This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a4e1135e-0450-439a-84a4-3c19c06f382b.roa File: a4e1135e-0450-439a-84a4-3c19c06f382b.roa (raw, json) Hash identifier: o7qZH2fsf4ehak4JKCavPrLHGEp/N002Slz6h8f7A0E= Subject key identifier: 63:44:E9:26:67:45:5C:EE:7A:ED:5C:E4:28:05:73:1E:16:7B:54:15 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7BF760292D2F971C87F843DD00E8E9946AC88FE6 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a4e1135e-0450-439a-84a4-3c19c06f382b.roa Signing time: Sun 23 Nov 2025 00:20:53 +0000 ROA not before: Sun 23 Nov 2025 00:20:53 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:8800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 27 Nov 2025 00:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:f7:60:29:2d:2f:97:1c:87:f8:43:dd:00:e8:e9:94:6a:c8:8f:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 23 00:20:53 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=2100abdd1e5596028fba498cafc1ab6f1e822d93047b44631b69cef7cc292e76, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:74:d4:2a:14:62:c1:4f:fc:f4:23:cb:f2:51: 76:0d:f7:e5:00:a1:1d:56:93:65:ea:fa:46:5c:2c: ab:9c:49:92:0f:aa:3d:b5:16:7d:9d:56:25:d8:8c: 1c:7e:90:90:1c:58:d9:9a:b4:db:c1:a8:a3:f3:30: 9b:e6:c0:b8:6d:e6:dc:87:89:ea:e3:7d:98:24:09: b5:c2:a7:03:39:47:2d:16:64:69:ed:bf:9a:20:81: ab:55:9e:60:ec:85:cd:cb:ab:a2:72:7a:d1:e8:2d: 40:b7:ae:48:ab:5f:8c:41:76:df:34:23:92:47:a5: bc:1c:11:54:e2:ba:fd:d7:45:01:f1:95:f2:e8:ec: cf:cf:87:9b:24:d6:b0:32:46:a9:17:6c:92:1b:ea: b0:2d:8d:ff:36:6d:d6:fc:93:04:33:bf:e8:13:75: 43:ed:71:8f:71:e0:ee:88:dc:cc:4f:f9:4c:0a:9c: b8:99:90:a4:7a:7b:ee:96:65:8b:c1:ea:63:d8:1d: 9b:58:22:65:ad:a5:5f:84:7c:34:f8:76:1b:f8:81: a2:89:e0:50:e7:77:94:45:d0:28:c7:cd:93:20:05: 01:2b:90:c5:ca:b7:02:c0:93:a8:ff:57:a9:d0:c2: 4c:bd:2a:99:be:6d:ae:1d:8b:80:19:92:11:01:4e: 8b:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:44:E9:26:67:45:5C:EE:7A:ED:5C:E4:28:05:73:1E:16:7B:54:15 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a4e1135e-0450-439a-84a4-3c19c06f382b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:8800::/40 Signature Algorithm: sha256WithRSAEncryption 47:50:b1:75:3e:55:a8:1d:89:97:a2:cd:b8:95:2a:66:d7:4e: d5:23:8d:b3:e3:9e:c8:09:b3:af:49:1f:e3:ff:bf:38:a6:bd: c7:8d:e7:c1:f7:3f:90:3c:51:cb:19:92:25:03:08:b8:46:00: 1b:a4:e6:b1:fd:d9:76:59:37:63:03:37:eb:fe:8c:ce:75:4d: 28:d7:88:41:3a:bf:49:d8:e6:77:ee:d0:2a:65:14:eb:17:8e: db:d1:80:98:0d:d3:11:91:33:b2:f1:8b:c8:fd:77:6f:ca:9e: bb:33:4e:0a:29:3b:06:80:5c:1a:7f:9a:6e:6b:00:fe:3b:90: 79:77:87:f5:53:8d:4e:49:42:6b:93:20:be:08:09:9b:4f:e4: 22:53:8b:94:79:b8:6c:e1:e1:7d:6e:77:f3:6b:ee:a6:5f:7b: 07:05:e6:d2:24:12:8e:9b:c3:f0:a4:d4:91:cb:23:cd:c3:13: b6:c4:68:93:cc:ef:a0:53:d9:8e:84:d0:76:7a:41:26:30:b6: 2f:f3:c1:23:c9:48:cb:50:48:ef:a8:0f:30:93:6d:e8:5a:60: 61:65:b8:7d:e7:d3:53:cc:58:bf:e1:c6:ca:f7:3c:f8:5f:d7: 64:59:4c:0d:5d:b6:7b:d2:ac:5b:d2:41:92:6b:05:8c:c3:8e: fa:0e:86:4b -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUe/dgKS0vlxyH+EPdAOjplGrIj+YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyMzAwMjA1M1oX DTI2MDIyMTIzNTk1OVowejFJMEcGA1UEBRNAMjEwMGFiZGQxZTU1OTYwMjhmYmE0 OThjYWZjMWFiNmYxZTgyMmQ5MzA0N2I0NDYzMWI2OWNlZjdjYzI5MmU3NjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxHTUKhRiwU/89CPL8lF2DfflAKEd VpNl6vpGXCyrnEmSD6o9tRZ9nVYl2IwcfpCQHFjZmrTbwaij8zCb5sC4bebch4nq 432YJAm1wqcDOUctFmRp7b+aIIGrVZ5g7IXNy6uicnrR6C1At65Iq1+MQXbfNCOS R6W8HBFU4rr910UB8ZXy6OzPz4ebJNawMkapF2ySG+qwLY3/Nm3W/JMEM7/oE3VD 7XGPceDuiNzMT/lMCpy4mZCkenvulmWLwepj2B2bWCJlraVfhHw0+HYb+IGiieBQ 53eURdAox82TIAUBK5DFyrcCwJOo/1ep0MJMvSqZvm2uHYuAGZIRAU6LQwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGNE6SZnRVzueu1c5CgFcx4We1QVMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2E0ZTExMzVlLTA0NTAtNDM5YS04NGE0LTNjMTljMDZmMzgyYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba84gwDQYJKoZIhvcNAQELBQADggEBAEdQsXU+VagdiZeizbiV KmbXTtUjjbPjnsgJs69JH+P/vzimvceN58H3P5A8UcsZkiUDCLhGABuk5rH92XZZ N2MDN+v+jM51TSjXiEE6v0nY5nfu0CplFOsXjtvRgJgN0xGRM7Lxi8j9d2/Knrsz TgopOwaAXBp/mm5rAP47kHl3h/VTjU5JQmuTIL4ICZtP5CJTi5R5uGzh4X1ud/Nr 7qZfewcF5tIkEo6bw/Ck1JHLI83DE7bEaJPM76BT2Y6E0HZ6QSYwti/zwSPJSMtQ SO+oDzCTbehaYGFluH3n01PMWL/hxsr3PPhf12RZTA1dtnvSrFvSQZJrBYzDjvoO hks= -----END CERTIFICATE-----Generated at Sun Nov 23 05:43:02 2025 by rpki-client