This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ed72331d-bbd1-45c2-9d41-bea51c97f1be.roa File: ed72331d-bbd1-45c2-9d41-bea51c97f1be.roa (raw, json) Hash identifier: 0vzGbfG9ZeTkqI//Ic0MxN4RMVoEWPUIQ6b2PCYC5Gw= Subject key identifier: C3:D6:70:24:E1:2A:F0:68:C9:37:98:76:E7:D4:FF:E5:AC:74:CB:5E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5D228BF8CB1A7DD452756F1EF520342F03CED60C Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ed72331d-bbd1-45c2-9d41-bea51c97f1be.roa Signing time: Wed 26 Nov 2025 00:00:56 +0000 ROA not before: Wed 26 Nov 2025 00:00:56 +0000 ROA not after: Tue 24 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2406:dab9:7000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 17:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:22:8b:f8:cb:1a:7d:d4:52:75:6f:1e:f5:20:34:2f:03:ce:d6:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Nov 26 00:00:56 2025 GMT Not After : Feb 24 23:59:59 2026 GMT Subject: serialNumber=6219afa587a538411f421b982770ed35b65e67dd0c2bb637e20fc9be1022dbe7, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ad:c1:21:fd:59:cf:16:53:46:06:fc:9c:b0: 96:1b:90:ef:57:e2:08:13:7f:6a:88:8a:bf:80:1b: df:97:80:a5:af:86:60:cc:8b:10:ce:53:59:cd:f8: 24:e4:77:3d:81:76:f2:1e:23:67:f3:f6:02:81:e8: 86:7b:94:b8:10:ad:ca:d4:89:e9:01:a8:f8:a4:29: 5d:98:ab:46:0f:10:26:68:44:08:1e:22:ac:fa:3e: a0:c6:7d:8e:3c:ca:52:27:ff:8b:99:65:5d:9d:5a: 1a:28:11:44:4d:b7:bc:f4:da:cc:b3:ae:cf:0e:db: 8f:70:5e:c4:db:aa:27:f6:e0:2d:6b:1f:2b:c8:74: d4:95:69:e4:b0:51:47:2e:1d:6d:4a:e9:d3:a5:88: ad:fb:89:8b:11:52:3f:f0:e1:ef:2a:ee:54:9a:69: 72:bc:14:f5:2f:fb:8e:e0:96:66:ea:6d:de:a3:5c: d6:02:c3:a8:1b:8d:da:af:72:2d:64:52:6d:ea:52: e6:85:06:8a:0b:ee:9b:a5:1b:be:ad:11:76:20:98: 77:6b:79:42:2e:2c:48:53:4c:a3:6a:60:a3:26:fd: 4d:51:97:5d:4a:53:8e:f0:62:0e:24:d1:b6:30:ce: fe:58:b5:ec:36:d6:1d:51:4b:9c:01:2e:d5:d2:c9: 78:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:D6:70:24:E1:2A:F0:68:C9:37:98:76:E7:D4:FF:E5:AC:74:CB:5E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/ed72331d-bbd1-45c2-9d41-bea51c97f1be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dab9:7000::/40 Signature Algorithm: sha256WithRSAEncryption 0b:31:02:34:52:04:b0:13:66:3f:a9:d1:2b:8d:62:86:64:7a: 7d:ec:bc:be:05:e4:aa:84:fa:73:e4:c9:6e:d0:7b:e9:17:53: f1:64:26:30:f8:5e:e7:f4:8e:22:8a:5e:4c:0a:8d:8d:67:23: 7c:66:64:23:c8:bc:9a:b5:86:5e:9c:00:1a:a0:35:47:f5:cc: 32:ce:17:64:f3:94:ba:79:da:8a:94:5b:5d:ca:9e:f0:ea:00: 5f:82:4f:0d:3c:09:d7:dd:14:54:3f:8f:e1:3a:7a:2e:4d:46: 02:57:00:b8:d4:f8:c6:4b:34:50:b4:f6:01:85:f2:ea:bc:a2: 59:16:35:00:e7:30:a0:bf:6f:10:86:87:93:22:54:81:bd:b2: a7:46:ba:58:23:0c:fe:67:20:88:f1:70:b0:7f:08:25:01:fd: 9a:64:f8:12:2e:e4:10:2f:89:64:31:06:ba:01:1b:43:0e:2e: ab:8b:b2:2b:07:f1:9d:62:ea:13:d6:22:4b:35:e8:89:ed:9c: 2e:6e:2c:25:61:e9:96:1c:df:75:7b:e0:fe:b6:a7:1b:f4:22: 7d:db:e4:70:19:d0:ac:f4:e6:17:a5:59:fe:18:6b:6c:fd:4f: cb:88:ff:40:b2:c9:83:f8:c2:f0:59:b4:61:96:df:15:d7:62: 48:e6:e2:b4 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUXSKL+MsafdRSdW8e9SA0LwPO1gwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTEyNjAwMDA1NloX DTI2MDIyNDIzNTk1OVowejFJMEcGA1UEBRNANjIxOWFmYTU4N2E1Mzg0MTFmNDIx Yjk4Mjc3MGVkMzViNjVlNjdkZDBjMmJiNjM3ZTIwZmM5YmUxMDIyZGJlNzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo63BIf1ZzxZTRgb8nLCWG5DvV+II E39qiIq/gBvfl4Clr4ZgzIsQzlNZzfgk5Hc9gXbyHiNn8/YCgeiGe5S4EK3K1Inp Aaj4pCldmKtGDxAmaEQIHiKs+j6gxn2OPMpSJ/+LmWVdnVoaKBFETbe89NrMs67P DtuPcF7E26on9uAtax8ryHTUlWnksFFHLh1tSunTpYit+4mLEVI/8OHvKu5Ummly vBT1L/uO4JZm6m3eo1zWAsOoG43ar3ItZFJt6lLmhQaKC+6bpRu+rRF2IJh3a3lC LixIU0yjamCjJv1NUZddSlOO8GIOJNG2MM7+WLXsNtYdUUucAS7V0sl44QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMPWcCThKvBoyTeYdufU/+WsdMteMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2VkNzIzMzFkLWJiZDEtNDVjMi05ZDQxLWJlYTUxYzk3ZjFiZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAbauXAwDQYJKoZIhvcNAQELBQADggEBAAsxAjRSBLATZj+p0SuN YoZken3svL4F5KqE+nPkyW7Qe+kXU/FkJjD4Xuf0jiKKXkwKjY1nI3xmZCPIvJq1 hl6cABqgNUf1zDLOF2TzlLp52oqUW13KnvDqAF+CTw08CdfdFFQ/j+E6ei5NRgJX ALjU+MZLNFC09gGF8uq8olkWNQDnMKC/bxCGh5MiVIG9sqdGulgjDP5nIIjxcLB/ CCUB/Zpk+BIu5BAviWQxBroBG0MOLquLsisH8Z1i6hPWIks16IntnC5uLCVh6ZYc 33V74P62pxv0In3b5HAZ0Kz05helWf4Ya2z9T8uI/0CyyYP4wvBZtGGW3xXXYkjm 4rQ= -----END CERTIFICATE-----Generated at Sat Dec 20 17:50:07 2025 by rpki-client