This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/efdcb43b-2f19-4107-a0a3-c55daccb2714.roa File: efdcb43b-2f19-4107-a0a3-c55daccb2714.roa (raw, json) Hash identifier: jqQWl/wKWJrQiqvh/q+PPuWcDdOMclPDfq/W8jY6PUs= Subject key identifier: 1C:2A:55:91:6D:5A:0D:4A:28:8F:91:E4:8F:24:C2:FF:24:BF:00:03 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 3D704339E7BCFA4DEF1E50FF675C0270EEFFCD08 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/efdcb43b-2f19-4107-a0a3-c55daccb2714.roa Signing time: Sat 06 Dec 2025 00:10:04 +0000 ROA not before: Sat 06 Dec 2025 00:10:04 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80a0:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:70:43:39:e7:bc:fa:4d:ef:1e:50:ff:67:5c:02:70:ee:ff:cd:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Dec 6 00:10:04 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=814ba97f3357f02d9a14bb1351efa7d0f609675a3db01790d6a5aac059f8e1e5, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:8e:09:36:96:b9:ed:5e:cd:68:1c:da:ec:9b: 32:22:47:e7:a6:16:e9:c6:97:1c:58:d3:19:28:e3: 64:c0:09:74:34:12:42:eb:22:ca:40:fa:54:8c:0f: 1c:79:de:90:30:b7:62:f0:51:66:6d:80:33:b9:5e: 04:93:1f:7d:f1:bc:3f:61:4c:9b:84:b0:c9:b6:23: 05:13:84:97:2b:59:b3:cc:66:c3:9c:10:50:68:c2: 0c:e1:e0:3f:f4:b8:19:26:30:2a:14:54:42:ad:b6: 28:21:1b:e8:f9:e1:1f:26:0c:d7:a1:fe:4f:f6:43: 3f:d5:ed:73:fa:78:d4:31:71:65:e5:91:a3:69:15: 88:fc:8d:d2:44:ef:f7:21:37:89:28:6d:e1:0a:89: f0:5e:0f:83:f4:c6:a3:05:69:67:f1:7f:eb:3f:58: 0e:0d:24:4b:f3:23:57:ae:ab:5a:05:17:4c:a5:53: 43:a9:f6:3a:7c:7d:fd:61:e6:f0:3b:9d:a4:8a:81: d8:c2:16:e5:9a:c3:d7:0e:21:77:49:af:08:75:4a: b3:c4:4c:79:62:72:c5:c1:5b:e4:c4:5f:b8:4d:38: 84:cd:28:ba:37:ac:93:22:66:9d:67:b5:21:84:b2: 79:72:43:b1:9d:3e:fe:28:75:3d:86:95:7e:f5:02: d4:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:2A:55:91:6D:5A:0D:4A:28:8F:91:E4:8F:24:C2:FF:24:BF:00:03 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/efdcb43b-2f19-4107-a0a3-c55daccb2714.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80a0:4000::/40 Signature Algorithm: sha256WithRSAEncryption 68:11:65:b7:5f:06:0d:f8:00:7c:2e:d2:ac:c6:88:6a:5d:93: 76:02:e9:51:18:93:f0:8c:88:20:a4:94:46:08:c9:8b:ca:e2: 46:08:b6:75:41:51:9a:96:cb:72:f7:c1:3b:64:cc:5a:65:d1: 28:cd:b3:8f:b3:38:de:b8:82:16:f6:be:da:86:06:b8:e1:15: 2a:5e:d5:d5:34:a5:e7:c1:c3:d4:ed:38:bf:8d:29:2e:75:10: 86:2e:86:71:ec:43:4c:77:1b:ab:8b:13:8a:98:77:54:df:f9: 55:0a:b2:14:87:98:e8:a4:4b:35:b3:e5:98:13:5e:0c:c4:cf: d6:b0:56:b7:a9:19:b9:9b:69:e1:96:24:bb:27:31:71:6d:e4: 71:1d:00:dc:25:f3:6a:d3:eb:f6:7e:04:85:7d:5e:79:92:23: bc:80:53:46:6c:b7:01:4d:1c:8b:2b:83:75:28:cf:3f:cc:41: 9e:ab:29:89:8d:61:44:75:e6:38:0c:ce:e9:d9:dc:38:1a:47: c1:e5:bc:8e:22:e6:1e:e5:a6:e8:5f:d0:47:4a:02:98:ac:b3: 7a:e8:18:25:2e:e8:34:83:5a:41:c6:a1:e5:6c:76:c1:9a:8e: bc:11:1a:a0:c7:ca:03:a5:67:c8:ec:e6:59:cb:dc:9e:6f:75: b6:f0:ab:18 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUPXBDOee8+k3vHlD/Z1wCcO7/zQgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTIwNjAwMTAwNFoX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNAODE0YmE5N2YzMzU3ZjAyZDlhMTRi YjEzNTFlZmE3ZDBmNjA5Njc1YTNkYjAxNzkwZDZhNWFhYzA1OWY4ZTFlNTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoY4JNpa57V7NaBza7JsyIkfnphbp xpccWNMZKONkwAl0NBJC6yLKQPpUjA8ced6QMLdi8FFmbYAzuV4Ekx998bw/YUyb hLDJtiMFE4SXK1mzzGbDnBBQaMIM4eA/9LgZJjAqFFRCrbYoIRvo+eEfJgzXof5P 9kM/1e1z+njUMXFl5ZGjaRWI/I3SRO/3ITeJKG3hConwXg+D9MajBWln8X/rP1gO DSRL8yNXrqtaBRdMpVNDqfY6fH39YebwO52kioHYwhblmsPXDiF3Sa8IdUqzxEx5 YnLFwVvkxF+4TTiEzSi6N6yTImadZ7UhhLJ5ckOxnT7+KHU9hpV+9QLU5wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFBwqVZFtWg1KKI+R5I8kwv8kvwADMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2VmZGNiNDNiLTJmMTktNDEwNy1hMGEzLWM1NWRhY2NiMjcxNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+AoEAwDQYJKoZIhvcNAQELBQADggEBAGgRZbdfBg34AHwu0qzG iGpdk3YC6VEYk/CMiCCklEYIyYvK4kYItnVBUZqWy3L3wTtkzFpl0SjNs4+zON64 ghb2vtqGBrjhFSpe1dU0pefBw9TtOL+NKS51EIYuhnHsQ0x3G6uLE4qYd1Tf+VUK shSHmOikSzWz5ZgTXgzEz9awVrepGbmbaeGWJLsnMXFt5HEdANwl82rT6/Z+BIV9 XnmSI7yAU0ZstwFNHIsrg3Uozz/MQZ6rKYmNYUR15jgMzunZ3DgaR8HlvI4i5h7l puhf0EdKApiss3roGCUu6DSDWkHGoeVsdsGajrwRGqDHygOlZ8js5lnL3J5vdbbw qxg= -----END CERTIFICATE-----Generated at Sat Dec 6 09:52:43 2025 by rpki-client