This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c886fdcc-d9c4-485a-a941-7aa2c7d093e3.roa File: c886fdcc-d9c4-485a-a941-7aa2c7d093e3.roa (raw, json) Hash identifier: JaVk73lyoPlt6km78zEYfrDzYfisuJA1jPQiVzBwZ0E= Subject key identifier: C7:C6:AC:AA:62:03:11:CB:2F:73:B7:83:F5:CC:26:85:1C:0B:49:F2 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 73BA603345581D00D431B49F0DAB91B151F821E7 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c886fdcc-d9c4-485a-a941-7aa2c7d093e3.roa Signing time: Sat 06 Dec 2025 00:10:05 +0000 ROA not before: Sat 06 Dec 2025 00:10:05 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80fe:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:ba:60:33:45:58:1d:00:d4:31:b4:9f:0d:ab:91:b1:51:f8:21:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Dec 6 00:10:05 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=1b75ad489b651b60bf1345e31e07e00fcb116d1fdc87b9af062dcd5e4808503e, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9a:79:f9:60:e3:0d:44:e5:76:66:ab:2f:75: 35:5f:72:4f:f6:72:30:11:5a:7e:ae:df:3e:e2:f9: 5b:0c:ae:b9:e9:fd:c4:bb:2b:45:44:0b:bb:ea:cd: 7e:8e:50:4b:3e:ce:6d:21:35:cc:e2:8f:01:67:33: 9e:86:18:00:a8:b0:5c:54:65:db:95:3e:60:45:32: d4:2d:8a:dd:e4:c2:2d:d5:32:d6:55:13:ee:54:ae: 37:79:42:b9:e1:fb:ff:61:14:0c:ac:5e:61:72:b1: de:fa:6b:79:53:88:4a:7e:55:5b:1b:7f:36:e6:17: f5:2b:14:b5:de:00:55:3e:7e:21:47:78:75:e0:73: 56:01:5c:59:14:c9:57:d0:5b:3a:ff:a0:7e:69:b6: 63:eb:aa:e0:1e:aa:84:77:02:ba:7c:4f:36:e9:8e: cf:31:79:6a:93:80:cd:08:ae:ad:24:ec:bf:2d:50: 84:36:73:e3:3e:3e:fa:a6:78:08:6c:f3:38:3b:6e: f5:e8:da:11:f8:28:d6:1d:13:72:7b:ba:ff:1d:c3: 31:a5:53:10:41:4a:a8:3e:72:93:b9:2a:5a:05:ef: 3c:1c:36:89:9a:0f:fe:d4:b7:68:5f:36:4e:2c:e0: 88:97:69:f6:e5:3d:58:81:21:78:7c:9f:f3:7e:c9: 4d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:C6:AC:AA:62:03:11:CB:2F:73:B7:83:F5:CC:26:85:1C:0B:49:F2 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c886fdcc-d9c4-485a-a941-7aa2c7d093e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80fe:4000::/40 Signature Algorithm: sha256WithRSAEncryption 7c:96:d7:5e:57:72:80:aa:28:a4:1d:12:99:35:9e:fb:12:34: cb:f9:33:7a:1c:93:0f:f8:1d:c4:1c:28:81:4f:3a:b9:7b:d7: 09:04:9c:02:15:c2:c4:fe:83:3c:1c:60:5e:7e:ae:68:0a:8a: a0:7c:f1:b7:27:9a:92:ba:1d:a4:d7:6e:10:61:71:b6:88:a1: 1e:59:cc:2c:c3:ec:f8:78:10:87:ac:3b:d4:f8:ea:2a:56:17: ad:62:cb:8a:3a:3c:82:2f:68:ef:5e:5b:29:69:56:30:06:e8: 37:45:0e:be:a4:af:01:80:48:0c:86:72:79:18:e1:f5:de:f7: 6b:b3:e4:e5:b1:5c:2e:8d:3f:90:42:39:8b:e2:6f:90:82:61: c7:29:05:4f:1b:5c:8a:7c:1c:81:27:b2:46:5f:0f:8d:ce:54: b3:b7:0e:e4:79:22:be:5b:d5:ef:72:3d:f5:11:b9:a8:9d:83: f4:58:f3:e9:ac:1b:d5:51:34:3c:d5:97:dd:83:5b:ce:d2:e5: 11:d5:85:89:f8:7c:01:42:a7:7d:f9:7f:c2:d8:5b:77:af:d2: b5:d2:e1:3b:ce:59:6a:94:29:46:69:d2:ff:c7:97:37:d1:9e: 6d:1d:e0:e0:85:7d:c3:bf:3a:85:ac:36:fc:c0:7c:c2:db:08: 72:29:1a:05 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUc7pgM0VYHQDUMbSfDauRsVH4IecwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTIwNjAwMTAwNVoX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNAMWI3NWFkNDg5YjY1MWI2MGJmMTM0 NWUzMWUwN2UwMGZjYjExNmQxZmRjODdiOWFmMDYyZGNkNWU0ODA4NTAzZTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAypp5+WDjDUTldmarL3U1X3JP9nIw EVp+rt8+4vlbDK656f3EuytFRAu76s1+jlBLPs5tITXM4o8BZzOehhgAqLBcVGXb lT5gRTLULYrd5MIt1TLWVRPuVK43eUK54fv/YRQMrF5hcrHe+mt5U4hKflVbG382 5hf1KxS13gBVPn4hR3h14HNWAVxZFMlX0Fs6/6B+abZj66rgHqqEdwK6fE826Y7P MXlqk4DNCK6tJOy/LVCENnPjPj76pngIbPM4O2716NoR+CjWHRNye7r/HcMxpVMQ QUqoPnKTuSpaBe88HDaJmg/+1LdoXzZOLOCIl2n25T1YgSF4fJ/zfslNKQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFMfGrKpiAxHLL3O3g/XMJoUcC0nyMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2M4ODZmZGNjLWQ5YzQtNDg1YS1hOTQxLTdhYTJjN2QwOTNlMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A/kAwDQYJKoZIhvcNAQELBQADggEBAHyW115XcoCqKKQdEpk1 nvsSNMv5M3ockw/4HcQcKIFPOrl71wkEnAIVwsT+gzwcYF5+rmgKiqB88bcnmpK6 HaTXbhBhcbaIoR5ZzCzD7Ph4EIesO9T46ipWF61iy4o6PIIvaO9eWylpVjAG6DdF Dr6krwGASAyGcnkY4fXe92uz5OWxXC6NP5BCOYvib5CCYccpBU8bXIp8HIEnskZf D43OVLO3DuR5Ir5b1e9yPfURuaidg/RY8+msG9VRNDzVl92DW87S5RHVhYn4fAFC p335f8LYW3ev0rXS4TvOWWqUKUZp0v/HlzfRnm0d4OCFfcO/OoWsNvzAfMLbCHIp GgU= -----END CERTIFICATE-----Generated at Sat Dec 6 09:52:18 2025 by rpki-client