This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa File: 62639af2-026a-4677-b13e-0aeb266620d5.roa (raw, json) Hash identifier: 04fJ+G7UIc1U5hb46E4XLTRqvXzDWZsL0y3D+nlkxg0= Subject key identifier: 22:F9:1E:98:3B:F8:A4:F6:A4:CD:BE:48:29:F0:57:8B:DE:FD:EC:F3 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 72D71837C23592E9B6C64E4FDE6F67A61DCEC6CB Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa Signing time: Sun 07 Dec 2025 00:00:25 +0000 ROA not before: Sun 07 Dec 2025 00:00:25 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:8040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 00:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:d7:18:37:c2:35:92:e9:b6:c6:4e:4f:de:6f:67:a6:1d:ce:c6:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Dec 7 00:00:25 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=56fc323b32ba0205656e664a6cde85522c7b56f7587ca38f39d0cb3ceb486c09, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1b:cc:51:ad:99:ff:75:bf:57:c5:d1:12:88: f0:0f:7a:20:ba:2e:5c:28:c3:cf:ce:f4:20:77:67: 55:79:45:29:b6:4a:35:a0:11:e8:3f:19:c8:53:4d: 4f:61:ee:34:74:c0:bb:87:02:6c:1a:06:60:68:36: 5b:d5:31:5b:8f:30:5f:d5:0c:a8:1d:76:71:b3:22: 4d:d3:45:68:ce:4d:44:0c:ef:af:eb:76:07:2a:9d: 86:a6:f4:02:35:e8:63:df:d8:81:53:fd:d9:7e:61: 32:f4:9b:24:b1:73:41:ea:76:f6:f3:80:20:1f:f5: 4b:82:08:da:09:ef:3e:f5:84:ad:51:76:f9:9c:f2: b3:7f:74:9c:b1:53:88:50:24:98:ab:bf:c6:73:9a: 47:5c:0c:4c:03:b0:84:fc:40:38:fe:29:40:11:7d: 4b:d4:4a:a2:da:bb:27:5b:46:a5:87:fd:c3:96:92: d9:1c:96:e2:dd:f5:b7:53:2d:39:7e:55:1f:63:00: 61:7b:18:30:b0:b1:9c:aa:88:d0:38:e5:99:d8:44: 94:7a:58:6f:a6:34:e8:02:0c:71:38:7b:7f:23:33: a5:b6:e7:10:c2:50:19:45:67:bc:99:82:c3:d4:f2: 01:13:9e:1e:0d:ba:40:b7:2f:5f:e6:3e:0d:74:3b: 5f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:F9:1E:98:3B:F8:A4:F6:A4:CD:BE:48:29:F0:57:8B:DE:FD:EC:F3 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/62639af2-026a-4677-b13e-0aeb266620d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:8040::/48 Signature Algorithm: sha256WithRSAEncryption 34:d7:72:52:a8:81:34:08:82:92:25:d8:a0:b3:53:77:82:7b: b7:63:fc:db:6e:c4:8f:a4:10:18:2d:da:54:f9:d3:1c:9e:6c: fb:11:be:38:da:96:14:1c:c0:3c:ae:fd:d9:ce:7c:f8:e9:20: 34:f2:27:97:c3:e5:b8:d1:82:e2:65:65:18:d9:c4:3e:e9:7d: fb:a1:a8:99:4b:2a:a0:17:d8:5c:23:b9:6e:19:0a:b3:c1:03: 2f:a2:21:34:1c:dc:26:9e:9f:35:e2:44:42:3c:4f:ed:34:b7: 1b:35:0c:a6:ee:ea:6f:29:ba:3e:be:90:0b:41:cc:66:56:58: ee:2f:12:5f:e4:12:9d:24:41:0c:88:12:a8:0b:3f:93:7f:43: 5d:2e:bf:79:81:fd:b6:2c:56:3a:61:6e:cd:1c:66:40:52:5a: 96:13:b3:f8:be:61:5e:5a:a1:7a:be:0c:c5:4f:f6:08:ac:89: f1:38:26:e0:17:95:c6:9c:9b:b1:d5:ff:ed:ad:49:7e:7a:74: 6a:f6:67:8d:6f:ef:fb:9c:ec:c4:d1:c8:15:95:a6:49:29:60: 21:40:f6:e3:f6:13:46:78:dc:7f:10:8d:99:5b:ed:f8:62:bf: 3d:89:d4:ad:c1:10:69:cf:db:71:c8:25:1e:af:70:8b:c1:08: 11:4b:e7:29 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUctcYN8I1kum2xk5P3m9nph3OxsswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTIwNzAwMDAyNVoX DTI2MDMwNzIzNTk1OVowejFJMEcGA1UEBRNANTZmYzMyM2IzMmJhMDIwNTY1NmU2 NjRhNmNkZTg1NTIyYzdiNTZmNzU4N2NhMzhmMzlkMGNiM2NlYjQ4NmMwOTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuhvMUa2Z/3W/V8XREojwD3ogui5c KMPPzvQgd2dVeUUptko1oBHoPxnIU01PYe40dMC7hwJsGgZgaDZb1TFbjzBf1Qyo HXZxsyJN00Vozk1EDO+v63YHKp2GpvQCNehj39iBU/3ZfmEy9JsksXNB6nb284Ag H/VLggjaCe8+9YStUXb5nPKzf3ScsVOIUCSYq7/Gc5pHXAxMA7CE/EA4/ilAEX1L 1Eqi2rsnW0alh/3DlpLZHJbi3fW3Uy05flUfYwBhexgwsLGcqojQOOWZ2ESUelhv pjToAgxxOHt/IzOltucQwlAZRWe8mYLD1PIBE54eDbpAty9f5j4NdDtfMwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFCL5Hpg7+KT2pM2+SCnwV4ve/ezzMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzYyNjM5YWYyLTAyNmEtNDY3Ny1iMTNlLTBhZWIyNjY2MjBkNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/4BAMA0GCSqGSIb3DQEBCwUAA4IBAQA013JSqIE0CIKSJdig s1N3gnu3Y/zbbsSPpBAYLdpU+dMcnmz7Eb442pYUHMA8rv3Zznz46SA08ieXw+W4 0YLiZWUY2cQ+6X37oaiZSyqgF9hcI7luGQqzwQMvoiE0HNwmnp814kRCPE/tNLcb NQym7upvKbo+vpALQcxmVljuLxJf5BKdJEEMiBKoCz+Tf0NdLr95gf22LFY6YW7N HGZAUlqWE7P4vmFeWqF6vgzFT/YIrInxOCbgF5XGnJux1f/trUl+enRq9meNb+/7 nOzE0cgVlaZJKWAhQPbj9hNGeNx/EI2ZW+34Yr89idStwRBpz9txyCUer3CLwQgR S+cp -----END CERTIFICATE-----Generated at Thu Dec 18 05:01:55 2025 by rpki-client