This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/5484d331-446c-4042-9500-dd3002e6a910.roa File: 5484d331-446c-4042-9500-dd3002e6a910.roa (raw, json) Hash identifier: Q92ovMc6De4uRJjcG2tBSils0OtGYgpmWIzkQRbtZ7E= Subject key identifier: B9:1D:4C:22:F1:1B:C1:6A:28:81:97:6E:C9:2D:1D:05:D1:B1:AC:9B Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 31AD6AFCB0C83D858920099B01028B674F3C8602 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/5484d331-446c-4042-9500-dd3002e6a910.roa Signing time: Sun 07 Dec 2025 00:00:45 +0000 ROA not before: Sun 07 Dec 2025 00:00:45 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014:c00::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 00:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:ad:6a:fc:b0:c8:3d:85:89:20:09:9b:01:02:8b:67:4f:3c:86:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Dec 7 00:00:45 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=5ac8ce7cf99ceefe2a7affc6a6eda20b9a57669c1fafbf1023c86c97a8b8b80f, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:04:f8:e6:5a:d6:87:f5:a2:75:b9:f4:c0:b8: f5:4e:fb:6e:2f:7b:48:f3:ef:bf:70:1c:33:df:b4: 52:f4:73:fa:06:42:7a:4a:cd:3d:c1:1b:6c:71:70: 78:fb:3f:a2:a5:d5:46:48:35:b7:b6:6c:ca:54:ff: 3f:20:10:8c:10:c8:9d:13:d3:c3:dd:9d:ed:40:9e: 11:1f:a2:cf:0b:ba:29:33:3c:ca:be:da:74:8f:f8: e2:f8:fb:fc:a9:58:22:75:1e:ed:4f:88:aa:77:24: f3:63:e0:5b:ed:bc:e9:46:5b:27:3a:0b:e2:23:4e: 72:06:60:08:0f:08:64:2c:14:99:67:96:a6:bc:c0: 8e:d4:53:d3:19:e4:93:69:d5:62:12:5c:e8:cc:ea: ed:8a:33:1e:05:de:1e:d1:19:cc:6b:98:9d:f5:2d: a4:86:58:08:74:3b:60:1e:ef:e0:45:a4:b4:7c:f0: 00:1a:75:35:1b:84:e5:a3:6a:e7:d6:b6:b2:f1:e8: f8:09:4f:c5:e6:fc:2c:79:cb:68:01:90:91:29:52: fa:03:a7:4d:70:78:55:4c:ce:5f:16:26:61:d3:10: 7f:92:20:f8:9b:ab:d4:a5:89:9c:13:e3:a5:db:95: dd:e0:55:e0:5c:ea:b2:5b:cb:19:a4:40:de:a9:15: 55:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:1D:4C:22:F1:1B:C1:6A:28:81:97:6E:C9:2D:1D:05:D1:B1:AC:9B X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/5484d331-446c-4042-9500-dd3002e6a910.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014:c00::/38 Signature Algorithm: sha256WithRSAEncryption 40:87:33:63:82:c9:e1:16:a8:74:ff:97:6d:a7:10:6c:43:f3: 4b:cf:14:73:8e:bd:77:0a:02:39:b8:a9:1b:10:1b:38:da:86: 67:09:a1:2c:71:e8:8a:5c:b6:81:af:c9:83:38:ed:46:f0:05: 2b:7c:31:f4:15:b2:fb:72:e3:d0:4e:2b:7e:5b:67:2d:ec:b3: f8:28:7e:1d:8f:66:5d:b0:f6:f2:a2:74:c7:60:37:f0:94:c1: fb:76:7d:62:cc:4d:c4:0c:0e:e2:5c:20:f9:a9:af:61:ea:58: e4:47:aa:f4:cb:8c:42:4f:9f:d2:7b:69:17:1e:74:bc:a5:69: a6:70:98:90:a2:e7:85:eb:70:10:38:a4:70:de:8d:cd:69:42: 71:9c:46:a0:12:74:34:69:96:a3:db:74:e9:08:ab:0b:0e:95: 1b:38:af:ef:6b:df:af:db:4f:4d:dc:e2:00:0a:67:8f:ba:b1: 89:2e:08:82:ce:0b:74:0c:9b:90:43:4b:64:42:df:e3:4d:e4: a2:5a:ab:95:d7:6f:62:af:cb:9d:cd:a4:d8:d8:af:7e:23:a2: 33:3a:97:82:45:94:49:01:16:73:95:ab:5e:df:63:cc:1e:84: ba:50:91:6f:68:f6:d5:c9:96:4f:01:60:67:f6:a2:77:7b:fc: 05:54:f8:ca -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUMa1q/LDIPYWJIAmbAQKLZ088hgIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTIwNzAwMDA0NVoX DTI2MDMwNzIzNTk1OVowejFJMEcGA1UEBRNANWFjOGNlN2NmOTljZWVmZTJhN2Fm ZmM2YTZlZGEyMGI5YTU3NjY5YzFmYWZiZjEwMjNjODZjOTdhOGI4YjgwZjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnAT45lrWh/Widbn0wLj1TvtuL3tI 8++/cBwz37RS9HP6BkJ6Ss09wRtscXB4+z+ipdVGSDW3tmzKVP8/IBCMEMidE9PD 3Z3tQJ4RH6LPC7opMzzKvtp0j/ji+Pv8qVgidR7tT4iqdyTzY+Bb7bzpRlsnOgvi I05yBmAIDwhkLBSZZ5amvMCO1FPTGeSTadViElzozOrtijMeBd4e0RnMa5id9S2k hlgIdDtgHu/gRaS0fPAAGnU1G4Tlo2rn1ray8ej4CU/F5vwsectoAZCRKVL6A6dN cHhVTM5fFiZh0xB/kiD4m6vUpYmcE+Ol25Xd4FXgXOqyW8sZpEDeqRVVNQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFLkdTCLxG8FqKIGXbsktHQXRsaybMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzU0ODRkMzMxLTQ0NmMtNDA0Mi05NTAwLWRkMzAwMmU2YTkxMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AFAwwDQYJKoZIhvcNAQELBQADggEBAECHM2OCyeEWqHT/l22n EGxD80vPFHOOvXcKAjm4qRsQGzjahmcJoSxx6IpctoGvyYM47UbwBSt8MfQVsvty 49BOK35bZy3ss/gofh2PZl2w9vKidMdgN/CUwft2fWLMTcQMDuJcIPmpr2HqWORH qvTLjEJPn9J7aRcedLylaaZwmJCi54XrcBA4pHDejc1pQnGcRqASdDRplqPbdOkI qwsOlRs4r+9r36/bT03c4gAKZ4+6sYkuCILOC3QMm5BDS2RC3+NN5KJaq5XXb2Kv y53NpNjYr34jojM6l4JFlEkBFnOVq17fY8wehLpQkW9o9tXJlk8BYGf2ond7/AVU +Mo= -----END CERTIFICATE-----Generated at Thu Dec 18 05:43:47 2025 by rpki-client