This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f00ce68a-58da-4964-ae28-394559757448.roa File: f00ce68a-58da-4964-ae28-394559757448.roa (raw, json) Hash identifier: YPR11aWa0TCatG/jthyw/33T+MiT3L60VTRVRzlVGcY= Subject key identifier: 61:CA:98:95:1F:D5:4B:23:C8:3F:45:60:B8:82:5F:8B:AD:24:B9:55 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7329E09EACA0DF87D38761298F8D41CD65A076F4 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f00ce68a-58da-4964-ae28-394559757448.roa Signing time: Tue 02 Dec 2025 00:00:50 +0000 ROA not before: Tue 02 Dec 2025 00:00:50 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da61:28c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:29:e0:9e:ac:a0:df:87:d3:87:61:29:8f:8d:41:cd:65:a0:76:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 2 00:00:50 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=eb0002a6ce28891eaedba9de8208a147610bb647d96ba388cee52cee15573fbf, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3e:87:b1:cc:ff:46:87:24:a1:82:db:fb:4a: 53:06:cc:40:01:0b:bb:68:bc:2b:f5:b0:a7:80:b7: ea:a1:07:7f:c6:ea:20:42:21:55:f5:14:dc:c3:30: 5e:80:8f:bc:49:b4:13:d9:ff:6a:49:59:5c:35:ef: 31:17:a8:75:9f:79:6a:60:c8:a1:63:da:3e:ca:be: cb:52:f8:6f:b6:48:93:bd:30:1e:66:75:a6:0f:f7: d2:af:b6:b6:59:8a:07:97:ab:50:aa:86:b0:d9:81: 87:f4:cc:f4:4f:bd:cb:80:f4:5c:dd:9e:96:d2:52: 34:cc:60:04:c7:3d:9b:22:67:38:53:9b:14:76:ae: 69:e8:72:c9:49:c1:74:3f:dc:8f:97:e7:62:10:08: c8:4c:e1:b1:20:b0:b5:61:bf:fd:5c:c6:dc:32:60: 66:8c:c8:a5:bc:06:da:c9:c8:34:2b:3f:7e:67:dd: 90:7b:37:be:16:7d:45:3e:3e:11:8f:1c:93:b0:99: d0:44:99:92:0d:a1:8d:45:a3:dc:f5:24:db:e4:a7: 89:12:64:77:c2:13:bb:31:03:a1:3f:8f:c9:ad:d9: 75:71:10:ed:e3:be:7e:77:15:be:ed:a1:05:ef:67: 44:8e:83:09:c8:93:87:a6:33:62:49:96:2a:62:1a: fc:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:CA:98:95:1F:D5:4B:23:C8:3F:45:60:B8:82:5F:8B:AD:24:B9:55 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f00ce68a-58da-4964-ae28-394559757448.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da61:28c0::/48 Signature Algorithm: sha256WithRSAEncryption 69:e8:62:85:83:26:6d:43:e5:24:9b:2e:e3:46:fb:e3:f0:df: 20:67:af:db:88:04:98:47:0f:33:8a:cf:5b:a1:3b:9d:22:b0: 71:d2:c2:df:9f:78:ee:f2:ea:32:91:30:a9:25:e8:9e:d3:65: b4:84:d2:49:9f:ee:a4:28:80:6d:87:0f:52:75:5c:9f:5e:83: 4d:81:18:71:83:7a:c2:4f:f9:db:af:bc:fc:d2:51:95:e6:15: da:be:ad:d0:ad:f8:cd:02:e7:74:63:ab:b1:c3:54:06:c2:98: 9c:61:ce:30:fa:af:b9:6c:4b:2b:13:d7:f9:29:88:e5:a3:72: 4a:68:70:d1:88:c4:9b:0c:cb:80:eb:55:b9:27:e0:fb:d2:42: 30:d6:e7:f2:c8:ae:12:87:b8:4c:09:3f:f9:9b:aa:0c:59:9e: ca:45:85:86:37:13:ff:d1:25:a8:8b:3e:65:f6:bc:1e:d0:c2: a4:77:47:cb:47:bc:6b:9a:ac:9d:23:cb:0c:64:69:09:58:4e: 3d:63:20:6a:ae:16:dd:40:93:d2:d3:1d:07:c0:e9:f1:99:68: e3:62:21:ac:d4:fe:6f:a4:48:b0:33:30:ca:a7:01:e2:dc:c3: 6b:ca:6b:38:a3:b1:35:4e:bd:7f:5c:98:86:cc:86:e0:47:ad: c2:f9:53:10 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUcyngnqyg34fTh2Epj41BzWWgdvQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMjAwMDA1MFoX DTI2MDMwMjIzNTk1OVowejFJMEcGA1UEBRNAZWIwMDAyYTZjZTI4ODkxZWFlZGJh OWRlODIwOGExNDc2MTBiYjY0N2Q5NmJhMzg4Y2VlNTJjZWUxNTU3M2ZiZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqj6Hscz/RockoYLb+0pTBsxAAQu7 aLwr9bCngLfqoQd/xuogQiFV9RTcwzBegI+8SbQT2f9qSVlcNe8xF6h1n3lqYMih Y9o+yr7LUvhvtkiTvTAeZnWmD/fSr7a2WYoHl6tQqoaw2YGH9Mz0T73LgPRc3Z6W 0lI0zGAExz2bImc4U5sUdq5p6HLJScF0P9yPl+diEAjITOGxILC1Yb/9XMbcMmBm jMilvAbaycg0Kz9+Z92Qeze+Fn1FPj4RjxyTsJnQRJmSDaGNRaPc9STb5KeJEmR3 whO7MQOhP4/Jrdl1cRDt475+dxW+7aEF72dEjoMJyJOHpjNiSZYqYhr8twIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFGHKmJUf1UsjyD9FYLiCX4utJLlVMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2YwMGNlNjhhLTU4ZGEtNDk2NC1hZTI4LTM5NDU1OTc1NzQ0OC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaYSjAMA0GCSqGSIb3DQEBCwUAA4IBAQBp6GKFgyZtQ+Ukmy7j Rvvj8N8gZ6/biASYRw8zis9boTudIrBx0sLfn3ju8uoykTCpJeie02W0hNJJn+6k KIBthw9SdVyfXoNNgRhxg3rCT/nbr7z80lGV5hXavq3QrfjNAud0Y6uxw1QGwpic Yc4w+q+5bEsrE9f5KYjlo3JKaHDRiMSbDMuA61W5J+D70kIw1ufyyK4Sh7hMCT/5 m6oMWZ7KRYWGNxP/0SWoiz5l9rwe0MKkd0fLR7xrmqydI8sMZGkJWE49YyBqrhbd QJPS0x0HwOnxmWjjYiGs1P5vpEiwMzDKpwHi3MNryms4o7E1Tr1/XJiGzIbgR63C +VMQ -----END CERTIFICATE-----Generated at Sat Dec 6 10:32:29 2025 by rpki-client