This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4d1b9282-680b-4992-beb1-19fa7dc7e043.roa File: 4d1b9282-680b-4992-beb1-19fa7dc7e043.roa (raw, json) Hash identifier: gBQjUAb5uaopURsEBiuXn1rNj68k5SmnD4+5ttnsVIc= Subject key identifier: B2:8A:8F:E9:CA:39:5D:0F:17:0A:02:9A:DF:7C:D9:44:AA:A9:DF:77 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 41394C685C1865B23BBA9C99D6B4030424C1B599 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4d1b9282-680b-4992-beb1-19fa7dc7e043.roa Signing time: Sun 09 Nov 2025 00:10:41 +0000 ROA not before: Sun 09 Nov 2025 00:10:41 +0000 ROA not after: Sun 14 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2406:dab9:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 27 Nov 2025 00:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:39:4c:68:5c:18:65:b2:3b:ba:9c:99:d6:b4:03:04:24:c1:b5:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 9 00:10:41 2025 GMT Not After : Dec 14 23:59:59 2025 GMT Subject: serialNumber=9b3a270982a436040a554712b46fe8db9f7cf3d17fde25b1909d2498e93e63c5, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:38:79:bf:7c:68:10:09:fc:5c:ee:bb:90:ce: dd:f8:23:20:83:94:ea:cb:52:8f:e2:08:16:93:7f: 83:fc:5f:48:3a:02:fc:96:f0:4c:07:e1:2d:de:57: 00:8b:c2:b0:4f:1a:7c:c1:d7:f2:1d:6d:6f:06:48: b2:b4:54:8d:86:3c:2b:d9:de:e8:6c:90:e6:fe:31: df:21:ac:eb:18:61:50:3d:d2:7b:90:a8:fc:60:f5: 57:77:aa:1d:21:c3:58:cb:34:bc:f3:83:a5:a9:cb: 87:00:da:8e:b0:6e:c3:0a:1e:5b:7d:78:c4:d7:5a: 52:64:5f:5e:23:b4:55:13:10:56:64:11:cb:6c:7e: 2a:d1:94:84:28:d8:9a:11:8e:7b:ac:d5:80:90:8d: b5:33:68:d3:cf:86:c2:c2:6f:85:3a:85:b9:78:f5: c6:d6:f1:49:e0:ae:10:0d:12:18:19:24:6a:8b:30: 97:76:2c:3c:28:62:07:10:5e:c3:b9:8c:e3:b0:66: 57:fc:dc:f6:46:0f:5a:4d:2a:de:88:0a:56:db:f7: fb:47:41:c1:02:f6:2e:eb:5e:53:87:fc:4c:be:3c: 87:fa:b3:68:f5:ca:f4:ce:fc:af:9d:7d:a0:ad:84: 80:a5:6e:3c:fe:6e:4b:fa:67:7d:05:19:c4:5c:3b: d6:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:8A:8F:E9:CA:39:5D:0F:17:0A:02:9A:DF:7C:D9:44:AA:A9:DF:77 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/4d1b9282-680b-4992-beb1-19fa7dc7e043.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab9:c000::/40 Signature Algorithm: sha256WithRSAEncryption 0d:55:9f:a8:0e:e4:ab:09:16:6f:0b:ec:e4:aa:9a:6d:dd:83: 1f:79:b6:58:bc:e3:0f:7c:e8:07:6b:91:6b:c0:8e:dc:9a:29: bb:05:87:a9:fc:65:83:0a:e4:a9:ea:4e:f1:21:2d:71:41:e9: 05:4b:c5:58:e5:7a:7f:e8:9a:d7:ce:59:75:94:91:cc:e6:b1: 9c:ed:05:39:c6:db:46:38:c2:4d:b9:e5:d9:8e:72:c0:a0:ff: ae:26:f7:e1:0b:db:e4:4d:01:98:2b:d0:c3:87:d6:c4:27:15: 27:38:11:69:10:16:54:27:11:57:e8:b4:89:33:e9:b2:2a:91: a4:7c:14:81:ef:f5:4d:51:b2:e2:e4:af:8e:5a:bb:85:d1:25: ce:ca:eb:80:fb:cd:0b:97:a6:49:10:97:32:a7:41:8c:bb:31: 9e:22:39:8f:8e:66:09:c8:ee:6e:8d:d4:7d:93:55:a0:ab:be: b1:3c:fb:52:8d:2a:78:b1:24:1a:8c:83:bc:48:d0:d7:dc:9f: 71:3f:52:a9:16:61:36:e7:e6:17:6b:8a:bf:f0:67:f7:32:45: 00:64:02:23:1d:66:73:bf:a2:9f:af:6d:c3:e6:ab:f0:8c:9a: 5b:1e:69:54:10:9b:89:64:6e:3a:46:e1:46:28:17:99:cf:e2: d3:d8:2c:33 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUQTlMaFwYZbI7upyZ1rQDBCTBtZkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEwOTAwMTA0MVoX DTI1MTIxNDIzNTk1OVowejFJMEcGA1UEBRNAOWIzYTI3MDk4MmE0MzYwNDBhNTU0 NzEyYjQ2ZmU4ZGI5ZjdjZjNkMTdmZGUyNWIxOTA5ZDI0OThlOTNlNjNjNTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1jh5v3xoEAn8XO67kM7d+CMgg5Tq y1KP4ggWk3+D/F9IOgL8lvBMB+Et3lcAi8KwTxp8wdfyHW1vBkiytFSNhjwr2d7o bJDm/jHfIazrGGFQPdJ7kKj8YPVXd6odIcNYyzS884OlqcuHANqOsG7DCh5bfXjE 11pSZF9eI7RVExBWZBHLbH4q0ZSEKNiaEY57rNWAkI21M2jTz4bCwm+FOoW5ePXG 1vFJ4K4QDRIYGSRqizCXdiw8KGIHEF7DuYzjsGZX/Nz2Rg9aTSreiApW2/f7R0HB AvYu615Th/xMvjyH+rNo9cr0zvyvnX2grYSApW48/m5L+md9BRnEXDvWYwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFLKKj+nKOV0PFwoCmt982USqqd93MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzRkMWI5MjgyLTY4MGItNDk5Mi1iZWIxLTE5ZmE3ZGM3ZTA0My5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaucAwDQYJKoZIhvcNAQELBQADggEBAA1Vn6gO5KsJFm8L7OSq mm3dgx95tli84w986AdrkWvAjtyaKbsFh6n8ZYMK5KnqTvEhLXFB6QVLxVjlen/o mtfOWXWUkczmsZztBTnG20Y4wk255dmOcsCg/64m9+EL2+RNAZgr0MOH1sQnFSc4 EWkQFlQnEVfotIkz6bIqkaR8FIHv9U1RsuLkr45au4XRJc7K64D7zQuXpkkQlzKn QYy7MZ4iOY+OZgnI7m6N1H2TVaCrvrE8+1KNKnixJBqMg7xI0Nfcn3E/UqkWYTbn 5hdrir/wZ/cyRQBkAiMdZnO/op+vbcPmq/CMmlseaVQQm4lkbjpG4UYoF5nP4tPY LDM= -----END CERTIFICATE-----Generated at Sun Nov 23 05:43:52 2025 by rpki-client