This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/996cc3b8-0df0-4f17-97f0-d59aa845427c.roa File: 996cc3b8-0df0-4f17-97f0-d59aa845427c.roa (raw, json) Hash identifier: IcVwvS/CeANsAyZj1JM7FvzY7BZZ2CWnM/KA8jpxIZo= Subject key identifier: F9:2D:D2:04:17:88:36:95:6D:14:94:EF:9C:5F:85:05:39:BB:0E:89 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 616560A6D80015C0E774D6D48424F0B2A647492C Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/996cc3b8-0df0-4f17-97f0-d59aa845427c.roa Signing time: Tue 18 Nov 2025 00:00:41 +0000 ROA not before: Tue 18 Nov 2025 00:00:41 +0000 ROA not after: Mon 16 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2406:da00:ff00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 27 Nov 2025 00:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:65:60:a6:d8:00:15:c0:e7:74:d6:d4:84:24:f0:b2:a6:47:49:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 18 00:00:41 2025 GMT Not After : Feb 16 23:59:59 2026 GMT Subject: serialNumber=a6ff668414da3067fe75d56a108ba4e38b842b504d4dddf436c9b502decfb9a6, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8c:ed:6d:c9:83:61:8e:82:3b:95:34:1f:ae: 8b:98:63:ac:50:bd:88:9d:dd:3a:91:de:93:37:ea: 0c:eb:6f:0c:bb:94:df:51:0b:48:79:f4:34:8d:5b: d3:4a:0c:98:c0:8b:25:03:0c:08:8e:8b:2f:37:a5: 9e:17:dc:1c:7b:79:07:24:70:f8:34:74:ce:1d:2f: 7e:3f:3e:b3:c5:8e:e2:81:b7:13:1c:e4:78:80:7f: 47:94:af:8d:3b:30:d0:c9:70:16:62:b0:1d:de:cf: 79:0c:84:a4:86:95:63:5a:3d:87:f4:ab:a8:b4:76: 27:f1:87:ab:01:dc:22:58:07:a1:48:c3:25:88:60: a7:3e:e4:1d:c9:21:bc:cc:22:21:98:c5:14:9e:56: 31:6f:c8:fc:3f:4a:27:b3:95:38:77:0b:25:ee:5b: 28:54:34:b4:bf:98:9b:03:f9:dc:17:1b:62:52:5b: 07:ee:54:04:e1:7e:96:03:6c:0b:f4:4d:5e:29:07: 4e:46:fc:9c:87:e9:87:05:e5:33:fb:08:4e:54:8a: c7:82:dd:d0:9f:89:99:0d:1b:2b:dd:2f:c3:1c:6d: e8:25:be:2a:b3:89:66:4b:18:96:53:18:5a:6f:b8: a5:89:a1:4b:88:83:6d:c2:7e:c8:41:26:7b:76:b8: f5:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:2D:D2:04:17:88:36:95:6D:14:94:EF:9C:5F:85:05:39:BB:0E:89 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/996cc3b8-0df0-4f17-97f0-d59aa845427c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:ff00::/48 Signature Algorithm: sha256WithRSAEncryption 79:b5:a3:06:ad:b8:4e:b1:0c:5b:9d:fb:3f:8a:8f:be:a8:09: 5c:d8:43:f2:48:f5:46:b1:ee:21:69:5d:16:b6:75:e8:b5:ca: e6:e9:39:4d:e7:8b:0b:a9:c1:af:c9:c1:dd:6d:4c:0c:b3:da: d7:3e:df:14:46:07:f5:df:ad:6d:fa:e2:55:0f:27:17:77:e9: 71:2b:02:98:91:39:79:19:82:cc:b8:2c:11:ca:0f:e5:bd:d8: ea:72:b2:f2:81:8e:cf:ef:5e:48:6e:f1:f8:7a:07:1d:21:43: a7:09:e3:af:6f:bb:5e:e5:bd:b7:ae:7b:7a:41:5d:7c:25:5c: 3b:76:4d:d9:8a:f2:92:6a:f6:19:a5:fa:59:2e:de:11:d9:b4: cd:f3:67:57:30:85:08:0b:a9:f3:24:05:3d:ca:fa:10:41:88: 42:49:b7:53:99:2c:32:1e:d6:e2:f2:f6:56:44:0d:ce:a7:7c: fb:26:71:2d:53:b8:1e:5c:74:af:11:3a:58:95:c6:ff:07:16: 22:9f:7b:59:3e:c5:f6:49:3b:47:6e:15:a2:ac:f5:db:56:6c: 26:cc:2c:12:23:24:76:9f:47:ba:21:f1:fa:c7:f1:b9:70:3e: fa:fe:33:9e:e7:09:46:dc:a0:66:3d:de:ca:d7:d9:9d:46:ac: 7c:90:9e:3f -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUYWVgptgAFcDndNbUhCTwsqZHSSwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTExODAwMDA0MVoX DTI2MDIxNjIzNTk1OVowejFJMEcGA1UEBRNAYTZmZjY2ODQxNGRhMzA2N2ZlNzVk NTZhMTA4YmE0ZTM4Yjg0MmI1MDRkNGRkZGY0MzZjOWI1MDJkZWNmYjlhNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz4ztbcmDYY6CO5U0H66LmGOsUL2I nd06kd6TN+oM628Mu5TfUQtIefQ0jVvTSgyYwIslAwwIjosvN6WeF9wce3kHJHD4 NHTOHS9+Pz6zxY7igbcTHOR4gH9HlK+NOzDQyXAWYrAd3s95DISkhpVjWj2H9Kuo tHYn8YerAdwiWAehSMMliGCnPuQdySG8zCIhmMUUnlYxb8j8P0ons5U4dwsl7lso VDS0v5ibA/ncFxtiUlsH7lQE4X6WA2wL9E1eKQdORvych+mHBeUz+whOVIrHgt3Q n4mZDRsr3S/DHG3oJb4qs4lmSxiWUxhab7iliaFLiINtwn7IQSZ7drj1XQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFPkt0gQXiDaVbRSU75xfhQU5uw6JMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzk5NmNjM2I4LTBkZjAtNGYxNy05N2YwLWQ1OWFhODQ1NDI3Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAP8AMA0GCSqGSIb3DQEBCwUAA4IBAQB5taMGrbhOsQxbnfs/ io++qAlc2EPySPVGse4haV0WtnXotcrm6TlN54sLqcGvycHdbUwMs9rXPt8URgf1 361t+uJVDycXd+lxKwKYkTl5GYLMuCwRyg/lvdjqcrLygY7P715IbvH4egcdIUOn CeOvb7te5b23rnt6QV18JVw7dk3ZivKSavYZpfpZLt4R2bTN82dXMIUIC6nzJAU9 yvoQQYhCSbdTmSwyHtbi8vZWRA3Op3z7JnEtU7geXHSvETpYlcb/BxYin3tZPsX2 STtHbhWirPXbVmwmzCwSIyR2n0e6IfH6x/G5cD76/jOe5wlG3KBmPd7K19mdRqx8 kJ4/ -----END CERTIFICATE-----Generated at Sun Nov 23 05:42:55 2025 by rpki-client