This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7c327d37-0e2d-447d-aa31-66e378c4d35d.roa File: 7c327d37-0e2d-447d-aa31-66e378c4d35d.roa (raw, json) Hash identifier: ms2hSi8bmkaWZlDBJjA7I+NlRS/Mp2q1PsrUgc81icw= Subject key identifier: DC:4F:23:46:7D:EE:FE:C1:29:81:07:89:BB:2D:06:D6:8C:32:8D:D2 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 181DA8919B1CD474D537647A8D949142B55BE0DB Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7c327d37-0e2d-447d-aa31-66e378c4d35d.roa Signing time: Sun 23 Nov 2025 00:10:39 +0000 ROA not before: Sun 23 Nov 2025 00:10:39 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:b080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 27 Nov 2025 00:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:1d:a8:91:9b:1c:d4:74:d5:37:64:7a:8d:94:91:42:b5:5b:e0:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 23 00:10:39 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=83fbe7c68ebbb48a7ba2d24259f29883b9e9b1f5667cb2f92b9cc7a9622a9243, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3d:82:f8:4c:90:e7:0e:ae:b9:94:96:26:4f: 41:49:06:8a:51:7e:75:2d:f3:be:de:ec:b0:e9:c5: d4:ab:14:e0:c0:f9:14:6f:05:70:76:c7:2d:a7:e6: b6:13:db:f2:85:fd:5d:a5:0e:ff:f1:6c:00:e0:49: ce:9b:df:e6:9d:e4:a6:8f:ef:d6:e2:aa:e7:00:a7: db:0d:44:ac:9d:c6:9b:a4:0f:5b:8d:18:87:60:6e: ea:29:30:a7:04:0d:bd:55:27:f0:c9:bd:55:8f:c9: e1:38:3b:63:f5:8d:91:20:fd:39:10:c4:0c:47:c8: f3:0f:f7:ce:59:36:e0:bc:f4:3f:ec:5b:48:26:4b: 3a:09:ac:4e:c8:12:c4:ea:13:39:7e:f6:92:5d:34: 4b:15:e6:5e:78:69:fc:34:28:42:69:ef:5d:20:fd: 73:4e:1d:e4:38:bc:bb:65:f8:4b:4a:57:53:26:44: 5a:80:00:24:df:cd:fd:08:9e:ec:a8:fa:ff:38:f8: 93:fc:34:e8:9f:3d:07:8b:df:d6:ab:e3:e8:44:a5: 9c:67:38:7a:10:dd:67:f5:5a:89:f4:17:2f:a6:f7: bc:6c:03:7b:2f:78:17:2d:ea:89:75:6b:7b:a7:c9: 87:db:9e:e8:62:d2:67:f3:91:f7:3b:ab:be:34:ca: 21:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:4F:23:46:7D:EE:FE:C1:29:81:07:89:BB:2D:06:D6:8C:32:8D:D2 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7c327d37-0e2d-447d-aa31-66e378c4d35d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:b080::/46 Signature Algorithm: sha256WithRSAEncryption 3b:9f:a1:49:dc:a3:67:fe:1e:0b:68:3b:62:98:da:aa:41:1e: 54:7e:52:4d:ce:18:0f:61:ae:07:99:ed:67:4e:22:3b:70:25: 4a:ff:95:52:77:02:27:9f:b4:30:3b:87:d2:ce:90:c5:9c:ab: ed:68:1d:7d:b9:0b:52:27:70:31:51:19:e9:7e:73:44:8a:6b: c6:48:89:f7:8f:13:1c:2c:e4:48:43:da:6f:24:e1:59:76:c9: 64:39:42:06:a0:bd:71:8b:cd:1b:f5:c7:a9:9b:85:e2:e0:1a: 6e:62:b6:d7:02:fa:0b:93:d4:e0:e6:4c:eb:1b:68:79:f5:d0: 92:d2:3e:fe:53:84:ee:b6:2e:d6:8c:9f:3a:e7:40:6f:dc:bf: fb:00:2b:24:97:d8:f7:43:77:dd:27:7c:d8:d2:80:cc:30:70: 7a:f0:b4:52:e3:11:1c:db:b4:a8:4b:92:19:48:b8:4e:bc:ab: 75:f2:27:85:ef:05:3c:85:59:d8:7c:8e:ee:e0:78:47:48:41: bc:03:6c:1e:8e:f3:d9:73:d4:73:cb:bf:54:05:c8:d8:49:5f: e0:7d:98:37:55:76:36:57:c6:77:a6:41:5b:6e:db:ff:84:7e: 9d:c5:90:ae:1a:43:0a:09:35:2d:7b:83:ea:f0:34:21:7d:bc: 1c:2c:06:4e -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUGB2okZsc1HTVN2R6jZSRQrVb4NswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyMzAwMTAzOVoX DTI2MDIyMTIzNTk1OVowejFJMEcGA1UEBRNAODNmYmU3YzY4ZWJiYjQ4YTdiYTJk MjQyNTlmMjk4ODNiOWU5YjFmNTY2N2NiMmY5MmI5Y2M3YTk2MjJhOTI0MzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtD2C+EyQ5w6uuZSWJk9BSQaKUX51 LfO+3uyw6cXUqxTgwPkUbwVwdsctp+a2E9vyhf1dpQ7/8WwA4EnOm9/mneSmj+/W 4qrnAKfbDUSsncabpA9bjRiHYG7qKTCnBA29VSfwyb1Vj8nhODtj9Y2RIP05EMQM R8jzD/fOWTbgvPQ/7FtIJks6CaxOyBLE6hM5fvaSXTRLFeZeeGn8NChCae9dIP1z Th3kOLy7ZfhLSldTJkRagAAk3839CJ7sqPr/OPiT/DTonz0Hi9/Wq+PoRKWcZzh6 EN1n9VqJ9Bcvpve8bAN7L3gXLeqJdWt7p8mH257oYtJn85H3O6u+NMohvwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFNxPI0Z97v7BKYEHibstBtaMMo3SMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdjMzI3ZDM3LTBlMmQtNDQ3ZC1hYTMxLTY2ZTM3OGM0ZDM1ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba87CAMA0GCSqGSIb3DQEBCwUAA4IBAQA7n6FJ3KNn/h4LaDti mNqqQR5UflJNzhgPYa4Hme1nTiI7cCVK/5VSdwInn7QwO4fSzpDFnKvtaB19uQtS J3AxURnpfnNEimvGSIn3jxMcLORIQ9pvJOFZdslkOUIGoL1xi80b9cepm4Xi4Bpu YrbXAvoLk9Tg5kzrG2h59dCS0j7+U4Tuti7WjJ8650Bv3L/7ACskl9j3Q3fdJ3zY 0oDMMHB68LRS4xEc27SoS5IZSLhOvKt18ieF7wU8hVnYfI7u4HhHSEG8A2wejvPZ c9Rzy79UBcjYSV/gfZg3VXY2V8Z3pkFbbtv/hH6dxZCuGkMKCTUte4Pq8DQhfbwc LAZO -----END CERTIFICATE-----Generated at Sun Nov 23 05:43:02 2025 by rpki-client