This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3e9cc6af-bc2c-4dca-8915-0cddf25cc8db.roa File: 3e9cc6af-bc2c-4dca-8915-0cddf25cc8db.roa (raw, json) Hash identifier: bwQE5VggpHLLQtLL6ZvRexf1cW7x+BwsaZU2p3jSvbA= Subject key identifier: 16:41:C0:F4:2C:35:CF:00:AD:3A:B0:8C:C0:CB:0F:F5:19:26:67:56 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 72E830416B332F00BDEEF1948C3037A38575BA08 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3e9cc6af-bc2c-4dca-8915-0cddf25cc8db.roa Signing time: Thu 04 Dec 2025 00:20:07 +0000 ROA not before: Thu 04 Dec 2025 00:20:07 +0000 ROA not after: Wed 04 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da68:4800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:e8:30:41:6b:33:2f:00:bd:ee:f1:94:8c:30:37:a3:85:75:ba:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 4 00:20:07 2025 GMT Not After : Mar 4 23:59:59 2026 GMT Subject: serialNumber=c37d45d599d732c5674946809aea579d208db75a3b71cf5d423f04c4464d6b40, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:54:4e:92:b2:17:d0:5d:0e:ab:35:6e:23:e1: e7:42:c9:81:70:aa:1b:81:c1:c7:3d:a9:27:c2:a4: 3e:5e:4b:a5:e6:8d:e7:e7:aa:86:26:78:8f:7e:e3: ee:ca:99:66:77:42:0b:28:c0:11:22:d1:b4:0d:23: d0:a7:6b:42:a1:ab:58:a6:3b:58:4b:e8:86:8e:1e: 41:bf:34:20:fd:cf:1b:60:f0:05:50:4e:57:7f:9b: 49:21:e9:b9:11:3c:40:3d:2a:93:3d:f7:38:b0:94: 26:ec:e6:ff:d3:7b:73:2a:82:2a:5e:83:15:76:b7: 30:7a:55:70:5d:2f:db:27:6a:1b:2d:a4:ed:ef:ad: 35:e2:d0:f5:c4:ba:4d:c5:15:08:ab:ad:f6:c2:7c: 7a:bf:bd:d5:c5:65:c3:a6:b6:30:c0:82:08:38:52: 86:f6:1c:8f:28:b9:bd:65:bf:77:bc:bd:c2:b4:5d: be:85:0a:d5:68:f5:0c:4b:75:b4:d9:71:03:61:09: 2e:04:59:a8:65:f3:40:64:35:06:a4:d4:f6:a4:50: db:9a:b6:3c:17:dd:50:2a:2f:82:52:11:ef:e7:27: de:93:c9:4d:f2:30:63:8d:33:3f:06:ba:6e:c4:87: d8:55:10:c9:9a:5a:47:5b:13:6a:43:04:19:d0:12: 90:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:41:C0:F4:2C:35:CF:00:AD:3A:B0:8C:C0:CB:0F:F5:19:26:67:56 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/3e9cc6af-bc2c-4dca-8915-0cddf25cc8db.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da68:4800::/40 Signature Algorithm: sha256WithRSAEncryption 69:7d:9c:47:4c:a1:e6:bb:f5:11:9a:f6:1f:f1:16:b8:3d:6b: d4:eb:e6:d1:63:da:da:01:12:a4:bd:9d:a1:99:1f:72:f9:ea: 26:b2:0b:28:20:9f:db:1f:ed:d9:fa:75:bc:3f:d4:14:9c:c4: b6:c7:06:f3:74:70:bd:9f:7c:0d:c1:13:03:15:2f:1c:b8:a1: dc:31:d4:35:88:e4:0f:bf:25:db:29:a8:5e:ad:09:99:9b:dc: 6a:f1:c4:63:68:4e:18:af:af:b8:d6:21:ad:e6:5f:2f:f1:b0: 76:25:2c:f1:d1:24:0b:a5:0a:f8:f9:f3:08:8f:6c:27:54:d5: 45:ff:da:48:42:8c:2c:55:8c:e5:1c:49:45:37:77:1a:ed:6c: e0:6b:c8:4a:37:74:d9:96:3f:9b:fb:3f:75:71:c9:e5:91:c4: b5:a6:5d:a0:e8:4b:bd:aa:c8:fa:85:d7:4f:21:dc:6d:6c:26: f0:04:94:47:28:57:fa:db:19:d0:22:9b:b1:fe:a0:d3:91:7d: fb:03:9a:4d:7e:f9:aa:7f:bc:9c:dd:b8:94:d3:8b:b7:7c:af: 8e:cd:4e:33:18:99:1a:0f:49:28:1c:cb:c9:06:2b:98:e9:10: 50:39:56:52:e6:ac:69:f9:fc:a9:9e:62:13:1e:78:24:72:20: 42:d1:e2:3a -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUcugwQWszLwC97vGUjDA3o4V1uggwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwNDAwMjAwN1oX DTI2MDMwNDIzNTk1OVowejFJMEcGA1UEBRNAYzM3ZDQ1ZDU5OWQ3MzJjNTY3NDk0 NjgwOWFlYTU3OWQyMDhkYjc1YTNiNzFjZjVkNDIzZjA0YzQ0NjRkNmI0MDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvFROkrIX0F0OqzVuI+HnQsmBcKob gcHHPaknwqQ+Xkul5o3n56qGJniPfuPuyplmd0ILKMARItG0DSPQp2tCoatYpjtY S+iGjh5BvzQg/c8bYPAFUE5Xf5tJIem5ETxAPSqTPfc4sJQm7Ob/03tzKoIqXoMV drcwelVwXS/bJ2obLaTt76014tD1xLpNxRUIq632wnx6v73VxWXDprYwwIIIOFKG 9hyPKLm9Zb93vL3CtF2+hQrVaPUMS3W02XEDYQkuBFmoZfNAZDUGpNT2pFDbmrY8 F91QKi+CUhHv5yfek8lN8jBjjTM/BrpuxIfYVRDJmlpHWxNqQwQZ0BKQpwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBZBwPQsNc8ArTqwjMDLD/UZJmdWMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzNlOWNjNmFmLWJjMmMtNGRjYS04OTE1LTBjZGRmMjVjYzhkYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaaEgwDQYJKoZIhvcNAQELBQADggEBAGl9nEdMoea79RGa9h/x Frg9a9Tr5tFj2toBEqS9naGZH3L56iayCyggn9sf7dn6dbw/1BScxLbHBvN0cL2f fA3BEwMVLxy4odwx1DWI5A+/JdspqF6tCZmb3GrxxGNoThivr7jWIa3mXy/xsHYl LPHRJAulCvj58wiPbCdU1UX/2khCjCxVjOUcSUU3dxrtbOBryEo3dNmWP5v7P3Vx yeWRxLWmXaDoS72qyPqF108h3G1sJvAElEcoV/rbGdAim7H+oNORffsDmk1++ap/ vJzduJTTi7d8r47NTjMYmRoPSSgcy8kGK5jpEFA5VlLmrGn5/KmeYhMeeCRyIELR 4jo= -----END CERTIFICATE-----Generated at Sat Dec 6 05:00:34 2025 by rpki-client