This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6d78adbd-8263-46ba-9c6b-4c3ed456f412.roa File: 6d78adbd-8263-46ba-9c6b-4c3ed456f412.roa (raw, json) Hash identifier: QUIGWOfmF64XF+YxHtINglB9CRi0C9fA1hWkDab70gc= Subject key identifier: 05:87:38:84:12:00:B1:1E:7E:EF:9B:5A:F0:14:F4:7D:91:4E:B6:94 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0F1F02BF90D55FCF230995F335C0F8F58B3E81B2 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6d78adbd-8263-46ba-9c6b-4c3ed456f412.roa Signing time: Thu 04 Dec 2025 00:31:43 +0000 ROA not before: Thu 04 Dec 2025 00:31:43 +0000 ROA not after: Wed 04 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafe:4800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 00:40:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:1f:02:bf:90:d5:5f:cf:23:09:95:f3:35:c0:f8:f5:8b:3e:81:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 4 00:31:43 2025 GMT Not After : Mar 4 23:59:59 2026 GMT Subject: serialNumber=e6cb6e8895a50af8dd7aff0b253d75e45eb7c6c67ce4917927dd6a5f60540bb3, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:c4:ec:69:b0:b8:25:87:7a:5e:b6:23:bd:92: 34:d7:bc:dd:a9:bf:48:30:32:0f:0c:96:62:7c:18: d8:06:ab:6c:8c:a2:80:77:98:47:cd:25:e2:45:39: bb:27:00:d6:2e:88:b1:de:aa:b4:ec:f6:16:af:52: 8b:60:a1:7e:b1:f5:4e:20:22:15:3c:14:c3:fb:7a: 2b:6b:22:55:40:fd:ca:e2:89:dc:ab:e5:65:a3:5d: be:08:e7:7e:6a:47:67:4d:b6:19:67:9f:bd:65:a0: e2:f3:10:1c:d8:38:5c:b0:42:6f:ac:3e:c0:f1:40: b6:fb:a6:00:66:8c:e2:17:56:65:a1:11:3e:de:d1: df:c7:31:94:29:6c:fd:a6:38:8c:5d:7f:76:7a:de: e5:f1:c3:98:c0:4d:45:7d:3b:d7:f4:29:6b:65:54: d0:5f:e1:51:7f:d2:4b:f4:af:3b:85:32:5d:74:fe: c2:1c:3f:71:dc:23:4e:18:f3:34:ef:35:d0:11:82: 9a:a6:4a:5f:8e:47:7b:a6:26:e6:e3:d6:ea:b1:de: a3:18:5d:9f:ab:0b:a8:cb:ed:e2:7d:d7:47:2d:3d: 6a:58:3c:84:43:9f:c0:d0:d3:a6:f7:c7:eb:26:a1: d0:15:37:8e:a0:62:f0:c1:e4:b2:99:24:42:d6:fd: c2:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:87:38:84:12:00:B1:1E:7E:EF:9B:5A:F0:14:F4:7D:91:4E:B6:94 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6d78adbd-8263-46ba-9c6b-4c3ed456f412.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafe:4800::/40 Signature Algorithm: sha256WithRSAEncryption 06:7f:9b:13:13:ce:1c:05:58:31:50:39:0d:ab:10:bd:3f:46: ea:3d:39:1f:56:c6:c8:57:f4:52:c5:96:54:e0:ba:ec:99:22: a4:e4:27:37:19:09:8c:28:40:ce:ab:4a:bf:8b:56:51:d7:92: ef:5c:eb:f5:41:a3:cc:f1:24:58:ea:25:59:8a:f7:a2:ae:4c: 53:00:82:97:aa:b4:54:dc:3f:67:6c:e6:57:9a:29:1f:43:5a: 47:d7:00:27:0f:c0:43:59:fd:92:a1:bf:10:89:17:e5:3b:66: 49:27:68:87:72:92:25:64:6e:76:b7:46:65:60:a3:c4:d9:5f: dc:05:7f:85:34:9f:82:e5:48:13:9b:bb:1a:d6:1a:51:f0:0d: 01:a4:b4:e7:73:af:65:1d:86:d0:49:76:af:fe:71:95:78:16: 6f:f6:42:2e:b8:64:d7:e2:99:2e:1c:e8:f7:13:45:f9:4e:ed: e6:65:1d:03:43:58:56:a5:5e:f8:cc:47:b5:28:5a:ab:7c:f1: 2c:7e:58:8e:fb:65:ed:12:c9:70:3d:13:ff:3b:f3:42:00:e9: 3b:96:e6:48:a7:08:b9:86:2c:df:b4:e5:74:cf:a6:34:4c:2f: 22:db:4c:aa:61:7d:bf:41:19:f7:12:4f:de:f3:6a:66:d6:c6: 47:36:92:84 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUDx8Cv5DVX88jCZXzNcD49Ys+gbIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwNDAwMzE0M1oX DTI2MDMwNDIzNTk1OVowejFJMEcGA1UEBRNAZTZjYjZlODg5NWE1MGFmOGRkN2Fm ZjBiMjUzZDc1ZTQ1ZWI3YzZjNjdjZTQ5MTc5MjdkZDZhNWY2MDU0MGJiMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmsTsabC4JYd6XrYjvZI017zdqb9I MDIPDJZifBjYBqtsjKKAd5hHzSXiRTm7JwDWLoix3qq07PYWr1KLYKF+sfVOICIV PBTD+3orayJVQP3K4oncq+Vlo12+COd+akdnTbYZZ5+9ZaDi8xAc2DhcsEJvrD7A 8UC2+6YAZoziF1ZloRE+3tHfxzGUKWz9pjiMXX92et7l8cOYwE1FfTvX9ClrZVTQ X+FRf9JL9K87hTJddP7CHD9x3CNOGPM07zXQEYKapkpfjkd7pibm49bqsd6jGF2f qwuoy+3ifddHLT1qWDyEQ5/A0NOm98frJqHQFTeOoGLwweSymSRC1v3CRQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFAWHOIQSALEefu+bWvAU9H2RTraUMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzZkNzhhZGJkLTgyNjMtNDZiYS05YzZiLTRjM2VkNDU2ZjQxMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba/kgwDQYJKoZIhvcNAQELBQADggEBAAZ/mxMTzhwFWDFQOQ2r EL0/Ruo9OR9WxshX9FLFllTguuyZIqTkJzcZCYwoQM6rSr+LVlHXku9c6/VBo8zx JFjqJVmK96KuTFMAgpeqtFTcP2ds5leaKR9DWkfXACcPwENZ/ZKhvxCJF+U7Zkkn aIdykiVkbna3RmVgo8TZX9wFf4U0n4LlSBObuxrWGlHwDQGktOdzr2UdhtBJdq/+ cZV4Fm/2Qi64ZNfimS4c6PcTRflO7eZlHQNDWFalXvjMR7UoWqt88Sx+WI77Ze0S yXA9E/8780IA6TuW5kinCLmGLN+05XTPpjRMLyLbTKphfb9BGfcST97zambWxkc2 koQ= -----END CERTIFICATE-----Generated at Thu Dec 4 15:27:25 2025 by rpki-client