This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/94244cb0-158e-46d4-8af4-e50dc14db808.roa File: 94244cb0-158e-46d4-8af4-e50dc14db808.roa (raw, json) Hash identifier: 45GI+fZ5BdAMBKXiaiicEkoJuey18vy4DKtD1ZbFovY= Subject key identifier: 25:CC:63:F4:B5:9D:2D:FA:7D:3A:E4:AB:DF:E4:97:50:25:EE:3F:C0 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 6243BBA027822942855EB548C60B68AC2CACDCEA Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/94244cb0-158e-46d4-8af4-e50dc14db808.roa Signing time: Wed 26 Nov 2025 00:01:17 +0000 ROA not before: Wed 26 Nov 2025 00:01:17 +0000 ROA not after: Tue 24 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2406:dab9:2800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 17:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:43:bb:a0:27:82:29:42:85:5e:b5:48:c6:0b:68:ac:2c:ac:dc:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 26 00:01:17 2025 GMT Not After : Feb 24 23:59:59 2026 GMT Subject: serialNumber=19fbfb7b8d5aac5f2827c424c8130bf55b9eb81d21de6fd729cbefa0eb64cd23, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ad:2d:64:41:48:8d:29:6c:33:85:00:22:7f: 8c:64:87:a2:57:43:1a:17:18:5d:89:7c:54:48:60: 4d:3e:62:a8:8d:33:fc:2e:df:ae:d5:75:d7:7c:60: 96:81:48:ed:cc:e3:32:fe:19:51:1e:57:3b:fd:c4: 6f:c0:a9:c4:79:6b:ad:b5:f1:b9:19:f5:e6:4e:04: 63:e6:73:f0:07:44:0f:2b:4f:7c:3d:90:f9:19:c1: b1:ee:46:fb:29:8e:81:41:86:df:db:f5:45:d7:a8: d5:6d:95:03:8f:30:43:b8:ef:56:52:a4:db:ec:04: 1e:59:a6:c7:1e:31:c7:1b:5b:61:f8:30:b7:80:88: 0f:33:c9:e8:33:0b:0a:67:3a:7b:0a:dd:91:1b:5b: 1e:30:ae:6c:07:e1:35:45:cf:61:c9:48:20:76:d6: 28:80:11:19:be:5a:8c:a2:b2:06:a1:2b:f6:7b:83: 2d:2d:25:25:5a:a9:19:99:fc:85:0a:81:8f:d2:f2: 69:16:22:13:13:c3:26:65:64:31:96:76:24:42:f5: 65:6e:0f:68:97:ac:8f:39:49:fa:25:6d:ce:11:88: bd:de:53:ea:1c:de:31:72:68:69:52:8f:f6:f6:88: bb:17:c1:4b:08:43:a5:df:9d:60:9c:15:50:ca:f3: c0:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:CC:63:F4:B5:9D:2D:FA:7D:3A:E4:AB:DF:E4:97:50:25:EE:3F:C0 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/94244cb0-158e-46d4-8af4-e50dc14db808.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab9:2800::/40 Signature Algorithm: sha256WithRSAEncryption 78:fd:c0:b4:e0:ba:d4:79:9c:9d:b3:5a:25:4a:69:2e:3f:17: ec:a2:7b:37:b6:e6:30:02:4d:69:f3:61:1e:d1:6d:0a:12:46: f4:04:88:a9:04:9f:39:1d:e3:27:e3:4b:5b:e7:bb:91:f3:4b: 28:dd:b8:82:b3:92:75:40:23:a8:88:a9:fa:20:41:18:52:a6: 7b:11:01:6f:7f:cc:8b:c4:0d:6a:64:fa:cc:e0:81:42:dc:d9: 22:a8:fe:d9:a4:dd:35:e4:09:b8:0a:e1:d8:dd:bf:4d:94:3e: 72:53:34:32:40:00:e8:15:a6:40:ef:ec:6b:ce:28:3a:2e:97: 9e:21:21:5a:2e:d1:77:1c:91:c6:ab:eb:75:c6:34:15:52:55: 60:1c:c0:30:7b:9f:56:1c:63:50:2a:78:e5:62:ee:1f:2d:87: 47:ec:e5:26:45:61:96:c1:b1:0b:53:ad:43:06:81:91:a2:06: 33:fc:46:bc:87:5f:b4:22:07:e7:42:29:0f:be:e8:e4:1d:10: 69:64:2f:9b:c7:26:53:cf:7b:94:c3:2d:8e:3d:4f:81:ed:7c: cb:9c:a2:43:83:5b:a2:ec:7c:fa:dd:49:3f:d9:2e:04:1e:5f: ad:5f:df:f2:ce:ee:f3:22:24:f2:eb:05:f1:8b:34:e2:da:a0: 10:ae:93:c4 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUYkO7oCeCKUKFXrVIxgtorCys3OowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyNjAwMDExN1oX DTI2MDIyNDIzNTk1OVowejFJMEcGA1UEBRNAMTlmYmZiN2I4ZDVhYWM1ZjI4Mjdj NDI0YzgxMzBiZjU1YjllYjgxZDIxZGU2ZmQ3MjljYmVmYTBlYjY0Y2QyMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApa0tZEFIjSlsM4UAIn+MZIeiV0Ma FxhdiXxUSGBNPmKojTP8Lt+u1XXXfGCWgUjtzOMy/hlRHlc7/cRvwKnEeWuttfG5 GfXmTgRj5nPwB0QPK098PZD5GcGx7kb7KY6BQYbf2/VF16jVbZUDjzBDuO9WUqTb 7AQeWabHHjHHG1th+DC3gIgPM8noMwsKZzp7Ct2RG1seMK5sB+E1Rc9hyUggdtYo gBEZvlqMorIGoSv2e4MtLSUlWqkZmfyFCoGP0vJpFiITE8MmZWQxlnYkQvVlbg9o l6yPOUn6JW3OEYi93lPqHN4xcmhpUo/29oi7F8FLCEOl351gnBVQyvPA/QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFCXMY/S1nS36fTrkq9/kl1Al7j/AMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzk0MjQ0Y2IwLTE1OGUtNDZkNC04YWY0LWU1MGRjMTRkYjgwOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbauSgwDQYJKoZIhvcNAQELBQADggEBAHj9wLTgutR5nJ2zWiVK aS4/F+yieze25jACTWnzYR7RbQoSRvQEiKkEnzkd4yfjS1vnu5HzSyjduIKzknVA I6iIqfogQRhSpnsRAW9/zIvEDWpk+szggULc2SKo/tmk3TXkCbgK4djdv02UPnJT NDJAAOgVpkDv7GvOKDoul54hIVou0Xcckcar63XGNBVSVWAcwDB7n1YcY1AqeOVi 7h8th0fs5SZFYZbBsQtTrUMGgZGiBjP8RryHX7QiB+dCKQ++6OQdEGlkL5vHJlPP e5TDLY49T4HtfMucokODW6LsfPrdST/ZLgQeX61f3/LO7vMiJPLrBfGLNOLaoBCu k8Q= -----END CERTIFICATE-----Generated at Sat Dec 20 13:56:04 2025 by rpki-client