This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/22827311-fc81-4898-abc1-b5908f6d3f8f.roa File: 22827311-fc81-4898-abc1-b5908f6d3f8f.roa (raw, json) Hash identifier: S7tyC38lKFRgEh7AnB2+BeyfrDjFw6lXg8KuYui6IEs= Subject key identifier: 7D:D9:DE:4D:66:5D:FE:E5:24:96:42:DF:0E:A7:34:AA:C6:7A:80:BE Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 2120FBC1E8C07EA2C8A0CDD82D53845B86C70329 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/22827311-fc81-4898-abc1-b5908f6d3f8f.roa Signing time: Sun 23 Nov 2025 00:10:59 +0000 ROA not before: Sun 23 Nov 2025 00:10:59 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:8880::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 27 Nov 2025 00:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:20:fb:c1:e8:c0:7e:a2:c8:a0:cd:d8:2d:53:84:5b:86:c7:03:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 23 00:10:59 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=b57420eea90b12c59afea53ee68f137764b8251fbf516b3217848e42f761db2b, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:87:8c:ca:73:b8:a2:0b:fa:62:02:44:e0:7e: 07:49:39:b4:3f:24:67:1f:8f:a4:2d:b6:ed:99:97: 39:17:15:bb:4e:3d:af:db:db:66:95:31:64:84:b5: ee:3f:48:c7:56:8f:26:d8:56:77:7d:7e:1c:c0:c0: c7:38:fd:27:f8:a5:b3:83:21:80:3b:48:54:ba:9b: f1:e4:23:f1:67:bd:e7:7c:2b:57:28:82:68:08:4f: 49:56:f1:44:34:39:d8:90:09:07:31:de:84:4f:e0: df:3f:7c:54:98:68:5e:e8:48:67:c8:0f:67:f6:01: 8b:b0:c5:92:95:7d:ae:25:6c:cf:36:d9:51:0d:f5: f6:92:1b:c1:e9:66:fe:ef:2c:e3:5e:af:98:d0:4c: 5b:72:bd:1e:7a:e1:9c:6c:75:4c:08:01:db:0c:5e: b7:41:16:a4:02:16:ed:fb:f6:ed:1b:c2:73:76:0b: 30:c8:5c:8a:71:01:02:fa:10:95:76:df:6c:99:b2: f6:00:39:31:c6:47:6b:0d:2f:8b:76:d7:13:d3:12: 79:76:e7:9f:2d:0a:49:be:8f:67:e9:f9:e7:bf:2d: a0:80:21:6c:d1:d2:9d:de:3b:5c:c5:f2:c6:34:db: 07:69:1c:f1:22:7c:43:91:75:f0:bf:47:9a:ac:67: da:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:D9:DE:4D:66:5D:FE:E5:24:96:42:DF:0E:A7:34:AA:C6:7A:80:BE X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/22827311-fc81-4898-abc1-b5908f6d3f8f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:8880::/46 Signature Algorithm: sha256WithRSAEncryption 7b:92:70:42:8a:8c:a1:a9:4f:4a:be:7b:4f:52:f6:15:26:f3: b2:ca:3f:42:2a:2a:8b:82:e6:f8:87:30:cc:c9:56:24:1e:e5: 96:ef:5c:14:10:2d:c7:a5:68:39:48:a2:07:90:e7:8b:26:ef: 82:91:e5:4f:e1:0b:7d:65:31:db:74:91:7b:94:91:97:26:0f: 75:0f:a3:47:67:50:12:90:39:81:89:33:32:36:a8:f2:17:83: 08:70:88:62:2c:90:f5:a6:3f:6c:a7:dd:f5:73:4f:c6:06:45: f6:5e:ef:7f:a2:f2:41:10:54:d7:31:3c:51:d4:0f:ac:74:94: 74:09:b9:91:13:5e:3c:0b:e6:17:46:40:50:a5:be:ad:5b:16: c9:be:06:38:92:26:e8:65:d4:7f:cb:26:3b:d6:01:8f:cb:ed: 07:b5:e3:eb:51:e0:2b:f7:4b:14:4b:9c:3c:34:a1:e8:44:16: da:35:2c:20:88:1b:94:e4:a3:5e:e0:6f:0c:4f:69:db:7d:01: 44:86:f5:e2:af:13:a9:3e:2b:40:cd:79:0f:e9:f4:51:83:b8: b2:99:bf:3a:8b:ed:98:7b:a8:9a:36:35:0b:f0:ac:9c:6f:38: d7:93:77:c6:c8:c8:b9:39:dc:31:a7:0d:e1:2d:83:74:1f:b4: c7:c3:99:bf -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUISD7wejAfqLIoM3YLVOEW4bHAykwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyMzAwMTA1OVoX DTI2MDIyMTIzNTk1OVowejFJMEcGA1UEBRNAYjU3NDIwZWVhOTBiMTJjNTlhZmVh NTNlZTY4ZjEzNzc2NGI4MjUxZmJmNTE2YjMyMTc4NDhlNDJmNzYxZGIyYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt4eMynO4ogv6YgJE4H4HSTm0PyRn H4+kLbbtmZc5FxW7Tj2v29tmlTFkhLXuP0jHVo8m2FZ3fX4cwMDHOP0n+KWzgyGA O0hUupvx5CPxZ73nfCtXKIJoCE9JVvFENDnYkAkHMd6ET+DfP3xUmGhe6EhnyA9n 9gGLsMWSlX2uJWzPNtlRDfX2khvB6Wb+7yzjXq+Y0Exbcr0eeuGcbHVMCAHbDF63 QRakAhbt+/btG8JzdgswyFyKcQEC+hCVdt9smbL2ADkxxkdrDS+LdtcT0xJ5duef LQpJvo9n6fnnvy2ggCFs0dKd3jtcxfLGNNsHaRzxInxDkXXwv0earGfa1wIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFH3Z3k1mXf7lJJZC3w6nNKrGeoC+MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzIyODI3MzExLWZjODEtNDg5OC1hYmMxLWI1OTA4ZjZkM2Y4Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba84iAMA0GCSqGSIb3DQEBCwUAA4IBAQB7knBCioyhqU9KvntP UvYVJvOyyj9CKiqLgub4hzDMyVYkHuWW71wUEC3HpWg5SKIHkOeLJu+CkeVP4Qt9 ZTHbdJF7lJGXJg91D6NHZ1ASkDmBiTMyNqjyF4MIcIhiLJD1pj9sp931c0/GBkX2 Xu9/ovJBEFTXMTxR1A+sdJR0CbmRE148C+YXRkBQpb6tWxbJvgY4kiboZdR/yyY7 1gGPy+0HtePrUeAr90sUS5w8NKHoRBbaNSwgiBuU5KNe4G8MT2nbfQFEhvXirxOp PitAzXkP6fRRg7iymb86i+2Ye6iaNjUL8KycbzjXk3fGyMi5Odwxpw3hLYN0H7TH w5m/ -----END CERTIFICATE-----Generated at Sun Nov 23 05:44:58 2025 by rpki-client