This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e19d78e4-93af-46a2-b178-56ac1a3905e7.roa File: e19d78e4-93af-46a2-b178-56ac1a3905e7.roa (raw, json) Hash identifier: E2EHBKNpGKuV404E+5aADy5NW2OtdD5uaqeySxqgins= Subject key identifier: FA:D9:76:6A:34:A9:98:97:E2:4B:AC:6F:63:65:D8:76:CE:75:0B:3F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 08390E7158194CEE6B5C2C519485E826FB238B49 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e19d78e4-93af-46a2-b178-56ac1a3905e7.roa Signing time: Tue 02 Dec 2025 00:01:06 +0000 ROA not before: Tue 02 Dec 2025 00:01:06 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:4080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:39:0e:71:58:19:4c:ee:6b:5c:2c:51:94:85:e8:26:fb:23:8b:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 2 00:01:06 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=39f010ef0cd62a8b55b14272bbb90c97647997aebc796dbb8f53b79a32e9d8aa, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c9:a5:33:ae:e6:21:40:38:f8:95:04:db:a9: 07:ae:cc:30:34:05:4c:37:da:79:49:bc:8d:9c:d7: e9:f1:63:55:20:2b:38:74:7f:80:5f:1a:c8:b7:85: 76:51:6e:52:bf:8c:10:63:91:27:61:00:61:6b:d3: 75:05:43:43:3e:9c:96:0e:06:8b:37:c0:5f:da:87: c9:6a:37:41:24:64:e2:c6:44:a4:76:8a:02:05:fb: fc:4a:c4:7e:e1:13:07:ef:64:65:ea:a7:ea:a5:a5: 90:6f:a6:cc:9c:69:c2:a8:e4:53:04:0b:90:4c:a5: 8d:8c:8e:95:e5:91:7d:e4:99:98:8e:28:fa:a0:14: 66:94:83:8e:d0:d8:96:53:72:ef:42:3d:a0:c6:c6: 84:72:0a:12:49:d1:8b:08:b3:be:32:ec:d9:87:eb: ed:30:b1:c0:ee:a7:2e:9b:19:2f:76:ac:09:dc:d2: 68:39:cc:b2:8e:8f:e9:07:df:57:38:18:58:53:7f: 1f:54:5e:f9:d4:9d:16:49:d8:4a:1c:fa:2e:9b:08: f6:79:3a:fe:28:74:4a:09:05:d6:1a:77:9a:d6:8d: df:b6:d6:69:14:b1:53:1a:88:5e:70:43:1b:e4:d8: d8:dc:d3:b7:7a:3f:ef:ea:6c:49:04:4f:f4:47:85: 1e:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:D9:76:6A:34:A9:98:97:E2:4B:AC:6F:63:65:D8:76:CE:75:0B:3F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e19d78e4-93af-46a2-b178-56ac1a3905e7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:4080::/48 Signature Algorithm: sha256WithRSAEncryption bc:b7:a5:70:65:57:98:72:a7:a1:16:00:ec:e1:b7:46:b1:ce: ee:63:c8:a7:4a:d4:8b:e2:53:15:1b:c1:ea:0a:5a:fa:90:a1: 14:e5:17:74:dc:2e:9c:8d:d1:9f:95:ce:47:df:1a:35:eb:e8: 55:98:c2:54:db:59:b1:e6:7d:2d:d5:78:ea:24:2e:94:f5:6c: e8:9c:26:c3:ae:34:9f:2d:12:21:70:74:bd:cf:9a:a1:16:7b: 6d:75:5e:c5:b4:ba:f3:da:3b:97:29:7c:cb:50:c3:49:e9:1d: 11:5e:9e:ab:9d:d0:39:e9:c2:be:38:d7:1d:68:40:b4:ee:e0: f8:3b:87:ef:62:1c:27:a4:7f:3f:7e:87:29:c0:28:11:74:b3: 49:a6:95:11:c9:2b:a6:6f:28:fa:67:04:06:9c:1d:e7:56:94: 74:de:50:2c:45:f8:a6:93:a7:92:a1:ca:59:e2:36:ee:74:aa: 91:c7:a6:7f:99:9f:a9:0c:18:b8:b2:5e:32:e4:3f:86:e1:36: e7:6b:7e:fa:a5:77:24:93:5d:f3:d0:4b:4a:35:6f:90:95:37: 6a:b0:30:7e:36:55:1a:d0:3d:74:d3:e7:6e:2e:e2:5c:e4:d5: f2:06:94:7f:66:e3:69:39:05:7d:93:e6:44:85:9a:54:71:05: 03:15:76:06 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUCDkOcVgZTO5rXCxRlIXoJvsji0kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMjAwMDEwNloX DTI2MDMwMjIzNTk1OVowejFJMEcGA1UEBRNAMzlmMDEwZWYwY2Q2MmE4YjU1YjE0 MjcyYmJiOTBjOTc2NDc5OTdhZWJjNzk2ZGJiOGY1M2I3OWEzMmU5ZDhhYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqsmlM67mIUA4+JUE26kHrswwNAVM N9p5SbyNnNfp8WNVICs4dH+AXxrIt4V2UW5Sv4wQY5EnYQBha9N1BUNDPpyWDgaL N8Bf2ofJajdBJGTixkSkdooCBfv8SsR+4RMH72Rl6qfqpaWQb6bMnGnCqORTBAuQ TKWNjI6V5ZF95JmYjij6oBRmlIOO0NiWU3LvQj2gxsaEcgoSSdGLCLO+MuzZh+vt MLHA7qcumxkvdqwJ3NJoOcyyjo/pB99XOBhYU38fVF751J0WSdhKHPoumwj2eTr+ KHRKCQXWGnea1o3fttZpFLFTGohecEMb5NjY3NO3ej/v6mxJBE/0R4UeDwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFPrZdmo0qZiX4kusb2Nl2HbOdQs/MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2UxOWQ3OGU0LTkzYWYtNDZhMi1iMTc4LTU2YWMxYTM5MDVlNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAECAMA0GCSqGSIb3DQEBCwUAA4IBAQC8t6VwZVeYcqehFgDs 4bdGsc7uY8inStSL4lMVG8HqClr6kKEU5Rd03C6cjdGflc5H3xo16+hVmMJU21mx 5n0t1XjqJC6U9WzonCbDrjSfLRIhcHS9z5qhFnttdV7FtLrz2juXKXzLUMNJ6R0R Xp6rndA56cK+ONcdaEC07uD4O4fvYhwnpH8/focpwCgRdLNJppURySumbyj6ZwQG nB3nVpR03lAsRfimk6eSocpZ4jbudKqRx6Z/mZ+pDBi4sl4y5D+G4Tbna376pXck k13z0EtKNW+QlTdqsDB+NlUa0D100+duLuJc5NXyBpR/ZuNpOQV9k+ZEhZpUcQUD FXYG -----END CERTIFICATE-----Generated at Sat Dec 6 10:08:34 2025 by rpki-client