This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7be0f504-903a-4445-bc26-f38f46706c7a.roa File: 7be0f504-903a-4445-bc26-f38f46706c7a.roa (raw, json) Hash identifier: u9aLzBmFuuUt64AjM8AvnJ/FjY2hxYJSjb/bZkpfFGI= Subject key identifier: 62:BE:A1:DB:BF:65:76:8B:84:DF:07:A5:7A:AE:0A:ED:8F:9A:A7:FA Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 33E41FF58D925A600A3B00C314ED82FE5996CD92 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7be0f504-903a-4445-bc26-f38f46706c7a.roa Signing time: Wed 03 Dec 2025 00:10:47 +0000 ROA not before: Wed 03 Dec 2025 00:10:47 +0000 ROA not after: Tue 03 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daec:c800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:e4:1f:f5:8d:92:5a:60:0a:3b:00:c3:14:ed:82:fe:59:96:cd:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 3 00:10:47 2025 GMT Not After : Mar 3 23:59:59 2026 GMT Subject: serialNumber=dcf8f28f84fe5a1db8c16dc0e89c86c7f68f82baccebf12ba4236849eec9f815, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:af:4f:cc:e3:a8:41:c8:da:51:50:bb:90:3c: 85:5d:f7:fe:7a:bd:85:1c:8a:08:e8:df:18:ef:ed: 49:f0:e8:63:2d:6a:90:94:0a:17:58:36:e0:02:3b: 70:60:82:12:5d:61:c1:47:75:28:0b:53:4c:10:37: ea:4b:17:2b:bd:dc:2f:f4:40:6e:c5:d6:e9:72:50: 2e:72:57:e2:78:13:99:38:82:dc:a7:3e:ec:9b:e5: 42:c5:b3:1c:56:70:46:d8:e7:c5:48:71:0d:93:c8: 3f:12:e7:40:95:23:05:07:bf:48:1a:ed:1b:fc:9f: cb:1e:00:28:03:c1:0e:65:cd:e8:8a:12:de:af:34: d4:c2:55:a6:a8:6b:c5:61:4b:e6:94:5f:de:9f:ba: f3:c4:41:f4:20:f3:88:9a:1f:d7:17:b8:9d:22:79: 6c:03:9d:ce:1f:7e:10:7d:4c:c1:71:f8:93:8a:b7: 8f:39:3b:e9:e5:86:8e:b9:6f:0d:e7:b0:b5:cc:92: b2:b2:c1:00:2d:a4:44:38:9a:b2:83:6f:36:0a:c8: 3f:ca:5e:46:20:b4:8e:79:42:9c:65:da:76:c5:6b: 83:c5:84:3b:e6:7e:ec:b0:52:ce:2b:ce:70:70:55: 1e:18:23:52:0c:4d:1f:c8:ce:c1:f1:90:25:84:83: 74:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:BE:A1:DB:BF:65:76:8B:84:DF:07:A5:7A:AE:0A:ED:8F:9A:A7:FA X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7be0f504-903a-4445-bc26-f38f46706c7a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daec:c800::/48 Signature Algorithm: sha256WithRSAEncryption 81:2b:c9:6f:e5:2e:7e:8c:0c:0f:40:ac:31:c5:de:93:c8:17: 79:cc:a2:2d:76:97:da:2f:bd:2e:e1:4e:4c:45:21:25:88:cd: 6c:f1:05:74:69:f0:65:fa:8e:8f:9a:7e:17:50:6f:36:57:d4: 92:c2:a3:40:b1:d5:7a:05:00:0a:75:fb:21:5e:4d:9c:d1:d5: e6:e1:61:dd:81:4f:da:dd:3f:06:28:a8:6f:f3:b9:19:83:17: ff:a7:40:db:a6:4b:3f:69:40:9d:cd:d0:30:de:88:f8:06:c9: 11:47:9e:0c:36:6e:df:f8:1f:74:75:d2:e8:d2:14:f5:30:15: 6c:f2:fe:5e:31:02:c4:e5:42:d2:e3:24:25:b5:8e:a4:22:da: 3b:80:d9:71:26:a0:b8:aa:70:bc:7f:fe:dd:93:fa:3c:a0:65: 59:75:ef:04:25:dc:5a:0b:99:de:dd:c9:be:b2:d3:1f:a3:3c: 85:7d:fb:c8:af:49:80:b3:94:2c:26:b8:18:ac:a0:f4:f6:71: 97:b5:d5:a9:75:54:2d:db:ac:d6:f1:f1:77:7a:1d:c8:83:58: 44:13:0f:a3:b6:f2:76:d8:1d:0e:7e:bc:89:0d:98:13:f2:2f: 4a:15:6f:2a:8d:25:a9:42:b6:d4:79:d3:85:cf:fb:1a:d5:60: 51:70:57:39 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUM+Qf9Y2SWmAKOwDDFO2C/lmWzZIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMzAwMTA0N1oX DTI2MDMwMzIzNTk1OVowejFJMEcGA1UEBRNAZGNmOGYyOGY4NGZlNWExZGI4YzE2 ZGMwZTg5Yzg2YzdmNjhmODJiYWNjZWJmMTJiYTQyMzY4NDllZWM5ZjgxNTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAva9PzOOoQcjaUVC7kDyFXff+er2F HIoI6N8Y7+1J8OhjLWqQlAoXWDbgAjtwYIISXWHBR3UoC1NMEDfqSxcrvdwv9EBu xdbpclAuclfieBOZOILcpz7sm+VCxbMcVnBG2OfFSHENk8g/EudAlSMFB79IGu0b /J/LHgAoA8EOZc3oihLerzTUwlWmqGvFYUvmlF/en7rzxEH0IPOImh/XF7idInls A53OH34QfUzBcfiTirePOTvp5YaOuW8N57C1zJKyssEALaREOJqyg282Csg/yl5G ILSOeUKcZdp2xWuDxYQ75n7ssFLOK85wcFUeGCNSDE0fyM7B8ZAlhIN0GQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFGK+odu/ZXaLhN8HpXquCu2Pmqf6MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzdiZTBmNTA0LTkwM2EtNDQ0NS1iYzI2LWYzOGY0NjcwNmM3YS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAba7MgAMA0GCSqGSIb3DQEBCwUAA4IBAQCBK8lv5S5+jAwPQKwx xd6TyBd5zKItdpfaL70u4U5MRSEliM1s8QV0afBl+o6Pmn4XUG82V9SSwqNAsdV6 BQAKdfshXk2c0dXm4WHdgU/a3T8GKKhv87kZgxf/p0Dbpks/aUCdzdAw3oj4BskR R54MNm7f+B90ddLo0hT1MBVs8v5eMQLE5ULS4yQltY6kIto7gNlxJqC4qnC8f/7d k/o8oGVZde8EJdxaC5ne3cm+stMfozyFffvIr0mAs5QsJrgYrKD09nGXtdWpdVQt 26zW8fF3eh3Ig1hEEw+jtvJ22B0OfryJDZgT8i9KFW8qjSWpQrbUedOFz/sa1WBR cFc5 -----END CERTIFICATE-----Generated at Mon Dec 22 00:47:53 2025 by rpki-client