This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1ef497a8-abd3-4d49-af13-215841ac320f.roa File: 1ef497a8-abd3-4d49-af13-215841ac320f.roa (raw, json) Hash identifier: M6SZiDK9OEnP8LL/DicU6JROk+0M9IOm7hAWh5o4yrU= Subject key identifier: 21:12:60:63:50:5C:08:E6:43:C4:F7:61:77:67:88:1F:3A:39:14:D0 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 46C645A1C5F54235309975F07DA8D7849EFDE47A Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1ef497a8-abd3-4d49-af13-215841ac320f.roa Signing time: Sun 07 Dec 2025 00:00:29 +0000 ROA not before: Sun 07 Dec 2025 00:00:29 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da36:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 17:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:c6:45:a1:c5:f5:42:35:30:99:75:f0:7d:a8:d7:84:9e:fd:e4:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 7 00:00:29 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=1af11944c95f5752886845894d0eb415f9dc52ef783fbe8cb14ff3c333871b06, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b7:db:57:2f:38:26:2d:3e:b7:cf:c7:9d:d6: 97:51:e2:8f:37:68:a9:e9:54:06:c8:97:d9:9f:41: fe:be:7c:a9:0a:8f:9e:e9:34:ec:14:ac:4a:9e:30: 9b:99:60:4e:ad:4c:ea:85:7c:f6:48:74:87:e2:c2: e3:44:fb:97:f4:aa:6d:93:ca:23:2a:89:2d:d8:8d: 97:62:4d:1a:db:e5:66:f8:d4:53:a6:9a:df:ed:0e: a1:b3:ca:ba:cb:35:7f:f3:a9:28:88:4e:aa:7c:97: 68:75:9a:01:f8:10:45:9d:c5:00:de:86:7f:50:f8: 43:12:8e:46:d6:a7:fb:5f:f0:ee:ec:52:e2:68:f0: 63:9c:26:48:9d:8b:52:d4:0a:6e:e2:1a:8a:37:82: c8:6a:62:d0:35:06:fe:e8:ad:37:c4:28:9f:78:69: a1:42:20:0e:5c:00:bd:48:73:6c:c0:03:04:6a:0d: 8e:97:ba:11:9b:c7:2e:9e:78:a8:f3:8a:af:c7:37: dc:62:6b:e5:e4:f7:b2:5f:51:d3:e8:aa:54:d9:91: da:24:3a:4a:4f:c9:40:2d:b0:5b:96:34:61:4a:73: dd:c9:d3:dd:eb:80:ab:38:6c:4d:46:7d:58:16:54: 95:64:2f:5f:a1:bf:6f:9e:47:76:ee:77:db:c6:31: 87:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:12:60:63:50:5C:08:E6:43:C4:F7:61:77:67:88:1F:3A:39:14:D0 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/1ef497a8-abd3-4d49-af13-215841ac320f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da36:4000::/40 Signature Algorithm: sha256WithRSAEncryption 29:a1:a2:f8:66:2f:49:50:b3:9f:98:2e:0e:8a:29:8f:a1:93: cc:66:7a:0d:7f:63:18:50:ba:0b:9c:40:bc:7b:c3:7d:86:e9: bb:ac:b4:17:6e:45:f7:b0:d6:f3:85:2f:d1:cd:38:91:28:b0: 80:0f:91:c0:55:28:50:05:8b:a3:dc:0b:fe:36:72:50:d7:8c: a3:c3:c7:c7:d3:72:13:44:e7:e4:5a:8d:f0:fe:36:a0:da:18: d9:73:63:c1:64:ce:c7:b9:8b:38:11:85:b0:57:7e:75:e0:22: b9:af:06:b1:ef:c4:95:c0:c6:3e:00:04:0b:19:e8:8d:10:3b: f8:b2:65:12:dd:14:81:dd:1d:94:52:e9:cb:9f:4c:f5:54:f9: 9f:ec:ac:81:a4:18:0d:5a:51:e7:67:3f:02:a8:1a:a6:0b:4f: 29:6e:61:19:b2:ed:97:81:92:7c:78:47:32:24:5e:52:15:b1: 05:5a:60:1e:a0:b3:7b:d0:fa:3d:93:33:c3:e7:88:38:f9:b7: 4c:34:27:5e:f4:4f:ca:93:28:d2:37:61:2c:14:61:93:2e:08: da:a7:d1:bf:42:8f:74:75:50:03:33:24:ec:2d:89:53:e7:22: ea:80:78:23:be:a0:36:1d:5e:f7:24:92:1b:89:c6:89:65:c2: 0e:be:22:39 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIURsZFocX1QjUwmXXwfajXhJ795HowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwNzAwMDAyOVoX DTI2MDMwNzIzNTk1OVowejFJMEcGA1UEBRNAMWFmMTE5NDRjOTVmNTc1Mjg4Njg0 NTg5NGQwZWI0MTVmOWRjNTJlZjc4M2ZiZThjYjE0ZmYzYzMzMzg3MWIwNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA37fbVy84Ji0+t8/HndaXUeKPN2ip 6VQGyJfZn0H+vnypCo+e6TTsFKxKnjCbmWBOrUzqhXz2SHSH4sLjRPuX9Kptk8oj Kokt2I2XYk0a2+Vm+NRTpprf7Q6hs8q6yzV/86koiE6qfJdodZoB+BBFncUA3oZ/ UPhDEo5G1qf7X/Du7FLiaPBjnCZInYtS1Apu4hqKN4LIamLQNQb+6K03xCifeGmh QiAOXAC9SHNswAMEag2Ol7oRm8cunnio84qvxzfcYmvl5PeyX1HT6KpU2ZHaJDpK T8lALbBbljRhSnPdydPd64CrOGxNRn1YFlSVZC9fob9vnkd27nfbxjGHdQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFCESYGNQXAjmQ8T3YXdniB86ORTQMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzFlZjQ5N2E4LWFiZDMtNGQ0OS1hZjEzLTIxNTg0MWFjMzIwZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaNkAwDQYJKoZIhvcNAQELBQADggEBACmhovhmL0lQs5+YLg6K KY+hk8xmeg1/YxhQugucQLx7w32G6bustBduRfew1vOFL9HNOJEosIAPkcBVKFAF i6PcC/42clDXjKPDx8fTchNE5+RajfD+NqDaGNlzY8Fkzse5izgRhbBXfnXgIrmv BrHvxJXAxj4ABAsZ6I0QO/iyZRLdFIHdHZRS6cufTPVU+Z/srIGkGA1aUednPwKo GqYLTyluYRmy7ZeBknx4RzIkXlIVsQVaYB6gs3vQ+j2TM8PniDj5t0w0J170T8qT KNI3YSwUYZMuCNqn0b9Cj3R1UAMzJOwtiVPnIuqAeCO+oDYdXvckkhuJxollwg6+ Ijk= -----END CERTIFICATE-----Generated at Sat Dec 20 13:54:26 2025 by rpki-client