This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa File: 0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa (raw, json) Hash identifier: /b8BElOP89IBbECpp5wrclf6rGJx+WApXJHrxduRLNE= Subject key identifier: 2A:6D:02:CC:20:11:03:80:15:62:60:10:72:E7:5D:0E:6F:D3:1C:08 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 147D63DC44CA2A0C0BC078BB56B95E021ADEF4C7 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa Signing time: Wed 12 Nov 2025 00:00:11 +0000 ROA not before: Wed 12 Nov 2025 00:00:11 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:7d:63:dc:44:ca:2a:0c:0b:c0:78:bb:56:b9:5e:02:1a:de:f4:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Nov 12 00:00:11 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=b4ce97cc0be352c5d5ef9eed65d9f70faf22f294eed0858d796b7bf48b1d1070, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f7:31:8b:0a:1b:f6:f1:95:38:90:2a:c4:90: 7d:7d:46:71:8d:1c:0c:cd:96:bc:76:6e:69:b9:09: 42:df:0f:2c:6d:9d:22:3f:ba:9d:b4:b5:d8:8e:a6: e7:48:09:cd:bf:3a:6e:ca:c2:56:a9:43:de:f0:4d: 01:03:37:34:0b:77:8f:92:6c:28:b7:fe:ef:b0:9b: aa:ba:70:a6:18:a1:92:52:cd:9c:48:6c:cc:e2:d2: f8:5e:8d:b5:9a:43:2c:2d:40:26:ef:ff:bb:51:d6: ea:52:bb:a5:14:f7:6b:6c:c5:17:34:9d:ce:5a:50: f0:86:46:32:9c:73:b3:af:a4:96:f7:2e:58:05:8b: 54:82:ac:c4:a2:65:b7:ff:41:a4:e0:6c:b8:2e:a1: 00:22:1c:b1:fa:e3:48:68:9b:73:52:ee:9c:33:ea: ae:c6:9f:95:95:d1:0a:60:58:2d:5f:bb:a6:eb:17: da:f9:e5:67:a3:8a:a6:29:32:49:b0:b4:56:cf:de: ad:94:89:af:11:f2:15:27:4b:16:d9:cd:aa:47:ef: 35:d7:25:da:e1:ee:6c:17:1d:9e:84:fc:18:3e:a7: d9:17:95:9e:90:33:cf:9a:af:f8:0c:7f:61:d7:0b: 15:e2:28:8e:21:e5:e6:31:15:bb:df:93:de:5d:c8: d2:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:6D:02:CC:20:11:03:80:15:62:60:10:72:E7:5D:0E:6F:D3:1C:08 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014::/36 Signature Algorithm: sha256WithRSAEncryption 94:21:f8:0c:d0:ae:1c:24:7b:79:1c:c8:89:bf:fb:0a:c4:e5: b0:da:bc:91:63:83:c8:40:cb:ec:c2:40:30:6a:ca:f5:4e:e6: 26:ee:55:9c:e5:84:51:cf:15:5f:96:ff:d1:03:10:07:2b:ee: 60:da:0d:10:fe:6e:29:bc:45:93:77:94:94:76:a7:87:48:49: 0b:e0:98:97:fe:65:70:2f:a6:41:40:f8:1b:67:1b:6e:c3:05: ee:b3:72:86:4d:27:05:1d:ed:7f:f3:a9:1a:a7:62:56:8b:e1: 78:7c:c4:2f:a3:78:e1:f0:51:61:81:00:0d:11:e9:05:8d:2b: eb:b7:c2:51:4e:c3:e9:9f:5a:90:4f:31:8c:d6:86:c7:00:5f: 40:8e:75:ea:40:82:ca:49:3b:2b:e2:c9:5d:7d:af:71:e9:80: 48:dd:27:7b:bb:86:7e:7a:d3:e3:68:32:b9:e8:71:64:59:72: 29:22:fb:15:aa:82:b7:55:7b:56:fb:a3:58:f7:b7:3b:9c:89: d1:25:f5:6d:1d:68:5d:da:fc:73:8d:24:f6:aa:d6:f8:fb:66: 0e:96:30:8f:e8:9f:5c:a0:dc:53:d5:78:2c:ab:15:c3:50:16: d6:72:b5:a2:d8:3b:99:c6:0c:b7:78:0f:da:e3:71:78:78:50: d7:34:25:ad -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUFH1j3ETKKgwLwHi7VrleAhre9McwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTExMjAwMDAxMVoX DTI1MTIxNzIzNTk1OVowejFJMEcGA1UEBRNAYjRjZTk3Y2MwYmUzNTJjNWQ1ZWY5 ZWVkNjVkOWY3MGZhZjIyZjI5NGVlZDA4NThkNzk2YjdiZjQ4YjFkMTA3MDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtvcxiwob9vGVOJAqxJB9fUZxjRwM zZa8dm5puQlC3w8sbZ0iP7qdtLXYjqbnSAnNvzpuysJWqUPe8E0BAzc0C3ePkmwo t/7vsJuqunCmGKGSUs2cSGzM4tL4Xo21mkMsLUAm7/+7UdbqUrulFPdrbMUXNJ3O WlDwhkYynHOzr6SW9y5YBYtUgqzEomW3/0Gk4Gy4LqEAIhyx+uNIaJtzUu6cM+qu xp+VldEKYFgtX7um6xfa+eVno4qmKTJJsLRWz96tlImvEfIVJ0sW2c2qR+811yXa 4e5sFx2ehPwYPqfZF5WekDPPmq/4DH9h1wsV4iiOIeXmMRW735PeXcjSGQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFCptAswgEQOAFWJgEHLnXQ5v0xwIMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzBkNmY1Yzg2LTU3ZDgtNGUwZC04NDQ1LTMwY2IxMjJiYjRkZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJA+AFAAwDQYJKoZIhvcNAQELBQADggEBAJQh+AzQrhwke3kcyIm/ +wrE5bDavJFjg8hAy+zCQDBqyvVO5ibuVZzlhFHPFV+W/9EDEAcr7mDaDRD+bim8 RZN3lJR2p4dISQvgmJf+ZXAvpkFA+BtnG27DBe6zcoZNJwUd7X/zqRqnYlaL4Xh8 xC+jeOHwUWGBAA0R6QWNK+u3wlFOw+mfWpBPMYzWhscAX0COdepAgspJOyviyV19 r3HpgEjdJ3u7hn560+NoMrnocWRZciki+xWqgrdVe1b7o1j3tzucidEl9W0daF3a /HONJPaq1vj7Zg6WMI/on1yg3FPVeCyrFcNQFtZytaLYO5nGDLd4D9rjcXh4UNc0 Ja0= -----END CERTIFICATE-----Generated at Sat Dec 6 10:57:22 2025 by rpki-client