This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/31d36ece-9039-43a2-82a2-03e7d8e7f563.roa File: 31d36ece-9039-43a2-82a2-03e7d8e7f563.roa (raw, json) Hash identifier: 5e2LLFNXF7SJEiI/T7uTGlwILEXkM0XIb4CE2bXxJxk= Subject key identifier: 3A:14:EA:A6:BB:EC:FE:0D:E0:7E:D5:49:23:4F:E7:95:9A:38:AA:AA Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 179579C7957E3D59458DB2866D7EE321C623A5BC Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/31d36ece-9039-43a2-82a2-03e7d8e7f563.roa Signing time: Wed 12 Nov 2025 00:00:52 +0000 ROA not before: Wed 12 Nov 2025 00:00:52 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80fc::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:95:79:c7:95:7e:3d:59:45:8d:b2:86:6d:7e:e3:21:c6:23:a5:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Nov 12 00:00:52 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=3928f5be8d13df51d353ec042e00dbe2651fdae7b5d38b75b923480882506750, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:87:70:f4:8c:27:7e:25:5f:28:36:90:ea:98: 4c:9d:5a:dc:4c:20:2e:83:b3:b8:06:c2:fa:71:86: 1f:e0:ac:da:e0:f6:7b:21:6e:1c:cd:cc:0a:41:b3: df:f8:91:cf:b6:64:53:38:d3:43:21:fb:72:a4:26: 8c:6c:a1:7a:97:77:bb:41:3c:fc:af:ec:c2:c7:9b: 8b:f5:88:20:c7:bb:da:1e:41:c1:44:bd:47:7d:e8: 03:cc:b3:5d:f7:f9:d5:e3:5e:e1:fe:f9:ea:89:31: 6f:f9:84:96:da:0b:e8:6a:97:1a:bc:32:b3:cd:7a: 0d:c1:41:c1:3b:f2:be:c1:53:6c:6e:60:b0:b2:c4: ac:f1:c4:d1:f9:a3:81:11:b0:5a:25:41:87:e9:5d: 0b:e6:7b:b5:53:ed:76:fd:63:ca:ad:69:94:77:e4: 74:1a:ae:31:8b:3f:54:fb:d1:43:b2:25:1c:ba:f0: f2:3b:12:0c:4d:cc:b4:c5:72:3d:a2:9b:e2:dd:32: fd:0c:4e:12:c2:88:22:67:ff:e7:4f:96:b8:a8:85: f0:d0:1a:61:e9:2d:2c:ce:bd:44:f6:73:e7:34:e4: 09:eb:25:ae:2c:07:f7:5e:b1:b5:b5:fa:b9:e4:d8: 6c:ec:2f:4c:e1:1b:64:43:56:5f:75:6a:62:a7:fe: 93:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:14:EA:A6:BB:EC:FE:0D:E0:7E:D5:49:23:4F:E7:95:9A:38:AA:AA X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/31d36ece-9039-43a2-82a2-03e7d8e7f563.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80fc::/32 Signature Algorithm: sha256WithRSAEncryption 44:b0:16:af:f7:b7:90:0c:e9:13:a8:2f:b0:72:bf:60:af:b1: 77:6b:9a:c3:e2:45:af:f2:d6:b2:d3:1b:c7:93:e1:25:6f:81: 17:cf:f3:d5:fb:0d:5b:68:23:94:d1:d3:9f:4f:36:7a:05:07: 69:e6:82:ee:09:7c:41:61:3e:96:ca:44:ee:c7:8c:a4:03:5a: f7:d1:2d:79:6d:aa:8b:2f:78:d8:a8:ab:3e:0a:0e:ee:d9:86: a2:45:27:50:5d:8c:9f:31:64:59:ca:12:e1:f5:67:d5:b4:74: 57:55:c8:82:8f:39:90:b5:bd:3c:bf:f6:bf:e9:c9:1d:cf:23: d3:ab:fa:51:8d:37:0c:ad:05:3c:96:ce:e0:9c:44:6f:56:41: 20:d0:db:2a:ed:e1:a9:a0:b3:64:02:39:8d:87:8c:4d:b3:af: 6b:f6:98:3b:5b:81:5b:4a:74:6e:d4:c2:9f:fe:cc:72:f4:5e: 9f:b7:8c:0f:62:cb:77:09:22:2f:e5:60:e2:61:25:1b:4f:bd: f6:da:6a:ae:8a:9c:6d:7d:db:5a:20:23:70:e2:6f:40:75:b9: 80:54:0f:bb:b6:36:24:41:21:eb:5a:19:64:e2:42:28:93:07: 95:c4:b9:d4:0e:10:c0:d5:40:a9:ce:b8:14:87:6a:2d:31:da: be:12:26:c9 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUF5V5x5V+PVlFjbKGbX7jIcYjpbwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTExMjAwMDA1MloX DTI1MTIxNzIzNTk1OVowejFJMEcGA1UEBRNAMzkyOGY1YmU4ZDEzZGY1MWQzNTNl YzA0MmUwMGRiZTI2NTFmZGFlN2I1ZDM4Yjc1YjkyMzQ4MDg4MjUwNjc1MDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Ydw9IwnfiVfKDaQ6phMnVrcTCAu g7O4BsL6cYYf4Kza4PZ7IW4czcwKQbPf+JHPtmRTONNDIftypCaMbKF6l3e7QTz8 r+zCx5uL9Yggx7vaHkHBRL1HfegDzLNd9/nV417h/vnqiTFv+YSW2gvoapcavDKz zXoNwUHBO/K+wVNsbmCwssSs8cTR+aOBEbBaJUGH6V0L5nu1U+12/WPKrWmUd+R0 Gq4xiz9U+9FDsiUcuvDyOxIMTcy0xXI9opvi3TL9DE4SwogiZ//nT5a4qIXw0Bph 6S0szr1E9nPnNOQJ6yWuLAf3XrG1tfq55Nhs7C9M4RtkQ1ZfdWpip/6TvwIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFDoU6qa77P4N4H7VSSNP55WaOKqqMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzMxZDM2ZWNlLTkwMzktNDNhMi04MmEyLTAzZTdkOGU3ZjU2My5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJA+A/DANBgkqhkiG9w0BAQsFAAOCAQEARLAWr/e3kAzpE6gvsHK/ YK+xd2uaw+JFr/LWstMbx5PhJW+BF8/z1fsNW2gjlNHTn082egUHaeaC7gl8QWE+ lspE7seMpANa99EteW2qiy942KirPgoO7tmGokUnUF2MnzFkWcoS4fVn1bR0V1XI go85kLW9PL/2v+nJHc8j06v6UY03DK0FPJbO4JxEb1ZBINDbKu3hqaCzZAI5jYeM TbOva/aYO1uBW0p0btTCn/7McvRen7eMD2LLdwkiL+Vg4mElG0+99tpqroqcbX3b WiAjcOJvQHW5gFQPu7Y2JEEh61oZZOJCKJMHlcS51A4QwNVAqc64FIdqLTHavhIm yQ== -----END CERTIFICATE-----Generated at Sat Dec 6 22:36:55 2025 by rpki-client