This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1b37db1b-9168-4013-90fd-5f16557b73d7.roa File: 1b37db1b-9168-4013-90fd-5f16557b73d7.roa (raw, json) Hash identifier: vhLCPOA6NM9lrf3tDRJqiN+1gWgg+QW53JQmMkT3eDo= Subject key identifier: 6F:64:FA:22:8D:81:52:0B:9E:D5:89:B2:4D:ED:56:3C:6C:7A:58:FF Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 499C1C7944F91B3101189C02AD9C13F385BBB4AC Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1b37db1b-9168-4013-90fd-5f16557b73d7.roa Signing time: Sun 23 Nov 2025 00:00:11 +0000 ROA not before: Sun 23 Nov 2025 00:00:11 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf5:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 27 Nov 2025 00:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:9c:1c:79:44:f9:1b:31:01:18:9c:02:ad:9c:13:f3:85:bb:b4:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 23 00:00:11 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=f8cac924323d087074dbeed7cce4e7bdbad88ee18d3510edd98c0cc99d811f22, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:80:6a:af:f2:70:72:39:fa:04:73:a6:f7:fb: fd:2c:f4:7c:fa:ca:cd:0a:cd:dc:2c:96:9f:13:1b: 19:84:6b:e2:03:6e:98:0b:5b:0f:a0:3d:54:51:9a: 71:63:46:64:ad:36:27:b6:29:5a:7d:8d:26:0f:dd: 77:78:d0:7e:8b:87:64:d4:6c:26:68:36:c1:28:5b: 7e:15:01:96:5c:42:9e:4f:7f:e4:d6:39:c8:3b:39: 03:0b:9a:e8:1a:9c:2e:45:c1:6a:cb:14:44:99:2e: 0e:35:a7:a5:59:28:61:60:54:11:9f:70:99:39:04: a5:f4:dc:6a:ba:0e:2a:cc:45:95:46:18:d1:6a:9d: ec:8d:0a:3d:34:ea:0d:3d:37:6d:38:f7:3b:20:fd: e4:b5:59:4a:18:7e:11:df:e8:46:69:51:2e:87:36: ea:cd:00:9f:cd:39:d9:15:0d:de:68:af:a6:95:fa: 52:24:5f:24:a9:cd:52:3b:e0:f4:a7:e5:ae:87:56: e3:57:76:25:e7:77:71:13:c8:3a:8d:36:55:1b:13: 59:4e:03:0d:2b:8d:19:63:9b:c5:e0:aa:36:7d:dc: bb:80:47:22:a2:40:ad:9a:2c:5a:6f:04:df:5d:af: 0b:7b:71:09:8e:3e:a6:aa:22:61:e1:87:87:7f:9b: 59:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:64:FA:22:8D:81:52:0B:9E:D5:89:B2:4D:ED:56:3C:6C:7A:58:FF X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1b37db1b-9168-4013-90fd-5f16557b73d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf5:1000::/40 Signature Algorithm: sha256WithRSAEncryption 98:3b:60:0d:ae:18:e3:b5:97:32:b6:97:8a:42:aa:29:1e:59: 06:e3:cb:91:1c:04:94:8b:f1:e5:08:68:f8:de:55:c4:cf:96: 6d:43:73:cf:a7:d8:65:ab:3f:dd:22:87:5e:00:dd:0b:0e:b4: 07:a1:4f:6f:b8:ad:9b:cd:fc:e3:2c:85:54:97:b9:08:de:0d: 7a:54:f3:d0:be:ec:39:5d:7c:58:09:10:0f:7a:d0:98:26:7f: 62:58:c3:1d:33:59:f6:91:e2:da:6e:a6:92:10:15:0e:2a:a0: 60:f6:ef:8b:97:df:8f:3f:18:ef:7e:a3:24:f5:fa:00:6c:ff: 90:eb:98:48:54:73:90:92:10:ff:fe:8a:fe:b2:ec:0f:97:3d: d4:e7:44:8e:3c:5e:98:8f:b8:89:b2:ed:7b:af:62:38:1a:24: 61:b7:4b:aa:a7:d3:ea:50:ac:31:80:0e:c4:22:9b:ec:4a:f7: 6a:f0:ac:07:bf:1e:85:37:ed:8b:37:dc:90:76:74:01:44:a4: 3f:37:00:82:8c:2d:80:38:81:30:11:bc:a4:b7:74:19:36:b2: e6:d6:a6:23:ba:64:2a:79:03:ac:36:4c:71:15:04:fb:ea:fa: 79:97:62:c2:23:c4:e8:4c:67:fb:aa:7a:c8:f6:79:3a:16:57: cb:ac:93:a7 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUSZwceUT5GzEBGJwCrZwT84W7tKwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyMzAwMDAxMVoX DTI2MDIyMTIzNTk1OVowejFJMEcGA1UEBRNAZjhjYWM5MjQzMjNkMDg3MDc0ZGJl ZWQ3Y2NlNGU3YmRiYWQ4OGVlMThkMzUxMGVkZDk4YzBjYzk5ZDgxMWYyMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1oBqr/Jwcjn6BHOm9/v9LPR8+srN Cs3cLJafExsZhGviA26YC1sPoD1UUZpxY0ZkrTYntilafY0mD913eNB+i4dk1Gwm aDbBKFt+FQGWXEKeT3/k1jnIOzkDC5roGpwuRcFqyxREmS4ONaelWShhYFQRn3CZ OQSl9Nxqug4qzEWVRhjRap3sjQo9NOoNPTdtOPc7IP3ktVlKGH4R3+hGaVEuhzbq zQCfzTnZFQ3eaK+mlfpSJF8kqc1SO+D0p+Wuh1bjV3Yl53dxE8g6jTZVGxNZTgMN K40ZY5vF4Ko2fdy7gEciokCtmixabwTfXa8Le3EJjj6mqiJh4YeHf5tZXQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFG9k+iKNgVILntWJsk3tVjxselj/MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzFiMzdkYjFiLTkxNjgtNDAxMy05MGZkLTVmMTY1NTdiNzNkNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba9RAwDQYJKoZIhvcNAQELBQADggEBAJg7YA2uGOO1lzK2l4pC qikeWQbjy5EcBJSL8eUIaPjeVcTPlm1Dc8+n2GWrP90ih14A3QsOtAehT2+4rZvN /OMshVSXuQjeDXpU89C+7DldfFgJEA960Jgmf2JYwx0zWfaR4tpuppIQFQ4qoGD2 74uX348/GO9+oyT1+gBs/5DrmEhUc5CSEP/+iv6y7A+XPdTnRI48XpiPuImy7Xuv YjgaJGG3S6qn0+pQrDGADsQim+xK92rwrAe/HoU37Ys33JB2dAFEpD83AIKMLYA4 gTARvKS3dBk2subWpiO6ZCp5A6w2THEVBPvq+nmXYsIjxOhMZ/uqesj2eToWV8us k6c= -----END CERTIFICATE-----Generated at Sun Nov 23 05:00:09 2025 by rpki-client