This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1a6b91f2-ca3c-48be-8409-9e275b3c89e5.roa File: 1a6b91f2-ca3c-48be-8409-9e275b3c89e5.roa (raw, json) Hash identifier: sIPXoErHoDRoPAVZ1DmyAxXIPWo41qhkZ4p5LGtDswk= Subject key identifier: 2A:74:35:37:BC:8F:01:89:9C:B5:F0:C0:D9:B9:F1:89:B5:E9:A2:0A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3E879F2AA99FB9615DD01124E7ECB2CE95F06FD3 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1a6b91f2-ca3c-48be-8409-9e275b3c89e5.roa Signing time: Sat 08 Nov 2025 00:10:28 +0000 ROA not before: Sat 08 Nov 2025 00:10:28 +0000 ROA not after: Sat 13 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da69:800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 27 Nov 2025 00:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:87:9f:2a:a9:9f:b9:61:5d:d0:11:24:e7:ec:b2:ce:95:f0:6f:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 8 00:10:28 2025 GMT Not After : Dec 13 23:59:59 2025 GMT Subject: serialNumber=0183d3539a8c2e63cf3255332fdcdaf1665830e043ad0f4d18aafd4a0f1b9a03, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:cb:1c:06:03:bb:10:2b:a4:7b:1d:6f:aa:23: 17:19:e7:7b:a3:f1:e3:89:67:8f:b5:66:b4:67:56: aa:03:2d:d6:03:13:7f:36:4b:66:5b:6e:12:d8:09: 22:17:48:8a:8e:f5:83:85:52:3f:a0:ba:b1:22:fe: 1f:c0:81:c6:97:fd:e1:3f:b4:2d:9a:27:fa:95:3b: 02:51:81:9a:d5:c0:ee:8d:63:ba:45:c6:54:fa:3a: d3:7c:6a:da:8c:3f:75:51:a6:e7:62:7c:1f:2d:9f: 63:47:b7:64:71:f1:09:8c:cf:90:47:15:93:4f:b2: d1:a1:3e:0f:46:f0:4e:41:89:05:02:92:e5:de:41: be:a6:3c:bb:ed:90:59:2f:95:33:f3:59:df:bc:ce: 64:eb:81:7d:83:73:87:7e:73:08:b7:7e:06:68:63: 75:5c:b5:b6:6c:1e:0f:0a:fd:05:ea:4c:67:d6:d8: d6:2a:ab:97:23:e7:07:91:a7:34:26:ff:37:e1:e9: 9b:43:9e:b2:12:3f:73:d4:59:5b:d1:d6:06:9c:b5: c7:5e:af:af:a0:92:e9:b3:32:0c:4d:fc:c4:41:44: 2e:b2:26:89:ec:31:a9:3f:22:4e:97:d7:52:72:ba: 90:8f:5c:9c:c9:c0:c3:5b:7a:dc:b8:df:40:ea:60: 38:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:74:35:37:BC:8F:01:89:9C:B5:F0:C0:D9:B9:F1:89:B5:E9:A2:0A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1a6b91f2-ca3c-48be-8409-9e275b3c89e5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da69:800::/40 Signature Algorithm: sha256WithRSAEncryption 8a:5f:e2:ac:13:07:df:62:e7:d7:c9:91:64:09:9e:5f:99:cb: 3d:52:e0:89:e9:3d:5e:f7:e9:13:72:a5:b6:88:d2:68:e1:26: 1e:87:42:e7:37:0c:65:34:9c:1b:1f:d7:11:91:5f:6e:1b:91: 1c:71:a8:1e:54:16:8c:6f:b3:6e:cc:8a:b0:3f:47:47:e2:5c: 2f:bd:50:70:1a:ec:62:d6:5a:01:0a:e4:a8:52:94:58:bc:3e: 9a:e0:e1:ed:bd:2d:c0:f5:65:75:3b:37:8e:43:7b:8b:ba:30: 7f:75:70:48:c5:23:cc:a2:3f:8f:b9:93:16:d2:36:52:db:66: 58:20:01:22:48:24:ea:7b:42:cd:ae:f5:50:71:90:19:61:99: 80:27:0d:ed:13:25:6c:0e:e2:52:8f:b3:2f:0f:e9:07:7e:2d: 77:90:d5:db:a3:e1:cb:1f:ca:31:72:18:0a:7c:8b:01:e5:2a: 21:9d:fa:9d:35:15:c1:35:1b:c3:03:f5:40:b7:d2:04:5f:36: b2:55:c0:01:7d:0c:ea:26:d5:01:7b:4c:d5:03:27:83:cc:27: dd:11:cc:96:6c:4d:b7:6f:cb:1e:33:97:b5:1a:9f:b4:50:bf: a6:a6:04:1a:a1:55:35:ff:37:8e:2c:28:e5:b5:01:84:32:ff: 26:9a:68:f3 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUPoefKqmfuWFd0BEk5+yyzpXwb9MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEwODAwMTAyOFoX DTI1MTIxMzIzNTk1OVowejFJMEcGA1UEBRNAMDE4M2QzNTM5YThjMmU2M2NmMzI1 NTMzMmZkY2RhZjE2NjU4MzBlMDQzYWQwZjRkMThhYWZkNGEwZjFiOWEwMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAusscBgO7ECukex1vqiMXGed7o/Hj iWePtWa0Z1aqAy3WAxN/NktmW24S2AkiF0iKjvWDhVI/oLqxIv4fwIHGl/3hP7Qt mif6lTsCUYGa1cDujWO6RcZU+jrTfGrajD91UabnYnwfLZ9jR7dkcfEJjM+QRxWT T7LRoT4PRvBOQYkFApLl3kG+pjy77ZBZL5Uz81nfvM5k64F9g3OHfnMIt34GaGN1 XLW2bB4PCv0F6kxn1tjWKquXI+cHkac0Jv834embQ56yEj9z1Flb0dYGnLXHXq+v oJLpszIMTfzEQUQusiaJ7DGpPyJOl9dScrqQj1ycycDDW3rcuN9A6mA4vQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFCp0NTe8jwGJnLXwwNm58Ym16aIKMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzFhNmI5MWYyLWNhM2MtNDhiZS04NDA5LTllMjc1YjNjODllNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaaQgwDQYJKoZIhvcNAQELBQADggEBAIpf4qwTB99i59fJkWQJ nl+Zyz1S4InpPV736RNypbaI0mjhJh6HQuc3DGU0nBsf1xGRX24bkRxxqB5UFoxv s27MirA/R0fiXC+9UHAa7GLWWgEK5KhSlFi8Pprg4e29LcD1ZXU7N45De4u6MH91 cEjFI8yiP4+5kxbSNlLbZlggASJIJOp7Qs2u9VBxkBlhmYAnDe0TJWwO4lKPsy8P 6Qd+LXeQ1duj4csfyjFyGAp8iwHlKiGd+p01FcE1G8MD9UC30gRfNrJVwAF9DOom 1QF7TNUDJ4PMJ90RzJZsTbdvyx4zl7Uan7RQv6amBBqhVTX/N44sKOW1AYQy/yaa aPM= -----END CERTIFICATE-----Generated at Sun Nov 23 05:42:56 2025 by rpki-client