This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/a3080b31-8684-4ce8-b4e6-33db63d13627.roa File: a3080b31-8684-4ce8-b4e6-33db63d13627.roa (raw, json) Hash identifier: 6CiWiOOjCzdam//3N9o+ppW+FasN3z0azhzjE5RMtxM= Subject key identifier: B6:17:C6:DC:11:CE:06:D6:73:57:89:0D:C1:25:A2:F5:15:AA:FE:B7 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 0FFCFDA4BADCC91E0BD29FF7C3D4F67DAFA8481A Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/a3080b31-8684-4ce8-b4e6-33db63d13627.roa Signing time: Wed 12 Nov 2025 00:00:07 +0000 ROA not before: Wed 12 Nov 2025 00:00:07 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8060::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:fc:fd:a4:ba:dc:c9:1e:0b:d2:9f:f7:c3:d4:f6:7d:af:a8:48:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Nov 12 00:00:07 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=4b6cb7887329b2133b999e590813c887e4bb9983b220f5f1811cc1e0c27bb312, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:a5:da:85:ee:c1:62:84:e7:4b:48:a4:7d:13: db:70:85:17:0d:13:9b:91:6f:31:38:9a:cb:29:51: 30:7a:c9:d9:cc:72:ea:fe:42:27:95:6f:9a:30:87: 81:e3:6c:12:44:9e:1e:f4:38:ed:1e:e8:b7:c5:5d: f7:03:67:a1:a6:1f:ec:21:e3:5e:62:22:c9:bb:4c: b4:ae:5b:f6:08:e2:fa:c6:7f:fe:19:62:24:48:41: 3b:a7:0e:25:25:73:f7:15:e4:97:b5:5c:4b:a7:77: 31:ab:a4:b7:20:0e:c3:38:33:e0:48:c2:e2:f3:32: fa:92:d9:a6:46:61:0a:a3:b1:6e:b6:84:d0:1a:f2: d2:7d:34:10:57:10:0e:31:80:86:ac:62:23:8a:c8: 31:81:42:eb:2a:23:2b:c6:df:f4:a6:c8:d4:f8:5e: 21:fa:41:ab:97:a1:24:ca:d6:eb:e3:fe:bf:b0:7d: 5d:39:90:0d:05:e0:74:8b:d3:1e:e7:55:e1:0d:34: af:b7:b6:8a:b9:fb:ed:5e:f2:a0:33:d1:fe:63:19: 19:7b:3f:66:6e:e7:38:42:ca:bc:08:b8:84:bf:3f: d8:e3:96:e6:6e:d6:23:26:77:1a:39:2d:4d:34:c8: c7:75:f0:63:9a:75:95:38:14:98:86:b7:bf:91:71: b2:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:17:C6:DC:11:CE:06:D6:73:57:89:0D:C1:25:A2:F5:15:AA:FE:B7 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/a3080b31-8684-4ce8-b4e6-33db63d13627.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8060::/32 Signature Algorithm: sha256WithRSAEncryption 39:5c:f2:62:d7:70:74:6c:0e:c5:93:2e:97:be:aa:f3:e5:bf: d7:fe:e2:4a:d6:a2:0c:bd:02:65:cb:6b:4b:fb:55:b2:54:80: 7b:d1:50:0a:ec:13:85:0a:30:6b:ba:19:0d:30:60:f0:1f:bd: 76:38:77:6a:64:de:9b:5b:26:3e:e7:7d:84:f9:1f:15:e7:90: a1:5b:33:dd:26:1b:e2:0e:fb:94:06:d5:c5:fb:8e:c5:a9:20: 6d:ef:c4:ce:51:a8:76:78:66:be:1f:5f:90:bd:7f:b5:19:6f: 43:b5:e9:8b:ce:bc:f8:b7:ba:09:fb:85:6e:2f:a5:d5:be:12: a5:4c:93:8a:0c:5a:4c:f7:02:98:2c:00:0f:7c:0e:b0:0f:f4: 9d:26:66:f2:50:2c:ca:93:f1:a5:80:53:23:3a:3c:2d:0f:64: b7:de:41:7d:4d:19:ba:6c:25:74:6f:96:00:3f:85:70:82:5f: 86:7a:f1:24:fc:4c:80:c7:58:78:4b:c6:7c:35:e4:62:d7:9e: 75:26:0c:8e:3c:03:52:b8:5f:7a:85:7d:ad:52:32:91:61:f3: 22:c9:76:ec:fb:ef:79:0c:00:f6:10:5d:3e:2b:29:c4:62:e7: c7:fa:10:ee:c7:2a:6b:cb:c9:0e:b6:97:08:fb:c8:55:55:07: 24:d5:9f:7f -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUD/z9pLrcyR4L0p/3w9T2fa+oSBowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTExMjAwMDAwN1oX DTI1MTIxNzIzNTk1OVowejFJMEcGA1UEBRNANGI2Y2I3ODg3MzI5YjIxMzNiOTk5 ZTU5MDgxM2M4ODdlNGJiOTk4M2IyMjBmNWYxODExY2MxZTBjMjdiYjMxMjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkKXahe7BYoTnS0ikfRPbcIUXDROb kW8xOJrLKVEwesnZzHLq/kInlW+aMIeB42wSRJ4e9DjtHui3xV33A2ehph/sIeNe YiLJu0y0rlv2COL6xn/+GWIkSEE7pw4lJXP3FeSXtVxLp3cxq6S3IA7DODPgSMLi 8zL6ktmmRmEKo7FutoTQGvLSfTQQVxAOMYCGrGIjisgxgULrKiMrxt/0psjU+F4h +kGrl6Ekytbr4/6/sH1dOZANBeB0i9Me51XhDTSvt7aKufvtXvKgM9H+YxkZez9m buc4Qsq8CLiEvz/Y45bmbtYjJncaOS1NNMjHdfBjmnWVOBSYhre/kXGyqQIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFLYXxtwRzgbWc1eJDcElovUVqv63MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2EzMDgwYjMxLTg2ODQtNGNlOC1iNGU2LTMzZGI2M2QxMzYyNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJA+AYDANBgkqhkiG9w0BAQsFAAOCAQEAOVzyYtdwdGwOxZMul76q 8+W/1/7iStaiDL0CZctrS/tVslSAe9FQCuwThQowa7oZDTBg8B+9djh3amTem1sm Pud9hPkfFeeQoVsz3SYb4g77lAbVxfuOxakgbe/EzlGodnhmvh9fkL1/tRlvQ7Xp i868+Le6CfuFbi+l1b4SpUyTigxaTPcCmCwAD3wOsA/0nSZm8lAsypPxpYBTIzo8 LQ9kt95BfU0ZumwldG+WAD+FcIJfhnrxJPxMgMdYeEvGfDXkYteedSYMjjwDUrhf eoV9rVIykWHzIsl27PvveQwA9hBdPispxGLnx/oQ7scqa8vJDraXCPvIVVUHJNWf fw== -----END CERTIFICATE-----Generated at Sat Dec 6 11:56:20 2025 by rpki-client