This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e07c6407-4a6d-4c72-8e3f-4f2d148c1b6d.roa File: e07c6407-4a6d-4c72-8e3f-4f2d148c1b6d.roa (raw, json) Hash identifier: 0/UoNPOIHjBAgxod6E8Tvx4NVVoDcyAxm4CITevKMtM= Subject key identifier: BD:66:06:0D:E4:A4:27:0B:AA:DD:A2:F3:4F:4E:89:D4:21:0F:B6:FB Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 618D2C54D159E9BB3379B4193BE5F56F22B7CE67 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e07c6407-4a6d-4c72-8e3f-4f2d148c1b6d.roa Signing time: Sun 23 Nov 2025 00:20:35 +0000 ROA not before: Sun 23 Nov 2025 00:20:35 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dab8:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:8d:2c:54:d1:59:e9:bb:33:79:b4:19:3b:e5:f5:6f:22:b7:ce:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 23 00:20:35 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=6a5b9aacf80a9b3b7655881c0426c82e497bf3f291f91445fca5f976ade75ee6, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b7:9c:d9:0a:57:61:f9:b4:ca:4c:5e:40:c2: 00:ce:f7:d8:f2:aa:f4:fd:5c:46:0e:67:27:8f:4c: ad:cb:64:e5:8a:a7:34:1e:cd:9d:a8:13:9e:8d:ac: 18:dc:66:39:f6:03:27:e7:ad:19:ea:09:46:95:45: f5:92:91:63:6f:41:e4:0c:c8:68:d4:e2:46:d1:51: 98:98:47:40:69:92:51:93:e0:d2:b9:05:89:1c:98: 39:2a:5b:12:87:1d:c8:56:dd:a3:10:be:7a:cb:16: cc:20:7a:5b:b5:cf:a5:38:e7:2c:7a:1a:45:34:97: 67:7b:62:d4:4c:08:68:bb:1c:27:84:cd:fd:16:65: 17:c1:e8:08:07:ad:85:00:2e:7a:e7:a9:33:7f:c3: af:d8:12:d4:dd:5a:f2:5a:cd:75:7f:c0:26:f9:ea: 41:08:b5:c8:c3:88:2d:b3:47:1e:13:ad:6b:bb:57: a2:d3:57:fb:2a:81:89:be:36:97:43:a1:1a:f5:f6: 86:fb:4d:24:21:f4:f5:d8:19:39:46:9f:ef:e3:87: 1a:71:13:66:30:3c:b1:ee:f1:27:78:80:26:ba:e3: fb:20:94:82:8c:e3:3c:c8:75:25:94:02:83:06:8f: 1c:80:9f:dc:23:db:1b:ba:72:e0:a2:5a:da:29:ca: ba:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:66:06:0D:E4:A4:27:0B:AA:DD:A2:F3:4F:4E:89:D4:21:0F:B6:FB X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e07c6407-4a6d-4c72-8e3f-4f2d148c1b6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab8:1000::/40 Signature Algorithm: sha256WithRSAEncryption ae:0c:ac:81:25:20:20:3e:df:e4:61:7c:c4:57:06:7e:8a:18: a5:79:5d:d9:cd:cb:10:ba:8e:a2:08:b0:83:6d:4b:69:ab:f8: 3c:3d:e7:c9:ac:fd:b3:44:92:15:79:c5:c5:51:9d:a9:de:f1: 5c:f5:77:23:59:3a:0f:0e:67:ec:c0:f3:4c:2f:04:84:e3:ec: ab:fa:bb:b7:f8:17:df:40:d7:f5:28:c7:0d:40:6d:1e:b7:17: fc:35:44:0f:17:38:3a:a4:2e:fa:aa:e9:24:31:8e:82:8e:37: a9:e4:14:15:27:8c:69:38:23:fb:78:93:c4:36:d6:7f:c0:ef: da:1b:db:b6:eb:f2:4a:3c:07:a2:a9:f2:3a:e2:1f:10:d8:b6: f3:db:9f:72:6c:29:14:a8:f5:a5:6a:1b:15:5d:c3:38:d7:52: 58:29:e5:65:52:d5:89:3b:3c:e7:d5:64:11:50:01:48:75:62: df:72:45:bc:89:ca:08:69:c9:4e:f6:95:f8:22:ab:70:b8:1d: b1:e0:33:19:b4:b1:e4:3f:ee:fd:33:53:d5:41:64:59:f8:58: ef:05:d9:41:2a:4e:a0:15:04:2c:04:c4:05:47:61:ef:a5:dd: c6:2b:87:30:cf:af:d6:6b:17:b6:57:51:58:27:2a:76:33:24: 52:56:c8:65 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUYY0sVNFZ6bszebQZO+X1byK3zmcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyMzAwMjAzNVoX DTI2MDIyMTIzNTk1OVowejFJMEcGA1UEBRNANmE1YjlhYWNmODBhOWIzYjc2NTU4 ODFjMDQyNmM4MmU0OTdiZjNmMjkxZjkxNDQ1ZmNhNWY5NzZhZGU3NWVlNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsLec2QpXYfm0ykxeQMIAzvfY8qr0 /VxGDmcnj0yty2Tliqc0Hs2dqBOejawY3GY59gMn560Z6glGlUX1kpFjb0HkDMho 1OJG0VGYmEdAaZJRk+DSuQWJHJg5KlsShx3IVt2jEL56yxbMIHpbtc+lOOcsehpF NJdne2LUTAhouxwnhM39FmUXwegIB62FAC5656kzf8Ov2BLU3VryWs11f8Am+epB CLXIw4gts0ceE61ru1ei01f7KoGJvjaXQ6Ea9faG+00kIfT12Bk5Rp/v44cacRNm MDyx7vEneIAmuuP7IJSCjOM8yHUllAKDBo8cgJ/cI9sbunLgolraKcq6+wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFL1mBg3kpCcLqt2i809OidQhD7b7MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2UwN2M2NDA3LTRhNmQtNGM3Mi04ZTNmLTRmMmQxNDhjMWI2ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbauBAwDQYJKoZIhvcNAQELBQADggEBAK4MrIElICA+3+RhfMRX Bn6KGKV5XdnNyxC6jqIIsINtS2mr+Dw958ms/bNEkhV5xcVRnane8Vz1dyNZOg8O Z+zA80wvBITj7Kv6u7f4F99A1/Uoxw1AbR63F/w1RA8XODqkLvqq6SQxjoKON6nk FBUnjGk4I/t4k8Q21n/A79ob27br8ko8B6Kp8jriHxDYtvPbn3JsKRSo9aVqGxVd wzjXUlgp5WVS1Yk7POfVZBFQAUh1Yt9yRbyJyghpyU72lfgiq3C4HbHgMxm0seQ/ 7v0zU9VBZFn4WO8F2UEqTqAVBCwExAVHYe+l3cYrhzDPr9ZrF7ZXUVgnKnYzJFJW yGU= -----END CERTIFICATE-----Generated at Sat Dec 6 12:06:20 2025 by rpki-client