This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa File: 2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa (raw, json) Hash identifier: 2j3BVY3fFe5/WRodfZCo28PQ5YyJIkrjYmUR3FwhR1o= Subject key identifier: 2C:43:E8:E3:BD:30:2F:0F:7E:B5:A3:66:18:E7:D1:93:5D:3C:CF:B9 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 515D16D5DFCE8B88ED74507A98F793E7471420CE Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa Signing time: Sat 06 Dec 2025 00:10:05 +0000 ROA not before: Sat 06 Dec 2025 00:10:05 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80f9:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:5d:16:d5:df:ce:8b:88:ed:74:50:7a:98:f7:93:e7:47:14:20:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Dec 6 00:10:05 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=a4d9138f0a4c1903122045a51cb0d4436207eac49fb3766f7bb2d436ebd2b2f7, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:10:ae:ab:9f:bf:75:9b:3e:b3:eb:ec:12:7d: 2c:51:5d:95:41:a9:88:5b:e1:21:93:30:e7:c6:6a: 2b:12:dc:7a:2e:93:38:23:da:43:1f:b6:60:62:07: c9:5b:0e:71:6a:fe:1e:c3:d2:fd:f1:45:b8:22:4c: dc:62:a0:9b:c1:93:76:00:3a:bc:4a:32:bc:3b:21: aa:af:11:2b:44:c1:fa:a6:47:4a:b6:4d:00:5a:38: 3e:d1:2d:8c:7c:d2:e2:84:cb:6c:a1:61:02:7b:c1: 63:05:54:be:fc:a4:c6:5c:93:55:86:c1:38:36:9f: 6f:14:86:51:cc:ad:7b:82:a4:ad:a4:48:9e:10:ef: 46:71:0c:31:79:76:85:78:a8:97:8e:aa:2f:ab:29: e5:fa:fa:7f:6a:42:9f:e1:fa:75:50:cb:65:4e:2b: 2e:b1:f8:b5:f7:df:7a:78:c8:ec:13:2d:64:ad:57: 75:b7:12:72:d8:ac:94:5c:d1:ee:bc:fe:d9:e3:a4: e3:00:f7:88:b8:d0:36:4f:45:52:19:3f:7e:85:99: 80:c9:90:04:71:95:c4:10:7a:61:78:b3:f1:b6:e0: 1b:5a:23:5f:f3:e6:ac:6a:69:ca:e4:c5:11:06:44: ab:cc:e2:12:28:a8:4c:66:b8:a8:fb:83:1c:9e:52: b8:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:43:E8:E3:BD:30:2F:0F:7E:B5:A3:66:18:E7:D1:93:5D:3C:CF:B9 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/2247f34f-e5b1-423c-ac0f-7142ad86bd9b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80f9:8000::/40 Signature Algorithm: sha256WithRSAEncryption 21:9c:ab:8e:10:a4:f4:7b:ef:66:43:59:33:82:cd:60:e8:c6: 23:6b:42:8d:07:f2:87:fd:4e:58:81:d4:58:e2:9a:4d:e2:cb: be:f8:23:10:2b:c5:95:61:e6:30:05:04:72:70:e6:f8:b3:98: 07:3a:a6:08:3d:ea:92:ed:a3:2c:8e:85:fd:f2:e8:e4:b4:84: 4b:be:32:d8:95:6b:29:79:ce:db:63:7e:8b:14:a5:f9:50:01: 6f:96:c6:e7:3e:1d:16:67:b2:68:95:d6:04:e6:73:73:cb:5b: 54:ca:a5:61:3f:04:e2:d6:2c:10:66:d7:c8:0c:eb:27:0b:9c: 96:99:0c:2e:76:c8:83:69:8f:31:85:13:c4:eb:34:c8:e4:c2: b6:f0:5e:f2:eb:d4:98:02:69:24:68:11:cc:51:d0:c8:bf:56: af:75:c7:3e:ca:8c:d3:bd:ea:29:03:50:52:5e:23:ab:d8:07: a2:66:4b:cd:ae:aa:e2:e9:5d:4a:45:ef:fa:71:ce:73:77:10: 04:0f:83:59:c1:2d:02:35:7a:5e:f7:fd:45:a6:b6:c1:09:5b: f1:81:69:04:f5:8e:db:0f:06:ab:96:fb:5e:c6:c9:71:c8:5d: aa:e2:f1:7d:b3:6d:42:8d:26:a0:36:96:fc:20:25:a9:3f:19: 75:fa:58:7d -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUUV0W1d/Oi4jtdFB6mPeT50cUIM4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTIwNjAwMTAwNVoX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNAYTRkOTEzOGYwYTRjMTkwMzEyMjA0 NWE1MWNiMGQ0NDM2MjA3ZWFjNDlmYjM3NjZmN2JiMmQ0MzZlYmQyYjJmNzEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyxCuq5+/dZs+s+vsEn0sUV2VQamI W+EhkzDnxmorEtx6LpM4I9pDH7ZgYgfJWw5xav4ew9L98UW4IkzcYqCbwZN2ADq8 SjK8OyGqrxErRMH6pkdKtk0AWjg+0S2MfNLihMtsoWECe8FjBVS+/KTGXJNVhsE4 Np9vFIZRzK17gqStpEieEO9GcQwxeXaFeKiXjqovqynl+vp/akKf4fp1UMtlTisu sfi19996eMjsEy1krVd1txJy2KyUXNHuvP7Z46TjAPeIuNA2T0VSGT9+hZmAyZAE cZXEEHpheLPxtuAbWiNf8+asamnK5MURBkSrzOISKKhMZrio+4McnlK4zQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFCxD6OO9MC8PfrWjZhjn0ZNdPM+5MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzIyNDdmMzRmLWU1YjEtNDIzYy1hYzBmLTcxNDJhZDg2YmQ5Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A+YAwDQYJKoZIhvcNAQELBQADggEBACGcq44QpPR772ZDWTOC zWDoxiNrQo0H8of9TliB1Fjimk3iy774IxArxZVh5jAFBHJw5vizmAc6pgg96pLt oyyOhf3y6OS0hEu+MtiVayl5zttjfosUpflQAW+Wxuc+HRZnsmiV1gTmc3PLW1TK pWE/BOLWLBBm18gM6ycLnJaZDC52yINpjzGFE8TrNMjkwrbwXvLr1JgCaSRoEcxR 0Mi/Vq91xz7KjNO96ikDUFJeI6vYB6JmS82uquLpXUpF7/pxznN3EAQPg1nBLQI1 el73/UWmtsEJW/GBaQT1jtsPBquW+17GyXHIXari8X2zbUKNJqA2lvwgJak/GXX6 WH0= -----END CERTIFICATE-----Generated at Sat Dec 6 22:36:26 2025 by rpki-client