This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5e7ad0b0-97f4-4102-b9b3-79840e3344da.roa File: 5e7ad0b0-97f4-4102-b9b3-79840e3344da.roa (raw, json) Hash identifier: 8DUZKm3a7+QJ821wJGtXoDU6LAbTu3mgg36m75U3/Ss= Subject key identifier: 81:6C:6C:14:0D:8F:26:8F:AB:77:60:B1:C7:DA:A4:52:BA:FC:6F:6C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0830F705699B4674BFBF36688ADCE4FD33A2AF80 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5e7ad0b0-97f4-4102-b9b3-79840e3344da.roa Signing time: Sun 23 Nov 2025 00:00:43 +0000 ROA not before: Sun 23 Nov 2025 00:00:43 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:28c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 27 Nov 2025 00:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:30:f7:05:69:9b:46:74:bf:bf:36:68:8a:dc:e4:fd:33:a2:af:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 23 00:00:43 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=e394105610505145e4de6f3d9e5793ac02eb0fd527b0d4404bf40df4ffbc35eb, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3f:4d:8b:de:03:9b:33:63:2b:2f:df:9c:40: b4:e6:b2:35:88:df:6f:90:04:d0:44:9b:ee:bd:e5: 37:87:8d:a7:1c:ec:ca:e1:6f:0b:52:06:10:47:eb: 13:08:b8:64:43:10:d5:0d:24:8f:07:2f:e6:5f:4d: af:6b:2f:07:94:ca:31:55:75:a0:e3:66:b8:1c:5c: 26:fb:2a:0c:62:cd:bf:38:98:fe:3b:b2:03:81:b7: e5:29:70:74:d8:27:b8:50:a4:5f:c2:94:39:89:4b: b5:19:ea:81:a8:53:3b:00:92:0a:19:d7:7b:1c:c3: 6b:03:95:e4:46:5a:33:36:42:8d:22:25:ad:15:ef: 84:7f:31:7a:b7:3d:67:ad:66:c8:b5:5b:0a:28:6e: 65:bc:a2:59:40:bb:d7:f3:ca:96:37:9f:df:b4:8f: a3:0a:13:62:83:2d:19:73:81:76:e3:2a:3f:4a:16: ef:ef:3f:5d:28:2d:1a:30:c0:6f:76:f3:88:5b:67: 86:e0:b7:84:2c:78:5a:87:76:b4:bd:95:6c:34:06: 55:58:cc:f8:3d:53:d3:70:60:61:3f:f3:0c:fd:ed: ff:37:f1:25:69:10:48:33:58:63:98:4c:b0:df:3d: 23:ed:aa:43:6b:b3:78:fa:3a:78:00:fd:7c:59:5a: 73:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:6C:6C:14:0D:8F:26:8F:AB:77:60:B1:C7:DA:A4:52:BA:FC:6F:6C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5e7ad0b0-97f4-4102-b9b3-79840e3344da.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:28c0::/46 Signature Algorithm: sha256WithRSAEncryption b0:a8:69:0a:37:3c:07:b9:c5:ef:ee:2c:81:4e:c0:9b:91:ad: 5b:22:41:75:de:f4:30:f1:79:a7:5f:dd:59:67:04:e0:68:02: bd:02:97:b1:6d:07:65:36:09:dc:e6:58:41:13:0a:81:b9:b0: c5:3b:3c:d1:9a:88:1b:cd:a5:de:75:d5:65:ce:38:5a:11:e6: 1a:57:14:78:5e:08:9f:a2:1c:68:1e:d8:0d:bf:5c:38:e7:87: 2b:b2:23:93:86:7c:13:2d:89:c0:29:0c:f6:86:84:0f:5c:fc: 83:a1:5c:04:8d:1e:97:bf:8d:d0:ec:2f:6e:3a:ed:74:00:63: 0a:bc:fc:fd:00:e8:80:af:11:f7:28:15:5f:54:1c:7f:4a:0a: 11:28:5d:aa:1e:e7:bc:08:f2:4a:ab:69:60:05:1b:38:ad:03: 33:f8:ae:d3:52:8b:66:e9:b7:93:fc:f0:d1:30:16:51:94:20: e6:ab:6a:a4:db:71:e4:74:72:96:dd:93:b2:0f:db:cd:11:cd: 05:20:0e:b1:6e:57:fe:76:8f:cf:b5:64:47:2f:b1:3a:24:a2: 14:66:a2:15:77:04:62:a5:0d:1c:6f:24:5f:0c:a5:df:bc:29: 87:e4:f5:7b:5e:a6:94:17:c7:e1:5e:55:87:5e:ff:ef:eb:11: cf:af:ec:82 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUCDD3BWmbRnS/vzZoitzk/TOir4AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyMzAwMDA0M1oX DTI2MDIyMTIzNTk1OVowejFJMEcGA1UEBRNAZTM5NDEwNTYxMDUwNTE0NWU0ZGU2 ZjNkOWU1NzkzYWMwMmViMGZkNTI3YjBkNDQwNGJmNDBkZjRmZmJjMzVlYjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxz9Ni94DmzNjKy/fnEC05rI1iN9v kATQRJvuveU3h42nHOzK4W8LUgYQR+sTCLhkQxDVDSSPBy/mX02vay8HlMoxVXWg 42a4HFwm+yoMYs2/OJj+O7IDgbflKXB02Ce4UKRfwpQ5iUu1GeqBqFM7AJIKGdd7 HMNrA5XkRlozNkKNIiWtFe+EfzF6tz1nrWbItVsKKG5lvKJZQLvX88qWN5/ftI+j ChNigy0Zc4F24yo/Shbv7z9dKC0aMMBvdvOIW2eG4LeELHhah3a0vZVsNAZVWMz4 PVPTcGBhP/MM/e3/N/ElaRBIM1hjmEyw3z0j7apDa7N4+jp4AP18WVpzxQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFIFsbBQNjyaPq3dgscfapFK6/G9sMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzVlN2FkMGIwLTk3ZjQtNDEwMi1iOWIzLTc5ODQwZTMzNDRkYS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba8yjAMA0GCSqGSIb3DQEBCwUAA4IBAQCwqGkKNzwHucXv7iyB TsCbka1bIkF13vQw8XmnX91ZZwTgaAK9ApexbQdlNgnc5lhBEwqBubDFOzzRmogb zaXeddVlzjhaEeYaVxR4XgifohxoHtgNv1w454crsiOThnwTLYnAKQz2hoQPXPyD oVwEjR6Xv43Q7C9uOu10AGMKvPz9AOiArxH3KBVfVBx/SgoRKF2qHue8CPJKq2lg BRs4rQMz+K7TUotm6beT/PDRMBZRlCDmq2qk23HkdHKW3ZOyD9vNEc0FIA6xblf+ do/PtWRHL7E6JKIUZqIVdwRipQ0cbyRfDKXfvCmH5PV7XqaUF8fhXlWHXv/v6xHP r+yC -----END CERTIFICATE-----Generated at Sun Nov 23 05:42:54 2025 by rpki-client