This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b1784be3-ac2e-47ca-b8f4-33604f36eb7a.roa File: b1784be3-ac2e-47ca-b8f4-33604f36eb7a.roa (raw, json) Hash identifier: /ngpr5iv6mbPNUmj3GLg4UNQHcMZmEvTpu/oqi6QGqY= Subject key identifier: B7:4A:0F:6C:41:EA:56:6F:4D:54:65:F2:83:A9:1F:35:DF:7B:F9:F2 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 307E93D6FB2DF56B828442407104EA32A03D620D Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b1784be3-ac2e-47ca-b8f4-33604f36eb7a.roa Signing time: Tue 13 Jan 2026 20:09:44 +0000 ROA not before: Tue 13 Jan 2026 20:09:44 +0000 ROA not after: Mon 13 Apr 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daeb:1000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 Jan 2026 20:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:7e:93:d6:fb:2d:f5:6b:82:84:42:40:71:04:ea:32:a0:3d:62:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jan 13 20:09:44 2026 GMT Not After : Apr 13 23:59:59 2026 GMT Subject: serialNumber=908dec4758813683b7225239e5372513888d309cb057d59f3b16b98d45d15908, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:4c:52:6f:ca:a0:f6:5b:85:40:71:01:3f:b4: 95:e3:6f:d3:46:bb:f1:ca:ea:38:30:57:9e:a5:38: 7c:14:cc:01:56:af:0e:79:09:2b:a7:bd:3a:d4:5c: 19:6c:dc:1b:5c:6d:ec:85:3b:2b:cb:d9:3e:ca:cc: a8:8e:b3:f5:02:fa:e3:e2:2e:66:e3:6a:f3:d6:aa: ea:d3:17:69:75:2b:41:9b:07:77:6f:cd:cd:17:e6: c7:08:c0:b3:9b:b9:e2:8f:53:3d:f5:52:7d:59:86: 4e:dd:93:b6:b2:3d:4f:2a:80:21:88:90:e0:8c:80: e9:5f:42:0f:a1:26:a3:d3:33:89:fe:8e:ce:9b:cc: 41:2c:7f:84:60:6e:06:50:2d:84:47:f0:b7:b9:dc: ea:48:af:94:c8:2c:b5:db:c2:0c:75:5b:62:c0:9f: be:1d:b6:ca:e3:11:31:f2:91:65:6a:a6:63:13:f2: e7:f7:85:de:9a:a0:65:ce:71:5f:39:ee:e9:48:4c: 36:e7:66:68:61:c7:21:d0:05:a2:25:f9:0b:4b:47: 63:4b:1f:e0:a8:49:ee:e8:1d:26:63:d4:fc:07:84: 94:3e:81:99:41:52:ff:e7:f7:a6:e5:77:1c:f0:6a: 24:c2:76:16:2f:0c:da:9a:d2:9c:65:14:34:58:55: cd:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:4A:0F:6C:41:EA:56:6F:4D:54:65:F2:83:A9:1F:35:DF:7B:F9:F2 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b1784be3-ac2e-47ca-b8f4-33604f36eb7a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daeb:1000::/40 Signature Algorithm: sha256WithRSAEncryption 83:99:4a:67:b3:70:97:5d:43:38:3b:68:32:7d:91:43:7a:31: 41:70:cc:ff:af:47:e5:e6:f8:dd:ec:c4:d1:25:fc:53:f8:39: ca:e7:ca:6a:1d:20:22:06:a0:2f:89:28:46:f2:62:95:e9:2a: 4d:bf:bc:29:64:72:13:25:10:da:e0:52:b4:79:9b:56:16:60: 1a:54:1b:c5:b1:24:9b:fa:7e:8f:b8:fe:5d:b4:5a:e0:40:12: 3e:43:2b:85:e5:40:62:a4:6a:5e:a9:c6:5d:3c:a6:e2:7a:76: dd:2c:b7:a2:98:e5:7a:a7:ac:4b:fc:78:aa:d9:dd:71:4e:15: f2:49:be:ed:c0:c7:05:4b:68:2e:61:d3:62:1b:2a:0c:8f:1e: 20:a9:7e:18:84:8c:f9:e8:54:72:4e:7b:cb:08:df:7e:02:30: 65:3e:00:71:35:51:69:d0:30:5c:92:57:55:3b:72:c2:49:08: e2:fd:ad:33:56:73:01:9e:5e:6a:c9:69:57:50:27:f0:70:a2: 63:4c:8c:d6:83:e2:c5:5f:27:84:8c:8f:77:0a:22:6a:f9:c2: b3:ff:e0:9c:0e:27:a8:fd:00:a8:c6:4e:e3:f4:94:4b:0c:29: 2f:38:0b:bf:51:79:ee:8a:63:ea:51:64:1d:80:e0:78:1d:cc: 62:62:00:b3 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUMH6T1vst9WuChEJAcQTqMqA9Yg0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDExMzIwMDk0NFoX DTI2MDQxMzIzNTk1OVowejFJMEcGA1UEBRNAOTA4ZGVjNDc1ODgxMzY4M2I3MjI1 MjM5ZTUzNzI1MTM4ODhkMzA5Y2IwNTdkNTlmM2IxNmI5OGQ0NWQxNTkwODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA60xSb8qg9luFQHEBP7SV42/TRrvx yuo4MFeepTh8FMwBVq8OeQkrp7061FwZbNwbXG3shTsry9k+ysyojrP1Avrj4i5m 42rz1qrq0xdpdStBmwd3b83NF+bHCMCzm7nij1M99VJ9WYZO3ZO2sj1PKoAhiJDg jIDpX0IPoSaj0zOJ/o7Om8xBLH+EYG4GUC2ER/C3udzqSK+UyCy128IMdVtiwJ++ HbbK4xEx8pFlaqZjE/Ln94XemqBlznFfOe7pSEw252ZoYcch0AWiJfkLS0djSx/g qEnu6B0mY9T8B4SUPoGZQVL/5/em5Xcc8GokwnYWLwzamtKcZRQ0WFXNvwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFLdKD2xB6lZvTVRl8oOpHzXfe/nyMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2IxNzg0YmUzLWFjMmUtNDdjYS1iOGY0LTMzNjA0ZjM2ZWI3YS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba6xAwDQYJKoZIhvcNAQELBQADggEBAIOZSmezcJddQzg7aDJ9 kUN6MUFwzP+vR+Xm+N3sxNEl/FP4OcrnymodICIGoC+JKEbyYpXpKk2/vClkchMl ENrgUrR5m1YWYBpUG8WxJJv6fo+4/l20WuBAEj5DK4XlQGKkal6pxl08puJ6dt0s t6KY5XqnrEv8eKrZ3XFOFfJJvu3AxwVLaC5h02IbKgyPHiCpfhiEjPnoVHJOe8sI 334CMGU+AHE1UWnQMFySV1U7csJJCOL9rTNWcwGeXmrJaVdQJ/BwomNMjNaD4sVf J4SMj3cKImr5wrP/4JwOJ6j9AKjGTuP0lEsMKS84C79Ree6KY+pRZB2A4HgdzGJi ALM= -----END CERTIFICATE-----Generated at Sat Jan 17 06:44:23 2026 by rpki-client