This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/5663bf34-10ed-4309-a236-7466afd6f02f.roa File: 5663bf34-10ed-4309-a236-7466afd6f02f.roa (raw, json) Hash identifier: FS1vyz0XLamDOjQ21vOD06OkgWtvhJ7UwSqPGE+oQcg= Subject key identifier: D0:17:62:22:FB:8B:68:F7:BB:48:0E:49:DF:80:1C:31:BB:49:BC:B7 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 7AA6C3C672187470914E25925D38D7CD4C60BFF9 Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/5663bf34-10ed-4309-a236-7466afd6f02f.roa Signing time: Tue 18 Nov 2025 00:00:31 +0000 ROA not before: Tue 18 Nov 2025 00:00:31 +0000 ROA not after: Mon 16 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2403:b300:ff00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 00:03:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:a6:c3:c6:72:18:74:70:91:4e:25:92:5d:38:d7:cd:4c:60:bf:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Nov 18 00:00:31 2025 GMT Not After : Feb 16 23:59:59 2026 GMT Subject: serialNumber=df321bac2173d6fbe28c7254416add85cd821c7f18208f7ccb163c2f06f19199, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:e5:75:28:18:2e:9c:da:3b:63:a7:e4:31:7d: 9e:04:68:a7:be:c1:62:cb:a1:7c:d2:d2:c5:e1:71: 78:ff:6d:50:15:e9:c8:94:c4:e4:4f:c4:87:a7:02: 6a:94:aa:3b:fa:e2:04:ea:64:8f:ef:63:5a:a8:1c: 68:c2:ce:69:17:39:02:d3:ad:21:8c:08:2d:db:df: bc:ca:9a:b1:46:59:71:0e:b2:a1:08:b1:a7:46:15: e6:a3:37:e6:49:eb:69:1d:6c:60:5e:d0:48:6a:e4: a9:b6:53:a4:07:68:3c:96:dc:0d:bd:48:f2:77:56: 84:d8:84:9d:fa:07:86:5b:5f:b3:74:27:48:09:89: 3b:0c:d5:76:60:c1:8b:71:b0:bc:88:16:59:04:39: ca:1d:4c:00:04:37:ab:13:63:d8:f3:7d:67:a4:a1: 0e:46:8d:87:b5:eb:65:14:87:bd:fb:f6:b9:63:63: eb:eb:2b:6a:7b:f6:d0:6c:44:a9:8a:e3:4c:35:9c: 6c:c4:54:22:1a:69:3c:cc:2d:b2:df:c5:8f:4a:7d: 47:e8:22:74:f1:91:fb:9a:e1:61:1e:0c:12:82:53: 52:9d:2c:e3:79:b2:0c:90:14:b9:83:f9:40:60:88: 36:9e:ae:01:d9:f8:c3:d7:ff:69:b3:49:ff:af:37: 51:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:17:62:22:FB:8B:68:F7:BB:48:0E:49:DF:80:1C:31:BB:49:BC:B7 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/5663bf34-10ed-4309-a236-7466afd6f02f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b300:ff00::/48 Signature Algorithm: sha256WithRSAEncryption 88:8b:76:af:ba:54:24:68:73:af:a2:91:ef:e3:31:ff:e4:22: b5:f2:e1:52:b4:41:45:7d:a0:c6:0b:42:9e:dc:49:8f:1a:19: 86:72:e3:cb:a2:1f:c8:43:24:41:60:58:54:1c:96:37:20:2a: 2f:8a:ca:5b:73:d4:73:19:d1:62:54:6c:1f:1e:1e:15:20:ac: e7:4a:17:21:35:ab:19:18:4c:61:d7:d0:94:b2:73:ee:22:c3: 57:64:77:c6:1e:08:b0:3e:e5:96:e7:19:0b:80:d6:ea:26:f3: f8:1c:27:62:e1:07:b1:4e:98:de:56:d9:83:8c:60:cf:f5:78: 8b:e5:c0:2c:f5:2a:dc:19:27:4d:18:cb:50:46:3f:e5:9e:84: ee:62:ed:f3:46:01:b4:b7:b7:40:0f:5e:fa:ba:3c:60:52:6a: 50:63:5e:59:0c:e8:99:91:09:7f:86:02:c4:ac:b4:9c:50:78: f7:e7:11:1e:69:75:f9:f1:7e:fb:64:13:1e:e3:2f:32:b3:a1: 48:67:b3:7c:2f:d1:a7:46:ac:6c:e0:8c:42:55:bb:ec:18:f9: 29:41:2a:93:f3:d3:5c:5f:eb:ec:66:b2:ab:50:44:bd:cc:d4: fe:a2:51:00:9d:81:fc:35:2e:b3:99:ee:81:ca:60:ff:cd:2f: cd:ff:24:8c -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUeqbDxnIYdHCRTiWSXTjXzUxgv/kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MTExODAwMDAzMVoX DTI2MDIxNjIzNTk1OVowejFJMEcGA1UEBRNAZGYzMjFiYWMyMTczZDZmYmUyOGM3 MjU0NDE2YWRkODVjZDgyMWM3ZjE4MjA4ZjdjY2IxNjNjMmYwNmYxOTE5OTEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjuV1KBgunNo7Y6fkMX2eBGinvsFi y6F80tLF4XF4/21QFenIlMTkT8SHpwJqlKo7+uIE6mSP72NaqBxows5pFzkC060h jAgt29+8ypqxRllxDrKhCLGnRhXmozfmSetpHWxgXtBIauSptlOkB2g8ltwNvUjy d1aE2ISd+geGW1+zdCdICYk7DNV2YMGLcbC8iBZZBDnKHUwABDerE2PY831npKEO Ro2HtetlFIe9+/a5Y2Pr6ytqe/bQbESpiuNMNZxsxFQiGmk8zC2y38WPSn1H6CJ0 8ZH7muFhHgwSglNSnSzjebIMkBS5g/lAYIg2nq4B2fjD1/9ps0n/rzdRQwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFNAXYiL7i2j3u0gOSd+AHDG7Sby3MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzU2NjNiZjM0LTEwZWQtNDMwOS1hMjM2LTc0NjZhZmQ2ZjAyZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAOzAP8AMA0GCSqGSIb3DQEBCwUAA4IBAQCIi3avulQkaHOvopHv 4zH/5CK18uFStEFFfaDGC0Ke3EmPGhmGcuPLoh/IQyRBYFhUHJY3ICovispbc9Rz GdFiVGwfHh4VIKznShchNasZGExh19CUsnPuIsNXZHfGHgiwPuWW5xkLgNbqJvP4 HCdi4QexTpjeVtmDjGDP9XiL5cAs9SrcGSdNGMtQRj/lnoTuYu3zRgG0t7dAD176 ujxgUmpQY15ZDOiZkQl/hgLErLScUHj35xEeaXX58X77ZBMe4y8ys6FIZ7N8L9Gn Rqxs4IxCVbvsGPkpQSqT89NcX+vsZrKrUES9zNT+olEAnYH8NS6zme6BymD/zS/N /ySM -----END CERTIFICATE-----Generated at Mon Dec 1 17:32:25 2025 by rpki-client