This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/31fc299e-b274-42fe-9275-d11cc432dc3b.roa File: 31fc299e-b274-42fe-9275-d11cc432dc3b.roa (raw, json) Hash identifier: W6K/T3iGhOXHCnqipnfShOIcLCVZmZjE9iwIp4fkLOE= Subject key identifier: 8A:D6:57:C0:58:7D:CA:08:23:44:B0:F0:9F:0D:BC:ED:4E:FC:F9:FD Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 09D5BF58FC462A6458CB81B4B839099EEF2410BC Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/31fc299e-b274-42fe-9275-d11cc432dc3b.roa Signing time: Wed 26 Nov 2025 00:01:10 +0000 ROA not before: Wed 26 Nov 2025 00:01:10 +0000 ROA not after: Tue 24 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2406:dab9:f000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 17:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:d5:bf:58:fc:46:2a:64:58:cb:81:b4:b8:39:09:9e:ef:24:10:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 26 00:01:10 2025 GMT Not After : Feb 24 23:59:59 2026 GMT Subject: serialNumber=4e5a5826d00b87b239c1d6054e84181ed011894ffba7aff00e659dd866cad9ff, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:05:24:9d:e5:06:4d:5d:c2:cc:70:18:c9:7c: 97:ec:73:58:bc:19:28:85:4a:e2:70:1b:63:e2:ee: 9b:e4:78:7d:1e:2b:07:af:e7:5c:d7:b3:a2:9c:13: 39:ff:39:ee:49:a7:af:8a:a8:ce:83:1b:1e:b5:aa: 35:bb:3c:38:96:2a:c7:a3:62:cd:b5:16:9f:b7:71: fc:ab:f1:b3:f9:0a:5f:13:5f:bb:62:0a:e7:f8:48: e8:d6:d5:65:97:f0:fc:59:e6:63:bc:83:12:dc:8a: 05:61:d9:c5:a7:4c:c1:0f:30:7f:8f:7c:9c:73:09: d8:69:ed:ff:2f:72:0e:9b:ae:7b:03:8c:90:48:2b: 98:71:a0:df:c0:13:65:b1:4d:d3:c5:e4:27:74:97: 2b:b6:f7:64:20:10:66:73:d3:11:d7:74:86:41:be: 71:1b:10:2f:02:b0:0c:33:10:55:fb:47:1b:29:67: 30:f7:a0:1a:27:c3:dd:07:ef:a1:bc:81:7e:ae:cf: 99:01:56:d3:60:4d:d6:88:f5:a9:04:51:d0:f3:12: e0:c0:c5:e5:6a:38:eb:68:6d:6c:36:c7:db:ac:0c: be:41:5f:76:76:cf:ea:e7:66:0b:e4:f5:cf:33:be: 2b:db:86:fd:a3:2b:83:01:14:dc:b3:f3:36:19:20: ee:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:D6:57:C0:58:7D:CA:08:23:44:B0:F0:9F:0D:BC:ED:4E:FC:F9:FD X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/31fc299e-b274-42fe-9275-d11cc432dc3b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab9:f000::/40 Signature Algorithm: sha256WithRSAEncryption 32:ac:21:79:de:98:6e:9c:47:90:f8:cd:00:f3:e3:30:67:1f: 9f:ca:49:01:46:65:f3:4d:4c:fb:24:49:f8:c1:21:08:12:11: df:2c:be:c0:6f:2b:69:a2:56:68:ee:7c:e9:5d:19:1f:2a:99: 3e:44:88:4e:78:c4:71:cb:0f:41:be:e5:bc:f5:8e:92:f6:83: fe:36:64:4e:21:98:a0:4b:18:0d:af:97:42:8e:33:bf:51:fe: 61:30:38:28:b2:6c:4f:c9:48:94:bb:40:aa:d3:d0:1b:3c:b3: 5f:c6:fa:20:de:d9:3b:73:32:b3:fa:1d:fa:e9:dd:88:1f:f7: 8a:ff:2d:a5:72:49:d6:8c:9a:44:fe:76:80:09:a9:d0:57:fc: 70:23:3a:90:e2:10:47:58:33:24:2e:2d:bd:c2:e2:69:6e:bd: 6b:2e:63:8a:4b:bf:c6:6f:51:45:2e:9c:d6:fe:c2:28:75:63: e2:f1:9c:56:c6:b6:d8:e6:ed:5a:f3:bd:25:db:ac:cb:79:2f: bd:b4:24:d0:eb:50:2c:cc:03:5f:73:3c:d2:ad:2c:ff:4e:97: 30:c1:76:d4:d3:d3:9d:25:5f:a5:6a:fa:00:20:4c:f3:ee:21: e1:49:56:66:99:b8:73:4b:1d:b1:24:ac:37:27:46:5f:cf:b2: 56:38:37:2f -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUCdW/WPxGKmRYy4G0uDkJnu8kELwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyNjAwMDExMFoX DTI2MDIyNDIzNTk1OVowejFJMEcGA1UEBRNANGU1YTU4MjZkMDBiODdiMjM5YzFk NjA1NGU4NDE4MWVkMDExODk0ZmZiYTdhZmYwMGU2NTlkZDg2NmNhZDlmZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtwUkneUGTV3CzHAYyXyX7HNYvBko hUricBtj4u6b5Hh9HisHr+dc17OinBM5/znuSaeviqjOgxsetao1uzw4lirHo2LN tRaft3H8q/Gz+QpfE1+7Ygrn+Ejo1tVll/D8WeZjvIMS3IoFYdnFp0zBDzB/j3yc cwnYae3/L3IOm657A4yQSCuYcaDfwBNlsU3TxeQndJcrtvdkIBBmc9MR13SGQb5x GxAvArAMMxBV+0cbKWcw96AaJ8PdB++hvIF+rs+ZAVbTYE3WiPWpBFHQ8xLgwMXl ajjraG1sNsfbrAy+QV92ds/q52YL5PXPM74r24b9oyuDARTcs/M2GSDupwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFIrWV8BYfcoII0Sw8J8NvO1O/Pn9MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzMxZmMyOTllLWIyNzQtNDJmZS05Mjc1LWQxMWNjNDMyZGMzYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaufAwDQYJKoZIhvcNAQELBQADggEBADKsIXnemG6cR5D4zQDz 4zBnH5/KSQFGZfNNTPskSfjBIQgSEd8svsBvK2miVmjufOldGR8qmT5EiE54xHHL D0G+5bz1jpL2g/42ZE4hmKBLGA2vl0KOM79R/mEwOCiybE/JSJS7QKrT0Bs8s1/G +iDe2TtzMrP6Hfrp3Ygf94r/LaVySdaMmkT+doAJqdBX/HAjOpDiEEdYMyQuLb3C 4mluvWsuY4pLv8ZvUUUunNb+wih1Y+LxnFbGttjm7VrzvSXbrMt5L720JNDrUCzM A19zPNKtLP9OlzDBdtTT050lX6Vq+gAgTPPuIeFJVmaZuHNLHbEkrDcnRl/PslY4 Ny8= -----END CERTIFICATE-----Generated at Sat Dec 20 16:03:32 2025 by rpki-client