This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/12b30a3b-1d2e-4189-bbdf-5ac21b634a36.roa File: 12b30a3b-1d2e-4189-bbdf-5ac21b634a36.roa (raw, json) Hash identifier: pI3sDESJ77xqYJO9Ik0JMqklWsIJMXK1Il7vvj8A3zk= Subject key identifier: A6:D2:76:CC:04:F2:65:71:59:52:EB:A2:7E:C7:E3:62:8A:1E:68:42 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7D383050FBBBA658A38CA158F05220C079F4F5F6 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/12b30a3b-1d2e-4189-bbdf-5ac21b634a36.roa Signing time: Sun 23 Nov 2025 00:10:58 +0000 ROA not before: Sun 23 Nov 2025 00:10:58 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:7080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 27 Nov 2025 00:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:38:30:50:fb:bb:a6:58:a3:8c:a1:58:f0:52:20:c0:79:f4:f5:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 23 00:10:58 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=4972e5dfa64d86e9751aeef52f1fb0ad03170ba644191d4d82afe7479015fc35, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a1:65:79:f4:be:1c:b9:55:0c:f6:d2:5e:ee: 55:c5:22:b1:78:72:a5:f3:21:7d:58:6f:78:99:de: f0:29:df:f2:84:e5:5a:80:74:30:9a:ce:85:b6:43: 89:25:c4:83:ac:76:34:37:94:38:02:9a:3e:84:34: 03:ba:2e:e5:1c:f8:e3:c7:ec:08:97:eb:f7:0b:95: 6d:a3:a5:00:a8:b1:a9:68:b5:ae:f3:c5:30:f6:eb: b3:e4:cf:d4:76:28:d9:15:0b:08:9a:99:32:db:da: d0:9f:8e:e0:8e:84:17:e2:bc:ca:0d:6e:b0:14:c3: 33:aa:3f:eb:07:1f:d9:28:31:92:02:b0:e6:fe:8f: e4:1f:75:dc:28:07:03:76:f1:23:2c:4f:b3:3f:7c: bd:49:a2:0e:7b:07:be:9a:ab:e2:72:8e:63:6d:c1: 11:cd:5f:f3:22:17:de:93:25:e6:19:a4:28:dc:c2: 90:13:a6:d4:cf:cf:d4:69:06:ca:58:ba:e9:ee:61: 03:87:a9:9d:46:1e:e1:e0:53:64:fa:98:09:63:4e: 73:fa:94:db:6e:3d:81:28:68:52:69:85:70:2d:3c: 5e:55:44:3a:60:58:e5:31:dc:1a:ab:3f:d8:9a:a4: 66:4e:b8:c8:40:82:40:81:a9:37:c9:1f:f1:75:c7: d6:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:D2:76:CC:04:F2:65:71:59:52:EB:A2:7E:C7:E3:62:8A:1E:68:42 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/12b30a3b-1d2e-4189-bbdf-5ac21b634a36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:7080::/46 Signature Algorithm: sha256WithRSAEncryption 84:90:57:fb:a6:40:63:a1:0c:f3:37:53:65:93:64:74:c2:e5: 6f:4e:91:b3:b3:1d:84:32:de:4a:59:3a:20:79:33:f7:ad:7e: 70:3d:99:b9:37:42:1e:6f:b1:32:05:f1:fb:f7:0e:5f:88:c3: 1d:c9:69:e2:fc:5f:bd:77:c1:a1:5d:57:7d:57:e4:66:0e:3a: e7:b5:89:8f:50:83:27:e8:22:8a:17:e4:5e:3a:6f:b3:0e:21: 23:65:ae:3f:a5:7d:11:34:7c:92:78:cd:01:a9:69:d4:9f:7e: c2:fb:6b:4e:a8:16:d8:4b:7f:cc:22:a7:88:d0:a5:77:1c:6c: 63:75:5d:43:10:0b:6c:50:f7:2d:28:b1:b9:ea:d3:cb:45:07: 7b:5e:6d:2b:20:c5:7e:83:f2:b8:14:75:2e:bc:d7:68:fc:c4: e3:ed:24:f8:e3:ea:78:97:29:98:da:73:4b:67:49:f3:21:b1: a6:86:df:e5:18:70:15:18:d6:bb:9a:71:79:58:4a:e7:f9:3f: 18:8b:16:50:ee:60:b8:f9:63:ae:19:3f:6d:87:49:4a:be:cd: 6c:a0:db:50:c4:d7:73:59:81:a7:8d:2f:db:f9:61:29:39:1c: 3e:23:32:0b:9f:ab:80:03:15:d2:37:30:c3:1b:63:3d:c7:d3: fd:bc:20:d5 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUfTgwUPu7plijjKFY8FIgwHn09fYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyMzAwMTA1OFoX DTI2MDIyMTIzNTk1OVowejFJMEcGA1UEBRNANDk3MmU1ZGZhNjRkODZlOTc1MWFl ZWY1MmYxZmIwYWQwMzE3MGJhNjQ0MTkxZDRkODJhZmU3NDc5MDE1ZmMzNTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA06FlefS+HLlVDPbSXu5VxSKxeHKl 8yF9WG94md7wKd/yhOVagHQwms6FtkOJJcSDrHY0N5Q4Apo+hDQDui7lHPjjx+wI l+v3C5Vto6UAqLGpaLWu88Uw9uuz5M/UdijZFQsImpky29rQn47gjoQX4rzKDW6w FMMzqj/rBx/ZKDGSArDm/o/kH3XcKAcDdvEjLE+zP3y9SaIOewe+mqvico5jbcER zV/zIhfekyXmGaQo3MKQE6bUz8/UaQbKWLrp7mEDh6mdRh7h4FNk+pgJY05z+pTb bj2BKGhSaYVwLTxeVUQ6YFjlMdwaqz/YmqRmTrjIQIJAgak3yR/xdcfWSwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFKbSdswE8mVxWVLron7H42KKHmhCMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzEyYjMwYTNiLTFkMmUtNDE4OS1iYmRmLTVhYzIxYjYzNGEzNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba83CAMA0GCSqGSIb3DQEBCwUAA4IBAQCEkFf7pkBjoQzzN1Nl k2R0wuVvTpGzsx2EMt5KWTogeTP3rX5wPZm5N0Ieb7EyBfH79w5fiMMdyWni/F+9 d8GhXVd9V+RmDjrntYmPUIMn6CKKF+ReOm+zDiEjZa4/pX0RNHySeM0BqWnUn37C +2tOqBbYS3/MIqeI0KV3HGxjdV1DEAtsUPctKLG56tPLRQd7Xm0rIMV+g/K4FHUu vNdo/MTj7ST44+p4lymY2nNLZ0nzIbGmht/lGHAVGNa7mnF5WErn+T8YixZQ7mC4 +WOuGT9th0lKvs1soNtQxNdzWYGnjS/b+WEpORw+IzILn6uAAxXSNzDDG2M9x9P9 vCDV -----END CERTIFICATE-----Generated at Sun Nov 23 05:43:01 2025 by rpki-client