This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa File: 7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa (raw, json) Hash identifier: ACI6a7AQ/5mKqnmX3snMKnpqvN29SdQR7+i14UZiKrQ= Subject key identifier: E8:E2:41:94:27:A1:7C:0C:66:7F:60:AD:9C:70:E0:D8:E9:8B:DA:9E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0E281074D8D696881E24DD0D28EFD0DEC29A03F1 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa Signing time: Tue 25 Nov 2025 00:00:08 +0000 ROA not before: Tue 25 Nov 2025 00:00:08 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da22::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 30 Nov 2025 00:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:28:10:74:d8:d6:96:88:1e:24:dd:0d:28:ef:d0:de:c2:9a:03:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 25 00:00:08 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=1ed124f4d2a9f25bdb3c8fc8b216977dff72978b83ce21e1ea77b7117ec855f8, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e8:1d:c8:b6:2f:34:d3:22:eb:09:91:23:3e: 9f:27:33:ba:cd:b4:b3:19:82:46:7b:55:81:ac:d7: 2a:14:8b:93:f6:6b:4d:f4:b8:53:7f:37:38:6e:b5: 2b:61:80:57:4f:a7:9e:19:a1:b7:f4:f9:86:9b:c0: 0c:1b:63:20:5f:2d:29:dd:56:6c:16:6b:11:50:a1: de:ac:cb:73:88:9c:68:6b:b2:51:e5:c6:65:2d:71: 1f:cf:a5:41:02:63:d5:d1:b4:5d:37:93:3a:4c:42: 1f:1d:ca:73:3f:5b:39:a2:93:82:9f:c5:d0:af:cd: 92:4a:f0:88:7e:3e:ed:19:69:c7:35:8f:90:5e:15: 5a:0c:af:f5:78:a8:71:98:43:9c:f5:38:d7:5f:65: af:a1:c9:16:4b:d2:c7:11:69:f8:f6:4d:60:bf:c7: f5:63:c1:f3:a3:75:cb:89:55:1f:13:c4:17:ef:7b: 57:26:08:99:30:72:5f:e0:43:7c:e0:43:34:61:cf: ab:b3:d6:ac:1d:f0:5e:6c:be:30:78:6f:17:89:21: 14:a2:6e:1e:f9:a8:1d:ec:1b:26:5b:e5:7c:78:6f: 50:83:27:5e:3a:df:16:1a:06:4d:e6:b7:71:5a:ee: d4:41:2b:ec:77:63:eb:3b:0f:d7:ee:e9:cf:4b:b8: a5:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:E2:41:94:27:A1:7C:0C:66:7F:60:AD:9C:70:E0:D8:E9:8B:DA:9E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7e4e7137-138d-4ba8-8a17-81c3d6d3a98b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da22::/36 Signature Algorithm: sha256WithRSAEncryption 96:73:da:11:ff:93:36:0b:af:f2:eb:b9:7b:e2:f0:28:ff:0a: e2:e4:89:45:b7:eb:b7:42:aa:1d:67:29:fc:ff:37:e5:df:8f: 8d:ad:34:aa:e3:9d:16:87:1a:99:c3:2e:f2:84:4f:ce:a7:64: dc:a5:ee:bd:ee:6e:eb:62:ac:c5:8f:3a:4c:1b:76:68:9d:1b: e0:22:65:c2:21:79:3f:8e:b4:9d:f1:bf:44:8a:c2:7b:57:9c: dc:16:cd:18:00:7f:61:21:06:32:ac:bb:14:2c:e4:91:68:50: a4:f4:90:10:93:aa:9b:2e:4c:59:b3:aa:93:b2:f9:21:4d:6b: 5d:cb:b3:27:d0:cf:88:b2:11:03:8a:e2:fe:08:0d:00:6c:06: 71:f4:e5:05:38:40:07:d1:81:36:18:49:4a:d6:11:77:5c:34: 81:b6:67:f1:be:9c:39:e9:4a:0e:6e:83:c5:b6:9a:e9:28:a1: 84:6e:47:d2:5e:fa:61:d4:e0:f4:72:f0:0e:14:43:a1:10:ad: 8e:b6:f9:27:12:75:a8:72:e0:c1:32:83:28:7b:d2:60:ad:4c: 75:d3:e2:01:2b:a7:6a:a3:d6:5b:0c:e2:7d:8a:0f:10:1e:a2: 47:6b:05:01:4c:57:91:4f:4a:02:51:f3:87:64:9a:56:ff:a2: af:3d:87:fb -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUDigQdNjWlogeJN0NKO/Q3sKaA/EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyNTAwMDAwOFoX DTI2MDIyMzIzNTk1OVowejFJMEcGA1UEBRNAMWVkMTI0ZjRkMmE5ZjI1YmRiM2M4 ZmM4YjIxNjk3N2RmZjcyOTc4YjgzY2UyMWUxZWE3N2I3MTE3ZWM4NTVmODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxOgdyLYvNNMi6wmRIz6fJzO6zbSz GYJGe1WBrNcqFIuT9mtN9LhTfzc4brUrYYBXT6eeGaG39PmGm8AMG2MgXy0p3VZs FmsRUKHerMtziJxoa7JR5cZlLXEfz6VBAmPV0bRdN5M6TEIfHcpzP1s5opOCn8XQ r82SSvCIfj7tGWnHNY+QXhVaDK/1eKhxmEOc9TjXX2WvockWS9LHEWn49k1gv8f1 Y8Hzo3XLiVUfE8QX73tXJgiZMHJf4EN84EM0Yc+rs9asHfBebL4weG8XiSEUom4e +agd7BsmW+V8eG9QgydeOt8WGgZN5rdxWu7UQSvsd2PrOw/X7unPS7ilYwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFOjiQZQnoXwMZn9grZxw4Njpi9qeMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdlNGU3MTM3LTEzOGQtNGJhOC04YTE3LTgxYzNkNmQzYTk4Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaIgAwDQYJKoZIhvcNAQELBQADggEBAJZz2hH/kzYLr/LruXvi 8Cj/CuLkiUW367dCqh1nKfz/N+Xfj42tNKrjnRaHGpnDLvKET86nZNyl7r3ubuti rMWPOkwbdmidG+AiZcIheT+OtJ3xv0SKwntXnNwWzRgAf2EhBjKsuxQs5JFoUKT0 kBCTqpsuTFmzqpOy+SFNa13LsyfQz4iyEQOK4v4IDQBsBnH05QU4QAfRgTYYSUrW EXdcNIG2Z/G+nDnpSg5ug8W2mukooYRuR9Je+mHU4PRy8A4UQ6EQrY62+ScSdahy 4MEygyh70mCtTHXT4gErp2qj1lsM4n2KDxAeokdrBQFMV5FPSgJR84dkmlb/oq89 h/s= -----END CERTIFICATE-----Generated at Wed Nov 26 22:51:12 2025 by rpki-client