This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/baa1273d-7883-4b5d-8e1c-23ebac490846.roa File: baa1273d-7883-4b5d-8e1c-23ebac490846.roa (raw, json) Hash identifier: 2YRaEZhHlHgRxONWFHGn7TNPIfhuhyhuHn+S8Bm5BGs= Subject key identifier: 48:E0:DF:33:3C:EA:92:D6:DA:2C:6B:1F:0F:A7:C3:E8:75:15:55:D3 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: F51E4BB5C01C2C2F6D3CAC5535816360F87798 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/baa1273d-7883-4b5d-8e1c-23ebac490846.roa Signing time: Wed 12 Nov 2025 00:00:12 +0000 ROA not before: Wed 12 Nov 2025 00:00:12 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:4040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: f5:1e:4b:b5:c0:1c:2c:2f:6d:3c:ac:55:35:81:63:60:f8:77:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Nov 12 00:00:12 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=924f97326efc0657b51e4f45cf8773b89942c3fb559513676a47e8de209b9fbe, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:8a:e0:4f:1d:7c:5c:27:4b:69:b3:35:b4:80: 98:53:5e:00:e8:0d:22:7e:5d:46:ca:46:4c:ef:cc: 17:7a:be:38:f9:3e:aa:9b:0f:0c:b5:35:21:66:60: 3d:8d:40:a9:1b:3c:bf:40:dc:2c:ec:35:0f:00:ce: b6:15:ce:0f:05:e2:2a:70:4c:a3:06:e1:f7:52:75: 1e:f7:f6:da:90:90:a1:02:4e:c8:b8:99:a6:00:1c: 65:c0:3f:fc:c9:eb:91:99:3e:45:4d:bf:88:b3:2e: 28:39:a6:44:0c:11:32:fb:e5:8e:da:8a:d6:fc:47: e4:85:bd:0d:69:07:4f:7b:26:3d:8a:56:c7:08:68: fa:a3:33:fa:cc:a0:b6:f1:20:76:eb:06:db:a9:d4: b2:e2:59:4d:b9:66:e0:96:7d:66:f7:be:d0:48:57: 51:4b:5d:48:d1:9d:38:d8:a5:ae:b4:00:a2:37:fc: d4:e6:e9:dd:08:ae:56:31:40:43:98:cf:99:64:26: 74:93:fe:c7:34:d6:40:38:1a:20:62:14:d3:5a:b9: 7a:0b:f6:25:f5:aa:5b:8d:db:36:26:d4:95:cf:77: 69:66:cd:95:1b:33:2b:39:e4:8b:dc:40:35:40:0c: 0f:a7:9a:22:bc:ba:1f:13:92:26:b8:ad:56:15:c8: 42:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:E0:DF:33:3C:EA:92:D6:DA:2C:6B:1F:0F:A7:C3:E8:75:15:55:D3 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/baa1273d-7883-4b5d-8e1c-23ebac490846.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:4040::/48 Signature Algorithm: sha256WithRSAEncryption 1c:26:58:f6:7e:f7:28:19:43:23:6c:9b:b7:83:c3:67:32:ef: b5:46:a6:15:16:9b:20:c4:ae:5b:1f:10:aa:6f:90:b5:42:ad: aa:fd:23:e0:f9:2d:43:e4:4a:2b:47:5d:c6:b8:93:9e:ce:48: d5:f8:f8:e6:65:83:c3:90:11:69:9f:ea:ac:b6:ed:11:49:ac: 41:72:7e:2b:33:cd:e5:e9:68:fb:cb:79:f4:a9:d1:5d:3f:5f: dd:c6:95:c2:0b:c1:f7:a0:07:47:40:31:1f:cc:76:f8:98:b8: b0:d6:d4:3b:c4:f8:c8:f7:d9:30:73:d3:2a:25:0b:4e:20:13: a2:09:01:d9:35:0f:9f:15:f3:ae:ec:bb:c8:60:98:ea:ff:46: 8b:c1:ca:0b:74:49:1b:d6:10:0d:44:57:04:86:df:ed:14:1d: ea:05:dd:aa:5f:6e:19:1f:1b:d3:41:84:09:7d:1f:ba:e7:7a: ae:fe:75:47:cd:a1:6e:30:04:ef:56:d3:5b:2d:65:08:ba:94: f7:9e:12:b2:c6:6b:33:16:23:38:79:18:cf:36:73:21:46:3d: 9e:b3:66:b0:dd:8a:af:45:db:19:15:7e:55:79:3a:cf:34:c2: 2c:15:ab:c8:05:c1:d9:c0:86:81:04:3e:82:ee:3c:9b:d8:3c: 63:64:c3:bd -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUAPUeS7XAHCwvbTysVTWBY2D4d5gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTExMjAwMDAxMloX DTI1MTIxNzIzNTk1OVowejFJMEcGA1UEBRNAOTI0Zjk3MzI2ZWZjMDY1N2I1MWU0 ZjQ1Y2Y4NzczYjg5OTQyYzNmYjU1OTUxMzY3NmE0N2U4ZGUyMDliOWZiZTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjYrgTx18XCdLabM1tICYU14A6A0i fl1GykZM78wXer44+T6qmw8MtTUhZmA9jUCpGzy/QNws7DUPAM62Fc4PBeIqcEyj BuH3UnUe9/bakJChAk7IuJmmABxlwD/8yeuRmT5FTb+Isy4oOaZEDBEy++WO2orW /Efkhb0NaQdPeyY9ilbHCGj6ozP6zKC28SB26wbbqdSy4llNuWbgln1m977QSFdR S11I0Z042KWutACiN/zU5undCK5WMUBDmM+ZZCZ0k/7HNNZAOBogYhTTWrl6C/Yl 9apbjds2JtSVz3dpZs2VGzMrOeSL3EA1QAwPp5oivLofE5ImuK1WFchCWQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFEjg3zM86pLW2ixrHw+nw+h1FVXTMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2JhYTEyNzNkLTc4ODMtNGI1ZC04ZTFjLTIzZWJhYzQ5MDg0Ni5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/0BAMA0GCSqGSIb3DQEBCwUAA4IBAQAcJlj2fvcoGUMjbJu3 g8NnMu+1RqYVFpsgxK5bHxCqb5C1Qq2q/SPg+S1D5EorR13GuJOezkjV+PjmZYPD kBFpn+qstu0RSaxBcn4rM83l6Wj7y3n0qdFdP1/dxpXCC8H3oAdHQDEfzHb4mLiw 1tQ7xPjI99kwc9MqJQtOIBOiCQHZNQ+fFfOu7LvIYJjq/0aLwcoLdEkb1hANRFcE ht/tFB3qBd2qX24ZHxvTQYQJfR+653qu/nVHzaFuMATvVtNbLWUIupT3nhKyxmsz FiM4eRjPNnMhRj2es2aw3YqvRdsZFX5VeTrPNMIsFavIBcHZwIaBBD6C7jyb2Dxj ZMO9 -----END CERTIFICATE-----Generated at Sat Dec 6 10:57:24 2025 by rpki-client