This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/3407e5b6-a83d-4668-898f-fdbb23092502.roa File: 3407e5b6-a83d-4668-898f-fdbb23092502.roa (raw, json) Hash identifier: F+0zGGSMWuBzeFDDrUSsBgI7o2bwr7bXbZXYXS9wuKE= Subject key identifier: 89:67:79:04:E9:06:35:0F:D2:78:F4:06:BC:15:F7:CF:BB:C7:31:0D Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 742981D960286F6D6A09120A892CDB12C4520457 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/3407e5b6-a83d-4668-898f-fdbb23092502.roa Signing time: Tue 18 Nov 2025 00:00:10 +0000 ROA not before: Tue 18 Nov 2025 00:00:10 +0000 ROA not after: Mon 16 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2400:6700::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:29:81:d9:60:28:6f:6d:6a:09:12:0a:89:2c:db:12:c4:52:04:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Nov 18 00:00:10 2025 GMT Not After : Feb 16 23:59:59 2026 GMT Subject: serialNumber=68ab7bfe81b2be3f5358746cdaac71990f3f5dad819bc7c77119445a570e86c6, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:13:27:7d:6c:34:88:eb:68:20:65:e3:ae:bb: bd:b9:74:14:ee:3a:91:f1:60:20:24:0d:f0:e9:ef: 50:a7:2e:f5:4a:bb:d3:ba:08:bb:dc:61:1a:40:9a: 10:e2:e2:bd:2d:c3:07:7a:95:63:67:cf:48:4a:6f: ad:03:1c:18:87:32:32:31:cf:37:a1:d8:c4:5e:e5: 75:93:e8:ad:28:11:a1:09:01:f1:b7:be:01:29:56: 9f:88:86:70:35:bf:f4:5b:a6:27:00:99:fe:70:ce: ff:1e:1d:f5:51:ed:eb:82:b8:16:1d:32:b5:0f:02: 43:30:79:7a:29:be:fd:d4:83:c3:ae:e9:d8:33:05: ad:bb:6e:d9:c4:e2:e6:be:7a:a8:14:30:0b:22:9f: 95:cc:c0:5a:fe:94:41:e9:2d:01:5a:db:43:0d:61: 7e:e0:9e:00:33:50:bc:c2:13:d1:1b:6f:fc:06:13: e4:c0:73:ce:2a:01:47:26:8f:34:77:05:b8:17:1b: f3:3d:cc:cf:22:f7:b6:c0:c3:15:59:90:45:ab:2d: 7b:3e:bf:14:d0:81:77:41:bf:19:e5:ef:19:24:d0: f6:bc:20:c6:60:2f:b4:d6:98:eb:00:43:d3:65:45: b6:dc:bf:db:a5:a1:cc:de:4c:ff:93:db:b6:20:88: 24:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:67:79:04:E9:06:35:0F:D2:78:F4:06:BC:15:F7:CF:BB:C7:31:0D X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/3407e5b6-a83d-4668-898f-fdbb23092502.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6700::/32 Signature Algorithm: sha256WithRSAEncryption 19:28:87:48:7d:47:36:3b:e4:b2:63:e7:f1:2a:c7:70:ba:3e: 50:39:0a:3d:9c:63:ee:16:a7:d4:53:e2:ed:1c:74:4f:a9:3c: 76:af:2f:e8:24:8e:4d:fb:d0:ee:d6:9b:17:37:e1:46:5c:16: 81:a2:b4:9a:d8:fb:14:92:16:4c:ca:1d:04:68:de:a6:2f:bc: 96:00:86:34:04:e0:7c:b8:c4:72:c7:c3:38:93:cc:fb:34:ec: e9:ff:27:e4:b7:82:20:c8:7b:bd:ef:14:5f:8f:73:85:f6:3b: 48:eb:bf:c9:41:28:b1:e8:39:99:de:ab:e2:45:34:3b:a2:df: 6a:dd:c6:d2:51:9c:3e:c8:0b:fb:21:3c:ab:1c:e8:07:66:fd: c1:78:70:d3:bd:6c:79:5b:c4:9f:7b:84:e0:06:ec:45:37:56: f0:be:78:dc:f5:8d:bb:3f:b4:7f:26:2d:70:8a:72:bb:e5:d3: 36:8d:4d:27:73:27:3e:61:a6:e8:fa:e8:95:16:c4:d8:b1:3c: ec:b8:ec:84:74:5e:f7:1d:31:08:3c:c4:e2:d6:19:c5:73:8a: d8:ac:6d:da:16:08:65:75:89:34:c9:3d:80:39:6c:81:23:cf: 31:52:2c:78:f0:76:45:46:38:8c:d3:5f:46:3f:c3:37:17:09: 48:1a:4d:9c -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUdCmB2WAob21qCRIKiSzbEsRSBFcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MTExODAwMDAxMFoX DTI2MDIxNjIzNTk1OVowejFJMEcGA1UEBRNANjhhYjdiZmU4MWIyYmUzZjUzNTg3 NDZjZGFhYzcxOTkwZjNmNWRhZDgxOWJjN2M3NzExOTQ0NWE1NzBlODZjNjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRMnfWw0iOtoIGXjrru9uXQU7jqR 8WAgJA3w6e9Qpy71SrvTugi73GEaQJoQ4uK9LcMHepVjZ89ISm+tAxwYhzIyMc83 odjEXuV1k+itKBGhCQHxt74BKVafiIZwNb/0W6YnAJn+cM7/Hh31Ue3rgrgWHTK1 DwJDMHl6Kb791IPDrunYMwWtu27ZxOLmvnqoFDALIp+VzMBa/pRB6S0BWttDDWF+ 4J4AM1C8whPRG2/8BhPkwHPOKgFHJo80dwW4FxvzPczPIve2wMMVWZBFqy17Pr8U 0IF3Qb8Z5e8ZJND2vCDGYC+01pjrAEPTZUW23L/bpaHM3kz/k9u2IIgk8wIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFIlneQTpBjUP0nj0BrwV98+7xzENMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzM0MDdlNWI2LWE4M2QtNDY2OC04OThmLWZkYmIyMzA5MjUwMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJABnADANBgkqhkiG9w0BAQsFAAOCAQEAGSiHSH1HNjvksmPn8SrH cLo+UDkKPZxj7han1FPi7Rx0T6k8dq8v6CSOTfvQ7tabFzfhRlwWgaK0mtj7FJIW TModBGjepi+8lgCGNATgfLjEcsfDOJPM+zTs6f8n5LeCIMh7ve8UX49zhfY7SOu/ yUEoseg5md6r4kU0O6Lfat3G0lGcPsgL+yE8qxzoB2b9wXhw071seVvEn3uE4Abs RTdW8L543PWNuz+0fyYtcIpyu+XTNo1NJ3MnPmGm6ProlRbE2LE87LjshHRe9x0x CDzE4tYZxXOK2Kxt2hYIZXWJNMk9gDlsgSPPMVIsePB2RUY4jNNfRj/DNxcJSBpN nA== -----END CERTIFICATE-----Generated at Sat Dec 6 12:55:43 2025 by rpki-client