This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e8439a40-b765-41b2-aa6b-d3b43bc48f30.roa File: e8439a40-b765-41b2-aa6b-d3b43bc48f30.roa (raw, json) Hash identifier: 0BXhPsw1j23a77+pQKVzZm/gjhxckcr3D/iV9JfAk/w= Subject key identifier: 46:2F:78:BE:16:26:39:D4:A8:6C:EC:FD:FC:53:3D:EE:1B:33:36:96 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 2A839FC06A35AF54A12CEDC852802FE2A50F8944 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e8439a40-b765-41b2-aa6b-d3b43bc48f30.roa Signing time: Sun 23 Nov 2025 00:20:51 +0000 ROA not before: Sun 23 Nov 2025 00:20:51 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daea:6000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:83:9f:c0:6a:35:af:54:a1:2c:ed:c8:52:80:2f:e2:a5:0f:89:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 23 00:20:51 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=dde91947cfe175e03a8b38b5d466180f4e3b972bc497c711c909e504cf0cfc70, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:8e:27:a3:66:e8:5f:44:dd:46:52:c2:59:31: a2:59:aa:27:81:19:03:f3:b1:d0:8f:fb:88:f8:71: 70:ce:53:59:18:c6:82:92:39:ea:a4:d8:39:df:85: 14:c7:ab:30:fc:16:8a:c2:00:63:dc:80:b1:27:fa: cd:06:62:53:af:08:4f:d8:63:c1:ff:39:65:65:b7: f2:9f:90:c9:15:ab:4d:3f:2d:4e:10:22:88:ef:79: 0f:56:c4:3e:53:5b:f6:05:d2:27:0d:19:81:28:73: 65:2f:1b:e3:e8:b7:3a:03:8c:aa:7c:4b:d4:20:ae: e3:12:dd:6f:ac:c8:ce:55:cb:74:03:93:71:c3:2e: ce:50:a0:1b:2f:46:9a:89:37:8a:3e:e2:b0:47:d4: 42:b6:35:70:68:c7:5a:ec:89:a3:15:19:65:47:36: f4:1e:b4:be:39:c4:5b:46:0a:8b:b6:63:d3:ae:77: a4:b6:f8:9f:ec:6a:6c:34:79:46:59:1e:01:97:b6: b7:39:03:b7:a2:87:36:0f:1a:29:e2:24:af:35:10: 91:8a:b8:39:81:0d:1d:d9:43:5b:74:88:d4:2c:9b: b6:33:30:f5:f1:e5:9d:8c:f9:bf:ba:82:bb:4d:95: a8:40:63:71:4a:41:66:79:c4:e8:8b:71:9d:16:79: 37:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:2F:78:BE:16:26:39:D4:A8:6C:EC:FD:FC:53:3D:EE:1B:33:36:96 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e8439a40-b765-41b2-aa6b-d3b43bc48f30.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daea:6000::/40 Signature Algorithm: sha256WithRSAEncryption 06:b3:b6:b4:cd:6f:42:24:48:d7:79:32:25:79:fd:2b:52:c8: f1:a2:b6:d7:d6:81:5e:4f:5b:f7:76:fb:ef:d6:dd:e4:ac:17: b5:e9:7e:7b:5d:bc:32:d6:06:8a:5a:5a:67:e8:45:9d:0b:65: 32:6e:de:4c:ca:40:2d:d8:49:4c:9f:ec:6f:36:44:73:60:67: f1:b4:af:a0:4a:11:54:e4:e0:05:0e:e7:63:41:4a:68:47:ce: 34:9a:9e:ee:e5:91:0b:fb:82:0a:6f:43:6f:79:d4:d3:96:cd: 80:91:2c:15:c5:75:9f:58:c4:90:45:2f:98:7e:39:85:4d:6b: 3c:3a:73:91:df:2c:87:e6:fa:1d:2a:57:bb:f4:27:4a:a4:60: 2a:3f:92:0e:89:24:4b:70:15:73:56:2e:d1:b2:14:32:5b:b1: 12:d9:12:8d:53:60:41:8f:e6:21:42:29:38:53:eb:44:06:3c: fd:74:7e:0b:3e:58:84:da:8e:79:90:7c:86:81:b2:84:a7:24: d4:40:9b:15:1e:d2:46:46:0a:6e:c1:94:9d:d6:c1:14:8e:49: 5e:3e:35:f3:5f:37:72:25:eb:2d:73:b6:cc:37:48:7c:8f:ec: b1:c9:1d:00:cb:41:82:ab:76:69:c7:d3:63:ce:84:1b:b7:5b: 9d:47:87:38 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUKoOfwGo1r1ShLO3IUoAv4qUPiUQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyMzAwMjA1MVoX DTI2MDIyMTIzNTk1OVowejFJMEcGA1UEBRNAZGRlOTE5NDdjZmUxNzVlMDNhOGIz OGI1ZDQ2NjE4MGY0ZTNiOTcyYmM0OTdjNzExYzkwOWU1MDRjZjBjZmM3MDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk44no2boX0TdRlLCWTGiWaongRkD 87HQj/uI+HFwzlNZGMaCkjnqpNg534UUx6sw/BaKwgBj3ICxJ/rNBmJTrwhP2GPB /zllZbfyn5DJFatNPy1OECKI73kPVsQ+U1v2BdInDRmBKHNlLxvj6Lc6A4yqfEvU IK7jEt1vrMjOVct0A5Nxwy7OUKAbL0aaiTeKPuKwR9RCtjVwaMda7ImjFRllRzb0 HrS+OcRbRgqLtmPTrnektvif7GpsNHlGWR4Bl7a3OQO3ooc2Dxop4iSvNRCRirg5 gQ0d2UNbdIjULJu2MzD18eWdjPm/uoK7TZWoQGNxSkFmecToi3GdFnk3zQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFEYveL4WJjnUqGzs/fxTPe4bMzaWMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2U4NDM5YTQwLWI3NjUtNDFiMi1hYTZiLWQzYjQzYmM0OGYzMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba6mAwDQYJKoZIhvcNAQELBQADggEBAAaztrTNb0IkSNd5MiV5 /StSyPGittfWgV5PW/d2++/W3eSsF7XpfntdvDLWBopaWmfoRZ0LZTJu3kzKQC3Y SUyf7G82RHNgZ/G0r6BKEVTk4AUO52NBSmhHzjSanu7lkQv7ggpvQ2951NOWzYCR LBXFdZ9YxJBFL5h+OYVNazw6c5HfLIfm+h0qV7v0J0qkYCo/kg6JJEtwFXNWLtGy FDJbsRLZEo1TYEGP5iFCKThT60QGPP10fgs+WITajnmQfIaBsoSnJNRAmxUe0kZG Cm7BlJ3WwRSOSV4+NfNfN3Il6y1ztsw3SHyP7LHJHQDLQYKrdmnH02POhBu3W51H hzg= -----END CERTIFICATE-----Generated at Sat Dec 6 20:52:20 2025 by rpki-client