This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa File: cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa (raw, json) Hash identifier: 58PnTQblNII2sxrHD4qKI/6eE/pKAhirfUgxfDJkXS8= Subject key identifier: C6:79:E1:AB:18:CE:AD:AD:1B:B1:B6:80:97:99:0F:B8:1F:91:70:30 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 7BBE66C39522C961C85E2A4F0ADFAA1862C02BDE Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa Signing time: Tue 18 Nov 2025 00:00:32 +0000 ROA not before: Tue 18 Nov 2025 00:00:32 +0000 ROA not after: Mon 16 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:04:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:be:66:c3:95:22:c9:61:c8:5e:2a:4f:0a:df:aa:18:62:c0:2b:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Nov 18 00:00:32 2025 GMT Not After : Feb 16 23:59:59 2026 GMT Subject: serialNumber=edb17a41eed546fbadf8a0d21ba5f33c9acb29ebf19d72f76de144be55b5044d, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:80:65:6c:87:ad:e1:d3:a2:a8:0b:c3:ed:72: 60:2a:1f:eb:9d:09:07:8b:5a:7a:4a:d4:7a:46:c4: f6:ed:93:2a:c8:22:3d:ea:25:e8:4d:cb:bc:da:3b: 51:6b:b3:e8:e8:31:50:eb:b8:10:04:f3:3c:fc:2f: c3:a5:ab:e4:68:ed:91:04:a4:1b:ea:a4:0c:54:10: 41:e6:92:42:3f:70:69:8c:35:ec:12:fd:30:1d:5d: 63:96:0c:ce:57:58:43:1c:9f:51:32:78:32:8b:d8: 45:15:f0:53:bc:61:ed:87:d6:56:7e:43:fc:db:93: 22:72:9f:15:6a:ad:83:db:65:5a:2a:df:22:b1:5a: 1d:c9:a4:c6:ce:2b:38:88:c1:e5:cc:d5:4c:c6:ba: 7d:0d:98:1c:79:ce:08:00:ff:a3:9d:eb:7d:a0:0e: 97:00:24:0b:56:77:d2:71:b8:4d:7c:d2:fb:9a:3d: a5:89:30:56:41:d5:e1:5e:43:22:f8:9e:e1:bc:49: 64:cd:26:15:2f:bf:0e:a4:34:64:9b:80:44:1f:ac: cb:10:86:be:d5:93:09:c5:1e:a8:09:fc:8b:82:bd: d4:db:27:a3:d2:b7:4f:0e:37:ad:78:83:3e:00:86: 73:4d:fb:76:d6:1f:75:62:3e:27:a2:f6:4b:d0:92: ac:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:79:E1:AB:18:CE:AD:AD:1B:B1:B6:80:97:99:0F:B8:1F:91:70:30 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/cc2f7093-21a6-400f-9db1-93c2fe02bc1c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300::/32 Signature Algorithm: sha256WithRSAEncryption 7a:3a:1d:1e:e5:97:cc:3e:a0:c3:db:32:3b:41:3e:1a:43:1b: 00:5d:6f:95:28:94:f6:19:ab:73:2b:0a:cc:b6:32:cb:a6:8e: 02:0c:a2:58:c0:a7:00:69:5b:fb:76:f4:97:ec:13:2f:ca:e2: 8f:38:7e:f6:16:3d:23:7b:50:0b:e2:59:02:50:88:7a:dd:7b: a3:e3:fc:f9:63:61:fe:42:71:de:c0:45:94:3c:b9:3c:c1:6e: 0f:22:d4:d9:f1:2f:ce:28:9c:41:8b:49:5f:45:9f:75:46:45: 40:58:55:a7:d4:fd:a6:30:f4:f0:b0:42:be:56:95:72:f8:7a: d2:a5:73:2e:4e:ad:64:66:67:9e:ff:e4:4e:98:04:e3:89:ea: ca:ee:6d:02:3a:b6:8d:19:3e:05:7e:54:73:d8:c0:3d:7c:20: 14:d7:a1:d8:18:8d:dc:8f:c7:19:e5:72:7b:d4:b6:0b:f8:42: f2:6c:8a:1f:17:84:4d:33:92:37:0e:7b:ef:5a:48:e5:ce:74: f6:41:0c:0c:f9:11:ff:46:de:cc:5a:b9:55:c8:0b:ae:8b:6a: c2:70:5c:cb:44:74:fa:1c:26:f4:a3:d7:23:4e:db:f8:77:1f: fc:4e:55:39:3c:06:86:6c:26:47:d1:a3:22:93:fc:a3:9f:47: 54:8b:1a:87 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUe75mw5UiyWHIXipPCt+qGGLAK94wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MTExODAwMDAzMloX DTI2MDIxNjIzNTk1OVowejFJMEcGA1UEBRNAZWRiMTdhNDFlZWQ1NDZmYmFkZjhh MGQyMWJhNWYzM2M5YWNiMjllYmYxOWQ3MmY3NmRlMTQ0YmU1NWI1MDQ0ZDEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArYBlbIet4dOiqAvD7XJgKh/rnQkH i1p6StR6RsT27ZMqyCI96iXoTcu82jtRa7Po6DFQ67gQBPM8/C/DpavkaO2RBKQb 6qQMVBBB5pJCP3BpjDXsEv0wHV1jlgzOV1hDHJ9RMngyi9hFFfBTvGHth9ZWfkP8 25Micp8Vaq2D22VaKt8isVodyaTGzis4iMHlzNVMxrp9DZgcec4IAP+jnet9oA6X ACQLVnfScbhNfNL7mj2liTBWQdXhXkMi+J7hvElkzSYVL78OpDRkm4BEH6zLEIa+ 1ZMJxR6oCfyLgr3U2yej0rdPDjeteIM+AIZzTft21h91Yj4novZL0JKsjQIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFMZ54asYzq2tG7G2gJeZD7gfkXAwMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi L2NjMmY3MDkzLTIxYTYtNDAwZi05ZGIxLTkzYzJmZTAyYmMxYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAOzADANBgkqhkiG9w0BAQsFAAOCAQEAejodHuWXzD6gw9syO0E+ GkMbAF1vlSiU9hmrcysKzLYyy6aOAgyiWMCnAGlb+3b0l+wTL8rijzh+9hY9I3tQ C+JZAlCIet17o+P8+WNh/kJx3sBFlDy5PMFuDyLU2fEvziicQYtJX0WfdUZFQFhV p9T9pjD08LBCvlaVcvh60qVzLk6tZGZnnv/kTpgE44nqyu5tAjq2jRk+BX5Uc9jA PXwgFNeh2BiN3I/HGeVye9S2C/hC8myKHxeETTOSNw5771pI5c509kEMDPkR/0be zFq5VcgLrotqwnBcy0R0+hwm9KPXI07b+Hcf/E5VOTwGhmwmR9GjIpP8o59HVIsa hw== -----END CERTIFICATE-----Generated at Sat Dec 6 10:57:51 2025 by rpki-client