This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/018dea0d-42eb-4d58-8914-636d25ca3b3c.roa File: 018dea0d-42eb-4d58-8914-636d25ca3b3c.roa (raw, json) Hash identifier: 7CCpJTIc7hKEMNtZtAJDZZnwXfENKqwY28JIqMO7Rpo= Subject key identifier: 22:EE:62:38:6E:5A:F7:45:83:DB:F2:22:40:A9:15:B9:24:CE:70:6E Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 511A2A71FFC7BBFE6D7111BB360414DF2C4EED5B Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/018dea0d-42eb-4d58-8914-636d25ca3b3c.roa Signing time: Sun 07 Dec 2025 00:00:42 +0000 ROA not before: Sun 07 Dec 2025 00:00:42 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8018:800::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 00:02:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:1a:2a:71:ff:c7:bb:fe:6d:71:11:bb:36:04:14:df:2c:4e:ed:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Dec 7 00:00:42 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=c531097d58ac31a50e51787a1b7dceb006a30062518dfa77fd3a34afbd56252d, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:3c:62:41:64:90:d5:67:75:14:7c:49:92:ad: 57:d5:29:f9:e3:e5:e8:18:6d:72:5b:1b:62:f0:cb: d8:c7:06:0b:6c:50:19:d0:7f:35:73:a4:a5:fe:34: f5:5a:04:1d:d4:db:06:9f:36:f9:ed:de:64:42:91: 4a:f0:96:49:07:9c:e7:72:1b:4d:ba:60:a9:2d:d3: 75:6a:97:d6:45:e9:e1:1e:cc:d7:4d:16:76:c3:e5: bc:71:1a:1f:ed:db:4d:86:3c:e6:4d:fb:8e:ad:0d: f2:d1:01:ad:a5:c4:94:f5:ca:ba:19:5a:e9:42:59: 9a:b8:a8:9f:bc:44:03:1e:97:a0:44:1b:9d:a0:36: ec:bb:0c:e5:e6:fd:88:72:68:81:bb:aa:fc:e4:de: 53:05:6a:ac:33:51:10:ab:43:a9:a8:42:74:94:ae: 6e:b2:cc:14:1b:0c:77:1b:01:a3:82:30:99:88:8f: bf:49:06:22:84:d0:3b:fd:3b:40:3d:50:52:fb:e1: 42:64:19:43:3c:78:56:b5:38:04:28:ae:fc:2c:7d: 88:02:4a:51:99:6c:50:dc:99:06:6e:93:9c:9e:7e: 6e:3c:b6:20:29:1e:9b:77:6c:73:05:d7:ab:65:f9: 30:28:39:4a:69:58:80:c0:35:de:36:fa:3b:ed:f0: 8b:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:EE:62:38:6E:5A:F7:45:83:DB:F2:22:40:A9:15:B9:24:CE:70:6E X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/018dea0d-42eb-4d58-8914-636d25ca3b3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8018:800::/38 Signature Algorithm: sha256WithRSAEncryption 55:73:9d:3d:27:64:2c:d3:18:8a:56:69:47:53:ba:db:2b:79: 42:ff:e9:cf:a3:b9:f7:75:f1:30:34:ca:2e:41:99:27:d9:52: 5d:d7:83:a5:4f:fb:28:db:b1:5c:33:0a:58:a3:54:18:65:2b: 56:9f:0b:04:e3:19:36:1b:1a:53:2c:d2:20:1a:a7:28:2e:e2: cf:03:74:cd:11:6a:d0:2b:2f:37:1a:50:e7:5b:5d:0a:1f:d9: d4:66:12:a3:0f:0e:30:fa:43:b7:97:a8:f6:92:71:34:7f:da: a5:a6:77:91:14:2d:64:db:4b:5f:61:f7:fb:5e:fc:4f:96:25: 83:d9:ab:5f:fb:ea:38:43:ee:78:fd:e7:d2:7f:b5:05:4c:28: c4:9d:e5:0f:1a:0c:f6:96:08:bc:7a:e6:6f:26:b1:98:d0:6d: 6f:4e:f0:f9:30:57:ce:05:cc:23:1e:2d:59:37:94:91:bd:c0: f1:64:31:1f:dc:4b:cf:9e:1d:5c:01:35:3a:08:e6:7a:af:2a: 6e:d0:62:fb:c6:c8:7a:f3:68:89:50:d0:23:c6:56:02:5c:6c: a2:21:b9:ab:95:0f:db:d7:6b:1f:3f:bb:58:3e:4e:ff:4a:89: 1d:c7:4d:71:38:e8:ef:c7:33:9b:b4:11:28:c1:14:67:d1:b9: 67:ad:84:a1 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUURoqcf/Hu/5tcRG7NgQU3yxO7VswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTIwNzAwMDA0MloX DTI2MDMwNzIzNTk1OVowejFJMEcGA1UEBRNAYzUzMTA5N2Q1OGFjMzFhNTBlNTE3 ODdhMWI3ZGNlYjAwNmEzMDA2MjUxOGRmYTc3ZmQzYTM0YWZiZDU2MjUyZDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjjxiQWSQ1Wd1FHxJkq1X1Sn54+Xo GG1yWxti8MvYxwYLbFAZ0H81c6Sl/jT1WgQd1NsGnzb57d5kQpFK8JZJB5znchtN umCpLdN1apfWRenhHszXTRZ2w+W8cRof7dtNhjzmTfuOrQ3y0QGtpcSU9cq6GVrp QlmauKifvEQDHpegRBudoDbsuwzl5v2IcmiBu6r85N5TBWqsM1EQq0OpqEJ0lK5u sswUGwx3GwGjgjCZiI+/SQYihNA7/TtAPVBS++FCZBlDPHhWtTgEKK78LH2IAkpR mWxQ3JkGbpOcnn5uPLYgKR6bd2xzBderZfkwKDlKaViAwDXeNvo77fCLKQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFCLuYjhuWvdFg9vyIkCpFbkkznBuMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzAxOGRlYTBkLTQyZWItNGQ1OC04OTE0LTYzNmQyNWNhM2IzYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AGAgwDQYJKoZIhvcNAQELBQADggEBAFVznT0nZCzTGIpWaUdT utsreUL/6c+jufd18TA0yi5BmSfZUl3Xg6VP+yjbsVwzClijVBhlK1afCwTjGTYb GlMs0iAapygu4s8DdM0RatArLzcaUOdbXQof2dRmEqMPDjD6Q7eXqPaScTR/2qWm d5EULWTbS19h9/te/E+WJYPZq1/76jhD7nj959J/tQVMKMSd5Q8aDPaWCLx65m8m sZjQbW9O8PkwV84FzCMeLVk3lJG9wPFkMR/cS8+eHVwBNToI5nqvKm7QYvvGyHrz aIlQ0CPGVgJcbKIhuauVD9vXax8/u1g+Tv9KiR3HTXE46O/HM5u0ESjBFGfRuWet hKE= -----END CERTIFICATE-----Generated at Tue Dec 16 07:00:44 2025 by rpki-client