This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0a4856e0-f127-4ba4-95a7-4efde8ba42b2.roa File: 0a4856e0-f127-4ba4-95a7-4efde8ba42b2.roa (raw, json) Hash identifier: LWTNnbAcxb8go/FL3mF5ye2/O4PUIitPPHWtzylOObQ= Subject key identifier: 97:B4:AE:C9:AA:FB:FE:5D:DC:84:92:F2:87:C2:C5:7D:B9:85:E9:9B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0AECF501C08152098DC252B5B0571A8A24841A1B Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0a4856e0-f127-4ba4-95a7-4efde8ba42b2.roa Signing time: Sat 08 Nov 2025 00:20:38 +0000 ROA not before: Sat 08 Nov 2025 00:20:38 +0000 ROA not after: Sat 13 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 126.226.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 27 Nov 2025 00:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:ec:f5:01:c0:81:52:09:8d:c2:52:b5:b0:57:1a:8a:24:84:1a:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 8 00:20:38 2025 GMT Not After : Dec 13 23:59:59 2025 GMT Subject: serialNumber=dab6cf715b57fd0a29292388c79253f00a9a8f4d1e17732b173e369347166ad8, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:50:09:aa:83:30:b5:59:8a:11:08:26:ad:d9: d3:0c:3b:b6:38:d7:01:0e:31:e5:d8:33:82:aa:d0: 30:a4:58:47:b5:47:1e:83:12:15:d1:fd:2f:a5:93: 7b:68:96:82:8f:56:43:72:b7:fb:0a:bc:29:5d:29: e0:75:2e:88:d0:b9:4d:c9:59:0b:66:5e:dc:b2:28: 20:02:ef:e3:97:65:1f:aa:36:12:fa:63:73:26:71: 08:78:13:61:a2:64:3c:b4:6c:db:d1:30:4c:cf:85: fc:54:5b:af:84:87:fd:d9:f6:3d:f3:cc:ed:43:0c: 5d:35:2f:4a:8c:a9:60:84:eb:55:9a:7a:79:a8:a6: 87:05:70:69:e3:bc:1e:2a:8d:5b:c5:65:03:8b:b3: e1:ca:f6:e8:a2:6a:a9:c4:d8:0c:95:a3:eb:36:8f: 6b:dc:20:95:d3:17:ef:36:91:1e:6d:2c:08:c7:5b: db:42:08:7b:ea:12:f1:7a:5c:b6:92:0c:39:cf:5a: e7:74:33:ac:7a:53:11:49:00:ff:b2:55:f2:a9:2e: ae:6c:51:56:9f:4e:e6:a8:e5:a5:74:d9:d4:46:ef: e1:82:a9:e0:cd:b9:5d:7d:a4:68:46:1f:fd:3d:63: 18:f3:48:e4:f1:09:91:09:6b:45:fc:98:98:da:6c: e6:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:B4:AE:C9:AA:FB:FE:5D:DC:84:92:F2:87:C2:C5:7D:B9:85:E9:9B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0a4856e0-f127-4ba4-95a7-4efde8ba42b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 126.226.0.0/16 Signature Algorithm: sha256WithRSAEncryption 42:0f:27:f7:88:07:6b:e4:30:29:98:6a:59:c9:02:bb:75:f5: 42:e2:92:e9:2b:b3:df:1e:1e:af:8e:de:d6:46:14:8c:8a:40: 99:67:a3:4f:4c:81:19:a8:b9:52:94:9c:81:74:96:44:5a:d2: f5:dd:5a:76:ac:36:41:e8:36:08:5f:6f:b5:09:16:13:2c:0f: 7f:21:60:e0:9b:87:2c:90:79:e4:d5:a6:72:de:21:69:da:ef: 29:f3:c5:d6:e7:29:c4:88:f5:63:25:71:87:54:e0:73:76:5a: 32:47:0c:41:07:7c:07:a2:80:ce:a7:ce:7a:54:c3:76:9d:50: a9:72:95:66:ac:94:89:d6:ff:15:38:1a:66:01:e2:87:82:d3: 2d:7a:e9:13:96:22:b2:e1:31:e6:4f:5b:13:19:95:9f:89:74: 37:79:61:b9:0e:1b:69:21:b7:28:15:8d:b8:17:67:8c:f2:c8: 74:cc:30:bb:dc:33:22:89:e5:f3:26:2f:f4:93:d9:43:85:2a: d8:a2:02:7c:49:d7:b2:2e:d7:1e:1e:01:74:1d:aa:92:5b:f0: d8:aa:46:89:4b:f9:49:b7:70:c2:16:7c:82:a4:62:1c:a4:79: 39:ae:74:cc:d7:a5:c2:3d:b1:42:02:64:ee:52:52:87:cc:95: 00:cf:d7:bd -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgIUCuz1AcCBUgmNwlK1sFcaiiSEGhswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEwODAwMjAzOFoX DTI1MTIxMzIzNTk1OVowejFJMEcGA1UEBRNAZGFiNmNmNzE1YjU3ZmQwYTI5Mjky Mzg4Yzc5MjUzZjAwYTlhOGY0ZDFlMTc3MzJiMTczZTM2OTM0NzE2NmFkODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApFAJqoMwtVmKEQgmrdnTDDu2ONcB DjHl2DOCqtAwpFhHtUcegxIV0f0vpZN7aJaCj1ZDcrf7CrwpXSngdS6I0LlNyVkL Zl7csiggAu/jl2UfqjYS+mNzJnEIeBNhomQ8tGzb0TBMz4X8VFuvhIf92fY988zt QwxdNS9KjKlghOtVmnp5qKaHBXBp47weKo1bxWUDi7PhyvboomqpxNgMlaPrNo9r 3CCV0xfvNpEebSwIx1vbQgh76hLxely2kgw5z1rndDOselMRSQD/slXyqS6ubFFW n07mqOWldNnURu/hgqngzbldfaRoRh/9PWMY80jk8QmRCWtF/JiY2mzmdQIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFJe0rsmq+/5d3ISS8ofCxX25hembMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzBhNDg1NmUwLWYxMjctNGJhNC05NWE3LTRlZmRlOGJhNDJiMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAfuIwDQYJKoZIhvcNAQELBQADggEBAEIPJ/eIB2vkMCmYalnJArt1 9ULikukrs98eHq+O3tZGFIyKQJlno09MgRmouVKUnIF0lkRa0vXdWnasNkHoNghf b7UJFhMsD38hYOCbhyyQeeTVpnLeIWna7ynzxdbnKcSI9WMlcYdU4HN2WjJHDEEH fAeigM6nznpUw3adUKlylWaslInW/xU4GmYB4oeC0y166ROWIrLhMeZPWxMZlZ+J dDd5YbkOG2khtygVjbgXZ4zyyHTMMLvcMyKJ5fMmL/ST2UOFKtiiAnxJ17Iu1x4e AXQdqpJb8NiqRolL+Um3cMIWfIKkYhykeTmudMzXpcI9sUICZO5SUofMlQDP170= -----END CERTIFICATE-----Generated at Sun Nov 23 05:41:33 2025 by rpki-client