This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa File: 62639af2-026a-4677-b13e-0aeb266620d5.roa (raw, json) Hash identifier: G8O0iM9ZTSBhquB2OQvJTJVd6+oJZUecvFrIGEP6Aco= Subject key identifier: 21:F6:0A:B8:DC:6A:3E:D2:5D:D2:9D:6C:90:E4:7D:D4:0C:63:B6:F1 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 3C7F5EE8DE2E666B498A45B6FD52557D8FC92E0D Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa Signing time: Wed 12 Nov 2025 00:00:52 +0000 ROA not before: Wed 12 Nov 2025 00:00:52 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:8040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:7f:5e:e8:de:2e:66:6b:49:8a:45:b6:fd:52:55:7d:8f:c9:2e:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Nov 12 00:00:52 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=377c18d7989676f476e5d9dfaf0160d503bf2d4cde110ce20151fce35eb6628a, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:91:72:aa:e6:78:98:a1:3e:b1:1e:54:44:30: 1d:e6:56:56:8c:54:7d:6b:14:81:8c:41:0d:dc:4b: da:b1:91:dc:58:93:45:bf:b9:7a:c7:bf:fd:9a:a2: fe:f6:d6:70:7e:a2:32:a2:c6:6c:40:f2:49:fd:8b: 80:4c:d1:23:85:8f:5f:9a:30:1b:5a:1f:5c:d2:8e: 00:51:48:31:83:3e:a5:71:f2:f3:e1:f5:85:a8:15: eb:0b:9a:11:85:94:cb:22:8d:5d:72:44:f3:03:c6: 8e:61:27:4a:0f:09:25:36:a3:2d:63:23:b7:a6:53: 22:90:54:fd:0e:5e:f0:05:49:d8:76:e4:cb:a1:ef: ab:ce:6e:69:89:71:b4:6a:69:fb:5a:43:a8:43:97: 5d:c4:41:72:b0:e5:05:2f:8b:d3:57:e1:fb:f8:39: 15:96:a0:a0:d6:11:d7:bb:a7:8e:00:90:d9:33:80: 29:25:17:8d:33:54:4e:9d:f1:d4:ed:d9:12:7f:8c: cb:5e:cf:17:89:96:ee:79:0d:c6:f2:05:6a:0b:d0: c6:2f:5a:3e:51:ff:aa:5f:14:42:c7:ff:41:7c:7a: f8:fa:41:e0:af:48:0c:f2:a5:94:ec:6f:d0:1c:88: 5e:14:3f:a1:a3:ca:17:15:b0:22:97:0c:64:aa:de: 58:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:F6:0A:B8:DC:6A:3E:D2:5D:D2:9D:6C:90:E4:7D:D4:0C:63:B6:F1 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:8040::/48 Signature Algorithm: sha256WithRSAEncryption 26:df:81:61:2f:d2:8e:b6:f6:58:66:4c:fb:00:cf:78:47:d3: 10:e2:1a:9c:0c:ef:8a:ff:38:54:a8:86:2e:5c:ce:72:84:ff: 09:22:c7:89:b3:4c:2f:2e:4e:6d:37:ca:c0:f9:f5:e5:e9:27: 35:5c:15:91:fe:b2:69:f3:67:ed:e7:7e:5d:b9:1f:f4:f3:30: 97:90:63:49:86:13:91:c0:e1:c5:d6:5f:13:86:12:71:0d:a8: bf:0d:15:89:84:17:f9:5c:98:2b:0f:93:6b:b5:e9:76:6b:24: a0:72:5c:f4:47:65:b7:18:ab:42:9d:4a:7c:84:c4:91:61:3d: eb:65:27:a8:a4:d7:40:39:3a:d4:a7:f5:fa:9c:5f:aa:26:b6: b7:2f:5e:c5:8c:51:45:f1:1f:b4:1c:d0:1c:d1:76:f3:15:36: b1:9a:83:f0:98:58:22:6b:12:f5:76:c7:c7:45:7d:f5:21:fa: 9f:2b:17:d5:36:36:74:c7:87:48:9e:76:12:60:e2:5b:79:c7: 46:28:cd:ec:93:98:63:27:e7:22:62:fe:41:5e:3b:8b:38:b4: 33:9e:a9:e9:1b:38:23:a6:bd:4f:82:1b:7d:7e:79:1c:e0:1a: 80:26:04:55:ea:77:c3:80:ee:76:87:03:1c:6e:84:67:43:08: 48:e4:a4:e8 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUPH9e6N4uZmtJikW2/VJVfY/JLg0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTExMjAwMDA1MloX DTI1MTIxNzIzNTk1OVowejFJMEcGA1UEBRNAMzc3YzE4ZDc5ODk2NzZmNDc2ZTVk OWRmYWYwMTYwZDUwM2JmMmQ0Y2RlMTEwY2UyMDE1MWZjZTM1ZWI2NjI4YTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA85FyquZ4mKE+sR5URDAd5lZWjFR9 axSBjEEN3EvasZHcWJNFv7l6x7/9mqL+9tZwfqIyosZsQPJJ/YuATNEjhY9fmjAb Wh9c0o4AUUgxgz6lcfLz4fWFqBXrC5oRhZTLIo1dckTzA8aOYSdKDwklNqMtYyO3 plMikFT9Dl7wBUnYduTLoe+rzm5piXG0amn7WkOoQ5ddxEFysOUFL4vTV+H7+DkV lqCg1hHXu6eOAJDZM4ApJReNM1ROnfHU7dkSf4zLXs8XiZbueQ3G8gVqC9DGL1o+ Uf+qXxRCx/9BfHr4+kHgr0gM8qWU7G/QHIheFD+ho8oXFbAilwxkqt5Y2QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFCH2Crjcaj7SXdKdbJDkfdQMY7bxMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzYyNjM5YWYyLTAyNmEtNDY3Ny1iMTNlLTBhZWIyNjY2MjBkNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/4BAMA0GCSqGSIb3DQEBCwUAA4IBAQAm34FhL9KOtvZYZkz7 AM94R9MQ4hqcDO+K/zhUqIYuXM5yhP8JIseJs0wvLk5tN8rA+fXl6Sc1XBWR/rJp 82ft535duR/08zCXkGNJhhORwOHF1l8ThhJxDai/DRWJhBf5XJgrD5Nrtel2aySg clz0R2W3GKtCnUp8hMSRYT3rZSeopNdAOTrUp/X6nF+qJra3L17FjFFF8R+0HNAc 0XbzFTaxmoPwmFgiaxL1dsfHRX31IfqfKxfVNjZ0x4dInnYSYOJbecdGKM3sk5hj J+ciYv5BXjuLOLQznqnpGzgjpr1Pght9fnkc4BqAJgRV6nfDgO52hwMcboRnQwhI 5KTo -----END CERTIFICATE-----Generated at Sat Dec 6 16:54:41 2025 by rpki-client