This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6b336b02-f773-4fbb-bbc4-a1149b172ad2.roa File: 6b336b02-f773-4fbb-bbc4-a1149b172ad2.roa (raw, json) Hash identifier: sG2yqp4FCDFsxzPerJiSRI4PHocwbWaXltWiCg4kiLs= Subject key identifier: 5A:03:1E:D9:05:58:BA:69:FB:47:D1:AF:16:2C:77:13:70:C2:63:25 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 653F313D0B6F3733404877EA71D9A20438ED651C Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6b336b02-f773-4fbb-bbc4-a1149b172ad2.roa Signing time: Tue 11 Nov 2025 00:00:35 +0000 ROA not before: Tue 11 Nov 2025 00:00:35 +0000 ROA not after: Tue 16 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daa0:b000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Nov 2025 00:00:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:3f:31:3d:0b:6f:37:33:40:48:77:ea:71:d9:a2:04:38:ed:65:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 11 00:00:35 2025 GMT Not After : Dec 16 23:59:59 2025 GMT Subject: serialNumber=d44927606c6ed9e98675ecea6df8d35f507e70d941ccdff630a1c75c0e8a65aa, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3b:64:04:9a:18:75:93:ea:25:2c:8f:83:dc: 96:6b:74:7f:72:51:a7:62:2e:4f:86:5f:58:b3:1c: 10:13:6c:ed:01:9c:ae:2d:db:70:3d:6b:ce:f3:d4: c1:e0:0b:a1:e2:6b:f2:2c:2f:5e:7b:30:8f:1f:19: a2:c4:d3:10:1e:57:8d:77:26:e7:82:70:92:d3:87: a5:be:3f:86:c5:14:1b:4e:50:dd:62:18:41:de:4b: be:ce:2d:da:c2:00:44:46:14:4f:b6:ce:e6:9d:28: d0:a7:84:39:18:1e:c4:ee:72:45:18:55:d4:df:02: 7c:5c:f9:81:f3:89:d6:f5:e6:cc:7a:ac:da:33:b1: e1:e8:f2:f8:ab:58:58:53:62:91:90:e0:a5:a6:2b: 6e:6b:54:b0:f6:e7:8f:23:f4:ca:93:25:75:9d:a6: 99:b1:d4:90:fb:b2:07:5b:30:3d:69:38:4c:e4:9d: f8:88:9b:6e:aa:9f:04:ef:45:3c:9c:3f:cb:04:55: ee:a5:e7:92:bb:b1:23:a8:b5:f5:4f:9b:81:2d:8b: 96:2a:7a:06:04:9e:76:d1:03:f9:41:c4:81:db:6c: a6:0f:cc:a0:75:70:2f:1f:2c:5c:71:b7:9d:d4:31: 7d:e2:87:c7:b1:ef:c1:5b:09:3d:6e:bc:50:a9:23: c3:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:03:1E:D9:05:58:BA:69:FB:47:D1:AF:16:2C:77:13:70:C2:63:25 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6b336b02-f773-4fbb-bbc4-a1149b172ad2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daa0:b000::/40 Signature Algorithm: sha256WithRSAEncryption 42:55:cc:22:15:14:e3:99:88:c5:22:75:af:00:c4:84:43:b3: 83:90:32:15:4e:42:fa:b3:f3:09:64:16:21:62:44:a5:67:89: 05:cc:42:71:5d:b7:3d:36:5a:7c:bf:69:17:ef:5a:14:22:ca: 16:31:27:88:f1:30:e2:ab:33:08:d3:08:b0:a7:0e:8d:94:df: 07:e0:47:e3:79:07:29:08:12:5c:4f:b7:0e:cb:47:ae:2e:2f: cf:09:a9:94:af:bb:92:ec:63:96:55:99:36:df:98:39:60:aa: 32:56:34:69:4d:35:66:ca:46:51:73:66:ea:c5:71:d8:f8:57: ac:3d:28:4f:6a:b7:37:cc:19:f9:f4:0a:89:f0:67:d6:7a:9e: c0:a9:b7:bb:fe:62:56:15:7e:4c:c4:bc:61:b2:0d:ef:be:53: 08:65:ec:8c:47:d2:47:34:e6:20:d9:e0:a1:7d:2f:68:cf:c8: 6f:f5:23:db:a8:73:86:ff:78:55:d4:8f:4e:7b:17:97:ff:36: 1b:5a:a7:85:04:48:c0:61:97:b4:8e:4b:49:75:05:34:35:e0: 89:52:87:30:61:39:10:8d:64:80:1c:64:c4:8d:c6:fb:6c:ec: 3b:78:4f:cc:5a:86:55:76:cd:f0:72:d5:6f:90:22:ad:c4:51: 9c:22:13:e9 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUZT8xPQtvNzNASHfqcdmiBDjtZRwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTExMTAwMDAzNVoX DTI1MTIxNjIzNTk1OVowejFJMEcGA1UEBRNAZDQ0OTI3NjA2YzZlZDllOTg2NzVl Y2VhNmRmOGQzNWY1MDdlNzBkOTQxY2NkZmY2MzBhMWM3NWMwZThhNjVhYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoztkBJoYdZPqJSyPg9yWa3R/clGn Yi5Phl9YsxwQE2ztAZyuLdtwPWvO89TB4Auh4mvyLC9eezCPHxmixNMQHleNdybn gnCS04elvj+GxRQbTlDdYhhB3ku+zi3awgBERhRPts7mnSjQp4Q5GB7E7nJFGFXU 3wJ8XPmB84nW9ebMeqzaM7Hh6PL4q1hYU2KRkOClpitua1Sw9uePI/TKkyV1naaZ sdSQ+7IHWzA9aThM5J34iJtuqp8E70U8nD/LBFXupeeSu7EjqLX1T5uBLYuWKnoG BJ520QP5QcSB22ymD8ygdXAvHyxccbed1DF94ofHse/BWwk9brxQqSPDowIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFoDHtkFWLpp+0fRrxYsdxNwwmMlMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZiMzM2YjAyLWY3NzMtNGZiYi1iYmM0LWExMTQ5YjE3MmFkMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaoLAwDQYJKoZIhvcNAQELBQADggEBAEJVzCIVFOOZiMUida8A xIRDs4OQMhVOQvqz8wlkFiFiRKVniQXMQnFdtz02Wny/aRfvWhQiyhYxJ4jxMOKr MwjTCLCnDo2U3wfgR+N5BykIElxPtw7LR64uL88JqZSvu5LsY5ZVmTbfmDlgqjJW NGlNNWbKRlFzZurFcdj4V6w9KE9qtzfMGfn0ConwZ9Z6nsCpt7v+YlYVfkzEvGGy De++Uwhl7IxH0kc05iDZ4KF9L2jPyG/1I9uoc4b/eFXUj057F5f/Nhtap4UESMBh l7SOS0l1BTQ14IlShzBhORCNZIAcZMSNxvts7Dt4T8xahlV2zfBy1W+QIq3EUZwi E+k= -----END CERTIFICATE-----Generated at Fri Nov 21 00:16:57 2025 by rpki-client