This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e6407dc4-19e1-4c8f-84db-a0c2389641d8.roa File: e6407dc4-19e1-4c8f-84db-a0c2389641d8.roa (raw, json) Hash identifier: f99aGfZZuSNbmHssu2rwm7JZtknbmXkTe1jHlzlflQc= Subject key identifier: 3C:86:E5:95:7B:BC:73:F0:C7:50:38:5B:EE:41:36:8B:2F:AF:19:B9 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 269B9E96B7502BD0B214CEAAA25C4C2874ACF76A Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e6407dc4-19e1-4c8f-84db-a0c2389641d8.roa Signing time: Tue 02 Dec 2025 00:21:19 +0000 ROA not before: Tue 02 Dec 2025 00:21:19 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:6040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:9b:9e:96:b7:50:2b:d0:b2:14:ce:aa:a2:5c:4c:28:74:ac:f7:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 2 00:21:19 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=ba5c3f6077d465e3dbb0acf3425461071018872586e78820dadf3243ffa1eb2a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:5e:49:dd:59:ba:ff:dd:3e:69:7d:1d:2e:91: 73:fa:6f:c7:28:51:44:40:24:44:b5:e2:47:53:2f: b5:d3:7e:92:03:71:5f:28:7d:7f:a6:22:0e:3f:5e: 32:ae:23:a4:09:2f:53:53:27:31:a1:10:a8:e2:4e: e4:5d:c2:11:89:9c:93:c1:c7:c3:3c:1e:a0:fc:fb: b6:19:76:fa:1b:26:8e:97:36:05:02:34:76:53:70: a4:75:f0:9b:9f:09:01:12:c4:f0:0b:82:1c:55:1d: 47:3d:12:3b:7e:ce:2d:4b:96:0c:74:b9:34:ba:fb: d1:49:95:8a:95:89:42:cf:c3:e9:87:06:f6:1a:4c: d3:07:a6:86:ed:c1:1b:65:c6:00:e2:e1:a3:cb:36: 45:37:5b:35:4b:b6:45:95:6f:1f:5b:61:f7:d0:ff: 18:6d:46:f1:bc:1e:73:23:a6:6b:55:97:90:43:81: 7a:df:f5:2d:96:e5:3e:46:fe:78:1e:48:90:50:66: b1:e2:79:96:e8:ce:6d:f3:a9:2f:53:e9:8b:5c:01: 64:07:c1:a1:a4:87:fa:8e:fa:0e:26:3a:99:8f:bf: 0d:b3:f9:fc:f3:44:4a:24:97:e1:ab:0f:b3:fc:4d: 4d:5e:1f:c0:d0:1e:2e:82:6b:04:cf:71:d8:4a:97: 9e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:86:E5:95:7B:BC:73:F0:C7:50:38:5B:EE:41:36:8B:2F:AF:19:B9 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e6407dc4-19e1-4c8f-84db-a0c2389641d8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:6040::/48 Signature Algorithm: sha256WithRSAEncryption a7:9b:8e:83:24:2b:7a:de:e6:a4:b8:79:0b:28:de:6e:3f:82: e4:52:4b:cf:94:7d:8e:13:22:24:0c:ab:d8:ce:44:5c:40:de: a0:ae:a6:fd:9d:2e:e0:08:79:09:7e:66:0c:77:e4:a2:a7:fd: d7:3b:a6:22:45:bc:bb:37:28:f7:e9:bc:fc:af:0a:b5:55:12: 60:c7:aa:39:4f:36:fe:ef:03:58:8c:3b:5c:13:03:3c:38:88: 44:a1:ab:55:61:e1:5a:ff:7a:7e:93:6a:30:7a:0e:ad:95:bd: a7:ef:a1:81:9a:df:92:fb:85:85:dc:e5:db:05:38:a5:7f:4c: dd:ca:41:66:2c:62:be:ea:2f:a5:0f:7a:3e:44:40:00:27:b0: a9:57:62:8b:f5:68:ed:8c:a9:8b:11:70:a1:15:f2:fd:a4:92: 30:46:2f:ac:d2:ed:90:7a:a2:b0:c7:44:22:9b:c5:81:14:25: b6:a2:e9:06:9c:c5:d3:ba:e4:ab:04:5f:1f:d7:9c:e2:5c:6c: 33:63:45:a7:62:5c:21:2b:6e:ff:ee:aa:69:41:25:a7:aa:3f: 76:02:00:c4:a0:a2:4d:46:e6:72:43:db:1b:82:8c:e5:49:81: ea:81:5e:bf:a0:65:31:07:b1:05:4c:8c:35:e9:88:0f:05:d7: 9f:c5:b8:5e -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUJpuelrdQK9CyFM6qolxMKHSs92owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMjAwMjExOVoX DTI2MDMwMjIzNTk1OVowejFJMEcGA1UEBRNAYmE1YzNmNjA3N2Q0NjVlM2RiYjBh Y2YzNDI1NDYxMDcxMDE4ODcyNTg2ZTc4ODIwZGFkZjMyNDNmZmExZWIyYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA815J3Vm6/90+aX0dLpFz+m/HKFFE QCREteJHUy+1036SA3FfKH1/piIOP14yriOkCS9TUycxoRCo4k7kXcIRiZyTwcfD PB6g/Pu2GXb6GyaOlzYFAjR2U3CkdfCbnwkBEsTwC4IcVR1HPRI7fs4tS5YMdLk0 uvvRSZWKlYlCz8Pphwb2GkzTB6aG7cEbZcYA4uGjyzZFN1s1S7ZFlW8fW2H30P8Y bUbxvB5zI6ZrVZeQQ4F63/UtluU+Rv54HkiQUGax4nmW6M5t86kvU+mLXAFkB8Gh pIf6jvoOJjqZj78Ns/n880RKJJfhqw+z/E1NXh/A0B4ugmsEz3HYSpeejQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFDyG5ZV7vHPwx1A4W+5BNosvrxm5MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2U2NDA3ZGM0LTE5ZTEtNGM4Zi04NGRiLWEwYzIzODk2NDFkOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYWBAMA0GCSqGSIb3DQEBCwUAA4IBAQCnm46DJCt63uakuHkL KN5uP4LkUkvPlH2OEyIkDKvYzkRcQN6grqb9nS7gCHkJfmYMd+Sip/3XO6YiRby7 Nyj36bz8rwq1VRJgx6o5Tzb+7wNYjDtcEwM8OIhEoatVYeFa/3p+k2oweg6tlb2n 76GBmt+S+4WF3OXbBTilf0zdykFmLGK+6i+lD3o+REAAJ7CpV2KL9WjtjKmLEXCh FfL9pJIwRi+s0u2QeqKwx0Qim8WBFCW2oukGnMXTuuSrBF8f15ziXGwzY0WnYlwh K27/7qppQSWnqj92AgDEoKJNRuZyQ9sbgozlSYHqgV6/oGUxB7EFTIw16YgPBdef xbhe -----END CERTIFICATE-----Generated at Sat Dec 6 10:56:40 2025 by rpki-client