This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f908d384-ebab-4e47-9054-b6225011a89f.roa File: f908d384-ebab-4e47-9054-b6225011a89f.roa (raw, json) Hash identifier: Ti53kxlAGGeZE6AE4TtbMa74kxtKaZ1cEfMCUQx20fM= Subject key identifier: 10:FB:4F:BA:DD:66:35:A8:A5:72:EE:CD:63:43:51:26:28:86:D8:CA Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 74776822B12ECC626601F178D3B9F6AE4A88F779 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f908d384-ebab-4e47-9054-b6225011a89f.roa Signing time: Wed 10 Dec 2025 00:00:51 +0000 ROA not before: Wed 10 Dec 2025 00:00:51 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:da2a:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 17:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:77:68:22:b1:2e:cc:62:66:01:f1:78:d3:b9:f6:ae:4a:88:f7:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 10 00:00:51 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=a3a4a5c253ad95f257d7e5589d087304ded712533974095c68242c15a62fe0da, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:17:51:83:c4:1e:34:8a:6f:88:fa:ed:3d:ba: b5:2b:86:ff:5f:54:85:a5:b4:4f:8b:7c:2b:38:71: 71:70:a1:07:1e:f4:f2:57:c5:9a:f4:53:16:6b:90: 8e:22:36:fd:36:9d:0a:02:08:bf:b3:45:2c:06:b8: 4c:a8:f8:49:3c:90:55:34:8f:2c:1e:00:12:0b:bc: 48:e9:12:e6:0c:50:3e:7c:3a:5a:6e:dc:d6:b9:40: 22:07:02:9a:d8:ad:45:9f:82:3e:20:d6:d6:1d:93: 90:a6:fc:f3:23:fb:16:13:06:15:df:50:94:0e:f2: 0b:f1:1f:66:53:5a:2e:b5:8f:e3:13:b3:13:5e:39: 70:60:7c:f0:86:6d:33:84:f7:ee:a4:70:5b:e5:47: c4:f5:e7:5f:9d:60:ca:d0:49:44:e5:1a:ed:b6:f1: 86:5d:66:48:64:22:4a:fe:9b:1e:89:82:52:d6:4c: 04:52:f2:0c:ee:eb:da:5a:2e:7b:4a:f8:1a:53:b3: 69:87:97:c7:3d:b9:bf:38:1b:db:87:ce:f9:dd:82: b9:c0:7e:cf:6c:ef:49:5e:70:ab:ae:04:1e:05:10: 11:73:81:3e:39:ac:83:e5:63:a0:83:bf:a1:50:95: 8a:b3:1f:30:c5:95:af:1a:85:c3:bf:1f:82:92:c4: b4:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:FB:4F:BA:DD:66:35:A8:A5:72:EE:CD:63:43:51:26:28:86:D8:CA X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f908d384-ebab-4e47-9054-b6225011a89f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:da2a:8000::/36 Signature Algorithm: sha256WithRSAEncryption 75:c1:db:23:77:cd:a2:12:92:0f:00:ef:74:25:a8:95:64:5d: c4:50:b5:f9:fe:ad:e4:77:2b:c6:0a:9e:05:7b:db:b3:c8:29: 9e:14:68:43:82:58:bb:52:81:c3:83:a0:b4:8b:d1:bd:05:f2: ac:55:d8:6f:df:24:c2:55:59:04:28:e8:97:10:ab:63:b2:7f: b4:4e:ec:f4:ab:99:2d:d0:d8:cf:ba:d2:46:5a:52:d2:e8:2b: 46:20:69:53:09:38:9c:96:e7:c9:2e:35:17:dc:41:97:47:3e: 52:56:26:4d:0e:e3:33:23:97:12:59:76:61:84:a9:10:18:d4: af:c4:52:be:57:11:84:20:b9:7d:18:87:81:30:ad:f2:bf:f7: e0:06:ad:14:f1:ee:d9:0e:c1:67:bc:25:7f:39:52:cf:7e:b5: 1f:80:95:98:84:8f:09:9f:86:1d:9b:70:ee:60:9b:b4:ec:3b: ef:03:bc:90:62:60:d5:0e:0c:78:dd:53:d0:69:b7:37:71:c6: ea:6b:7d:65:d2:eb:b7:d4:54:96:8a:24:b6:12:03:99:7d:00: ab:7f:6f:37:63:9a:00:5a:9e:15:24:48:5a:80:63:f3:0a:0c: 1a:86:e5:3f:64:97:20:30:a2:c5:12:40:1a:95:2b:4a:7b:de: 0e:d4:ec:f2 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUdHdoIrEuzGJmAfF407n2rkqI93kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIxMDAwMDA1MVoX DTI2MDMxMDIzNTk1OVowejFJMEcGA1UEBRNAYTNhNGE1YzI1M2FkOTVmMjU3ZDdl NTU4OWQwODczMDRkZWQ3MTI1MzM5NzQwOTVjNjgyNDJjMTVhNjJmZTBkYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuBdRg8QeNIpviPrtPbq1K4b/X1SF pbRPi3wrOHFxcKEHHvTyV8Wa9FMWa5COIjb9Np0KAgi/s0UsBrhMqPhJPJBVNI8s HgASC7xI6RLmDFA+fDpabtzWuUAiBwKa2K1Fn4I+INbWHZOQpvzzI/sWEwYV31CU DvIL8R9mU1outY/jE7MTXjlwYHzwhm0zhPfupHBb5UfE9edfnWDK0ElE5RrttvGG XWZIZCJK/pseiYJS1kwEUvIM7uvaWi57SvgaU7Nph5fHPbm/OBvbh8753YK5wH7P bO9JXnCrrgQeBRARc4E+OayD5WOgg7+hUJWKsx8wxZWvGoXDvx+CksS0QQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBD7T7rdZjWopXLuzWNDUSYohtjKMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2Y5MDhkMzg0LWViYWItNGU0Ny05MDU0LWI2MjI1MDExYTg5Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJAbaKoAwDQYJKoZIhvcNAQELBQADggEBAHXB2yN3zaISkg8A73Ql qJVkXcRQtfn+reR3K8YKngV727PIKZ4UaEOCWLtSgcODoLSL0b0F8qxV2G/fJMJV WQQo6JcQq2Oyf7RO7PSrmS3Q2M+60kZaUtLoK0YgaVMJOJyW58kuNRfcQZdHPlJW Jk0O4zMjlxJZdmGEqRAY1K/EUr5XEYQguX0Yh4EwrfK/9+AGrRTx7tkOwWe8JX85 Us9+tR+AlZiEjwmfhh2bcO5gm7TsO+8DvJBiYNUODHjdU9BptzdxxuprfWXS67fU VJaKJLYSA5l9AKt/bzdjmgBanhUkSFqAY/MKDBqG5T9klyAwosUSQBqVK0p73g7U 7PI= -----END CERTIFICATE-----Generated at Sat Dec 20 17:50:25 2025 by rpki-client