This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5418b4d0-7480-41be-a568-008f76efc155.roa File: 5418b4d0-7480-41be-a568-008f76efc155.roa (raw, json) Hash identifier: szFD/NsOxgKpgf36xy56eaHrK/v39w+xG32a0xqKcLY= Subject key identifier: 7A:A0:CD:3A:7B:AA:47:44:7F:32:00:0C:E6:47:89:D9:27:36:B0:9F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 40CD409BA0AB4280B9840B1BD76D3152CCDBAF51 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5418b4d0-7480-41be-a568-008f76efc155.roa Signing time: Wed 03 Dec 2025 00:10:06 +0000 ROA not before: Wed 03 Dec 2025 00:10:06 +0000 ROA not after: Tue 03 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da00:e040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 17:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:cd:40:9b:a0:ab:42:80:b9:84:0b:1b:d7:6d:31:52:cc:db:af:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 3 00:10:06 2025 GMT Not After : Mar 3 23:59:59 2026 GMT Subject: serialNumber=57f704fdf64002f6ec0cedbdcc228f16b487cec34aed7e303cc25ca386a2c7e8, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:fb:f5:aa:7c:f1:35:b7:e3:b0:53:f8:3f:5e: 33:87:30:1e:18:88:84:37:88:2e:c4:ec:55:6c:eb: 4e:37:0d:92:30:17:2b:5e:a9:19:d3:70:80:30:d1: 70:ee:7f:e1:61:71:5b:70:62:b1:fe:cf:1c:00:8c: bd:2d:e6:3a:59:d4:f5:88:ea:52:cd:19:38:42:8f: 23:ac:49:b1:25:f0:43:90:b3:dc:7c:9b:71:5e:94: 52:f6:f6:5a:d1:16:14:0a:58:f8:61:90:25:c6:62: da:0f:82:bf:ea:24:66:46:d9:49:3d:3d:7f:ba:07: 1c:76:32:32:d9:4c:66:03:1a:d1:c2:45:38:f1:5d: 32:bd:23:6f:76:31:73:eb:b7:82:c1:b3:93:64:c4: 55:a4:89:e3:6e:35:52:a6:79:27:22:60:ce:b3:d0: 3a:fe:54:fc:e9:a2:8c:29:89:98:c1:61:6e:e6:b3: c0:4a:1c:11:87:c4:a7:de:54:3b:bd:50:94:b4:d5: 52:d3:d6:a3:21:ae:72:76:af:4f:f8:42:f4:6f:fa: 5b:aa:54:f8:38:d4:39:b9:d7:80:38:ed:58:61:73: 96:00:18:60:68:6b:f4:29:cc:ef:df:52:7c:1a:26: 0f:8f:6f:76:83:8e:8f:b8:0c:a6:04:f1:35:c3:d3: a0:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:A0:CD:3A:7B:AA:47:44:7F:32:00:0C:E6:47:89:D9:27:36:B0:9F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5418b4d0-7480-41be-a568-008f76efc155.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da00:e040::/48 Signature Algorithm: sha256WithRSAEncryption a1:fc:0f:92:1a:6f:8a:6c:b6:12:64:a2:9c:b3:b1:78:be:e0: 41:ca:e8:37:6e:dd:4a:54:a7:c1:74:3d:42:a0:dc:0c:44:f5: fa:37:2c:3d:57:67:b1:af:bf:3a:be:22:27:0e:63:14:1c:fb: 84:ec:c6:7d:fa:2d:1a:20:f4:d9:a9:ba:db:3f:05:59:1d:82: 62:b9:60:64:2f:7b:44:bc:0e:88:af:ee:8d:56:04:19:de:dc: df:a1:6a:e5:8f:b4:4a:8b:e5:93:32:47:4c:03:3a:b0:76:4f: af:50:b7:51:12:ab:91:93:f3:62:ec:a2:66:8a:af:bf:17:85: 16:8d:d0:6a:b7:65:8a:7c:62:4b:4d:54:3e:35:5f:73:55:e7: 07:fd:be:b2:b3:43:46:ad:f5:27:48:16:ad:03:eb:a2:2e:c5: 01:e9:83:9a:b0:8b:f5:a1:7c:5c:66:1a:06:18:25:ad:14:c5: c6:e9:f0:bf:57:95:d7:fa:fd:7c:6d:36:25:11:24:76:f0:d5: 04:dc:5b:d6:72:80:c8:c7:a9:07:f0:ad:28:a2:5b:bb:b8:d6: 7c:b6:83:9a:78:94:8e:3c:e8:cc:2b:0d:7e:7d:d5:86:f9:3d: c0:4e:d9:dc:60:55:91:af:84:58:01:19:37:a7:6b:54:52:57: 16:f4:3d:1a -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUQM1Am6CrQoC5hAsb120xUszbr1EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMzAwMTAwNloX DTI2MDMwMzIzNTk1OVowejFJMEcGA1UEBRNANTdmNzA0ZmRmNjQwMDJmNmVjMGNl ZGJkY2MyMjhmMTZiNDg3Y2VjMzRhZWQ3ZTMwM2NjMjVjYTM4NmEyYzdlODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsfv1qnzxNbfjsFP4P14zhzAeGIiE N4guxOxVbOtONw2SMBcrXqkZ03CAMNFw7n/hYXFbcGKx/s8cAIy9LeY6WdT1iOpS zRk4Qo8jrEmxJfBDkLPcfJtxXpRS9vZa0RYUClj4YZAlxmLaD4K/6iRmRtlJPT1/ ugccdjIy2UxmAxrRwkU48V0yvSNvdjFz67eCwbOTZMRVpInjbjVSpnknImDOs9A6 /lT86aKMKYmYwWFu5rPAShwRh8Sn3lQ7vVCUtNVS09ajIa5ydq9P+EL0b/pbqlT4 ONQ5udeAOO1YYXOWABhgaGv0Kczv31J8GiYPj292g46PuAymBPE1w9Og0QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFHqgzTp7qkdEfzIADOZHidknNrCfMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU0MThiNGQwLTc0ODAtNDFiZS1hNTY4LTAwOGY3NmVmYzE1NS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAbaAOBAMA0GCSqGSIb3DQEBCwUAA4IBAQCh/A+SGm+KbLYSZKKc s7F4vuBByug3bt1KVKfBdD1CoNwMRPX6Nyw9V2exr786viInDmMUHPuE7MZ9+i0a IPTZqbrbPwVZHYJiuWBkL3tEvA6Ir+6NVgQZ3tzfoWrlj7RKi+WTMkdMAzqwdk+v ULdREquRk/Ni7KJmiq+/F4UWjdBqt2WKfGJLTVQ+NV9zVecH/b6ys0NGrfUnSBat A+uiLsUB6YOasIv1oXxcZhoGGCWtFMXG6fC/V5XX+v18bTYlESR28NUE3FvWcoDI x6kH8K0oolu7uNZ8toOaeJSOPOjMKw1+fdWG+T3ATtncYFWRr4RYARk3p2tUUlcW 9D0a -----END CERTIFICATE-----Generated at Sat Dec 20 17:50:27 2025 by rpki-client