This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa File: 381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa (raw, json) Hash identifier: S1Ao7Ed2lEOUChf0wwWlihVPVCgDd6ngfsHWkEG+//M= Subject key identifier: 7F:76:A6:21:E5:4B:28:C4:08:3C:93:63:81:AF:E6:A2:D1:C9:FF:67 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 187133A5E578D6083C47C5893780D1D51F3D2A90 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa Signing time: Sun 07 Dec 2025 00:00:54 +0000 ROA not before: Sun 07 Dec 2025 00:00:54 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 00:08:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:71:33:a5:e5:78:d6:08:3c:47:c5:89:37:80:d1:d5:1f:3d:2a:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Dec 7 00:00:54 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=a30c3abc76af829e344c25ee34454edc305491b5a7950a8d233c7ede93f6a5e2, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:af:23:0d:3a:4d:ae:91:84:e7:2c:b2:93:23: 72:2d:12:d3:27:40:75:de:b4:09:91:5b:d4:13:9c: 90:3f:b3:be:92:45:1c:ad:44:b5:67:3b:c9:35:bc: 44:65:d9:77:e7:92:22:70:98:1a:29:2d:d7:89:12: 0d:5d:85:81:90:63:71:c7:38:5c:15:a4:f4:0a:54: 92:e7:95:5a:22:46:b7:3f:6c:dd:cc:bb:59:9e:0d: d6:55:34:dc:21:e0:a2:a3:0a:31:6e:48:0b:f5:b7: fc:15:bb:8e:63:5f:29:3f:af:0d:c4:5b:36:f0:f7: e9:96:d5:4f:e6:39:3e:cf:b0:20:c6:74:53:70:80: 44:6f:17:5a:84:9f:ac:85:f5:e3:bc:6f:e2:b5:71: d9:46:24:c5:5e:2f:17:5b:cd:d9:14:b2:c9:17:bb: b4:ff:62:61:87:42:a4:f4:4f:9e:5c:46:d7:dd:8a: 39:0a:39:a6:7e:9f:fa:5b:c4:3e:a6:3f:27:ee:11: d5:23:cc:e3:ad:fa:b0:c1:0a:5e:dd:a2:87:30:28: 85:7d:69:94:8f:30:d8:f0:d7:d9:d5:79:02:7f:56: ad:09:22:10:da:7f:8f:a0:6f:7d:42:80:40:27:1f: 3b:7f:38:f6:fc:d1:50:32:9a:42:9e:2a:62:68:83: 93:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:76:A6:21:E5:4B:28:C4:08:3C:93:63:81:AF:E6:A2:D1:C9:FF:67 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/381fc6e6-5d49-41bc-b584-d9437c68e3cd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300::/48 Signature Algorithm: sha256WithRSAEncryption 82:1c:67:81:01:5c:64:49:7c:62:73:5f:03:1d:19:96:e4:5b: 1f:97:6e:01:ff:4c:19:02:bd:12:17:a5:b3:9f:09:3a:09:c3: 09:63:d1:0d:63:a2:10:95:79:9c:b9:7b:c8:da:f2:57:11:a1: 5c:bd:2f:5f:cd:36:54:4c:21:40:fa:92:ee:35:ee:57:b1:91: 21:06:28:e1:40:95:24:b2:2f:b2:7e:6f:70:ed:d5:09:94:71: f9:2d:14:9a:e9:76:47:5d:e4:1a:8c:cf:59:e5:d1:88:71:54: cc:13:cd:cd:22:b5:1c:6d:66:16:d1:be:7a:00:3e:39:8a:a5: 3d:8f:14:7d:9f:ac:be:3e:a4:58:26:47:0c:cc:88:3e:f2:97: 82:61:ce:56:40:34:8f:9f:84:d6:66:ea:38:1c:57:b5:6e:5d: aa:8c:7c:6a:a6:08:1c:11:6e:87:df:2f:1c:51:04:ce:a1:ad: 4b:60:70:19:6c:bc:0c:f0:44:87:b1:46:d5:5a:60:13:71:45: f1:7f:4e:b1:ba:e8:13:35:1f:a1:f5:a7:d7:f6:42:b7:2f:d3: 1f:67:ca:3b:d1:bd:fd:fd:21:9b:6b:e6:a2:63:e3:a2:0c:10: b1:31:0b:95:20:09:bf:0e:08:2b:75:eb:d8:b8:af:88:93:cd: 27:d4:3c:1e -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUGHEzpeV41gg8R8WJN4DR1R89KpAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MTIwNzAwMDA1NFoX DTI2MDMwNzIzNTk1OVowejFJMEcGA1UEBRNAYTMwYzNhYmM3NmFmODI5ZTM0NGMy NWVlMzQ0NTRlZGMzMDU0OTFiNWE3OTUwYThkMjMzYzdlZGU5M2Y2YTVlMjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAha8jDTpNrpGE5yyykyNyLRLTJ0B1 3rQJkVvUE5yQP7O+kkUcrUS1ZzvJNbxEZdl355IicJgaKS3XiRINXYWBkGNxxzhc FaT0ClSS55VaIka3P2zdzLtZng3WVTTcIeCiowoxbkgL9bf8FbuOY18pP68NxFs2 8PfpltVP5jk+z7AgxnRTcIBEbxdahJ+shfXjvG/itXHZRiTFXi8XW83ZFLLJF7u0 /2Jhh0Kk9E+eXEbX3Yo5Cjmmfp/6W8Q+pj8n7hHVI8zjrfqwwQpe3aKHMCiFfWmU jzDY8NfZ1XkCf1atCSIQ2n+PoG99QoBAJx87fzj2/NFQMppCnipiaIOTvwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFH92piHlSyjECDyTY4Gv5qLRyf9nMB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzM4MWZjNmU2LTVkNDktNDFiYy1iNTg0LWQ5NDM3YzY4ZTNjZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAOzAAAAMA0GCSqGSIb3DQEBCwUAA4IBAQCCHGeBAVxkSXxic18D HRmW5Fsfl24B/0wZAr0SF6Wznwk6CcMJY9ENY6IQlXmcuXvI2vJXEaFcvS9fzTZU TCFA+pLuNe5XsZEhBijhQJUksi+yfm9w7dUJlHH5LRSa6XZHXeQajM9Z5dGIcVTM E83NIrUcbWYW0b56AD45iqU9jxR9n6y+PqRYJkcMzIg+8peCYc5WQDSPn4TWZuo4 HFe1bl2qjHxqpggcEW6H3y8cUQTOoa1LYHAZbLwM8ESHsUbVWmATcUXxf06xuugT NR+h9afX9kK3L9MfZ8o70b39/SGba+aiY+OiDBCxMQuVIAm/DggrdevYuK+Ik80n 1Dwe -----END CERTIFICATE-----Generated at Fri Dec 19 00:14:15 2025 by rpki-client