This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22d6913e-5f3d-4f99-9a60-48579f471838.roa File: 22d6913e-5f3d-4f99-9a60-48579f471838.roa (raw, json) Hash identifier: tvlz6rdf6o1VhTj9MN74UhRyGtkmPrUWF+QfcAN2XXk= Subject key identifier: 69:6C:15:2E:1D:3E:F2:54:93:AB:06:1E:4A:35:9A:70:5A:FE:B1:89 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 08B8A6FD9D62C530E0CD4B95F84D3DD0D2A5D7E8 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22d6913e-5f3d-4f99-9a60-48579f471838.roa Signing time: Wed 12 Nov 2025 00:00:43 +0000 ROA not before: Wed 12 Nov 2025 00:00:43 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2400:6500:2000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 00:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:b8:a6:fd:9d:62:c5:30:e0:cd:4b:95:f8:4d:3d:d0:d2:a5:d7:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 12 00:00:43 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=0184f0ac2d791041dd9613575b25afefd2113f1cb44c1ffd76b36ae9cc94e7fd, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c4:35:4d:19:9e:f1:a2:e0:2f:6c:3c:82:4b: 09:91:c1:9b:62:61:46:16:bf:6d:7d:bf:f5:37:f9: f7:42:49:e6:ae:9c:1b:4f:88:b7:04:b5:60:db:93: 1a:c7:62:65:29:9c:cc:60:f6:f6:a4:7c:a5:40:c0: 03:2d:fc:42:d2:08:c7:e7:37:ec:b3:07:9e:91:98: 27:b7:b2:b0:1d:bc:b8:e0:2c:0c:62:ad:e1:05:eb: f2:d0:8e:2c:00:99:ab:39:00:28:ea:d6:76:ef:1d: 11:c0:21:cb:ee:32:15:77:cf:6f:30:e9:21:b4:81: 4e:68:74:44:f8:79:b7:58:fe:35:b2:6a:28:b6:02: e3:1e:e7:f3:9e:4b:9d:1f:1b:13:d5:2f:56:4b:ac: ec:83:7c:25:18:68:fd:5a:df:7c:d6:3e:5f:7f:65: 2c:4d:5a:e8:58:af:c4:ab:4e:79:3f:da:4f:01:54: bd:2d:ce:c0:0c:5f:62:b6:14:66:ec:17:6f:db:70: ef:18:7f:7a:1f:10:e1:17:94:30:4b:3a:be:1e:64: a5:2b:96:27:92:89:10:77:06:c4:e2:66:52:29:b3: 47:d9:a0:e2:94:db:ae:85:92:32:b5:97:c6:1e:6b: b1:8f:f9:07:df:df:c5:9a:d3:05:0f:1d:9c:34:6b: ee:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:6C:15:2E:1D:3E:F2:54:93:AB:06:1E:4A:35:9A:70:5A:FE:B1:89 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22d6913e-5f3d-4f99-9a60-48579f471838.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6500:2000::/36 Signature Algorithm: sha256WithRSAEncryption 49:ef:ce:94:44:11:2b:9f:09:27:98:d1:1d:db:f9:59:f0:0c: 90:39:f1:1f:6e:bc:9a:fc:2d:b3:36:42:3b:da:6c:1c:66:ef: 98:5e:6a:e9:b3:d7:9b:35:30:4d:6b:34:b4:e0:db:5a:97:90: 2c:59:37:c5:27:01:44:6f:be:fd:c1:cd:43:27:02:52:a9:ed: 72:c7:9a:7c:37:01:2f:7a:85:24:ae:e2:89:dc:33:32:71:8b: 50:cd:a4:2e:35:09:4e:e9:32:ff:ae:dc:e1:ca:ee:45:2c:f2: 4b:22:35:5a:07:39:19:fe:94:61:43:84:8b:39:85:51:98:68: 42:03:48:96:f3:b3:90:4f:50:f7:0c:f7:80:59:5f:dc:0a:ba: 46:2b:1c:17:d1:58:b0:b2:75:86:a7:11:5f:92:a2:ba:bc:6b: f6:d0:3e:26:cc:cb:99:5a:89:68:9d:3d:8d:dd:5b:d1:58:eb: 03:27:8c:b1:e1:95:0a:e9:23:4f:cb:59:c2:28:d1:30:e0:e2: f3:35:3c:fb:20:7c:b5:f4:35:69:16:ad:12:71:94:da:37:c9: 63:72:6c:71:ab:0c:79:48:b1:7b:56:03:a0:52:5a:c6:c4:a2: b7:f0:cb:c0:10:dd:06:15:eb:37:35:23:87:c4:0a:ea:24:52: 2a:05:bf:f4 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUCLim/Z1ixTDgzUuV+E090NKl1+gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTExMjAwMDA0M1oX DTI1MTIxNzIzNTk1OVowejFJMEcGA1UEBRNAMDE4NGYwYWMyZDc5MTA0MWRkOTYx MzU3NWIyNWFmZWZkMjExM2YxY2I0NGMxZmZkNzZiMzZhZTljYzk0ZTdmZDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvcQ1TRme8aLgL2w8gksJkcGbYmFG Fr9tfb/1N/n3QknmrpwbT4i3BLVg25Max2JlKZzMYPb2pHylQMADLfxC0gjH5zfs sweekZgnt7KwHby44CwMYq3hBevy0I4sAJmrOQAo6tZ27x0RwCHL7jIVd89vMOkh tIFOaHRE+Hm3WP41smootgLjHufznkudHxsT1S9WS6zsg3wlGGj9Wt981j5ff2Us TVroWK/Eq055P9pPAVS9Lc7ADF9ithRm7Bdv23DvGH96HxDhF5QwSzq+HmSlK5Yn kokQdwbE4mZSKbNH2aDilNuuhZIytZfGHmuxj/kH39/FmtMFDx2cNGvumQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGlsFS4dPvJUk6sGHko1mnBa/rGJMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzIyZDY5MTNlLTVmM2QtNGY5OS05YTYwLTQ4NTc5ZjQ3MTgzOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJABlACAwDQYJKoZIhvcNAQELBQADggEBAEnvzpREESufCSeY0R3b +VnwDJA58R9uvJr8LbM2QjvabBxm75heaumz15s1ME1rNLTg21qXkCxZN8UnAURv vv3BzUMnAlKp7XLHmnw3AS96hSSu4oncMzJxi1DNpC41CU7pMv+u3OHK7kUs8ksi NVoHORn+lGFDhIs5hVGYaEIDSJbzs5BPUPcM94BZX9wKukYrHBfRWLCydYanEV+S orq8a/bQPibMy5laiWidPY3dW9FY6wMnjLHhlQrpI0/LWcIo0TDg4vM1PPsgfLX0 NWkWrRJxlNo3yWNybHGrDHlIsXtWA6BSWsbEorfwy8AQ3QYV6zc1I4fECuokUioF v/Q= -----END CERTIFICATE-----Generated at Wed Dec 3 01:16:08 2025 by rpki-client