This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa File: ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa (raw, json) Hash identifier: kHbw+UinKhVPx4U/DgEwN0gdQJ1QsMaAqFAm2CN1zEI= Subject key identifier: 91:3E:FE:A0:2D:DB:C8:B8:C3:E1:B5:C5:7C:96:27:5F:94:D0:CC:77 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 135C95AF879F45853128EA3AD71DD52AD7327CA5 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa Signing time: Wed 12 Nov 2025 00:00:09 +0000 ROA not before: Wed 12 Nov 2025 00:00:09 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:8020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:5c:95:af:87:9f:45:85:31:28:ea:3a:d7:1d:d5:2a:d7:32:7c:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Nov 12 00:00:09 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=d33b88f62991c5614dd7c93c4a298843c4c48442b2f8752de2a8d277a825d04b, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8f:0d:0f:40:8d:6f:86:af:f7:37:fc:7a:49: 82:00:27:f7:7c:1b:ba:0a:68:ff:1e:c3:e0:28:ed: 77:34:09:53:17:f0:d5:b5:8c:88:9e:b7:28:c0:04: 43:36:8d:80:c5:b6:f5:32:79:4a:e9:04:a1:7d:98: f7:b1:49:5d:e9:34:37:95:5d:a5:b4:71:8e:bb:62: 8b:63:8e:40:43:44:b1:58:cc:7f:c9:2c:7b:82:0f: ed:81:c6:4e:7d:29:90:21:75:60:d0:a7:16:d1:5a: 59:cf:26:e7:c8:1c:a0:3d:25:d7:be:d5:3d:d7:e2: 9a:95:4a:c6:d4:91:97:22:df:9a:28:9f:4d:79:8f: 7c:b9:c3:c9:e5:70:9c:63:0c:06:6f:31:72:c9:d1: 90:a3:9c:75:5c:5a:0e:61:06:b4:8c:4f:f2:3e:1f: dd:ec:28:f3:f2:c4:8d:f0:1f:d3:be:67:32:03:e0: 8e:b0:0d:e0:86:a9:65:e3:be:0b:5c:1a:77:55:83: 89:68:c9:c5:f3:9c:87:7a:4b:61:7b:76:98:69:d5: 95:ce:61:5d:d9:e2:c8:97:6c:22:4d:58:86:21:53: 20:ec:b1:f0:d9:ea:91:1c:d2:c5:ed:ff:6e:84:36: 77:9a:01:23:5d:bb:8c:cc:3a:ec:e1:67:6a:75:84: 2c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:3E:FE:A0:2D:DB:C8:B8:C3:E1:B5:C5:7C:96:27:5F:94:D0:CC:77 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:8020::/48 Signature Algorithm: sha256WithRSAEncryption 46:63:33:ca:13:cf:3f:bd:f2:4a:a7:52:df:01:4d:96:61:74: 2d:83:a3:6e:30:2b:2a:4c:d2:60:6a:22:1f:0c:14:c0:0d:0c: c7:7b:e6:f7:2e:a5:97:46:c1:38:2f:4b:c7:99:16:60:6c:1f: b1:5f:d1:07:21:a5:7d:32:de:c5:c8:ff:ce:ad:75:e0:9b:31: a9:5f:72:13:d6:00:33:72:f8:fd:9d:c6:bc:38:58:cf:9e:b6: 5b:f7:6e:e1:7b:76:a6:7f:db:25:27:6c:53:03:f7:fa:a0:d3: d0:9a:38:3a:93:27:3e:bf:1e:13:51:21:88:c0:74:b4:a0:48: b7:41:59:a4:49:f4:6e:96:70:55:a5:14:a1:5b:6e:88:2f:8f: 2b:03:6e:3b:2b:1b:4e:10:c9:a4:7f:51:fd:73:b7:28:cd:e3: ab:e2:49:6f:b5:a4:0f:e3:2d:e2:f3:c1:29:29:98:b0:52:dd: 61:32:67:c3:2b:ea:de:68:95:c8:03:55:21:16:68:42:f4:15: 3e:8c:f4:4f:65:62:cf:0a:12:2b:80:0a:e7:ef:96:c1:0f:8e: 22:80:8d:96:e7:fa:10:9d:98:31:10:58:05:6e:58:05:b3:ce: f3:3e:9b:5e:7c:8e:83:da:a9:91:30:05:ea:7c:67:6d:a8:ed: 81:a9:02:f2 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUE1yVr4efRYUxKOo61x3VKtcyfKUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTExMjAwMDAwOVoX DTI1MTIxNzIzNTk1OVowejFJMEcGA1UEBRNAZDMzYjg4ZjYyOTkxYzU2MTRkZDdj OTNjNGEyOTg4NDNjNGM0ODQ0MmIyZjg3NTJkZTJhOGQyNzdhODI1ZDA0YjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtY8ND0CNb4av9zf8ekmCACf3fBu6 Cmj/HsPgKO13NAlTF/DVtYyInrcowARDNo2Axbb1MnlK6QShfZj3sUld6TQ3lV2l tHGOu2KLY45AQ0SxWMx/ySx7gg/tgcZOfSmQIXVg0KcW0VpZzybnyBygPSXXvtU9 1+KalUrG1JGXIt+aKJ9NeY98ucPJ5XCcYwwGbzFyydGQo5x1XFoOYQa0jE/yPh/d 7Cjz8sSN8B/TvmcyA+COsA3ghqll474LXBp3VYOJaMnF85yHekthe3aYadWVzmFd 2eLIl2wiTViGIVMg7LHw2eqRHNLF7f9uhDZ3mgEjXbuMzDrs4WdqdYQsmQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFJE+/qAt28i4w+G1xXyWJ1+U0Mx3MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2FiNGFkMTg1LTJiZmItNDI4MS05ZTIzLTAwYTJhYjRiNmU4Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/4AgMA0GCSqGSIb3DQEBCwUAA4IBAQBGYzPKE88/vfJKp1Lf AU2WYXQtg6NuMCsqTNJgaiIfDBTADQzHe+b3LqWXRsE4L0vHmRZgbB+xX9EHIaV9 Mt7FyP/OrXXgmzGpX3IT1gAzcvj9nca8OFjPnrZb927he3amf9slJ2xTA/f6oNPQ mjg6kyc+vx4TUSGIwHS0oEi3QVmkSfRulnBVpRShW26IL48rA247KxtOEMmkf1H9 c7cozeOr4klvtaQP4y3i88EpKZiwUt1hMmfDK+reaJXIA1UhFmhC9BU+jPRPZWLP ChIrgArn75bBD44igI2W5/oQnZgxEFgFblgFs87zPptefI6D2qmRMAXqfGdtqO2B qQLy -----END CERTIFICATE-----Generated at Sat Dec 6 09:52:38 2025 by rpki-client