This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d57e8e3c-8605-46f3-8465-e0a444cd661d.roa File: d57e8e3c-8605-46f3-8465-e0a444cd661d.roa (raw, json) Hash identifier: 7weOqJHRG0JKA4QhZQ+ADZiMzhZLmORCsbUmQEqpGOw= Subject key identifier: 23:67:20:18:30:95:B9:67:26:38:6B:68:C1:2C:BD:5B:02:2D:EF:DE Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 310D9C57DF9781B54E21019FE2E412AC3F951375 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d57e8e3c-8605-46f3-8465-e0a444cd661d.roa Signing time: Wed 10 Dec 2025 00:00:10 +0000 ROA not before: Wed 10 Dec 2025 00:00:10 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da68:8800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 17:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:0d:9c:57:df:97:81:b5:4e:21:01:9f:e2:e4:12:ac:3f:95:13:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 10 00:00:10 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=36bbfe08959c74386e53d2a107dc3947a79866c40963c5f92e8f93329b57ed0f, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:56:c9:14:96:01:38:f1:51:51:1a:50:b6:f9: 85:09:bf:53:07:37:c5:6e:7e:f6:29:15:46:14:85: 47:42:9c:c4:b4:a3:57:8c:07:d3:ad:1e:77:1b:5f: c2:0a:1e:0f:f8:a3:a2:81:77:89:43:08:82:46:60: 9f:ec:e1:a1:b2:40:bc:c3:68:58:88:b6:f1:19:50: 4d:eb:73:d5:79:e9:50:eb:11:54:4b:1f:ac:b0:bc: 69:8a:19:74:c9:ab:bb:26:9b:88:00:a6:6e:93:a1: 60:31:be:bf:ce:e3:9c:23:ed:d3:32:3e:4e:9f:55: e7:63:76:92:fa:ff:59:4d:34:1a:c4:64:27:c0:1f: db:41:1d:ad:cf:20:ed:30:38:3e:e6:6a:43:8d:cd: f3:fc:0e:bf:86:0d:af:92:a5:59:6a:33:4a:ed:20: 48:39:e9:2f:c3:b5:89:f6:77:fb:a8:a5:79:d9:5d: b0:15:95:2d:fc:ca:0c:03:80:5b:42:04:97:43:49: f5:dc:d5:d7:24:61:52:95:bc:b5:f4:c8:38:5c:00: 93:e6:37:60:74:36:c1:b0:e6:24:58:fb:95:e6:6d: b2:53:bf:7c:60:ca:15:93:48:db:51:18:a4:1e:5f: 9e:ea:40:53:93:3d:9d:3c:8f:c1:32:de:5a:40:39: f0:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:67:20:18:30:95:B9:67:26:38:6B:68:C1:2C:BD:5B:02:2D:EF:DE X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d57e8e3c-8605-46f3-8465-e0a444cd661d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da68:8800::/40 Signature Algorithm: sha256WithRSAEncryption c8:58:97:75:55:49:81:c9:8c:d6:b9:92:5f:2e:59:8d:c7:cd: fb:9d:69:39:43:74:4e:7a:7d:03:cc:b2:9b:94:2e:7c:bd:95: 40:ae:41:f2:10:3f:c7:06:a9:2c:af:fe:b0:1e:2b:58:32:87: 63:64:73:13:c8:95:0a:e0:78:fe:41:68:23:13:4c:e7:33:e0: 79:9e:b3:45:b0:38:b2:37:c7:fe:13:2b:43:f6:2d:b3:1b:5c: 9b:61:f9:a0:4f:f0:68:81:21:7e:f9:42:1d:39:91:a4:50:3a: cd:fe:a2:51:0f:4d:af:1c:81:05:12:32:94:5a:a5:39:c5:7b: 86:37:92:76:3f:09:3d:d2:cd:34:cd:a2:44:05:42:cb:ed:06: 42:f2:63:63:21:50:56:31:0c:d3:c4:c9:93:1c:93:54:d5:df: 22:8e:67:8e:22:ef:17:80:d8:0f:10:92:d7:d9:16:f7:90:ef: f5:3d:58:77:23:ea:bb:a9:25:69:2b:bb:68:af:b3:03:99:7a: 38:ef:21:aa:75:5a:9a:32:e7:fa:86:2a:6e:86:56:fa:6a:f7: 86:2f:fe:32:8e:3b:2c:ac:24:6f:09:d5:ec:04:3b:5f:20:a9: 77:39:0c:09:b3:7d:2d:b0:e4:ed:27:fe:f1:04:4f:97:51:19: 97:73:68:95 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUMQ2cV9+XgbVOIQGf4uQSrD+VE3UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIxMDAwMDAxMFoX DTI2MDMxMDIzNTk1OVowejFJMEcGA1UEBRNAMzZiYmZlMDg5NTljNzQzODZlNTNk MmExMDdkYzM5NDdhNzk4NjZjNDA5NjNjNWY5MmU4ZjkzMzI5YjU3ZWQwZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyFbJFJYBOPFRURpQtvmFCb9TBzfF bn72KRVGFIVHQpzEtKNXjAfTrR53G1/CCh4P+KOigXeJQwiCRmCf7OGhskC8w2hY iLbxGVBN63PVeelQ6xFUSx+ssLxpihl0yau7JpuIAKZuk6FgMb6/zuOcI+3TMj5O n1XnY3aS+v9ZTTQaxGQnwB/bQR2tzyDtMDg+5mpDjc3z/A6/hg2vkqVZajNK7SBI Oekvw7WJ9nf7qKV52V2wFZUt/MoMA4BbQgSXQ0n13NXXJGFSlby19Mg4XACT5jdg dDbBsOYkWPuV5m2yU798YMoVk0jbURikHl+e6kBTkz2dPI/BMt5aQDnwtQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFCNnIBgwlblnJjhraMEsvVsCLe/eMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Q1N2U4ZTNjLTg2MDUtNDZmMy04NDY1LWUwYTQ0NGNkNjYxZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbaaIgwDQYJKoZIhvcNAQELBQADggEBAMhYl3VVSYHJjNa5kl8u WY3HzfudaTlDdE56fQPMspuULny9lUCuQfIQP8cGqSyv/rAeK1gyh2NkcxPIlQrg eP5BaCMTTOcz4Hmes0WwOLI3x/4TK0P2LbMbXJth+aBP8GiBIX75Qh05kaRQOs3+ olEPTa8cgQUSMpRapTnFe4Y3knY/CT3SzTTNokQFQsvtBkLyY2MhUFYxDNPEyZMc k1TV3yKOZ44i7xeA2A8QktfZFveQ7/U9WHcj6rupJWkru2ivswOZejjvIap1Wpoy 5/qGKm6GVvpq94Yv/jKOOyysJG8J1ewEO18gqXc5DAmzfS2w5O0n/vEET5dRGZdz aJU= -----END CERTIFICATE-----Generated at Sat Dec 20 16:01:56 2025 by rpki-client