This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9726f31f-1874-4ec8-b776-34f0f05646bb.roa File: 9726f31f-1874-4ec8-b776-34f0f05646bb.roa (raw, json) Hash identifier: kqUxWyYjH0pBwg5s4OiMMdMAuqsL1QbswYUywZaFWdU= Subject key identifier: F8:57:C5:6A:5A:55:96:D1:40:23:03:67:19:91:C2:C2:B7:5F:BB:1A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6C8AE59E9A20063F0088FAC28C6C41B994EC54E5 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9726f31f-1874-4ec8-b776-34f0f05646bb.roa Signing time: Sat 08 Nov 2025 00:10:12 +0000 ROA not before: Sat 08 Nov 2025 00:10:12 +0000 ROA not after: Sat 13 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da69:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 27 Nov 2025 00:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:8a:e5:9e:9a:20:06:3f:00:88:fa:c2:8c:6c:41:b9:94:ec:54:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 8 00:10:12 2025 GMT Not After : Dec 13 23:59:59 2025 GMT Subject: serialNumber=80116cd36bf8a3f9758be74c8be898105385e338cf2032bb53be24d6d5cf45b7, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:63:66:c1:16:07:1d:45:f8:89:4b:8f:4d:7a: 7a:31:a9:6d:a6:e2:ea:e4:ec:81:da:85:c0:e4:1e: 55:8e:15:36:16:ba:ef:b1:39:9b:f2:49:c2:3a:3a: b8:80:18:d4:9f:45:a5:b9:1b:fd:62:aa:c4:da:cb: 9e:8d:4b:09:a7:f9:80:65:07:48:a4:18:6b:a0:b4: c3:e4:2b:b3:02:7e:71:12:94:e9:1b:a1:33:22:88: 61:c2:37:0b:e1:9d:a6:56:61:f8:fb:0b:01:04:49: dc:c4:b2:96:d4:6d:00:64:fd:8c:ae:3e:70:1c:c0: bb:07:13:2c:6a:5e:7e:ce:26:04:34:15:32:af:82: 0c:d0:20:36:3c:78:44:49:32:8a:0c:36:7b:25:4d: 91:9c:c0:4f:fd:6f:b6:9e:17:bb:e0:e5:db:59:df: 09:0f:72:0a:29:ef:92:c2:50:4d:f8:dd:59:d1:36: 4e:ef:41:4b:ef:a7:81:67:3d:22:ff:ad:a6:ec:cc: ab:d6:3f:c1:18:73:be:74:72:54:b9:69:37:40:70: b4:dc:d2:fe:a3:12:6f:e4:d7:04:4a:54:f4:43:e5: cb:7d:fc:0b:ab:38:a7:55:46:8a:2d:a0:1e:d4:e7: fe:56:1b:54:ba:5c:c6:d7:6e:8c:d5:cf:f4:af:30: e2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:57:C5:6A:5A:55:96:D1:40:23:03:67:19:91:C2:C2:B7:5F:BB:1A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9726f31f-1874-4ec8-b776-34f0f05646bb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da69:4000::/40 Signature Algorithm: sha256WithRSAEncryption 38:af:b8:a6:87:ac:a9:57:ca:6a:97:6e:ec:46:9d:4e:19:25: ec:3f:70:8f:a3:21:05:a9:45:ad:26:a2:09:0c:d0:ef:99:b5: 3c:fe:4d:02:23:e0:18:e4:16:1f:c9:29:77:4d:86:a3:49:da: f4:29:23:17:10:44:3e:07:93:83:bb:eb:54:ed:b9:00:9b:19: 65:5b:8a:32:bc:68:25:a0:15:23:ab:0d:0d:6a:6e:52:16:8d: a7:a1:23:eb:7e:3d:2d:45:92:b7:ae:5f:43:22:1e:66:59:78: ee:8c:cd:1e:18:c5:95:7b:21:10:c8:c6:a7:32:f8:fa:c5:d4: 7a:e6:90:f7:f9:76:18:3e:2b:44:7a:f0:42:a2:d9:69:d4:4a: e0:57:33:b4:cb:57:bf:7b:9a:68:10:f9:9b:24:61:23:cf:ff: f5:1b:06:12:08:d2:4c:d5:43:a8:cd:07:17:03:95:d0:80:d6: 5e:f2:11:fa:1c:bf:18:c5:81:ef:8e:e6:48:c8:66:6e:27:2e: 94:8d:f4:50:c6:a6:53:ca:52:eb:58:0a:53:87:c7:97:d1:6a: 56:b7:1c:00:52:04:94:f2:f9:9e:27:11:20:c5:bf:bc:32:4c: 3c:5c:cd:f7:51:1f:29:f8:ae:a5:b0:47:4c:03:c0:ce:cd:38: f5:be:96:b1 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUbIrlnpogBj8AiPrCjGxBuZTsVOUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEwODAwMTAxMloX DTI1MTIxMzIzNTk1OVowejFJMEcGA1UEBRNAODAxMTZjZDM2YmY4YTNmOTc1OGJl NzRjOGJlODk4MTA1Mzg1ZTMzOGNmMjAzMmJiNTNiZTI0ZDZkNWNmNDViNzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0mNmwRYHHUX4iUuPTXp6MaltpuLq 5OyB2oXA5B5VjhU2FrrvsTmb8knCOjq4gBjUn0WluRv9YqrE2suejUsJp/mAZQdI pBhroLTD5CuzAn5xEpTpG6EzIohhwjcL4Z2mVmH4+wsBBEncxLKW1G0AZP2Mrj5w HMC7BxMsal5+ziYENBUyr4IM0CA2PHhESTKKDDZ7JU2RnMBP/W+2nhe74OXbWd8J D3IKKe+SwlBN+N1Z0TZO70FL76eBZz0i/62m7Myr1j/BGHO+dHJUuWk3QHC03NL+ oxJv5NcESlT0Q+XLffwLqzinVUaKLaAe1Of+VhtUulzG126M1c/0rzDi8wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFPhXxWpaVZbRQCMDZxmRwsK3X7saMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzk3MjZmMzFmLTE4NzQtNGVjOC1iNzc2LTM0ZjBmMDU2NDZiYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaaUAwDQYJKoZIhvcNAQELBQADggEBADivuKaHrKlXymqXbuxG nU4ZJew/cI+jIQWpRa0mogkM0O+ZtTz+TQIj4BjkFh/JKXdNhqNJ2vQpIxcQRD4H k4O761TtuQCbGWVbijK8aCWgFSOrDQ1qblIWjaehI+t+PS1FkreuX0MiHmZZeO6M zR4YxZV7IRDIxqcy+PrF1HrmkPf5dhg+K0R68EKi2WnUSuBXM7TLV797mmgQ+Zsk YSPP//UbBhII0kzVQ6jNBxcDldCA1l7yEfocvxjFge+O5kjIZm4nLpSN9FDGplPK UutYClOHx5fRala3HABSBJTy+Z4nESDFv7wyTDxczfdRHyn4rqWwR0wDwM7NOPW+ lrE= -----END CERTIFICATE-----Generated at Sun Nov 23 05:43:52 2025 by rpki-client