This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b834337f-a753-44b7-be9e-389ab2d2acad.roa File: b834337f-a753-44b7-be9e-389ab2d2acad.roa (raw, json) Hash identifier: j7fZsoGB4nGeO8qUce0MeNhe+kdalv6SJvY/rjZtQvI= Subject key identifier: 2D:B3:3C:97:26:77:D4:40:58:5D:96:60:D7:7A:6D:4E:73:8D:81:5C Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3E0CE9A29E895AAC84BC313A266C70A4265EA9AA Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b834337f-a753-44b7-be9e-389ab2d2acad.roa Signing time: Sun 23 Nov 2025 00:01:04 +0000 ROA not before: Sun 23 Nov 2025 00:01:04 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:a000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 27 Nov 2025 00:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:0c:e9:a2:9e:89:5a:ac:84:bc:31:3a:26:6c:70:a4:26:5e:a9:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 23 00:01:04 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=b0b12bf2ec6464234e046d5c5f4d366179757193792a0bb30445b028cec94f7c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:49:20:dc:8b:c9:4a:f0:9d:76:b4:35:2b:2a: b1:44:b5:10:77:6f:b8:9e:1d:e7:be:62:2f:ae:d3: a9:8c:0d:60:aa:67:28:3b:7b:6e:ec:62:22:40:19: 38:03:ea:95:ba:42:3d:6e:45:5b:9e:23:85:c1:a0: b6:96:f8:bf:8f:a0:9d:3f:28:9f:e6:52:86:25:5f: 9b:66:ea:67:d4:1b:f2:b4:51:b7:e6:75:ae:07:d6: 55:3d:3a:40:8e:d6:bd:65:a6:9d:e9:ce:09:2a:c8: 8e:5f:8d:58:7d:50:4e:49:7f:c2:24:cd:de:66:68: 28:9e:e2:db:33:47:48:0d:60:fc:02:81:d9:8f:cb: a1:81:b0:cc:e2:96:ec:e7:3c:97:36:89:6b:14:71: ef:e5:48:57:e8:14:6a:26:ad:dd:3e:0f:29:f2:67: a3:10:be:37:c5:5e:ac:a0:6b:fe:19:31:a4:14:06: 8c:c5:96:6d:e7:08:56:6a:e8:0c:ae:38:58:3f:57: ce:1d:a3:cf:d8:af:52:c9:c5:f1:c7:d5:9b:d0:2b: 2f:c0:92:23:d6:aa:77:c4:df:b9:f3:ed:f8:ee:f2: d1:1e:5b:a0:8e:7e:ee:0e:06:7a:ab:60:03:d0:b7: e2:c7:e5:28:d0:e2:92:bf:70:86:05:a0:08:fc:00: 78:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:B3:3C:97:26:77:D4:40:58:5D:96:60:D7:7A:6D:4E:73:8D:81:5C X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b834337f-a753-44b7-be9e-389ab2d2acad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:a000::/40 Signature Algorithm: sha256WithRSAEncryption 5d:fe:30:dd:c6:5e:8b:ae:d2:2c:9d:0a:1c:1d:44:b6:35:8d: e6:39:13:7d:17:aa:57:4b:92:1e:6a:0c:b2:5b:a3:b7:0b:35: c2:3e:b6:78:cf:c7:a5:6c:34:47:22:9b:fd:5b:69:c0:4f:f9: 1e:b4:73:71:58:25:09:cf:9d:9d:b3:ec:05:a8:82:d5:9d:ee: d0:56:70:6f:62:45:6a:9d:91:0e:29:92:07:17:7e:5b:c4:43: 7d:8a:25:b1:49:69:7c:4c:fd:6d:24:b0:35:93:34:2f:dc:49: e7:4a:b0:45:60:60:0b:b4:a3:c8:f0:26:b4:36:59:24:54:77: b7:b6:d0:f8:7b:49:6b:d6:52:9c:03:8d:f6:ad:46:82:cf:e6: dd:7e:37:5a:be:db:2a:ed:a9:fe:cf:ce:d6:ca:83:2b:96:11: 80:bf:fb:ff:f6:63:4b:08:d1:30:0e:b7:3d:0b:32:7e:db:bb: 2e:aa:5d:a5:c6:04:37:aa:84:a4:12:ac:f4:6e:d3:2b:ff:00: fd:81:8a:b2:34:15:75:e2:51:56:52:52:f2:e5:ea:2b:65:15: ae:29:24:0d:99:14:e4:8d:03:93:3f:81:b5:b8:06:5e:dd:3d: 4f:62:38:14:ae:22:5f:27:d2:c1:0a:5b:2f:86:f9:1e:98:ed: de:08:76:31 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUPgzpop6JWqyEvDE6JmxwpCZeqaowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyMzAwMDEwNFoX DTI2MDIyMTIzNTk1OVowejFJMEcGA1UEBRNAYjBiMTJiZjJlYzY0NjQyMzRlMDQ2 ZDVjNWY0ZDM2NjE3OTc1NzE5Mzc5MmEwYmIzMDQ0NWIwMjhjZWM5NGY3YzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvkkg3IvJSvCddrQ1KyqxRLUQd2+4 nh3nvmIvrtOpjA1gqmcoO3tu7GIiQBk4A+qVukI9bkVbniOFwaC2lvi/j6CdPyif 5lKGJV+bZupn1BvytFG35nWuB9ZVPTpAjta9Zaad6c4JKsiOX41YfVBOSX/CJM3e ZmgonuLbM0dIDWD8AoHZj8uhgbDM4pbs5zyXNolrFHHv5UhX6BRqJq3dPg8p8mej EL43xV6soGv+GTGkFAaMxZZt5whWaugMrjhYP1fOHaPP2K9SycXxx9Wb0CsvwJIj 1qp3xN+58+347vLRHlugjn7uDgZ6q2AD0Lfix+Uo0OKSv3CGBaAI/AB4NQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFC2zPJcmd9RAWF2WYNd6bU5zjYFcMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2I4MzQzMzdmLWE3NTMtNDRiNy1iZTllLTM4OWFiMmQyYWNhZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba86AwDQYJKoZIhvcNAQELBQADggEBAF3+MN3GXouu0iydChwd RLY1jeY5E30XqldLkh5qDLJbo7cLNcI+tnjPx6VsNEcim/1bacBP+R60c3FYJQnP nZ2z7AWogtWd7tBWcG9iRWqdkQ4pkgcXflvEQ32KJbFJaXxM/W0ksDWTNC/cSedK sEVgYAu0o8jwJrQ2WSRUd7e20Ph7SWvWUpwDjfatRoLP5t1+N1q+2yrtqf7PztbK gyuWEYC/+//2Y0sI0TAOtz0LMn7buy6qXaXGBDeqhKQSrPRu0yv/AP2BirI0FXXi UVZSUvLl6itlFa4pJA2ZFOSNA5M/gbW4Bl7dPU9iOBSuIl8n0sEKWy+G+R6Y7d4I djE= -----END CERTIFICATE-----Generated at Sun Nov 23 05:41:31 2025 by rpki-client