This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa File: c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa (raw, json) Hash identifier: 77jrOpC7cZtzm7nSEpJDjgA6Ehg5SRPJYnixsOxypEg= Subject key identifier: B0:E7:B7:92:60:59:2C:8D:6F:59:36:8E:A6:45:0C:9B:01:BD:01:EA Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 59F26D8ECF7A541C9263CA0C20ED299602B96254 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa Signing time: Sat 06 Dec 2025 00:10:07 +0000 ROA not before: Sat 06 Dec 2025 00:10:07 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80fe:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:f2:6d:8e:cf:7a:54:1c:92:63:ca:0c:20:ed:29:96:02:b9:62:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Dec 6 00:10:07 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=1f96e93d950002a154a37d372827fc2574e493b28ff1ea1fd1b8d072c1c70d30, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:36:a4:4c:e8:a2:c1:d8:8d:b0:79:8b:d9:86: af:36:84:b5:01:86:15:fa:be:01:3c:23:79:eb:85: fd:f7:c8:ab:8f:1b:05:7e:aa:7e:b1:13:ca:8e:50: e0:75:cc:91:6e:9a:3b:07:f7:33:ee:77:dd:20:ba: d2:e1:8a:92:af:a2:d6:46:ef:d1:25:04:4d:f7:c8: b9:ef:c8:14:89:e3:d7:e9:04:1e:51:e4:33:4d:fc: 2a:4b:3c:d2:6e:32:72:6d:a2:ba:a6:f1:cc:af:4a: de:25:c2:0b:3a:8f:ba:1f:b8:c2:72:cc:2a:77:37: 07:79:19:0b:84:52:bd:46:bf:23:01:0f:92:52:c6: bf:17:79:2d:75:ac:f1:de:df:b5:99:73:9a:b5:f1: 3c:72:53:c5:0a:6b:b3:e1:ca:4b:45:19:4f:f5:e9: 74:84:4f:2f:93:61:f3:c8:6c:41:4b:ef:55:ef:12: ad:a1:d5:49:4c:af:15:79:fc:b2:ce:81:80:de:ef: e5:ee:9b:b4:6e:12:a4:0c:e1:41:7d:70:da:df:4d: 9e:d6:16:be:18:8d:9e:84:88:a6:7f:ad:3d:fc:9b: a9:ed:9b:11:34:35:67:17:c7:ec:f3:16:4c:2f:8c: 65:89:8c:1b:d8:9f:42:1b:2c:fc:d8:aa:a8:c3:d3: b5:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:E7:B7:92:60:59:2C:8D:6F:59:36:8E:A6:45:0C:9B:01:BD:01:EA X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c6c8c2c8-2610-4b46-9e55-67c12ceccbbe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80fe:8000::/40 Signature Algorithm: sha256WithRSAEncryption 7b:1e:41:5e:b9:42:0f:8c:ce:86:b7:f2:be:34:77:c1:3a:5f: 86:77:fd:73:f3:6b:cd:d0:ff:0f:75:04:52:ed:69:b1:58:f3: d2:14:dc:a2:da:83:25:8a:05:01:32:78:d0:bb:a9:5d:ab:5a: f8:22:83:dd:8f:b2:14:f9:df:70:df:0b:d3:4b:9f:7d:d9:c3: a4:a5:3a:41:b3:1e:5a:9f:7e:ce:1f:8c:a0:18:b3:63:1d:19: 9f:45:be:68:16:9a:70:9a:c9:46:2e:f3:3a:87:42:e8:1c:8e: f3:0f:05:8b:df:ed:c4:57:da:e1:d1:76:ef:f0:17:5c:72:b2: fe:31:44:fa:4b:b1:79:a8:5e:e0:4a:44:3a:1d:78:01:4d:c5: a8:1c:2f:05:ff:2a:43:70:b2:80:87:91:66:3a:6f:74:5b:b3: 3f:1d:12:d2:8a:1d:ba:fb:d5:3e:9b:b2:eb:12:6f:c4:eb:13: b4:7a:a4:e9:13:93:cf:ed:ea:58:ec:02:ff:c6:cd:a2:16:4c: 85:a0:6f:e9:5c:09:6b:23:bb:2c:d6:08:fe:05:eb:97:c9:4d: 44:12:ec:d4:a1:fe:5c:46:ae:f0:84:06:72:09:c1:7d:f2:2c: 57:38:e9:83:fc:ec:03:1b:f1:17:3a:8d:31:8a:a7:7e:1d:27: fa:db:ab:ac -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUWfJtjs96VBySY8oMIO0plgK5YlQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTIwNjAwMTAwN1oX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNAMWY5NmU5M2Q5NTAwMDJhMTU0YTM3 ZDM3MjgyN2ZjMjU3NGU0OTNiMjhmZjFlYTFmZDFiOGQwNzJjMWM3MGQzMDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuDakTOiiwdiNsHmL2YavNoS1AYYV +r4BPCN564X998irjxsFfqp+sRPKjlDgdcyRbpo7B/cz7nfdILrS4YqSr6LWRu/R JQRN98i578gUiePX6QQeUeQzTfwqSzzSbjJybaK6pvHMr0reJcILOo+6H7jCcswq dzcHeRkLhFK9Rr8jAQ+SUsa/F3ktdazx3t+1mXOatfE8clPFCmuz4cpLRRlP9el0 hE8vk2HzyGxBS+9V7xKtodVJTK8VefyyzoGA3u/l7pu0bhKkDOFBfXDa302e1ha+ GI2ehIimf609/Jup7ZsRNDVnF8fs8xZML4xliYwb2J9CGyz82Kqow9O1pwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFLDnt5JgWSyNb1k2jqZFDJsBvQHqMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2M2YzhjMmM4LTI2MTAtNGI0Ni05ZTU1LTY3YzEyY2VjY2JiZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A/oAwDQYJKoZIhvcNAQELBQADggEBAHseQV65Qg+Mzoa38r40 d8E6X4Z3/XPza83Q/w91BFLtabFY89IU3KLagyWKBQEyeNC7qV2rWvgig92PshT5 33DfC9NLn33Zw6SlOkGzHlqffs4fjKAYs2MdGZ9FvmgWmnCayUYu8zqHQugcjvMP BYvf7cRX2uHRdu/wF1xysv4xRPpLsXmoXuBKRDodeAFNxagcLwX/KkNwsoCHkWY6 b3Rbsz8dEtKKHbr71T6bsusSb8TrE7R6pOkTk8/t6ljsAv/GzaIWTIWgb+lcCWsj uyzWCP4F65fJTUQS7NSh/lxGrvCEBnIJwX3yLFc46YP87AMb8Rc6jTGKp34dJ/rb q6w= -----END CERTIFICATE-----Generated at Sat Dec 6 10:55:06 2025 by rpki-client