This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/977f90e2-d257-4dde-9740-b0391458d8ed.roa File: 977f90e2-d257-4dde-9740-b0391458d8ed.roa (raw, json) Hash identifier: 7Pjx7JJ0r2hTC67sa25Awips1JNmpW3AlBcnBNh8ViU= Subject key identifier: B7:99:87:87:C0:0C:9A:22:E1:62:E2:4B:AA:90:FC:8E:63:72:D3:37 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 0E1DA2F39FB6621D4D49ECC77FAC95EB630F7D63 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/977f90e2-d257-4dde-9740-b0391458d8ed.roa Signing time: Sat 06 Dec 2025 00:10:07 +0000 ROA not before: Sat 06 Dec 2025 00:10:07 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8000::/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:1d:a2:f3:9f:b6:62:1d:4d:49:ec:c7:7f:ac:95:eb:63:0f:7d:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Dec 6 00:10:07 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=335c737a789b722d736b7b587972f419f8b808ec12fde5e595ef6cbc911a264d, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:23:2a:e5:3e:a4:68:51:e2:a8:29:22:f0:2b: 67:5a:0a:a5:ee:46:ef:69:9c:95:c5:c2:77:d5:70: a5:63:20:62:68:6c:f6:52:77:34:69:e5:62:80:5d: 56:d2:25:44:2e:1f:1e:26:91:f4:36:a1:59:17:f7: 59:a0:88:3d:e4:bc:f7:d9:83:af:62:03:e2:bc:f6: f1:0a:75:d6:e2:9f:f0:60:ed:e1:d4:01:5c:09:02: f4:c0:76:58:e7:e6:c3:a4:62:b3:c1:fa:26:eb:c4: dd:bd:be:32:3e:63:9a:a3:70:03:ee:e0:c1:10:e4: 74:7e:06:ec:2d:d2:43:25:32:ec:41:c6:e4:31:92: ee:8a:59:a1:bf:1b:6a:18:f2:7b:31:ca:28:97:61: 39:78:b5:26:e3:5f:2d:93:84:ad:8e:47:38:6c:9c: b4:1f:7e:97:20:80:32:5d:17:6c:ea:2e:14:bb:89: 66:eb:ed:88:5f:f2:f0:be:00:d0:0a:8a:ed:af:b0: 3f:b1:61:eb:21:c0:d7:fe:4b:2a:13:b5:e6:f2:bc: fa:13:7e:7b:54:04:69:e7:42:34:c1:25:e7:2f:2a: f9:b1:fc:f8:a4:0a:7b:fe:47:c0:08:26:bc:42:56: 2d:28:e3:2b:6e:98:aa:34:a3:64:0f:28:45:f9:3c: f5:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:99:87:87:C0:0C:9A:22:E1:62:E2:4B:AA:90:FC:8E:63:72:D3:37 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/977f90e2-d257-4dde-9740-b0391458d8ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8000::/24 Signature Algorithm: sha256WithRSAEncryption 2f:00:9e:2e:6b:e0:b5:0c:39:dd:c0:45:8f:b8:4a:da:6e:35: 5c:98:e3:31:6e:04:7c:97:55:03:f2:37:3e:4a:a9:b9:9f:fb: f3:77:b3:dd:c1:0b:cb:93:c7:f5:49:f9:31:05:6f:95:b6:6e: 63:6e:44:a3:14:36:fd:da:43:7a:e8:86:08:3c:a2:3c:3b:06: 8a:e7:9c:63:b4:19:f0:0f:58:0b:78:7c:66:70:28:63:00:81: a2:5e:77:ad:7a:bb:f6:9c:49:b3:ce:f2:6c:5e:a8:68:3c:1c: 6c:46:b6:f7:ba:3a:71:a2:3d:0c:55:88:86:d3:25:9e:5d:4f: a0:36:a0:ff:cf:71:89:67:2d:16:ee:d1:c7:87:24:4b:4e:2d: b2:ab:0c:af:f2:11:a5:64:d6:1f:f9:26:73:e1:97:b9:ca:3c: 42:f0:66:f8:41:40:5d:9c:f7:91:28:17:cb:d0:21:ac:63:8b: 98:77:19:3a:0c:08:10:67:3b:38:fd:29:23:4c:e3:e5:e9:11: ba:82:08:db:8b:c1:43:4c:1b:94:36:da:59:1b:40:e4:7c:5f: ae:40:ef:95:d7:b5:8e:41:fc:1c:a2:ea:5a:6d:87:da:22:89: 17:e3:b8:6d:40:47:60:cb:60:f6:5e:4b:b6:74:94:75:bf:a9: 65:92:8a:53 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUDh2i85+2Yh1NSezHf6yV62MPfWMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTIwNjAwMTAwN1oX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNAMzM1YzczN2E3ODliNzIyZDczNmI3 YjU4Nzk3MmY0MTlmOGI4MDhlYzEyZmRlNWU1OTVlZjZjYmM5MTFhMjY0ZDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7SMq5T6kaFHiqCki8CtnWgql7kbv aZyVxcJ31XClYyBiaGz2Unc0aeVigF1W0iVELh8eJpH0NqFZF/dZoIg95Lz32YOv YgPivPbxCnXW4p/wYO3h1AFcCQL0wHZY5+bDpGKzwfom68Tdvb4yPmOao3AD7uDB EOR0fgbsLdJDJTLsQcbkMZLuilmhvxtqGPJ7Mcool2E5eLUm418tk4Stjkc4bJy0 H36XIIAyXRds6i4Uu4lm6+2IX/LwvgDQCortr7A/sWHrIcDX/ksqE7Xm8rz6E357 VARp50I0wSXnLyr5sfz4pAp7/kfACCa8QlYtKOMrbpiqNKNkDyhF+Tz1WwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFLeZh4fADJoi4WLiS6qQ/I5jctM3MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 Lzk3N2Y5MGUyLWQyNTctNGRkZS05NzQwLWIwMzkxNDU4ZDhlZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAAjAGAwQAJA+AMA0GCSqGSIb3DQEBCwUAA4IBAQAvAJ4ua+C1DDndwEWPuEra bjVcmOMxbgR8l1UD8jc+Sqm5n/vzd7PdwQvLk8f1SfkxBW+Vtm5jbkSjFDb92kN6 6IYIPKI8OwaK55xjtBnwD1gLeHxmcChjAIGiXneterv2nEmzzvJsXqhoPBxsRrb3 ujpxoj0MVYiG0yWeXU+gNqD/z3GJZy0W7tHHhyRLTi2yqwyv8hGlZNYf+SZz4Ze5 yjxC8Gb4QUBdnPeRKBfL0CGsY4uYdxk6DAgQZzs4/SkjTOPl6RG6ggjbi8FDTBuU NtpZG0DkfF+uQO+V17WOQfwcoupabYfaIokX47htQEdgy2D2Xku2dJR1v6llkopT -----END CERTIFICATE-----Generated at Sat Dec 6 10:55:03 2025 by rpki-client