This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a2514fe3-5779-4174-ba62-2a19e0c7ddf9.roa File: a2514fe3-5779-4174-ba62-2a19e0c7ddf9.roa (raw, json) Hash identifier: vLk7iaiKFBDErjwPjnYNGGiqbK6fSMbCsu67C3qermg= Subject key identifier: F6:23:67:E5:1D:EA:F1:BF:71:46:01:65:CA:BD:8C:62:E8:77:B8:F5 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 146F3E439EF6E872B3D1BCA2CEF72CBEF2F6D7A2 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a2514fe3-5779-4174-ba62-2a19e0c7ddf9.roa Signing time: Tue 25 Nov 2025 00:00:12 +0000 ROA not before: Tue 25 Nov 2025 00:00:12 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da21::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 00:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:6f:3e:43:9e:f6:e8:72:b3:d1:bc:a2:ce:f7:2c:be:f2:f6:d7:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 25 00:00:12 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=36eb74ff368b617adb2ca8c2d53b7cd99c4a7a8af23beef6009aa77d1050a518, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1a:f2:a4:63:91:51:9d:2b:49:59:d6:23:ee: 85:6d:31:f4:11:0f:a7:2c:13:eb:7b:8b:b0:e6:bb: d5:87:b1:de:fe:6f:92:31:6b:16:22:57:f2:df:fc: 14:14:f6:76:b6:7d:be:b0:43:d6:10:d6:2f:ca:6e: 85:9e:fc:70:28:b2:63:a3:f5:95:a8:cc:7b:43:92: ca:6d:f4:53:43:7c:d8:44:b0:06:1d:94:12:e4:55: 3b:64:a0:67:d5:f5:de:f8:34:96:a2:71:c2:76:2d: 7f:73:0b:e0:85:3b:4e:fc:47:f9:ef:99:e1:0d:91: 64:99:3b:8d:66:10:ae:bc:3c:53:6c:26:11:7c:ce: 0c:2f:9b:57:7c:1d:d3:25:ea:da:92:06:c4:eb:b2: 33:6e:0a:c9:9a:52:70:a5:a3:2b:ab:a0:0c:78:89: 66:75:a9:2e:e0:f8:50:66:06:61:a7:a0:ca:87:9b: 36:77:ca:2c:d4:ac:a9:3b:5e:c7:06:8d:70:d8:62: 27:1d:5d:fa:b3:96:4a:14:0f:94:57:de:d5:31:6d: b0:94:85:06:a4:9c:0d:90:dc:a0:69:1f:c3:8d:a8: 15:00:e4:6c:51:6b:cc:f2:b2:f2:4a:a5:09:2b:0c: a7:8d:25:1a:28:a0:d2:4a:14:62:9e:3d:5a:d3:f5: f5:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:23:67:E5:1D:EA:F1:BF:71:46:01:65:CA:BD:8C:62:E8:77:B8:F5 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a2514fe3-5779-4174-ba62-2a19e0c7ddf9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da21::/36 Signature Algorithm: sha256WithRSAEncryption 68:7f:54:9d:31:8b:e8:88:eb:78:ba:9c:c6:8f:5b:c1:72:d8: 9c:83:9a:21:ea:99:75:ab:b9:e3:21:74:e6:f7:cd:6a:5c:cd: 73:18:50:b6:16:84:c7:37:df:ed:9f:42:f2:59:30:55:19:59: 10:1b:be:52:ac:f2:f7:8d:6f:49:6a:cf:47:3a:49:50:52:69: 95:10:ec:d6:8b:9e:d8:a1:35:ee:c5:ad:04:60:37:b8:41:00: b3:19:10:e0:21:e4:0a:62:d5:7a:e0:8b:49:74:f3:fc:a0:f7: 5c:79:71:c3:6d:a1:c4:dc:1e:35:1a:c7:c7:dc:c3:08:2d:5e: ad:d7:b6:96:bf:18:6a:56:a2:86:6f:35:3d:c3:29:56:ed:57: cf:be:87:a0:f2:20:1c:0d:8f:2e:19:b0:f4:cb:f1:79:f6:31: 67:50:63:fe:46:39:22:24:89:65:75:97:38:40:23:fa:5f:7e: 54:60:d7:ff:91:13:e1:39:2a:9c:35:ae:57:bc:58:7d:8c:cd: 19:7f:5f:e0:05:ba:61:53:82:d3:ef:21:0b:94:2c:f0:65:9d: 08:22:d6:d6:46:ac:ba:8b:b0:a7:41:23:0e:f9:56:ca:89:63: ad:28:62:75:68:0d:1d:25:17:eb:50:6f:61:6e:e4:90:ea:0a: 11:3e:57:b8 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUFG8+Q5726HKz0byizvcsvvL216IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyNTAwMDAxMloX DTI2MDIyMzIzNTk1OVowejFJMEcGA1UEBRNAMzZlYjc0ZmYzNjhiNjE3YWRiMmNh OGMyZDUzYjdjZDk5YzRhN2E4YWYyM2JlZWY2MDA5YWE3N2QxMDUwYTUxODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2BrypGORUZ0rSVnWI+6FbTH0EQ+n LBPre4uw5rvVh7He/m+SMWsWIlfy3/wUFPZ2tn2+sEPWENYvym6FnvxwKLJjo/WV qMx7Q5LKbfRTQ3zYRLAGHZQS5FU7ZKBn1fXe+DSWonHCdi1/cwvghTtO/Ef575nh DZFkmTuNZhCuvDxTbCYRfM4ML5tXfB3TJerakgbE67IzbgrJmlJwpaMrq6AMeIlm daku4PhQZgZhp6DKh5s2d8os1KypO17HBo1w2GInHV36s5ZKFA+UV97VMW2wlIUG pJwNkNygaR/DjagVAORsUWvM8rLySqUJKwynjSUaKKDSShRinj1a0/X1TwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFPYjZ+Ud6vG/cUYBZcq9jGLod7j1MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2EyNTE0ZmUzLTU3NzktNDE3NC1iYTYyLTJhMTllMGM3ZGRmOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaIQAwDQYJKoZIhvcNAQELBQADggEBAGh/VJ0xi+iI63i6nMaP W8Fy2JyDmiHqmXWrueMhdOb3zWpczXMYULYWhMc33+2fQvJZMFUZWRAbvlKs8veN b0lqz0c6SVBSaZUQ7NaLntihNe7FrQRgN7hBALMZEOAh5Api1Xrgi0l08/yg91x5 ccNtocTcHjUax8fcwwgtXq3Xtpa/GGpWooZvNT3DKVbtV8++h6DyIBwNjy4ZsPTL 8Xn2MWdQY/5GOSIkiWV1lzhAI/pfflRg1/+RE+E5Kpw1rle8WH2MzRl/X+AFumFT gtPvIQuULPBlnQgi1tZGrLqLsKdBIw75VsqJY60oYnVoDR0lF+tQb2Fu5JDqChE+ V7g= -----END CERTIFICATE-----Generated at Fri Dec 5 06:00:46 2025 by rpki-client