This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e1ee0ca6-4099-4f84-8e05-ff02d67a580a.roa File: e1ee0ca6-4099-4f84-8e05-ff02d67a580a.roa (raw, json) Hash identifier: eEuMXQGXLwkfeBVnTAz89ZVZCdZVKXtdaGJm3a2v2sc= Subject key identifier: 24:05:94:68:76:FC:CD:15:6E:1A:9B:9E:8E:03:5D:22:16:F8:FD:4B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 03C5F508B4216FB7D4A444ED7F4DA6A28FD61896 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e1ee0ca6-4099-4f84-8e05-ff02d67a580a.roa Signing time: Tue 02 Dec 2025 00:10:42 +0000 ROA not before: Tue 02 Dec 2025 00:10:42 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf2:2800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:c5:f5:08:b4:21:6f:b7:d4:a4:44:ed:7f:4d:a6:a2:8f:d6:18:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 2 00:10:42 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=6c575647e70ad36b2b5924fddd96772dd419ad00a2eba002417b11b4561c816f, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:44:b4:d1:27:a0:db:21:f1:00:93:31:54:4a: 0a:7f:9c:47:60:b9:07:0d:4d:b3:97:46:6d:6b:ac: 2d:ca:a8:af:d4:9c:c1:50:14:d7:72:a7:1e:78:51: 49:9b:c6:a1:24:8a:ba:f3:21:88:49:0d:51:1a:d8: 10:96:af:93:c9:65:29:68:44:00:a0:b6:54:f2:b8: 84:47:77:5a:64:74:55:99:ad:14:e1:e2:32:27:f1: 52:3d:47:70:69:31:e1:fb:da:fb:fe:33:30:de:bc: 8a:0a:72:42:58:7c:66:c3:f5:f9:9d:b5:45:33:77: a2:42:c6:58:17:bc:35:20:7a:e7:d9:c8:6d:6b:a3: 32:ef:90:fc:7d:86:52:ad:fb:e5:1b:1e:ba:c1:4c: e8:38:f6:69:1d:65:24:2d:8e:8b:94:b1:cc:97:fc: f3:61:37:b5:fc:9b:60:61:ac:08:62:2d:5a:cc:9a: 6f:a6:02:20:0a:66:0e:b4:9a:1a:c5:34:d6:60:7e: 65:ba:b1:08:fe:fc:3f:a5:2e:62:d1:51:d4:12:f9: 78:2c:41:b6:15:94:bd:68:c5:37:a1:d0:a5:b2:a9: 88:4f:c0:da:a9:cb:7d:cd:fb:47:3b:b6:04:0f:d3: 76:47:ba:ba:b1:66:9e:f8:09:01:9a:29:1f:e0:71: a7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:05:94:68:76:FC:CD:15:6E:1A:9B:9E:8E:03:5D:22:16:F8:FD:4B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e1ee0ca6-4099-4f84-8e05-ff02d67a580a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf2:2800::/40 Signature Algorithm: sha256WithRSAEncryption 6c:74:10:97:17:db:c8:5a:14:88:09:a5:f1:51:60:39:25:37: de:5b:53:1f:0c:04:7c:df:40:21:7a:08:44:9e:cc:71:08:26: 5c:6d:51:ea:3e:81:d4:a9:77:aa:d2:22:72:dd:91:86:1e:aa: 10:f2:d8:b9:7f:a3:79:94:aa:45:a0:da:5c:8b:05:f4:c3:a3: ad:17:54:3b:99:9b:4a:cc:06:50:a9:8b:13:db:96:77:1f:d4: 66:88:08:da:0d:52:86:69:15:85:d1:50:2b:ae:f8:e3:84:52: d6:45:81:11:3d:37:a0:19:1b:99:cd:51:6e:e5:b8:ee:ab:0e: c4:02:df:75:80:d6:e4:8a:3c:56:3d:3a:59:94:c6:9e:53:81: e4:96:2a:1d:c8:dc:dc:c6:a8:dc:70:0b:9b:2c:f0:28:a3:3b: 2f:3a:79:77:0e:98:82:5c:7d:4c:27:ed:53:6a:27:b4:1f:2d: a2:ef:bd:6e:ba:60:80:0d:a7:c8:06:3e:4a:26:7f:f3:53:4d: 85:34:01:f3:27:c9:30:a3:2a:8b:71:0c:53:2b:af:c2:a7:b6: ee:0c:38:41:bf:1d:a2:d6:67:07:1e:70:e4:43:e0:0b:d5:ac: 45:0f:11:8a:63:90:ca:bb:bb:5f:2c:80:f0:6b:cd:4c:d1:5f: 47:b6:f0:60 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUA8X1CLQhb7fUpETtf02moo/WGJYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMjAwMTA0MloX DTI2MDMwMjIzNTk1OVowejFJMEcGA1UEBRNANmM1NzU2NDdlNzBhZDM2YjJiNTky NGZkZGQ5Njc3MmRkNDE5YWQwMGEyZWJhMDAyNDE3YjExYjQ1NjFjODE2ZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA20S00Seg2yHxAJMxVEoKf5xHYLkH DU2zl0Zta6wtyqiv1JzBUBTXcqceeFFJm8ahJIq68yGISQ1RGtgQlq+TyWUpaEQA oLZU8riER3daZHRVma0U4eIyJ/FSPUdwaTHh+9r7/jMw3ryKCnJCWHxmw/X5nbVF M3eiQsZYF7w1IHrn2chta6My75D8fYZSrfvlGx66wUzoOPZpHWUkLY6LlLHMl/zz YTe1/JtgYawIYi1azJpvpgIgCmYOtJoaxTTWYH5lurEI/vw/pS5i0VHUEvl4LEG2 FZS9aMU3odClsqmIT8Daqct9zftHO7YED9N2R7q6sWae+AkBmikf4HGnwwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFCQFlGh2/M0Vbhqbno4DXSIW+P1LMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2UxZWUwY2E2LTQwOTktNGY4NC04ZTA1LWZmMDJkNjdhNTgwYS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8igwDQYJKoZIhvcNAQELBQADggEBAGx0EJcX28haFIgJpfFR YDklN95bUx8MBHzfQCF6CESezHEIJlxtUeo+gdSpd6rSInLdkYYeqhDy2Ll/o3mU qkWg2lyLBfTDo60XVDuZm0rMBlCpixPblncf1GaICNoNUoZpFYXRUCuu+OOEUtZF gRE9N6AZG5nNUW7luO6rDsQC33WA1uSKPFY9OlmUxp5TgeSWKh3I3NzGqNxwC5ss 8CijOy86eXcOmIJcfUwn7VNqJ7QfLaLvvW66YIANp8gGPkomf/NTTYU0AfMnyTCj KotxDFMrr8Kntu4MOEG/HaLWZwcecORD4AvVrEUPEYpjkMq7u18sgPBrzUzRX0e2 8GA= -----END CERTIFICATE-----Generated at Sat Dec 6 10:56:59 2025 by rpki-client