This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/64aa0337-4cf9-42c7-b236-4cd36e69005e.roa File: 64aa0337-4cf9-42c7-b236-4cd36e69005e.roa (raw, json) Hash identifier: xgMkFUgKMCAGhMSzwNttd+MgPjXe8b0H82anTRTBFSo= Subject key identifier: B8:ED:46:20:59:E5:A7:CA:8A:34:0C:AD:98:C6:95:62:21:2E:09:DE Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 7F07DC1D99F00D35C1A86113A114AE80C60EF0F3 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/64aa0337-4cf9-42c7-b236-4cd36e69005e.roa Signing time: Wed 12 Nov 2025 00:00:53 +0000 ROA not before: Wed 12 Nov 2025 00:00:53 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80f1::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:07:dc:1d:99:f0:0d:35:c1:a8:61:13:a1:14:ae:80:c6:0e:f0:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Nov 12 00:00:53 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=d556eea53143d95548a09d3977de7189a4a88066f74c7966f3634ed4dc060d8e, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:94:a6:1c:8c:9a:bc:3b:9a:f7:a7:b7:69:75: 67:b9:33:59:df:d6:7c:32:de:30:57:fe:3c:fc:6c: 2c:a9:4c:38:9d:a2:1d:25:85:a0:57:9e:be:fe:cf: f5:db:a4:ee:a7:af:f4:43:a0:9f:51:60:1d:86:fd: ad:02:f6:6a:7f:e5:c6:e4:27:5b:54:5a:96:75:88: d5:12:51:ab:ed:83:5c:64:66:fe:dd:a5:26:fe:1e: 63:08:aa:f4:2d:c1:87:c6:ad:83:4f:ee:93:a3:6e: 33:4f:2a:1e:76:36:63:04:f9:66:13:1c:a6:27:1d: be:e0:33:b2:b0:d9:26:0e:00:d1:2f:d8:11:38:a6: 2a:50:5f:13:e5:b1:99:8d:48:50:de:cc:50:ee:7d: 14:9d:21:9e:9d:29:cb:c0:4b:fa:37:d1:7d:0f:3a: 99:cb:3b:c9:d5:48:3a:b0:1f:83:93:d2:9a:5e:a8: 15:87:33:1d:c9:21:da:c3:82:f6:92:45:5e:0b:0b: 95:88:21:d2:a8:93:6f:fa:ce:d8:0d:ee:83:52:82: 71:e3:4d:99:15:e3:01:d5:a3:64:d9:60:5f:c4:58: 37:7d:be:16:cc:d2:29:4e:02:2a:c8:de:a9:ac:24: 8f:83:fb:fc:29:4a:ec:7b:72:b3:da:6b:67:26:4f: 52:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:ED:46:20:59:E5:A7:CA:8A:34:0C:AD:98:C6:95:62:21:2E:09:DE X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/64aa0337-4cf9-42c7-b236-4cd36e69005e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80f1::/32 Signature Algorithm: sha256WithRSAEncryption 33:b2:9d:f3:2a:70:2e:18:d2:ec:07:8c:86:03:9a:12:f1:67: 48:9c:79:aa:17:06:c1:1f:8d:b5:97:33:05:bd:3c:ab:39:41: 8d:24:93:bc:ef:6e:ed:10:17:55:c4:11:af:bf:e7:ed:1c:b6: 5d:c3:ae:dc:43:61:fd:96:e7:3b:e2:61:63:0f:28:a4:a3:51: 39:a3:57:51:49:40:c7:62:60:2d:1e:53:2f:d8:56:38:12:ae: ec:2e:61:30:41:7e:68:97:43:da:56:9b:72:4d:60:a7:5a:50: 65:2a:2d:44:35:c9:ed:ef:14:83:d1:49:1a:47:5a:b9:fb:49: d2:82:ba:23:c2:54:35:44:2e:85:03:23:21:02:9a:cf:1f:df: 80:3b:c3:fe:8b:65:2d:30:a0:84:b3:ae:bf:cd:3f:48:2a:40: 9d:12:9e:f1:c4:cd:52:3c:e3:5c:37:c4:a7:6e:46:71:0c:17: be:1d:e3:73:10:ee:74:dc:8d:1d:58:39:54:2d:79:4b:48:1c: 05:e0:50:56:4d:01:d5:9e:da:9b:aa:d1:d5:68:6d:3f:b4:63: 59:df:fa:6f:10:8f:2b:39:97:53:17:e3:07:4a:43:a1:1b:2d: 33:4d:d3:49:56:46:d9:e5:5b:12:16:96:72:e2:21:7d:d1:bd: 80:3a:d3:c2 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUfwfcHZnwDTXBqGEToRSugMYO8PMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTExMjAwMDA1M1oX DTI1MTIxNzIzNTk1OVowejFJMEcGA1UEBRNAZDU1NmVlYTUzMTQzZDk1NTQ4YTA5 ZDM5NzdkZTcxODlhNGE4ODA2NmY3NGM3OTY2ZjM2MzRlZDRkYzA2MGQ4ZTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJSmHIyavDua96e3aXVnuTNZ39Z8 Mt4wV/48/GwsqUw4naIdJYWgV56+/s/126Tup6/0Q6CfUWAdhv2tAvZqf+XG5Cdb VFqWdYjVElGr7YNcZGb+3aUm/h5jCKr0LcGHxq2DT+6To24zTyoedjZjBPlmExym Jx2+4DOysNkmDgDRL9gROKYqUF8T5bGZjUhQ3sxQ7n0UnSGenSnLwEv6N9F9DzqZ yzvJ1Ug6sB+Dk9KaXqgVhzMdySHaw4L2kkVeCwuViCHSqJNv+s7YDe6DUoJx402Z FeMB1aNk2WBfxFg3fb4WzNIpTgIqyN6prCSPg/v8KUrse3Kz2mtnJk9SUwIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFLjtRiBZ5afKijQMrZjGlWIhLgneMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzY0YWEwMzM3LTRjZjktNDJjNy1iMjM2LTRjZDM2ZTY5MDA1ZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJA+A8TANBgkqhkiG9w0BAQsFAAOCAQEAM7Kd8ypwLhjS7AeMhgOa EvFnSJx5qhcGwR+NtZczBb08qzlBjSSTvO9u7RAXVcQRr7/n7Ry2XcOu3ENh/Zbn O+JhYw8opKNROaNXUUlAx2JgLR5TL9hWOBKu7C5hMEF+aJdD2labck1gp1pQZSot RDXJ7e8Ug9FJGkdauftJ0oK6I8JUNUQuhQMjIQKazx/fgDvD/otlLTCghLOuv80/ SCpAnRKe8cTNUjzjXDfEp25GcQwXvh3jcxDudNyNHVg5VC15S0gcBeBQVk0B1Z7a m6rR1WhtP7RjWd/6bxCPKzmXUxfjB0pDoRstM03TSVZG2eVbEhaWcuIhfdG9gDrT wg== -----END CERTIFICATE-----Generated at Sat Dec 6 19:19:19 2025 by rpki-client