This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/794feada-3f8b-4a7b-8954-992fddba3191.roa File: 794feada-3f8b-4a7b-8954-992fddba3191.roa (raw, json) Hash identifier: QZkw/0vljbDwppD1O/9XHjCQdvJlKWm6CsceP6M+5K4= Subject key identifier: 63:B2:66:19:97:16:3A:2C:70:CA:67:25:95:B3:88:08:0D:4F:5C:1A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6E77095F27EC0267238B5494C1B5BD554C2A531B Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/794feada-3f8b-4a7b-8954-992fddba3191.roa Signing time: Sun 09 Nov 2025 01:10:13 +0000 ROA not before: Sun 09 Nov 2025 01:10:13 +0000 ROA not after: Sun 14 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf1:a000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Nov 2025 00:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:77:09:5f:27:ec:02:67:23:8b:54:94:c1:b5:bd:55:4c:2a:53:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 9 01:10:13 2025 GMT Not After : Dec 14 23:59:59 2025 GMT Subject: serialNumber=f5fcc161623848ae540688ca045bc0cd018b3f6de8ef33764b1ddd2a239e7850, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3c:b3:51:04:ad:08:67:59:0a:2b:87:2e:32: 53:82:f8:91:ea:a3:8d:45:1b:a7:a2:cb:76:73:12: e1:4a:80:00:76:25:f7:1c:f1:55:97:48:16:bb:0b: b2:41:56:3b:21:ea:5f:82:83:0f:51:31:21:c6:a5: c5:bc:13:99:bc:37:69:ac:3a:66:82:9f:8f:47:7a: d9:d1:a7:2a:84:73:90:2f:74:59:f0:10:f0:aa:80: 11:d3:b0:7a:01:d2:43:be:93:99:a9:53:71:77:93: e3:de:1b:39:a8:00:14:3d:2e:0f:f8:1d:15:a4:ee: d1:8e:30:ab:eb:71:7b:ea:9c:94:2f:06:b6:77:8a: 3d:1e:02:01:f5:46:c5:ff:76:f8:28:0c:e5:ce:bb: fc:7c:04:e7:f4:44:ef:e1:fe:6d:7c:36:77:c1:2d: e3:25:0c:aa:45:52:cd:2b:6f:f5:0b:a8:c8:4b:66: 0d:b9:e9:33:12:29:21:26:19:13:6b:0b:dd:bd:71: 0b:8c:16:87:a1:da:73:c5:6a:d7:7f:b3:59:45:c2: 5f:9f:4b:52:ac:84:27:c5:22:1f:74:e1:fe:f9:6d: 3f:0c:6c:84:2b:37:0b:6b:d2:3a:77:87:8f:7b:7c: 2b:e1:c9:e5:64:22:5f:dc:4a:6e:d6:60:2b:7e:1f: 74:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:B2:66:19:97:16:3A:2C:70:CA:67:25:95:B3:88:08:0D:4F:5C:1A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/794feada-3f8b-4a7b-8954-992fddba3191.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf1:a000::/40 Signature Algorithm: sha256WithRSAEncryption 9a:4a:0f:46:f6:2d:2d:a2:c8:d0:aa:5d:d6:99:2c:ce:2d:22: 40:93:aa:ae:c2:10:2f:31:99:33:44:eb:96:f3:b9:80:9c:51: 00:7c:ce:09:25:f9:4d:ad:a6:d2:d4:9c:25:b8:cf:46:82:e7: 07:8d:3d:71:ed:7e:8c:f7:06:cc:ed:e9:bf:4a:aa:5d:47:ba: 4a:65:c2:b7:7b:31:3e:cb:d2:67:9b:0a:6a:60:35:ae:79:ee: c9:56:5b:ec:28:01:c6:0e:e2:b3:bb:b5:9f:b7:6e:29:fa:6c: f4:0b:80:0c:79:9e:e6:fb:1b:ff:71:1d:14:d7:af:61:66:5b: d5:9a:6e:0c:e9:e0:30:70:b7:af:ba:18:e7:2a:0f:f6:a2:03: 8c:54:de:ab:d3:98:70:51:2c:00:91:c9:a3:2a:ea:bc:14:6e: 86:4f:92:2f:17:08:59:bc:67:4a:3e:ca:c8:48:94:36:63:83: 68:40:5d:33:8a:4f:6f:a2:e5:55:58:27:e6:ee:b9:80:9d:b4: 99:87:92:eb:85:f0:88:25:fa:3c:80:ca:c0:fa:08:64:71:66: 91:56:09:7b:ee:42:05:ea:af:0d:2a:ee:d6:2c:16:a7:6e:8c: fb:97:f0:cd:9b:c8:7b:8a:5c:71:f2:d8:e0:89:10:7f:4a:ad: 4a:b8:6a:60 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUbncJXyfsAmcji1SUwbW9VUwqUxswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEwOTAxMTAxM1oX DTI1MTIxNDIzNTk1OVowejFJMEcGA1UEBRNAZjVmY2MxNjE2MjM4NDhhZTU0MDY4 OGNhMDQ1YmMwY2QwMThiM2Y2ZGU4ZWYzMzc2NGIxZGRkMmEyMzllNzg1MDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwDyzUQStCGdZCiuHLjJTgviR6qON RRunost2cxLhSoAAdiX3HPFVl0gWuwuyQVY7IepfgoMPUTEhxqXFvBOZvDdprDpm gp+PR3rZ0acqhHOQL3RZ8BDwqoAR07B6AdJDvpOZqVNxd5Pj3hs5qAAUPS4P+B0V pO7RjjCr63F76pyULwa2d4o9HgIB9UbF/3b4KAzlzrv8fATn9ETv4f5tfDZ3wS3j JQyqRVLNK2/1C6jIS2YNuekzEikhJhkTawvdvXELjBaHodpzxWrXf7NZRcJfn0tS rIQnxSIfdOH++W0/DGyEKzcLa9I6d4ePe3wr4cnlZCJf3Epu1mArfh906QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGOyZhmXFjoscMpnJZWziAgNT1waMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzc5NGZlYWRhLTNmOGItNGE3Yi04OTU0LTk5MmZkZGJhMzE5MS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8aAwDQYJKoZIhvcNAQELBQADggEBAJpKD0b2LS2iyNCqXdaZ LM4tIkCTqq7CEC8xmTNE65bzuYCcUQB8zgkl+U2tptLUnCW4z0aC5weNPXHtfoz3 Bszt6b9Kql1Hukplwrd7MT7L0mebCmpgNa557slWW+woAcYO4rO7tZ+3bin6bPQL gAx5nub7G/9xHRTXr2FmW9Wabgzp4DBwt6+6GOcqD/aiA4xU3qvTmHBRLACRyaMq 6rwUboZPki8XCFm8Z0o+yshIlDZjg2hAXTOKT2+i5VVYJ+buuYCdtJmHkuuF8Igl +jyAysD6CGRxZpFWCXvuQgXqrw0q7tYsFqdujPuX8M2byHuKXHHy2OCJEH9KrUq4 amA= -----END CERTIFICATE-----Generated at Wed Nov 19 01:18:29 2025 by rpki-client