This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/cc671c79-21f0-4fff-b898-595966ecd1a9.roa File: cc671c79-21f0-4fff-b898-595966ecd1a9.roa (raw, json) Hash identifier: vhrKhW0gdXGOgfhTiPor954aks5vnlI1w6Ax+IPOHdw= Subject key identifier: 62:9E:28:E9:F0:A9:C4:69:B2:6C:4C:65:32:C3:28:5F:56:77:12:70 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 61B399295A211F05B854C777B2B30CBEEF49D4F0 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/cc671c79-21f0-4fff-b898-595966ecd1a9.roa Signing time: Tue 18 Nov 2025 00:00:10 +0000 ROA not before: Tue 18 Nov 2025 00:00:10 +0000 ROA not after: Mon 16 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2400:6700:ff00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:b3:99:29:5a:21:1f:05:b8:54:c7:77:b2:b3:0c:be:ef:49:d4:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Nov 18 00:00:10 2025 GMT Not After : Feb 16 23:59:59 2026 GMT Subject: serialNumber=9dd02989cc421656418e6a2c23222c43e9fbc10e8f6acd45bfa956d6aeea0366, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:61:7d:c6:af:7e:c6:0d:48:36:9b:86:97:8c: 53:e3:ad:9c:78:59:e8:07:35:4d:21:8d:a0:f9:b3: b7:de:42:73:84:40:3d:2b:ea:b4:92:16:53:a5:78: b6:d8:72:c3:e9:7d:4b:1c:a2:99:f4:3d:15:7b:fe: 3c:d9:42:54:10:18:79:48:fe:2a:e3:87:4d:d4:a4: 30:59:16:d7:20:b9:d4:d4:61:96:40:79:79:df:db: 75:1a:93:af:f0:49:34:57:51:a3:d9:ea:a5:92:8e: 0f:4c:87:7b:36:6f:f7:a1:0c:a6:2c:57:d0:70:37: 0b:cc:25:ab:50:a4:5e:ba:dc:6c:48:0c:00:6d:28: 98:34:f9:a6:f3:29:16:5f:a6:25:ca:50:d4:3e:c9: 73:28:53:83:5e:98:d9:d5:cb:a7:25:48:fe:6a:61: 9d:a8:3b:9e:e7:64:e1:96:a3:1a:5b:7c:ef:ec:09: 84:5d:5f:14:1f:e2:02:95:6d:fa:1e:5b:fb:0e:33: 96:cf:d7:66:d6:24:75:84:5a:c0:f5:61:1c:08:16: 22:6e:39:18:ef:4e:2f:ed:2d:0c:44:5f:7b:b5:06: 1d:13:93:1e:0a:1a:f7:84:3d:f1:a6:73:f4:af:a5: f7:e9:92:34:e2:07:5a:13:a5:e7:c5:0d:2a:d2:d8: 3b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:9E:28:E9:F0:A9:C4:69:B2:6C:4C:65:32:C3:28:5F:56:77:12:70 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/cc671c79-21f0-4fff-b898-595966ecd1a9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6700:ff00::/48 Signature Algorithm: sha256WithRSAEncryption 3a:49:90:56:c8:08:0a:31:4a:b9:1b:c7:bc:dc:08:c9:47:94: a8:38:b1:65:ce:04:45:47:6c:89:02:7a:06:fa:ae:1a:1c:1b: c7:b8:2e:7d:c7:69:ed:d3:41:6d:47:ca:55:b8:c1:07:ef:8d: 7a:64:f9:24:40:0a:27:d9:55:fc:38:54:3e:35:b1:cd:a4:1b: 4b:df:51:ce:03:2f:5e:b2:6e:e4:05:78:fd:3c:9b:fe:01:7d: 2f:d7:b8:16:7d:2e:03:f3:07:24:c8:4b:55:07:47:cd:86:4c: 9b:eb:c9:7e:ee:4d:26:1d:ab:80:47:9c:8a:34:0b:ce:17:69: f6:2f:b5:e9:f2:18:8e:42:60:06:6b:4b:f9:73:04:43:72:30: 5e:ad:ca:95:c4:8d:54:98:5c:d7:8c:fe:00:4a:8c:e2:e2:36: 8b:84:7c:55:55:8a:5e:3f:7a:b1:be:fc:7d:38:3d:b2:3c:1a: 83:27:2c:a0:92:cb:dd:ed:ab:e7:3c:95:7b:6c:96:68:b1:6c: 2b:bb:c8:90:ae:c0:47:4a:27:0e:a8:24:14:c2:06:36:61:10: 0e:90:b4:83:31:dd:7c:ac:3e:ca:44:cf:9f:d4:76:98:db:c2: 74:43:48:2d:9f:85:23:52:87:76:04:bc:a3:92:ef:16:f5:3f: 97:8d:3a:40 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUYbOZKVohHwW4VMd3srMMvu9J1PAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MTExODAwMDAxMFoX DTI2MDIxNjIzNTk1OVowejFJMEcGA1UEBRNAOWRkMDI5ODljYzQyMTY1NjQxOGU2 YTJjMjMyMjJjNDNlOWZiYzEwZThmNmFjZDQ1YmZhOTU2ZDZhZWVhMDM2NjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt2F9xq9+xg1INpuGl4xT462ceFno BzVNIY2g+bO33kJzhEA9K+q0khZTpXi22HLD6X1LHKKZ9D0Ve/482UJUEBh5SP4q 44dN1KQwWRbXILnU1GGWQHl539t1GpOv8Ek0V1Gj2eqlko4PTId7Nm/3oQymLFfQ cDcLzCWrUKReutxsSAwAbSiYNPmm8ykWX6YlylDUPslzKFODXpjZ1cunJUj+amGd qDue52ThlqMaW3zv7AmEXV8UH+IClW36Hlv7DjOWz9dm1iR1hFrA9WEcCBYibjkY 704v7S0MRF97tQYdE5MeChr3hD3xpnP0r6X36ZI04gdaE6XnxQ0q0tg7dQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFGKeKOnwqcRpsmxMZTLDKF9WdxJwMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 L2NjNjcxYzc5LTIxZjAtNGZmZi1iODk4LTU5NTk2NmVjZDFhOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJABnAP8AMA0GCSqGSIb3DQEBCwUAA4IBAQA6SZBWyAgKMUq5G8e8 3AjJR5SoOLFlzgRFR2yJAnoG+q4aHBvHuC59x2nt00FtR8pVuMEH7416ZPkkQAon 2VX8OFQ+NbHNpBtL31HOAy9esm7kBXj9PJv+AX0v17gWfS4D8wckyEtVB0fNhkyb 68l+7k0mHauAR5yKNAvOF2n2L7Xp8hiOQmAGa0v5cwRDcjBercqVxI1UmFzXjP4A Sozi4jaLhHxVVYpeP3qxvvx9OD2yPBqDJyygksvd7avnPJV7bJZosWwru8iQrsBH SicOqCQUwgY2YRAOkLSDMd18rD7KRM+f1HaY28J0Q0gtn4UjUod2BLyjku8W9T+X jTpA -----END CERTIFICATE-----Generated at Sat Dec 6 22:34:27 2025 by rpki-client