This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b6f9bf5e-cefa-43d9-980b-2e76b8ec3836.roa File: b6f9bf5e-cefa-43d9-980b-2e76b8ec3836.roa (raw, json) Hash identifier: 0Sjb7BPxE9MoiSp4n1TMk2aeOVqjd+OvBzxEVrvYoqc= Subject key identifier: 76:38:4F:90:41:CD:77:52:C4:42:6A:15:8B:2A:64:8C:0B:0B:13:D3 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 46FB9DC406C4522D9B14351151C9957835E777FB Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b6f9bf5e-cefa-43d9-980b-2e76b8ec3836.roa Signing time: Tue 13 Jan 2026 20:08:45 +0000 ROA not before: Tue 13 Jan 2026 20:08:45 +0000 ROA not after: Mon 13 Apr 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daeb:8080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 Jan 2026 20:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:fb:9d:c4:06:c4:52:2d:9b:14:35:11:51:c9:95:78:35:e7:77:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Jan 13 20:08:45 2026 GMT Not After : Apr 13 23:59:59 2026 GMT Subject: serialNumber=eae4329673c4e9fa68924cdebf207ae2fa2008f63b61901d26041bbe79f33b82, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:02:60:20:22:dc:16:04:05:56:b2:94:38:bd: 63:85:9c:65:e7:f3:24:0d:18:7d:9f:ef:18:ce:e5: 5a:89:27:e4:04:7d:71:9b:84:ad:b1:f8:c6:18:b0: e0:36:8c:fe:e3:9a:ae:ce:c5:3a:e8:8b:09:a5:7d: 0a:34:49:e0:b9:75:cf:db:2a:87:d7:4f:e0:32:06: 7b:0e:2b:1d:fb:4d:85:a1:31:94:db:f4:0c:0a:f8: f3:05:f3:0e:e9:58:02:92:80:33:c1:ea:3f:b3:e9: 17:07:a7:d3:0b:1b:53:9d:bb:67:20:cc:83:a9:8b: ee:c9:18:49:ec:da:76:79:33:82:18:82:e0:ab:e2: 29:f3:05:ef:e8:a2:c7:ab:ed:35:fa:b2:09:55:05: d9:b7:3f:1a:94:72:5a:df:70:d2:61:3b:b7:32:d2: db:7d:20:f6:02:ad:4f:68:b2:f0:b8:f9:ea:f8:a8: 24:b7:fe:a2:85:7e:27:ee:de:79:73:6b:be:07:1a: 69:02:51:c5:24:99:6c:67:09:d3:ec:e6:e2:ed:ca: 5c:e2:7d:fd:9a:c1:46:05:47:67:9f:90:e4:d0:d5: aa:c4:de:9f:28:ef:17:67:8e:a0:e8:f0:43:9f:6b: 5f:af:c5:e0:54:6c:12:9f:3e:af:c4:42:35:d1:ba: 35:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:38:4F:90:41:CD:77:52:C4:42:6A:15:8B:2A:64:8C:0B:0B:13:D3 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b6f9bf5e-cefa-43d9-980b-2e76b8ec3836.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daeb:8080::/48 Signature Algorithm: sha256WithRSAEncryption 2d:59:0a:52:d3:ab:c2:23:6a:57:88:9d:5c:d3:53:7c:64:0c: ff:65:67:d7:9c:26:b3:e4:02:ce:7a:7d:de:6b:f6:24:12:70: f8:09:e4:6b:89:25:a2:1c:54:a3:c1:09:1a:75:7e:70:49:f8: f2:a3:34:03:bd:e2:16:da:47:8f:16:06:6a:e8:37:56:af:d1: d1:1f:85:3b:fc:f6:d7:04:91:1d:76:90:78:75:57:ef:c1:11: 10:49:0b:42:72:9f:3d:e5:c7:36:7a:93:3d:31:fb:16:20:fa: 82:cb:0d:9d:44:87:68:2e:25:64:36:96:5a:f5:3e:70:f0:8b: 5c:ec:1c:a2:28:0f:28:67:0a:f3:42:da:2a:53:9b:ff:69:29: 25:dc:e2:4c:11:35:7f:6d:8a:3a:bd:c5:4a:b7:b2:12:1b:8d: d0:9d:cd:8e:e3:46:14:a9:14:da:2b:16:b1:fd:ce:09:b1:99: 9e:5c:04:bc:73:10:6f:3b:64:96:38:9b:16:a5:71:31:4f:fb: 44:a7:87:e2:7b:e5:7f:a3:ae:e9:ad:d1:22:cb:b6:ec:e3:7c: f4:a1:31:24:c7:36:12:13:34:b1:55:6b:68:2f:f4:b1:ab:53: 86:36:a3:ab:82:b9:b9:53:8c:06:3e:24:2e:20:07:0c:c2:0f: b3:ed:79:49 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIURvudxAbEUi2bFDURUcmVeDXnd/swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDExMzIwMDg0NVoX DTI2MDQxMzIzNTk1OVowejFJMEcGA1UEBRNAZWFlNDMyOTY3M2M0ZTlmYTY4OTI0 Y2RlYmYyMDdhZTJmYTIwMDhmNjNiNjE5MDFkMjYwNDFiYmU3OWYzM2I4MjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApgJgICLcFgQFVrKUOL1jhZxl5/Mk DRh9n+8YzuVaiSfkBH1xm4StsfjGGLDgNoz+45quzsU66IsJpX0KNEnguXXP2yqH 10/gMgZ7Disd+02FoTGU2/QMCvjzBfMO6VgCkoAzweo/s+kXB6fTCxtTnbtnIMyD qYvuyRhJ7Np2eTOCGILgq+Ip8wXv6KLHq+01+rIJVQXZtz8alHJa33DSYTu3MtLb fSD2Aq1PaLLwuPnq+Kgkt/6ihX4n7t55c2u+BxppAlHFJJlsZwnT7Obi7cpc4n39 msFGBUdnn5Dk0NWqxN6fKO8XZ46g6PBDn2tfr8XgVGwSnz6vxEI10bo1ZQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFHY4T5BBzXdSxEJqFYsqZIwLCxPTMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2I2ZjliZjVlLWNlZmEtNDNkOS05ODBiLTJlNzZiOGVjMzgzNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba64CAMA0GCSqGSIb3DQEBCwUAA4IBAQAtWQpS06vCI2pXiJ1c 01N8ZAz/ZWfXnCaz5ALOen3ea/YkEnD4CeRriSWiHFSjwQkadX5wSfjyozQDveIW 2kePFgZq6DdWr9HRH4U7/PbXBJEddpB4dVfvwREQSQtCcp895cc2epM9MfsWIPqC yw2dRIdoLiVkNpZa9T5w8Itc7ByiKA8oZwrzQtoqU5v/aSkl3OJMETV/bYo6vcVK t7ISG43Qnc2O40YUqRTaKxax/c4JsZmeXAS8cxBvO2SWOJsWpXExT/tEp4fie+V/ o67prdEiy7bs43z0oTEkxzYSEzSxVWtoL/Sxq1OGNqOrgrm5U4wGPiQuIAcMwg+z 7XlJ -----END CERTIFICATE-----Generated at Sat Jan 17 06:44:24 2026 by rpki-client