This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4d0d3d64-afcc-4838-bca0-f7693f145edf.roa File: 4d0d3d64-afcc-4838-bca0-f7693f145edf.roa (raw, json) Hash identifier: ec9yZfp2CRZthsp1Y46TgkQpfUZ+cLss3JM7qEMm4eY= Subject key identifier: 6D:F1:B2:61:6E:D2:D7:67:12:D7:9F:86:EE:1A:5D:1B:49:6F:4F:7D Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5177461D95CD78BA52008D7FD20D588066F2BCA1 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4d0d3d64-afcc-4838-bca0-f7693f145edf.roa Signing time: Thu 04 Dec 2025 00:40:19 +0000 ROA not before: Thu 04 Dec 2025 00:40:19 +0000 ROA not after: Wed 04 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf1:b000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 00:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:77:46:1d:95:cd:78:ba:52:00:8d:7f:d2:0d:58:80:66:f2:bc:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 4 00:40:19 2025 GMT Not After : Mar 4 23:59:59 2026 GMT Subject: serialNumber=4c775c40fb6bcf3178a047e130d25a9db627718ad3d0f207eeeed0d2c2da66cc, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:5a:ba:68:31:8c:39:e2:e9:82:d1:ef:61:66: ea:fc:39:77:b7:92:d1:56:91:2d:0b:2e:cc:ad:31: 5c:31:15:e0:21:54:6b:5c:75:2c:f4:ce:34:df:66: f4:79:20:50:87:46:25:9a:02:55:cc:d5:13:8f:40: d4:b1:9c:2e:c5:79:35:cd:60:68:07:53:62:19:3d: e7:3c:f8:fa:41:a6:43:34:63:9d:4f:93:39:61:71: 7e:ac:25:ee:b7:d2:3a:75:99:10:01:e2:e8:9a:88: 35:7e:0b:4e:22:6e:0f:cb:13:14:0f:b5:b2:34:2b: 73:34:ea:58:44:56:98:95:fe:91:1d:f6:3c:5b:53: cf:b9:98:e3:50:7f:0e:80:ae:9b:b6:5e:4f:44:8b: ad:35:ad:8b:58:39:ba:ce:25:a2:aa:f2:6f:68:1a: 6c:5f:10:1f:7e:eb:0e:00:d7:81:97:0f:d2:a6:bf: df:26:98:60:a7:15:e5:a4:5d:10:ed:d4:70:c2:20: 47:67:cf:5a:dd:b2:09:f6:51:5a:5b:80:ac:77:4b: e6:24:27:ec:4f:28:24:de:ff:66:d9:a2:9e:3a:09: 83:dc:f0:36:b1:7f:3e:39:4d:f5:46:34:f8:f7:12: 61:1b:ec:4c:b2:6e:83:5a:ea:35:0e:8a:8a:d2:a9: ba:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F1:B2:61:6E:D2:D7:67:12:D7:9F:86:EE:1A:5D:1B:49:6F:4F:7D X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4d0d3d64-afcc-4838-bca0-f7693f145edf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf1:b000::/40 Signature Algorithm: sha256WithRSAEncryption 52:e1:07:9e:d9:22:05:aa:2d:e2:c7:06:cd:40:d2:26:f1:2f: 3c:6e:ba:0c:7a:22:b7:40:b0:8d:bf:95:de:b9:2e:64:57:19: da:1e:d8:a4:0b:15:7e:13:82:46:99:39:5a:f2:2c:91:0c:0e: 64:b1:19:9f:e2:aa:05:c5:2b:f1:31:77:fc:4e:77:fa:29:9c: 22:f0:b7:5c:01:aa:58:fa:44:96:b6:44:1f:1c:a9:a2:13:26: dd:d6:0c:fb:55:af:ef:23:aa:b8:5a:8a:22:d0:2e:d8:50:43: d8:ef:0c:ba:cc:cd:2f:e9:1c:97:aa:dd:d4:ff:34:43:3c:96: bb:3a:25:b5:80:8b:23:1e:c2:12:d0:bb:de:ef:92:80:b8:92: 5c:33:8c:18:d7:d9:ca:37:ce:81:e4:19:47:5b:01:66:25:90: b0:25:89:ef:ea:8c:7c:54:ad:1f:24:7d:ba:a2:76:39:0f:b9: 4d:b0:f2:f3:8d:bb:09:5c:34:8c:a4:ab:ba:80:07:73:3a:fc: 1c:1b:2c:b1:df:76:7f:ca:1e:67:dc:0f:71:83:f0:e5:25:3d: e2:97:ae:de:eb:e3:11:82:07:e0:ec:55:63:8f:a1:af:0c:59: 41:ef:dd:8f:b8:a0:4b:57:2c:98:22:82:6f:ed:c4:af:8e:17: 68:ca:97:b5 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUUXdGHZXNeLpSAI1/0g1YgGbyvKEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwNDAwNDAxOVoX DTI2MDMwNDIzNTk1OVowejFJMEcGA1UEBRNANGM3NzVjNDBmYjZiY2YzMTc4YTA0 N2UxMzBkMjVhOWRiNjI3NzE4YWQzZDBmMjA3ZWVlZWQwZDJjMmRhNjZjYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtFq6aDGMOeLpgtHvYWbq/Dl3t5LR VpEtCy7MrTFcMRXgIVRrXHUs9M4032b0eSBQh0YlmgJVzNUTj0DUsZwuxXk1zWBo B1NiGT3nPPj6QaZDNGOdT5M5YXF+rCXut9I6dZkQAeLomog1fgtOIm4PyxMUD7Wy NCtzNOpYRFaYlf6RHfY8W1PPuZjjUH8OgK6btl5PRIutNa2LWDm6ziWiqvJvaBps XxAffusOANeBlw/Spr/fJphgpxXlpF0Q7dRwwiBHZ89a3bIJ9lFaW4Csd0vmJCfs Tygk3v9m2aKeOgmD3PA2sX8+OU31RjT49xJhG+xMsm6DWuo1DoqK0qm6FwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFG3xsmFu0tdnEtefhu4aXRtJb099MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzRkMGQzZDY0LWFmY2MtNDgzOC1iY2EwLWY3NjkzZjE0NWVkZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8bAwDQYJKoZIhvcNAQELBQADggEBAFLhB57ZIgWqLeLHBs1A 0ibxLzxuugx6IrdAsI2/ld65LmRXGdoe2KQLFX4TgkaZOVryLJEMDmSxGZ/iqgXF K/Exd/xOd/opnCLwt1wBqlj6RJa2RB8cqaITJt3WDPtVr+8jqrhaiiLQLthQQ9jv DLrMzS/pHJeq3dT/NEM8lrs6JbWAiyMewhLQu97vkoC4klwzjBjX2co3zoHkGUdb AWYlkLAlie/qjHxUrR8kfbqidjkPuU2w8vONuwlcNIykq7qAB3M6/BwbLLHfdn/K HmfcD3GD8OUlPeKXrt7r4xGCB+DsVWOPoa8MWUHv3Y+4oEtXLJgigm/txK+OF2jK l7U= -----END CERTIFICATE-----Generated at Fri Dec 5 13:29:09 2025 by rpki-client