This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e6bab3e6-c28e-47e7-bab4-a461b1539faa.roa File: e6bab3e6-c28e-47e7-bab4-a461b1539faa.roa (raw, json) Hash identifier: JXI2MlWfRo3dl1JUT0vFZiDVoAVa9/i+HRaQlfSUVg0= Subject key identifier: 47:24:40:13:F6:6C:0B:A9:3E:8C:F9:DB:23:54:F3:51:A6:2E:29:71 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 1206FB3423C4A08250F000F5026DDF452354524E Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e6bab3e6-c28e-47e7-bab4-a461b1539faa.roa Signing time: Sun 23 Nov 2025 00:20:33 +0000 ROA not before: Sun 23 Nov 2025 00:20:33 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:f000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 27 Nov 2025 00:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:06:fb:34:23:c4:a0:82:50:f0:00:f5:02:6d:df:45:23:54:52:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 23 00:20:33 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=f529685f7fe6196368daa4a8e3ebbf3732cc0ad87a8622e12e2b56aaf37cff72, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:43:43:b6:5b:5f:7b:df:93:3a:03:38:8c:30: ef:41:d0:64:55:fc:8f:e9:78:85:11:de:f4:b8:fd: d2:5a:46:e6:42:bc:3d:87:ee:31:f2:e9:ca:1e:80: 8f:54:c4:ea:49:1b:09:6e:b8:40:58:2a:64:eb:af: 38:b0:1c:0d:78:c5:bb:50:f3:0b:8c:bb:ca:ce:33: e7:db:b1:d3:69:ee:cb:73:8c:1e:ed:d0:79:c3:ef: ea:c2:6c:69:bc:c2:69:b9:e8:bd:c4:a5:59:2a:1a: 98:02:02:d9:a7:ef:52:77:54:2a:f5:2b:85:48:2e: 09:1f:77:bb:c1:3d:21:a5:46:e1:75:8a:13:b2:07: 9a:13:2a:6c:41:72:d7:23:72:ee:5f:aa:1d:5d:9f: 27:1f:84:ef:41:fc:b9:9a:38:d5:2c:23:86:ed:85: d7:36:9e:cb:30:93:7c:6c:0b:d3:77:0e:0a:fa:7c: 15:98:25:ad:db:49:b1:6c:2b:ab:d1:7e:d5:7b:b8: e9:1c:6d:1f:ee:b8:28:68:07:4a:d9:59:74:be:9d: f5:b0:63:5a:fa:e2:61:9a:58:9b:a4:7f:e5:80:17: 58:d8:af:9a:bd:39:57:91:bd:27:fb:4c:d9:a6:57: 25:61:2f:eb:22:6a:e0:7c:35:6e:b1:47:ec:89:5e: 99:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:24:40:13:F6:6C:0B:A9:3E:8C:F9:DB:23:54:F3:51:A6:2E:29:71 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e6bab3e6-c28e-47e7-bab4-a461b1539faa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:f000::/40 Signature Algorithm: sha256WithRSAEncryption 3c:dc:db:4b:69:f8:a5:08:55:79:d4:81:f6:bd:c9:86:c6:c4: 64:f1:48:fa:9c:f9:ed:63:af:25:41:46:5e:24:08:ab:e5:71: e6:f6:ba:d2:a7:a1:e2:89:27:35:45:5a:0b:2c:58:76:dd:de: 68:fd:77:36:f2:34:df:c8:41:37:9f:80:bd:c9:b5:ff:3c:9c: 81:09:4a:d4:7d:90:97:15:57:06:c0:78:9e:9d:a9:1f:b8:7e: e0:32:d5:ac:2d:4c:21:66:f1:5b:f0:26:35:97:5a:7f:df:5b: 02:21:23:8b:8c:06:3e:73:6b:77:8f:51:a1:8b:0d:51:ef:8e: da:0e:26:be:f0:54:ac:82:4f:18:bf:67:99:e4:14:a4:7c:50: af:ba:2a:2d:7e:53:a3:80:87:96:25:05:b6:84:20:39:f0:ba: a7:be:f4:23:b1:21:b2:4e:0f:2f:d3:fe:2c:38:31:b7:b6:b1: 05:13:42:06:a2:7d:2e:9f:55:19:c4:06:a3:cb:c7:9b:e6:64: 94:a9:d1:b3:71:bc:66:e5:c0:f2:79:72:0f:df:dc:6f:c1:80: 70:06:72:96:ef:62:97:3c:ff:fa:1d:eb:6f:ca:f8:dc:bf:30: 8f:4d:72:5b:10:c8:ea:a7:9e:b4:43:72:4e:b9:29:e6:71:8c: 1a:5f:b1:40 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUEgb7NCPEoIJQ8AD1Am3fRSNUUk4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyMzAwMjAzM1oX DTI2MDIyMTIzNTk1OVowejFJMEcGA1UEBRNAZjUyOTY4NWY3ZmU2MTk2MzY4ZGFh NGE4ZTNlYmJmMzczMmNjMGFkODdhODYyMmUxMmUyYjU2YWFmMzdjZmY3MjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0NDtltfe9+TOgM4jDDvQdBkVfyP 6XiFEd70uP3SWkbmQrw9h+4x8unKHoCPVMTqSRsJbrhAWCpk6684sBwNeMW7UPML jLvKzjPn27HTae7Lc4we7dB5w+/qwmxpvMJpuei9xKVZKhqYAgLZp+9Sd1Qq9SuF SC4JH3e7wT0hpUbhdYoTsgeaEypsQXLXI3LuX6odXZ8nH4TvQfy5mjjVLCOG7YXX Np7LMJN8bAvTdw4K+nwVmCWt20mxbCur0X7Ve7jpHG0f7rgoaAdK2Vl0vp31sGNa +uJhmlibpH/lgBdY2K+avTlXkb0n+0zZplclYS/rImrgfDVusUfsiV6ZcQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFEckQBP2bAupPoz52yNU81GmLilxMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2U2YmFiM2U2LWMyOGUtNDdlNy1iYWI0LWE0NjFiMTUzOWZhYS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAba8/AwDQYJKoZIhvcNAQELBQADggEBADzc20tp+KUIVXnUgfa9 yYbGxGTxSPqc+e1jryVBRl4kCKvlceb2utKnoeKJJzVFWgssWHbd3mj9dzbyNN/I QTefgL3Jtf88nIEJStR9kJcVVwbAeJ6dqR+4fuAy1awtTCFm8VvwJjWXWn/fWwIh I4uMBj5za3ePUaGLDVHvjtoOJr7wVKyCTxi/Z5nkFKR8UK+6Ki1+U6OAh5YlBbaE IDnwuqe+9COxIbJODy/T/iw4Mbe2sQUTQgaifS6fVRnEBqPLx5vmZJSp0bNxvGbl wPJ5cg/f3G/BgHAGcpbvYpc8//od62/K+Ny/MI9NclsQyOqnnrRDck65KeZxjBpf sUA= -----END CERTIFICATE-----Generated at Sun Nov 23 05:41:26 2025 by rpki-client