This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/c1564659-f3aa-4021-a7a5-8f4b1c2c4963.roa File: c1564659-f3aa-4021-a7a5-8f4b1c2c4963.roa (raw, json) Hash identifier: Dei/6svXt+51pdm6lUXVjwEwVwFlx2Op735Bnb84+5o= Subject key identifier: 98:42:17:22:BF:D3:1D:6A:F1:C0:93:21:17:7E:1A:16:BF:C5:12:7F Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 1902E5633106D487BC9D6E01132BB13705570077 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/c1564659-f3aa-4021-a7a5-8f4b1c2c4963.roa Signing time: Wed 12 Nov 2025 00:00:07 +0000 ROA not before: Wed 12 Nov 2025 00:00:07 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2400:6700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:02:e5:63:31:06:d4:87:bc:9d:6e:01:13:2b:b1:37:05:57:00:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Nov 12 00:00:07 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=f78f0980915a1498ba2cf6d86b1c3e24d26425d7967d04b70a3537671e6eab61, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5d:6c:13:9e:60:88:c9:26:26:19:ee:20:c1: 3f:35:1b:c7:dc:25:78:a5:de:92:91:36:9b:6b:1b: 55:25:20:52:18:06:e0:32:d8:b2:36:44:71:f6:4f: a7:98:5e:f6:1b:c1:bf:12:80:42:27:e8:3d:ed:a5: 51:33:bf:46:f5:f4:81:f2:b3:c0:f1:3b:ae:83:31: 07:1e:45:9e:d0:c7:4d:c9:17:b4:b9:55:76:5f:ea: fb:bb:81:6d:35:24:f6:57:d7:ae:51:fd:5f:c7:86: e6:91:77:0a:84:b3:4e:ac:17:15:81:57:8b:13:74: 58:06:83:73:62:90:a9:78:12:01:95:40:52:e6:c3: 74:02:82:de:6f:5e:e9:ec:b2:b0:07:ca:17:5d:86: 5d:10:7d:bd:43:b7:01:d9:c9:e6:b8:b3:f0:a7:5a: b7:ea:e4:cc:ea:c1:32:c1:13:ee:05:20:9b:7b:66: d7:54:b5:e5:05:e8:fb:4a:b6:31:8d:a3:eb:91:ee: ed:1d:c3:0a:71:c7:7b:6b:2c:7b:9d:1b:70:36:98: 60:07:07:f8:0f:c6:56:13:64:34:78:81:5d:91:49: 8f:ee:82:df:e9:99:9a:55:df:cb:c4:c1:5b:ad:0f: 88:ed:82:5b:0d:6b:65:87:5c:0f:5d:a0:a7:dd:50: df:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:42:17:22:BF:D3:1D:6A:F1:C0:93:21:17:7E:1A:16:BF:C5:12:7F X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/c1564659-f3aa-4021-a7a5-8f4b1c2c4963.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6700::/48 Signature Algorithm: sha256WithRSAEncryption 19:17:7e:9c:35:84:e4:ee:e1:05:9b:21:88:bf:85:a5:3a:97: fc:80:7b:c6:40:af:b6:bb:79:15:16:30:c9:50:d6:02:33:6c: 98:c2:7f:0e:e3:2d:5b:ba:4a:1a:cc:03:9a:6d:2c:df:54:e4: b9:a5:3a:e9:58:0a:83:f8:7b:60:26:dd:bd:d9:48:a1:74:12: 65:33:4d:cd:4d:4f:25:32:60:1c:3c:e7:d4:92:69:ce:22:0d: ac:ec:0f:8a:d8:fb:76:11:60:af:49:27:ab:04:4d:c9:6e:bb: 95:10:3a:f9:4e:7a:5c:36:b8:3c:cc:b0:45:4f:81:ea:0f:e5: ba:1e:60:15:74:60:b8:60:ad:d3:a0:b2:cd:1d:f9:75:af:ac: 26:aa:32:23:7f:60:3c:10:03:d3:13:40:8c:a8:70:20:37:92: be:3e:91:b8:d9:28:4f:ff:b3:5a:82:2e:08:1a:80:48:d5:03: cb:10:d6:45:44:f7:95:91:41:ab:24:1f:e6:0a:cd:26:0f:f2: 0a:9d:cf:ef:2f:a9:b1:60:30:7f:63:57:76:a8:4d:d6:fb:f1: 3c:43:29:40:19:f2:84:57:3a:b4:87:a6:cf:82:7a:31:4b:1d: 04:c3:a3:f3:48:84:fe:27:84:c1:47:63:ba:60:7a:b9:6d:5a: ce:13:de:e6 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUGQLlYzEG1Ie8nW4BEyuxNwVXAHcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MTExMjAwMDAwN1oX DTI1MTIxNzIzNTk1OVowejFJMEcGA1UEBRNAZjc4ZjA5ODA5MTVhMTQ5OGJhMmNm NmQ4NmIxYzNlMjRkMjY0MjVkNzk2N2QwNGI3MGEzNTM3NjcxZTZlYWI2MTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt11sE55giMkmJhnuIME/NRvH3CV4 pd6SkTabaxtVJSBSGAbgMtiyNkRx9k+nmF72G8G/EoBCJ+g97aVRM79G9fSB8rPA 8TuugzEHHkWe0MdNyRe0uVV2X+r7u4FtNST2V9euUf1fx4bmkXcKhLNOrBcVgVeL E3RYBoNzYpCpeBIBlUBS5sN0AoLeb17p7LKwB8oXXYZdEH29Q7cB2cnmuLPwp1q3 6uTM6sEywRPuBSCbe2bXVLXlBej7SrYxjaPrke7tHcMKccd7ayx7nRtwNphgBwf4 D8ZWE2Q0eIFdkUmP7oLf6ZmaVd/LxMFbrQ+I7YJbDWtlh1wPXaCn3VDfXwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFJhCFyK/0x1q8cCTIRd+Gha/xRJ/MB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 L2MxNTY0NjU5LWYzYWEtNDAyMS1hN2E1LThmNGIxYzJjNDk2My5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJABnAAAAMA0GCSqGSIb3DQEBCwUAA4IBAQAZF36cNYTk7uEFmyGI v4WlOpf8gHvGQK+2u3kVFjDJUNYCM2yYwn8O4y1bukoazAOabSzfVOS5pTrpWAqD +HtgJt292UihdBJlM03NTU8lMmAcPOfUkmnOIg2s7A+K2Pt2EWCvSSerBE3JbruV EDr5TnpcNrg8zLBFT4HqD+W6HmAVdGC4YK3ToLLNHfl1r6wmqjIjf2A8EAPTE0CM qHAgN5K+PpG42ShP/7Nagi4IGoBI1QPLENZFRPeVkUGrJB/mCs0mD/IKnc/vL6mx YDB/Y1d2qE3W+/E8QylAGfKEVzq0h6bPgnoxSx0Ew6PzSIT+J4TBR2O6YHq5bVrO E97m -----END CERTIFICATE-----Generated at Sat Dec 6 11:57:56 2025 by rpki-client