This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c7b491e4-76ae-4305-8132-a670b41c66fd.roa File: c7b491e4-76ae-4305-8132-a670b41c66fd.roa (raw, json) Hash identifier: 5c5EEL86uizBaBmDLNfWg9UJEySnl0K35R4CtIeIXUc= Subject key identifier: 54:F8:C0:9E:EC:8F:11:4A:8F:DB:4B:9F:3E:37:64:13:6B:2A:6E:91 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 6183331AAD8B6A4BD2E257EC695BC5ABAD9357AA Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c7b491e4-76ae-4305-8132-a670b41c66fd.roa Signing time: Wed 12 Nov 2025 00:00:08 +0000 ROA not before: Wed 12 Nov 2025 00:00:08 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:4000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:83:33:1a:ad:8b:6a:4b:d2:e2:57:ec:69:5b:c5:ab:ad:93:57:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Nov 12 00:00:08 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=e401f96e26a2f56127926224880d97fff45ca87107715464f6c396b733e96a2e, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:4a:f7:e8:21:fa:ef:43:0f:9e:42:dc:ee:4f: 35:19:eb:11:35:f5:15:b7:c6:fc:b1:35:b4:2f:d0: 72:f3:6e:d6:03:10:1d:58:74:fe:e6:42:45:38:32: 15:e5:cc:4a:b1:51:28:04:e9:9e:56:9d:11:72:73: 0f:ab:11:b7:54:c4:70:c6:b3:98:f8:3d:97:8c:d3: ab:b5:4c:4b:bb:ed:68:10:42:e8:c1:02:07:e9:55: b8:d4:5a:79:02:4c:d4:ac:9c:74:f2:1f:a8:c8:c1: 9e:d4:ba:49:a6:ba:fd:20:40:a6:0d:10:04:1c:19: af:35:13:37:0b:a3:e2:68:d1:96:52:53:c0:a3:9c: e3:f2:2e:3f:1a:8a:46:19:fa:c9:4a:98:01:17:b0: b4:43:19:65:d4:14:7b:c1:f6:9b:bd:16:41:56:c2: cc:6c:20:69:a6:b7:c7:4d:91:8c:4f:72:10:bd:93: 96:6f:77:a7:c7:23:a3:85:51:c9:e3:1a:63:f5:4a: 06:41:7f:37:55:05:44:24:d6:60:65:31:fb:07:12: 3c:00:e3:de:5e:9e:b5:73:8e:33:37:d9:8d:d0:34: 31:25:f0:8d:dd:04:1c:15:a0:d1:27:be:6c:ca:b0: 07:5b:51:7d:39:2b:56:e2:65:24:3a:d0:7d:a9:c6: 4f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:F8:C0:9E:EC:8F:11:4A:8F:DB:4B:9F:3E:37:64:13:6B:2A:6E:91 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c7b491e4-76ae-4305-8132-a670b41c66fd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:4000::/40 Signature Algorithm: sha256WithRSAEncryption 66:3d:4d:86:8d:1e:ed:ac:8a:39:27:4f:24:d2:90:4b:a7:c1: 07:c0:6e:97:50:f8:2e:5c:6a:b0:08:9a:10:8b:91:a7:39:31: bb:45:49:af:20:d2:40:29:0a:74:95:4e:33:4b:63:4d:c6:9e: 00:26:e3:b3:4c:3c:16:0c:59:ed:57:67:0c:d5:0f:ae:45:91: 6d:f5:1b:b3:05:26:f2:10:63:8e:bf:cb:e3:34:ee:5f:25:36: f1:f1:66:e7:c1:6b:ba:c1:62:46:16:a7:1f:65:e2:68:f1:e3: de:b2:af:93:21:c9:f6:dd:4e:4b:0e:31:6d:e2:40:c8:82:1f: 06:45:26:4b:e5:cd:a5:86:84:73:6c:39:dd:29:8d:ef:d4:4b: 9c:ef:19:9f:6e:1f:61:e6:88:8e:c3:89:b3:b5:1f:11:f8:52: b6:38:9d:57:69:65:34:d2:1b:9b:0e:45:a9:78:30:c2:0c:45: 5d:99:4d:d7:14:6e:c7:5b:3f:a5:34:2e:f1:fd:ee:9f:96:d8: 70:77:00:b2:30:3e:c0:0e:2d:92:1c:7e:34:46:85:0e:d6:31: f0:c4:04:a3:45:77:45:9e:f8:02:1a:62:63:fe:fc:7a:73:b4: e5:98:e2:11:b3:ba:1f:b5:c6:61:70:de:63:8b:18:73:33:a4: a1:2a:d3:cc -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUYYMzGq2LakvS4lfsaVvFq62TV6owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTExMjAwMDAwOFoX DTI1MTIxNzIzNTk1OVowejFJMEcGA1UEBRNAZTQwMWY5NmUyNmEyZjU2MTI3OTI2 MjI0ODgwZDk3ZmZmNDVjYTg3MTA3NzE1NDY0ZjZjMzk2YjczM2U5NmEyZTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi0r36CH670MPnkLc7k81GesRNfUV t8b8sTW0L9By827WAxAdWHT+5kJFODIV5cxKsVEoBOmeVp0RcnMPqxG3VMRwxrOY +D2XjNOrtUxLu+1oEELowQIH6VW41Fp5AkzUrJx08h+oyMGe1LpJprr9IECmDRAE HBmvNRM3C6PiaNGWUlPAo5zj8i4/GopGGfrJSpgBF7C0Qxll1BR7wfabvRZBVsLM bCBpprfHTZGMT3IQvZOWb3enxyOjhVHJ4xpj9UoGQX83VQVEJNZgZTH7BxI8AOPe Xp61c44zN9mN0DQxJfCN3QQcFaDRJ75syrAHW1F9OStW4mUkOtB9qcZPyQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFT4wJ7sjxFKj9tLnz43ZBNrKm6RMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2M3YjQ5MWU0LTc2YWUtNDMwNS04MTMyLWE2NzBiNDFjNjZmZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A/0AwDQYJKoZIhvcNAQELBQADggEBAGY9TYaNHu2sijknTyTS kEunwQfAbpdQ+C5carAImhCLkac5MbtFSa8g0kApCnSVTjNLY03GngAm47NMPBYM We1XZwzVD65FkW31G7MFJvIQY46/y+M07l8lNvHxZufBa7rBYkYWpx9l4mjx496y r5MhyfbdTksOMW3iQMiCHwZFJkvlzaWGhHNsOd0pje/US5zvGZ9uH2HmiI7DibO1 HxH4UrY4nVdpZTTSG5sORal4MMIMRV2ZTdcUbsdbP6U0LvH97p+W2HB3ALIwPsAO LZIcfjRGhQ7WMfDEBKNFd0We+AIaYmP+/HpztOWY4hGzuh+1xmFw3mOLGHMzpKEq 08w= -----END CERTIFICATE-----Generated at Sat Dec 6 09:56:06 2025 by rpki-client