This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9adbb722-77fd-43f7-9d65-fef8bf41ab44.roa File: 9adbb722-77fd-43f7-9d65-fef8bf41ab44.roa (raw, json) Hash identifier: U0FSCiTMnx0AFQDfGh0CrI70UPxFrh5nrGlSGPTeinQ= Subject key identifier: B4:94:30:A4:32:7C:B7:59:F3:56:F7:91:A4:AA:89:D8:D9:AA:98:0A Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 4DA709FBA26744261EBCC779511D48761024BEF7 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9adbb722-77fd-43f7-9d65-fef8bf41ab44.roa Signing time: Sun 09 Nov 2025 00:10:27 +0000 ROA not before: Sun 09 Nov 2025 00:10:27 +0000 ROA not after: Sun 14 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2406:dab9:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 27 Nov 2025 00:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:a7:09:fb:a2:67:44:26:1e:bc:c7:79:51:1d:48:76:10:24:be:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 9 00:10:27 2025 GMT Not After : Dec 14 23:59:59 2025 GMT Subject: serialNumber=771b497c3293467f8e8f191f81a75e6be94a436a1a0198df3f294ca5dca7993d, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:47:ee:f2:3e:d2:80:ed:0a:9c:a9:cb:22:19: fa:41:cc:c7:90:3b:a6:02:fd:a8:03:41:60:5f:28: c1:3d:ee:80:94:55:63:17:90:7f:7d:dd:25:07:a5: 4e:a3:56:09:9a:06:3c:35:06:ed:36:2f:28:c0:e9: 15:f0:b1:2c:65:38:51:3f:f8:09:ac:a3:e0:5e:43: a5:3d:44:d8:c6:6f:4f:5a:44:86:56:a4:c2:ee:3d: cd:28:64:0a:eb:b3:33:1e:10:32:c5:d2:37:ef:5f: 88:fb:2b:50:ce:f5:9f:87:70:d6:0b:3b:50:ab:88: 54:7b:e4:29:94:b1:20:ab:85:46:01:fa:91:c2:dd: ee:ef:07:42:52:d8:b2:51:27:2c:dd:a4:8c:37:93: 73:5c:de:76:c7:5a:82:5e:c6:e2:0e:ed:9e:0b:9c: b8:6d:a6:17:8f:c3:85:0f:75:89:84:39:89:81:af: d1:e8:09:bb:8e:4a:ad:10:24:22:e9:28:c4:73:e9: c2:e2:ce:e8:18:99:8f:36:8d:f8:e1:15:a6:ae:58: bc:11:56:58:e0:a4:4f:5c:d2:bd:26:67:91:12:1e: 39:e4:99:0e:38:35:24:86:fe:9c:6d:37:89:10:b3: dc:66:2c:39:c0:c8:48:79:25:4f:ab:a6:e8:54:29: d8:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:94:30:A4:32:7C:B7:59:F3:56:F7:91:A4:AA:89:D8:D9:AA:98:0A X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9adbb722-77fd-43f7-9d65-fef8bf41ab44.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab9:2000::/40 Signature Algorithm: sha256WithRSAEncryption 14:14:ae:9f:eb:d4:6a:07:f1:ab:5c:e6:8b:22:2d:47:49:44: 91:6e:8d:0d:73:6b:4a:27:8d:35:20:c8:ce:01:d1:1a:61:82: 5c:dc:54:8c:c4:91:3b:b5:1d:bd:9a:1a:ac:af:c1:f5:6e:b5: 5c:c6:96:3d:a1:a1:a9:4a:75:eb:37:b1:e4:aa:d0:4f:7b:b5: e2:e9:50:77:9c:b1:61:d5:5e:14:42:89:00:9b:fb:16:f2:0e: 18:88:30:cb:02:27:b5:8e:a5:83:57:e3:85:b8:29:6e:1d:64: 15:53:1f:0d:9d:4e:07:d2:4f:78:eb:d5:4b:89:4c:6f:d2:58: bd:37:05:d9:c6:b5:15:4e:a5:67:46:df:8b:e5:ed:1f:fa:87: c4:88:e7:5c:65:be:4f:62:f6:df:00:82:e7:08:d4:12:09:cc: 6e:d1:f6:28:f9:db:47:db:cb:f2:2d:18:74:55:f2:cf:37:12: 89:ca:ac:8f:2a:b6:18:dc:70:11:61:a4:2c:c2:6a:fe:5a:a5: ae:92:ec:34:11:22:7c:e3:37:11:9a:a5:8c:d9:ef:01:7d:42: 5d:e6:d7:5e:55:61:ce:83:b7:56:5b:e9:36:86:01:3e:87:d0: 60:65:a8:e5:96:1a:fc:d1:d4:e5:5d:69:48:69:f8:85:6b:82: fd:d3:ca:1b -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUTacJ+6JnRCYevMd5UR1IdhAkvvcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEwOTAwMTAyN1oX DTI1MTIxNDIzNTk1OVowejFJMEcGA1UEBRNANzcxYjQ5N2MzMjkzNDY3ZjhlOGYx OTFmODFhNzVlNmJlOTRhNDM2YTFhMDE5OGRmM2YyOTRjYTVkY2E3OTkzZDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmEfu8j7SgO0KnKnLIhn6QczHkDum Av2oA0FgXyjBPe6AlFVjF5B/fd0lB6VOo1YJmgY8NQbtNi8owOkV8LEsZThRP/gJ rKPgXkOlPUTYxm9PWkSGVqTC7j3NKGQK67MzHhAyxdI371+I+ytQzvWfh3DWCztQ q4hUe+QplLEgq4VGAfqRwt3u7wdCUtiyUScs3aSMN5NzXN52x1qCXsbiDu2eC5y4 baYXj8OFD3WJhDmJga/R6Am7jkqtECQi6SjEc+nC4s7oGJmPNo344RWmrli8EVZY 4KRPXNK9JmeREh455JkOODUkhv6cbTeJELPcZiw5wMhIeSVPq6boVCnYNwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFLSUMKQyfLdZ81b3kaSqidjZqpgKMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzlhZGJiNzIyLTc3ZmQtNDNmNy05ZDY1LWZlZjhiZjQxYWI0NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbauSAwDQYJKoZIhvcNAQELBQADggEBABQUrp/r1GoH8atc5osi LUdJRJFujQ1za0onjTUgyM4B0RphglzcVIzEkTu1Hb2aGqyvwfVutVzGlj2hoalK des3seSq0E97teLpUHecsWHVXhRCiQCb+xbyDhiIMMsCJ7WOpYNX44W4KW4dZBVT Hw2dTgfST3jr1UuJTG/SWL03BdnGtRVOpWdG34vl7R/6h8SI51xlvk9i9t8AgucI 1BIJzG7R9ij520fby/ItGHRV8s83EonKrI8qthjccBFhpCzCav5apa6S7DQRInzj NxGapYzZ7wF9Ql3m115VYc6Dt1Zb6TaGAT6H0GBlqOWWGvzR1OVdaUhp+IVrgv3T yhs= -----END CERTIFICATE-----Generated at Sun Nov 23 05:42:27 2025 by rpki-client