This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ce69eb4f-756d-483a-bdf3-9ba3d77f137a.roa File: ce69eb4f-756d-483a-bdf3-9ba3d77f137a.roa (raw, json) Hash identifier: KZokRxPOWL3VSmFFYVtHW0BF2MfE1Yo34xFMdFrsfY8= Subject key identifier: 30:6D:46:06:90:C9:A6:03:3C:F9:14:48:9A:09:74:20:42:DC:AC:2B Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0C7FCCA85B23F03EB031659B07A5AE184DBEC39F Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ce69eb4f-756d-483a-bdf3-9ba3d77f137a.roa Signing time: Tue 18 Nov 2025 00:01:08 +0000 ROA not before: Tue 18 Nov 2025 00:01:08 +0000 ROA not after: Mon 16 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da28:8800::/37 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 27 Nov 2025 00:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:7f:cc:a8:5b:23:f0:3e:b0:31:65:9b:07:a5:ae:18:4d:be:c3:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 18 00:01:08 2025 GMT Not After : Feb 16 23:59:59 2026 GMT Subject: serialNumber=2441fe9edeb0194aba2c4366ec27c09e4389e1e51fdebf1505df2b4ac7c15161, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:a9:d3:60:d6:c2:71:3d:66:f7:a6:80:eb:8b: 9a:1b:ff:5d:5c:96:af:97:0a:27:ac:7e:b8:49:b7: 82:ec:0f:0d:ed:39:d7:af:30:5b:82:cc:88:1e:ae: 01:7d:c8:f6:4b:d8:82:d4:ce:e0:b3:d7:99:6f:a8: 2b:e4:34:cd:da:db:1c:67:a4:f2:c4:30:56:4b:6f: 26:51:db:05:ae:62:2f:df:df:3f:19:a8:42:45:ab: dd:66:1d:aa:a2:e2:3c:53:25:8d:cd:e7:85:a5:f0: e3:d5:a0:48:92:58:e0:e3:6e:f7:0a:3a:4a:1c:a3: 25:75:68:e5:a0:79:55:b7:0c:cb:8c:32:1e:3e:46: 06:ec:a2:f2:bd:15:ad:a0:bf:f4:8a:df:b2:db:5f: c2:90:a4:8e:80:e4:26:48:4c:d9:c8:d6:5b:c4:c6: 6d:71:45:62:d2:22:21:b5:a9:50:22:f3:ff:41:74: 23:8c:dd:c7:93:18:dd:f1:da:b1:11:17:29:9e:65: 10:e7:0d:b7:45:aa:e6:7a:bf:af:72:dd:5f:e2:08: 5c:9b:c8:23:7a:3f:58:ee:4e:9e:41:34:d9:e2:ab: 37:f6:59:60:db:f3:01:5c:1c:bb:4b:76:64:70:ac: af:e3:fc:3d:24:0a:13:45:f6:52:1d:c2:52:36:32: 54:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:6D:46:06:90:C9:A6:03:3C:F9:14:48:9A:09:74:20:42:DC:AC:2B X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ce69eb4f-756d-483a-bdf3-9ba3d77f137a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da28:8800::/37 Signature Algorithm: sha256WithRSAEncryption 52:fa:10:a3:e9:85:9a:03:5e:fd:9e:1d:22:a5:54:0c:16:88: 74:c2:9c:99:76:4d:b3:9b:33:40:4b:51:b2:ef:5a:8e:2d:c8: 7d:67:8a:78:c1:31:56:99:a7:0d:48:f3:14:c6:1e:47:f8:9b: 6b:0b:72:a1:8a:c5:b9:73:bf:eb:b6:8c:29:d5:a7:46:b6:1b: d4:62:61:14:c1:d5:a3:e9:1b:de:b7:a4:dd:9a:f8:b1:f5:b9: 40:0c:03:d8:65:48:8e:fc:4f:ad:da:93:a8:4f:0d:6d:9f:2e: 9d:a6:6a:db:8d:1f:5b:1e:98:fe:83:fb:e9:5a:9a:28:03:15: 3c:9d:bf:a2:c7:e8:da:ac:f2:be:58:d8:97:45:49:13:ca:e8: 1c:fb:62:dd:75:49:ed:1a:d6:e4:c9:15:bf:68:d4:58:84:f7: 9a:42:2c:ac:63:3e:29:0c:b8:ce:a5:2d:2a:ae:f6:8d:1b:92: 59:a0:07:51:cb:8f:4f:a5:2f:0d:f3:33:e6:44:50:67:d2:5f: 19:59:90:f5:ab:a8:be:15:6e:28:e8:3e:ac:79:64:90:46:bf: ed:62:1b:17:91:be:ad:03:a7:5f:dd:72:4f:37:ad:0c:3d:a9: 27:bc:4a:a7:ea:06:39:3b:34:8f:31:97:81:46:6e:b0:b9:ec: 33:ab:8f:62 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUDH/MqFsj8D6wMWWbB6WuGE2+w58wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTExODAwMDEwOFoX DTI2MDIxNjIzNTk1OVowejFJMEcGA1UEBRNAMjQ0MWZlOWVkZWIwMTk0YWJhMmM0 MzY2ZWMyN2MwOWU0Mzg5ZTFlNTFmZGViZjE1MDVkZjJiNGFjN2MxNTE2MTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl6nTYNbCcT1m96aA64uaG/9dXJav lwonrH64SbeC7A8N7TnXrzBbgsyIHq4Bfcj2S9iC1M7gs9eZb6gr5DTN2tscZ6Ty xDBWS28mUdsFrmIv398/GahCRavdZh2qouI8UyWNzeeFpfDj1aBIkljg4273CjpK HKMldWjloHlVtwzLjDIePkYG7KLyvRWtoL/0it+y21/CkKSOgOQmSEzZyNZbxMZt cUVi0iIhtalQIvP/QXQjjN3Hkxjd8dqxERcpnmUQ5w23Rarmer+vct1f4ghcm8gj ej9Y7k6eQTTZ4qs39llg2/MBXBy7S3ZkcKyv4/w9JAoTRfZSHcJSNjJUMQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFDBtRgaQyaYDPPkUSJoJdCBC3KwrMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2NlNjllYjRmLTc1NmQtNDgzYS1iZGYzLTliYTNkNzdmMTM3YS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYDJAbaKIgwDQYJKoZIhvcNAQELBQADggEBAFL6EKPphZoDXv2eHSKl VAwWiHTCnJl2TbObM0BLUbLvWo4tyH1ninjBMVaZpw1I8xTGHkf4m2sLcqGKxblz v+u2jCnVp0a2G9RiYRTB1aPpG963pN2a+LH1uUAMA9hlSI78T63ak6hPDW2fLp2m atuNH1semP6D++lamigDFTydv6LH6Nqs8r5Y2JdFSRPK6Bz7Yt11Se0a1uTJFb9o 1FiE95pCLKxjPikMuM6lLSqu9o0bklmgB1HLj0+lLw3zM+ZEUGfSXxlZkPWrqL4V bijoPqx5ZJBGv+1iGxeRvq0Dp1/dck83rQw9qSe8SqfqBjk7NI8xl4FGbrC57DOr j2I= -----END CERTIFICATE-----Generated at Sun Nov 23 05:43:01 2025 by rpki-client