithRSAEncryption a6:bd:8c:97:2f:5e:cd:e6:58:10:93:fc:1a:cb:e5:b1:43:4d: 1b:80:0e:25:8a:c2:47:12:02:9b:7b:86:3f:a8:59:06:ed:c5: 8c:12:8e:73:88:a6:f0:6c:5d:06:5b:aa:95:32:06:5c:59:2c: e7:70:a9:c6:c2:11:62:b5:b9:1c:b3:40:58:7e:7c:5e:9f:d7: 3c:90:5b:0d:7a:59:73:09:58:47:e8:89:12:b4:91:00:bd:79: 11:68:9c:56:31:93:ce:34:70:ee:4e:1a:db:43:d9:8f:97:fc: c6:aa:c7:1d:eb:f4:c5:3d:70:02:08:bb:bd:1f:4d:4b:39:32: 73:87:fb:13:54:41:d5:3d:f2:3e:cc:c3:74:90:d6:5a:03:62: f2:be:72:cf:5b:c9:03:f5:f9:57:56:5c:92:df:05:15:f8:9c: 6b:f6:22:0a:5f:0e:4f:4c:b9:ea:a1:df:70:0e:2b:49:b4:42: 91:8c:16:6a:d7:3c:df:9a:06:08:41:0d:4a:a8:4c:4a:70:fd: 08:49:40:9f:97:1e:0f:81:f9:95:51:0c:d1:55:ab:f9:5e:3b: 8b:bd:2a:e6:82:21:45:23:75:a8:57:8a:a5:2d:1b:29:3f:a2: 57:89:08:82:2d:56:c3:5f:72:b6:8d:c3:27:e5:f6:cb:9b:4c: 26:f3:0b:0a -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUD9BSDGxWCfq2M9Y2UDjXy+9FDxUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMjAwMjAzNVoX DTI2MDMwMjIzNTk1OVowejFJMEcGA1UEBRNAZWQ4MDA4YjM4MGQyZmM1OTlhYzNl ODhjMGZiMzM2ODc0OGMxMmYwYzY3ODY1YmY3ODZiMTY5NmRkYmZmN2I1YTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3PFZOFfeCtdMf5Qdid2E6jTCsiyh 0S2pjuK4ZKjWt2oaXs9o2Z4wWuEfhr7kkH1rYjU0fuRbA/V0RSnktJ2cqxrtlQRl Xd4+oF6TC+14/mrYOXiZZDdPaLlIiaxcBYKcHImBMaX0DwtQ5lHe1whhYOCYXBoj kgaAOdPh400U+Ke1cHjhh58qstuFJHrXrbH5YsKqTgO9YbbQEJ1fXVfcWUrdZ8Vq dvEEV4Ntf0x31i/vl7mdzEih65RK/6VWksivqOt3r1+858rvLm3fjsmVwU2Owutm UVbUFvwKJYbgv6rsCBJWoGw3ZgMUClaBX3qIfrd2bLW0S8pgXdVlPQlV6wIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFFH+QThiJ0iFEaW2A8oEwWX84zOPMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2RiNTY4MmIwLWRjYTYtNDViZS1iMTY0LTU2Njk4YjExY2M5Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba8hDAMA0GCSqGSIb3DQEBCwUAA4IBAQCmvYyXL17N5lgQk/wa y+WxQ00bgA4lisJHEgKbe4Y/qFkG7cWMEo5ziKbwbF0GW6qVMgZcWSzncKnGwhFi tbkcs0BYfnxen9c8kFsNellzCVhH6IkStJEAvXkRaJxWMZPONHDuThrbQ9mPl/zG qscd6/TFPXACCLu9H01LOTJzh/sTVEHVPfI+zMN0kNZaA2LyvnLPW8kD9flXVlyS 3wUV+Jxr9iIKXw5PTLnqod9wDitJtEKRjBZq1zzfmgYIQQ1KqExKcP0ISUCflx4P gfmVUQzRVav5XjuLvSrmgiFFI3WoV4qlLRspP6JXiQiCLVbDX3K2jcMn5fbLm0wm 8wsK -----END CERTIFICATE-----Generated at Sat Dec 6 11:11:54 2025 by rpki-client