This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/33dd31e0-7039-4ff8-aafe-97f7b95b07d0.roa File: 33dd31e0-7039-4ff8-aafe-97f7b95b07d0.roa (raw, json) Hash identifier: 5j48OuxAbqWh7ijxJvj4Ss4lgH+lV7qdOhWE51DJN9A= Subject key identifier: C8:D2:34:2D:92:CB:77:65:B6:BD:AC:05:14:54:90:C9:FE:CB:F3:19 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 7E049AE7AFF6FFCC8E63DCDCEE06D94CD7A2DB14 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/33dd31e0-7039-4ff8-aafe-97f7b95b07d0.roa Signing time: Wed 12 Nov 2025 00:00:54 +0000 ROA not before: Wed 12 Nov 2025 00:00:54 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:4080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:04:9a:e7:af:f6:ff:cc:8e:63:dc:dc:ee:06:d9:4c:d7:a2:db:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Nov 12 00:00:54 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=f007e03658c47bf75d9837c73129a9bbd237ad18abadd5670361652161cf0552, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:89:29:fa:51:ed:d4:e0:87:7c:c8:5c:da:72: ec:01:bb:89:0b:ff:8d:66:37:16:b8:33:2d:f3:77: af:9b:3d:3f:3e:8a:50:b4:e6:67:74:47:3a:56:87: 17:ba:59:ab:d6:f7:8d:42:15:b7:45:23:71:13:e6: 50:fb:c5:c5:33:a3:dd:d1:a6:b3:72:e5:f9:f7:00: dd:c2:0c:83:c9:cc:ad:6a:1f:2f:55:14:02:be:67: f7:ef:fb:5e:72:12:9b:3b:dc:6f:c8:d6:fa:c4:62: fd:e9:86:a8:45:5a:62:f2:28:47:70:5d:e2:5a:1e: fa:91:1f:13:28:ec:07:48:d4:6d:0f:16:ce:bd:ab: 26:95:6a:2b:19:f2:04:fd:87:89:a5:4f:03:51:d7: 3c:61:9b:86:db:1d:c0:68:d6:e0:98:ba:a0:13:4d: 7a:f7:51:c2:76:c1:05:d6:d9:71:b2:aa:82:d4:a9: b0:b2:b6:52:53:3a:a6:8a:ab:da:9f:41:10:b4:80: 4a:f8:66:06:14:57:9b:14:59:0d:42:92:0c:6e:c6: c6:db:fd:fa:7a:6f:e5:13:5c:14:3d:a5:f9:78:b7: f8:b0:bb:48:d6:ab:5c:54:57:8e:ee:0a:68:42:43: 6c:77:13:e3:ef:f2:63:80:3c:4c:94:65:75:2d:d9: 56:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:D2:34:2D:92:CB:77:65:B6:BD:AC:05:14:54:90:C9:FE:CB:F3:19 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/33dd31e0-7039-4ff8-aafe-97f7b95b07d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:4080::/48 Signature Algorithm: sha256WithRSAEncryption 31:fd:0a:62:f0:08:c6:17:b8:2c:7a:d9:50:0d:12:29:5e:8e: 07:fe:a0:d1:01:2f:05:ec:40:a5:4d:4e:70:4c:3a:89:de:80: e6:5e:19:01:20:a4:62:91:3d:35:c6:20:6f:9b:e6:24:ad:72: 52:4d:f3:0a:f4:70:7f:4d:d5:34:31:59:ea:3a:72:3f:a0:0b: 24:ce:38:13:91:ed:ae:57:9a:ee:25:09:ea:ee:36:91:40:db: 04:47:26:68:44:2e:bc:8a:90:70:87:ca:1e:55:f0:7e:38:d6: cc:dd:fd:7d:b4:60:39:20:f4:ad:eb:46:76:51:77:ef:27:4c: 7a:b7:9b:a6:2a:00:30:a4:d1:85:88:14:04:94:f9:be:6c:a8: 4d:f1:00:8b:41:c4:4e:b9:28:39:45:2e:25:21:91:bb:0a:79: f8:26:6a:bd:7d:44:34:09:18:f1:ba:ce:72:5e:6c:89:68:9a: cb:cb:0b:1d:4a:03:70:d9:57:da:86:e1:56:1a:1e:06:8f:59: 41:55:76:91:12:e6:28:86:4b:98:1e:25:a7:79:0d:a2:1f:a1: 90:9d:6c:71:e8:48:e1:d9:a2:d6:d1:9e:6c:9b:46:d0:fa:f1: 88:cc:91:f7:58:e5:b8:74:d6:f3:58:4a:eb:98:13:ea:49:94: c1:4d:a5:3a -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUfgSa56/2/8yOY9zc7gbZTNei2xQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTExMjAwMDA1NFoX DTI1MTIxNzIzNTk1OVowejFJMEcGA1UEBRNAZjAwN2UwMzY1OGM0N2JmNzVkOTgz N2M3MzEyOWE5YmJkMjM3YWQxOGFiYWRkNTY3MDM2MTY1MjE2MWNmMDU1MjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkokp+lHt1OCHfMhc2nLsAbuJC/+N ZjcWuDMt83evmz0/PopQtOZndEc6VocXulmr1veNQhW3RSNxE+ZQ+8XFM6Pd0aaz cuX59wDdwgyDycytah8vVRQCvmf37/techKbO9xvyNb6xGL96YaoRVpi8ihHcF3i Wh76kR8TKOwHSNRtDxbOvasmlWorGfIE/YeJpU8DUdc8YZuG2x3AaNbgmLqgE016 91HCdsEF1tlxsqqC1KmwsrZSUzqmiqvan0EQtIBK+GYGFFebFFkNQpIMbsbG2/36 em/lE1wUPaX5eLf4sLtI1qtcVFeO7gpoQkNsdxPj7/JjgDxMlGV1LdlW7wIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFMjSNC2Sy3dltr2sBRRUkMn+y/MZMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzMzZGQzMWUwLTcwMzktNGZmOC1hYWZlLTk3ZjdiOTViMDdkMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/0CAMA0GCSqGSIb3DQEBCwUAA4IBAQAx/Qpi8AjGF7gsetlQ DRIpXo4H/qDRAS8F7EClTU5wTDqJ3oDmXhkBIKRikT01xiBvm+YkrXJSTfMK9HB/ TdU0MVnqOnI/oAskzjgTke2uV5ruJQnq7jaRQNsERyZoRC68ipBwh8oeVfB+ONbM 3f19tGA5IPSt60Z2UXfvJ0x6t5umKgAwpNGFiBQElPm+bKhN8QCLQcROuSg5RS4l IZG7Cnn4Jmq9fUQ0CRjxus5yXmyJaJrLywsdSgNw2VfahuFWGh4Gj1lBVXaREuYo hkuYHiWneQ2iH6GQnWxx6Ejh2aLW0Z5sm0bQ+vGIzJH3WOW4dNbzWErrmBPqSZTB TaU6 -----END CERTIFICATE-----Generated at Sat Dec 6 19:19:20 2025 by rpki-client