This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7c7cf401-32ec-483e-a302-f1191c7162e2.roa File: 7c7cf401-32ec-483e-a302-f1191c7162e2.roa (raw, json) Hash identifier: 8S5bTouZNbqVqHTb8Re8x5IdpC5rdkokevqVymFitnA= Subject key identifier: 48:04:77:64:31:8B:A4:0B:71:CD:FA:4E:1C:F7:65:34:4E:09:9A:44 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5965EF6F1F6EA685D66F2379997704A248F71C8F Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7c7cf401-32ec-483e-a302-f1191c7162e2.roa Signing time: Thu 04 Dec 2025 00:31:03 +0000 ROA not before: Thu 04 Dec 2025 00:31:03 +0000 ROA not after: Wed 04 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da1f:800::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 17:37:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:65:ef:6f:1f:6e:a6:85:d6:6f:23:79:99:77:04:a2:48:f7:1c:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 4 00:31:03 2025 GMT Not After : Mar 4 23:59:59 2026 GMT Subject: serialNumber=0f3ad42868c922ddd791307513a3d154efd8cc5692366dc90c779720db370c93, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:99:b3:6f:5c:ec:eb:80:95:2d:f3:b4:6d:73: 86:f7:5b:f7:09:c5:1b:9c:f5:9f:27:05:ee:b8:3c: 87:91:ac:43:09:3a:a0:dd:9e:0b:c5:8e:08:7a:d0: 85:2c:7b:05:53:14:e2:f8:a5:19:a3:d0:c2:dc:e5: 4b:fa:55:a8:41:76:95:0a:86:b4:35:0e:58:77:ef: d7:f6:05:7e:47:83:e9:e0:db:db:a3:26:3d:10:a9: 3e:05:3e:d8:71:5d:d6:58:32:66:64:ff:af:8a:48: 10:b5:48:37:e3:11:00:5d:a4:4c:28:a6:66:2d:a7: 66:6c:42:6b:5f:46:54:b7:9a:36:b8:5f:1c:e2:19: 83:28:cf:c4:c8:06:a5:15:0e:61:a2:51:ba:9b:88: 04:8d:81:9d:e3:1f:90:74:7d:84:86:66:fb:9c:53: 50:a6:d6:5c:93:e0:0e:be:44:c7:7d:f6:23:6c:be: e0:a2:36:89:fe:40:71:54:97:47:7d:99:87:bf:3b: 5b:64:74:6d:13:e5:68:16:ad:f3:ef:73:77:d0:1e: 3d:15:e3:d4:dd:c7:40:cb:92:b0:da:d1:62:da:71: 72:af:70:f9:5f:19:5d:25:b0:73:46:3f:a6:c9:5e: 63:10:23:4a:91:de:4f:73:ba:19:de:97:a1:49:b2: 0f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:04:77:64:31:8B:A4:0B:71:CD:FA:4E:1C:F7:65:34:4E:09:9A:44 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7c7cf401-32ec-483e-a302-f1191c7162e2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da1f:800::/38 Signature Algorithm: sha256WithRSAEncryption 3f:4c:7e:68:24:8d:d9:83:85:9f:80:d7:bf:c3:e5:a0:ee:11: 1e:25:8f:88:a5:64:4a:db:71:6d:f5:96:02:6f:39:b3:8d:08: 28:cd:c8:f4:ef:95:80:86:1b:3e:6c:ce:2e:d4:93:5a:05:00: d4:fb:74:da:78:8a:40:2b:4b:2a:d1:02:6a:f2:4e:57:28:96: a5:cf:c8:a2:bc:54:8f:a2:8d:7d:8d:7b:f4:ff:bf:96:e2:1a: bb:2a:60:c0:7d:57:e5:a6:20:39:84:07:06:c5:fb:e1:bc:96: fc:a5:cd:14:82:4c:85:01:0e:f9:16:3e:cb:46:09:fe:9d:29: 77:07:e6:b3:43:ed:7e:59:e1:4b:90:99:56:c0:76:cb:d6:16: 5b:a6:22:64:d4:9d:ec:58:2d:6a:cc:e4:e7:93:7a:c4:c2:86: 94:97:1e:df:b7:20:ae:74:ae:0a:3b:90:21:79:82:80:42:e4: a6:fb:01:a2:1f:45:b0:44:d2:98:a3:bf:75:24:8a:20:1e:64: bb:da:fd:57:97:e0:77:23:26:03:5e:81:4d:9d:67:9e:28:b9: 45:63:64:59:ce:40:1c:35:f6:51:df:b6:23:cd:40:0a:61:df: 59:79:cc:91:9e:32:d2:fc:61:b9:a0:15:19:3e:74:33:b4:03: f5:75:d2:66 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUWWXvbx9upoXWbyN5mXcEokj3HI8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwNDAwMzEwM1oX DTI2MDMwNDIzNTk1OVowejFJMEcGA1UEBRNAMGYzYWQ0Mjg2OGM5MjJkZGQ3OTEz MDc1MTNhM2QxNTRlZmQ4Y2M1NjkyMzY2ZGM5MGM3Nzk3MjBkYjM3MGM5MzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzZmzb1zs64CVLfO0bXOG91v3CcUb nPWfJwXuuDyHkaxDCTqg3Z4LxY4IetCFLHsFUxTi+KUZo9DC3OVL+lWoQXaVCoa0 NQ5Yd+/X9gV+R4Pp4NvboyY9EKk+BT7YcV3WWDJmZP+vikgQtUg34xEAXaRMKKZm LadmbEJrX0ZUt5o2uF8c4hmDKM/EyAalFQ5holG6m4gEjYGd4x+QdH2Ehmb7nFNQ ptZck+AOvkTHffYjbL7gojaJ/kBxVJdHfZmHvztbZHRtE+VoFq3z73N30B49FePU 3cdAy5Kw2tFi2nFyr3D5XxldJbBzRj+myV5jECNKkd5Pc7oZ3pehSbIP2wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFEgEd2Qxi6QLcc36Thz3ZTROCZpEMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdjN2NmNDAxLTMyZWMtNDgzZS1hMzAyLWYxMTkxYzcxNjJlMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJAbaHwgwDQYJKoZIhvcNAQELBQADggEBAD9MfmgkjdmDhZ+A17/D 5aDuER4lj4ilZErbcW31lgJvObONCCjNyPTvlYCGGz5szi7Uk1oFANT7dNp4ikAr SyrRAmryTlcolqXPyKK8VI+ijX2Ne/T/v5biGrsqYMB9V+WmIDmEBwbF++G8lvyl zRSCTIUBDvkWPstGCf6dKXcH5rND7X5Z4UuQmVbAdsvWFlumImTUnexYLWrM5OeT esTChpSXHt+3IK50rgo7kCF5goBC5Kb7AaIfRbBE0pijv3UkiiAeZLva/VeX4Hcj JgNegU2dZ54ouUVjZFnOQBw19lHftiPNQAph31l5zJGeMtL8YbmgFRk+dDO0A/V1 0mY= -----END CERTIFICATE-----Generated at Fri Dec 19 01:08:06 2025 by rpki-client