This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/06700f4a-2e1e-4dab-b312-1d7e8dc4b5c2.roa File: 06700f4a-2e1e-4dab-b312-1d7e8dc4b5c2.roa (raw, json) Hash identifier: 29BjE+emxqJB8rngpB9m0+NJ/Z2Ppg/5ZDIO+wvjJj8= Subject key identifier: CC:CD:F5:60:72:B7:29:09:9B:C3:9D:69:2A:46:0B:8F:2B:50:B5:13 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1AF1AE6CDFB0D663A35F070A7ABE3D49AD2AE837 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/06700f4a-2e1e-4dab-b312-1d7e8dc4b5c2.roa Signing time: Sun 23 Nov 2025 00:01:27 +0000 ROA not before: Sun 23 Nov 2025 00:01:27 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:8080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 27 Nov 2025 00:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:f1:ae:6c:df:b0:d6:63:a3:5f:07:0a:7a:be:3d:49:ad:2a:e8:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 23 00:01:27 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=653392625114ca74d2b252ed59aa840806d36b331a6688ea09d3fe3eddc2198b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:22:86:64:33:4a:77:f8:8d:d3:df:89:c5:ac: 64:88:19:bc:dd:cc:b3:bb:b0:c4:06:89:78:83:1f: c8:ce:62:a6:29:04:a6:f9:89:7c:5c:53:b1:d8:51: 3e:81:5e:84:f8:23:fe:ce:80:00:8a:0b:e8:4e:4e: cf:a2:a0:08:7c:6b:a1:36:9d:b5:1b:6f:ad:c7:43: 42:ba:a2:ac:39:51:ca:fe:8c:5f:52:75:58:d3:76: 86:f9:b7:24:f3:e9:07:a6:0c:5d:46:53:ee:fd:76: 17:db:81:30:55:b2:7d:a1:4c:25:03:e8:61:03:32: 27:21:01:0e:f5:4d:cd:4b:2b:79:a6:8f:c5:2a:53: 3c:5f:33:18:86:aa:73:97:0b:45:cf:ed:e6:48:cf: 56:db:34:21:59:07:70:4a:f6:07:05:8f:80:50:bf: 7d:c0:e9:55:a5:39:d3:4a:0e:93:4a:82:da:dd:5a: 7a:3e:7f:ce:d9:2a:20:87:50:83:9f:25:6b:e7:81: 25:69:86:8a:57:21:05:d5:09:96:92:1c:e8:0c:38: cf:ca:a6:60:d3:42:3a:c5:73:df:10:99:69:ba:f3: 21:c0:51:47:07:20:95:46:a2:1f:74:81:dc:e2:1f: 5e:ac:b0:14:b1:68:f6:95:25:8b:97:0b:ff:76:b6: 5f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:CD:F5:60:72:B7:29:09:9B:C3:9D:69:2A:46:0B:8F:2B:50:B5:13 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/06700f4a-2e1e-4dab-b312-1d7e8dc4b5c2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:8080::/46 Signature Algorithm: sha256WithRSAEncryption 14:47:14:e3:7c:49:16:3a:4d:d2:3c:ac:31:fc:be:b2:97:d9: 70:d7:c3:a4:cc:e0:3b:d4:bb:a4:54:80:b4:01:c6:97:11:a8: 51:79:d2:0e:5a:e1:70:c9:7a:2d:c9:e2:1f:34:d0:ac:82:3f: 52:dc:ed:3e:ec:b3:14:95:ad:bd:37:44:c7:79:2e:34:14:e8: 30:af:ea:ab:b8:b5:57:b3:98:a4:8c:ee:44:15:a4:06:b3:e7: 7a:24:0d:91:69:07:2e:ae:83:4a:a5:11:d1:bd:ed:6b:93:94: 1a:79:46:8d:0d:73:0f:35:db:57:59:ee:90:a8:81:61:9b:d9: 1c:04:7e:9b:e5:d3:bf:8a:9c:63:92:d9:c2:ad:b6:73:b5:5e: f1:92:d6:be:63:d0:53:ad:b4:43:ad:47:22:a2:ee:4b:c2:0d: ae:4f:aa:b6:63:e6:90:a6:5a:76:89:6e:03:55:43:fb:10:da: 17:9a:62:37:fc:18:92:64:e4:ea:61:9a:88:58:00:2e:43:98: 30:17:5f:5a:32:6a:f4:99:7d:e8:11:4a:73:7c:fd:8d:98:9d: ab:6e:d2:b8:01:fc:9a:50:e4:e2:c2:fb:d9:96:dc:09:fd:8d: ef:c3:e6:9d:25:15:90:d2:25:de:8e:e1:57:f8:b9:88:1d:5d: dc:e5:a1:97 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUGvGubN+w1mOjXwcKer49Sa0q6DcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyMzAwMDEyN1oX DTI2MDIyMTIzNTk1OVowejFJMEcGA1UEBRNANjUzMzkyNjI1MTE0Y2E3NGQyYjI1 MmVkNTlhYTg0MDgwNmQzNmIzMzFhNjY4OGVhMDlkM2ZlM2VkZGMyMTk4YjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8iKGZDNKd/iN09+JxaxkiBm83cyz u7DEBol4gx/IzmKmKQSm+Yl8XFOx2FE+gV6E+CP+zoAAigvoTk7PoqAIfGuhNp21 G2+tx0NCuqKsOVHK/oxfUnVY03aG+bck8+kHpgxdRlPu/XYX24EwVbJ9oUwlA+hh AzInIQEO9U3NSyt5po/FKlM8XzMYhqpzlwtFz+3mSM9W2zQhWQdwSvYHBY+AUL99 wOlVpTnTSg6TSoLa3Vp6Pn/O2Sogh1CDnyVr54ElaYaKVyEF1QmWkhzoDDjPyqZg 00I6xXPfEJlpuvMhwFFHByCVRqIfdIHc4h9erLAUsWj2lSWLlwv/drZfCQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFMzN9WBytykJm8OdaSpGC48rULUTMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzA2NzAwZjRhLTJlMWUtNGRhYi1iMzEyLTFkN2U4ZGM0YjVjMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba84CAMA0GCSqGSIb3DQEBCwUAA4IBAQAURxTjfEkWOk3SPKwx /L6yl9lw18OkzOA71LukVIC0AcaXEahRedIOWuFwyXotyeIfNNCsgj9S3O0+7LMU la29N0THeS40FOgwr+qruLVXs5ikjO5EFaQGs+d6JA2RaQcuroNKpRHRve1rk5Qa eUaNDXMPNdtXWe6QqIFhm9kcBH6b5dO/ipxjktnCrbZztV7xkta+Y9BTrbRDrUci ou5Lwg2uT6q2Y+aQplp2iW4DVUP7ENoXmmI3/BiSZOTqYZqIWAAuQ5gwF19aMmr0 mX3oEUpzfP2NmJ2rbtK4AfyaUOTiwvvZltwJ/Y3vw+adJRWQ0iXejuFX+LmIHV3c 5aGX -----END CERTIFICATE-----Generated at Sun Nov 23 05:42:26 2025 by rpki-client