This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/8c170584-7c9b-414b-8cba-a934a0a79bbe.roa File: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (raw, json) Hash identifier: DuZi0/kBsFkmGULcNt4xmJZ4I8aFDcP0+xR9g1RHy40= Subject key identifier: 62:9D:61:33:CE:22:76:A4:9D:47:BA:CF:78:A7:91:36:8C:DA:C7:91 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 0301E533E0F086FBBC01BD4B5E9210D31312F58E Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/8c170584-7c9b-414b-8cba-a934a0a79bbe.roa Signing time: Sun 07 Dec 2025 00:00:33 +0000 ROA not before: Sun 07 Dec 2025 00:00:33 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2400:6500:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 Jan 2026 00:14:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:01:e5:33:e0:f0:86:fb:bc:01:bd:4b:5e:92:10:d3:13:12:f5:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Dec 7 00:00:33 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=0b9c202629d74a820ce10319f7075f9eec79fcd4512580aef7ed14b3a965efd6, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ed:54:5a:e6:6d:09:3a:7e:06:50:09:10:e6: 11:92:4c:f0:43:61:d1:b8:9f:22:56:49:ca:5e:e7: 6a:16:81:e1:aa:12:b3:e9:36:70:b6:fc:c9:d7:e3: 06:b1:0c:48:a2:13:c9:86:14:99:b7:58:26:4e:96: 21:54:32:b5:1f:60:55:4b:b0:b3:44:65:4f:8d:75: 23:01:4e:6c:c6:f3:5a:9a:e0:cf:eb:e6:f7:c8:0d: 6b:da:75:70:ef:df:b8:7d:53:c5:5a:e5:cf:9d:ba: ea:5d:04:a4:d5:3e:b9:1e:0c:51:1e:66:6c:7c:1e: 22:c1:fd:d7:67:27:80:32:28:b3:95:3e:bb:f0:db: 15:90:4c:ee:39:66:dc:20:4f:db:68:74:5a:6c:50: 29:7f:29:7b:65:62:98:c1:e8:da:d7:8d:59:13:83: f1:3e:a7:36:7e:ee:62:ce:e1:79:00:64:ca:67:76: e0:e1:2a:8e:4c:80:e1:5d:80:cd:41:78:c1:5b:ff: fd:44:e9:43:72:71:e3:9a:08:b8:0f:6e:16:d1:13: 06:d8:cb:3b:2a:04:39:e0:dc:65:9f:52:1f:7c:a8: a5:4e:f6:e6:ba:4f:a2:8f:65:8c:af:6a:0f:ec:64: 1a:37:cc:79:7b:8e:db:77:39:b7:dd:b9:a4:c2:ac: ab:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:9D:61:33:CE:22:76:A4:9D:47:BA:CF:78:A7:91:36:8C:DA:C7:91 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/8c170584-7c9b-414b-8cba-a934a0a79bbe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6500:4000::/48 Signature Algorithm: sha256WithRSAEncryption 74:fe:93:0e:82:74:87:70:31:80:be:ec:65:b1:47:aa:ac:6b: 10:c2:83:4b:1c:67:7b:94:cc:c7:be:a9:21:df:1d:40:48:6a: 12:41:1f:56:ed:48:52:95:6d:22:d4:38:b1:0c:11:e9:86:41: fa:d1:11:25:21:5e:8b:ff:84:66:84:bf:64:56:df:a0:5b:fa: 60:fa:1b:ed:6b:5e:bf:69:97:50:93:fc:89:fe:8a:53:d2:85: a3:2d:af:4b:e1:51:33:40:20:20:22:32:cd:71:af:96:b7:77: f7:84:67:b3:c0:a9:07:9b:0e:b1:01:3a:12:c6:ea:d6:8e:b2: cf:bb:e7:1d:ee:bd:1e:66:0f:d2:02:1c:54:13:d2:53:b7:4f: 14:62:7a:87:3b:86:92:e9:e7:0d:ee:ed:e8:0e:4b:c2:ff:7b: c6:4e:c1:19:7e:21:98:ce:cf:07:81:0c:72:99:53:09:d6:70: 22:7e:e0:bd:5a:89:27:b6:98:4a:f0:69:6e:b6:8c:74:3b:05: e2:94:f6:7a:bf:88:77:00:d5:91:e8:25:24:0a:78:a3:3c:96: 2d:89:7b:94:13:57:13:a7:b2:89:f9:37:cc:1d:72:1d:47:49: 00:2b:72:4c:f3:58:92:f0:e3:f7:d3:f5:57:be:5f:71:e1:22: b4:b4:db:b2 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUAwHlM+Dwhvu8Ab1LXpIQ0xMS9Y4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTIwNzAwMDAzM1oX DTI2MDMwNzIzNTk1OVowejFJMEcGA1UEBRNAMGI5YzIwMjYyOWQ3NGE4MjBjZTEw MzE5ZjcwNzVmOWVlYzc5ZmNkNDUxMjU4MGFlZjdlZDE0YjNhOTY1ZWZkNjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtu1UWuZtCTp+BlAJEOYRkkzwQ2HR uJ8iVknKXudqFoHhqhKz6TZwtvzJ1+MGsQxIohPJhhSZt1gmTpYhVDK1H2BVS7Cz RGVPjXUjAU5sxvNamuDP6+b3yA1r2nVw79+4fVPFWuXPnbrqXQSk1T65HgxRHmZs fB4iwf3XZyeAMiizlT678NsVkEzuOWbcIE/baHRabFApfyl7ZWKYweja141ZE4Px Pqc2fu5izuF5AGTKZ3bg4SqOTIDhXYDNQXjBW//9ROlDcnHjmgi4D24W0RMG2Ms7 KgQ54Nxln1IffKilTvbmuk+ij2WMr2oP7GQaN8x5e47bdzm33bmkwqyr+wIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFGKdYTPOInaknUe6z3inkTaM2seRMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzhjMTcwNTg0LTdjOWItNDE0Yi04Y2JhLWE5MzRhMGE3OWJiZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJABlAEAAMA0GCSqGSIb3DQEBCwUAA4IBAQB0/pMOgnSHcDGAvuxl sUeqrGsQwoNLHGd7lMzHvqkh3x1ASGoSQR9W7UhSlW0i1DixDBHphkH60RElIV6L /4RmhL9kVt+gW/pg+hvta16/aZdQk/yJ/opT0oWjLa9L4VEzQCAgIjLNca+Wt3f3 hGezwKkHmw6xAToSxurWjrLPu+cd7r0eZg/SAhxUE9JTt08UYnqHO4aS6ecN7u3o DkvC/3vGTsEZfiGYzs8HgQxymVMJ1nAifuC9WokntphK8Glutox0OwXilPZ6v4h3 ANWR6CUkCnijPJYtiXuUE1cTp7KJ+TfMHXIdR0kAK3JM81iS8OP30/VXvl9x4SK0 tNuy -----END CERTIFICATE-----Generated at Sat Jan 17 06:47:06 2026 by rpki-client