This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/3684e50c-c50f-4ebb-b327-e0759241197e.roa File: 3684e50c-c50f-4ebb-b327-e0759241197e.roa (raw, json) Hash identifier: 4627E3Mj815EcaXkX3BTu4n4/Fyc8pjeRhwmHUjWB4E= Subject key identifier: 25:B8:37:7B:E0:A5:9C:84:99:61:AC:48:41:4B:4E:90:15:72:79:75 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 2767A85CCBB6B808203101F023196F376F136623 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/3684e50c-c50f-4ebb-b327-e0759241197e.roa Signing time: Wed 12 Nov 2025 00:00:42 +0000 ROA not before: Wed 12 Nov 2025 00:00:42 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2400:6500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 00:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:67:a8:5c:cb:b6:b8:08:20:31:01:f0:23:19:6f:37:6f:13:66:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 12 00:00:42 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=89a5d2ccf8428830c25fdde2727c6d152e2bbc08a394c9e2d73ed39110fae11c, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d8:dd:6f:8b:55:bb:8a:1b:ac:90:9d:ae:d8: d0:2e:7c:2f:ea:21:cf:e9:6f:ed:d7:cc:a9:34:c0: 57:ab:fc:a0:01:d4:b2:fc:ff:9e:84:f2:8c:28:51: af:c7:0c:87:25:28:ea:85:5d:e8:57:a8:ab:a6:d5: 39:60:ea:c3:88:ee:e9:1d:0d:ff:0c:ad:34:0e:12: a6:ab:17:83:b5:74:23:e5:55:78:b1:93:c5:44:61: 48:de:55:5d:b7:f1:71:37:0d:80:7c:01:38:97:f4: be:d1:d2:93:c2:da:4f:1d:25:09:57:39:b8:e9:11: 1b:15:56:d2:09:64:d8:e4:d0:0a:65:ce:65:8d:4d: 6b:da:1a:5d:e2:42:8b:93:0b:61:07:22:5a:34:98: 7f:5b:6d:bf:de:40:f5:81:bf:e6:b4:ff:24:5b:82: bd:19:91:28:03:a3:4b:d1:6a:3b:43:9d:18:13:d1: c7:22:75:7b:e5:4a:f3:4d:2c:c2:32:7e:e5:f0:26: b3:06:a4:e4:e3:55:32:1b:45:16:51:e1:e3:60:f0: 0e:eb:ce:dd:e2:5f:e6:0c:89:fb:14:61:10:f9:5f: 43:ad:e2:87:a0:7a:84:9b:30:68:c4:ae:21:9e:f0: 60:75:24:d2:4f:a5:89:17:8b:7e:a1:8b:c0:27:e0: 04:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:B8:37:7B:E0:A5:9C:84:99:61:AC:48:41:4B:4E:90:15:72:79:75 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/3684e50c-c50f-4ebb-b327-e0759241197e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6500::/48 Signature Algorithm: sha256WithRSAEncryption e9:18:db:fb:43:e3:04:48:1f:5f:ce:33:db:39:8b:a6:9e:b4: 23:4e:24:a0:dc:ac:27:cf:4c:26:40:0e:4b:4f:e7:a0:f0:ca: 2b:89:04:cc:d7:2c:96:9d:b1:16:74:ac:7e:13:9f:50:83:05: 40:04:26:2c:d5:f4:ec:f3:66:37:75:23:90:1a:e7:9d:88:b4: 69:ed:1e:e5:13:da:80:32:85:68:be:0c:ab:ef:99:51:11:a9: d6:ad:3a:59:0c:b4:af:01:10:d1:81:4f:cc:17:2f:44:81:f6: d1:c2:13:83:01:dc:97:ab:55:9b:00:3f:23:b1:66:f4:87:b5: 34:75:26:2e:4d:f2:d3:da:f6:11:89:c1:09:35:5c:9b:d7:22: d6:38:b6:24:fe:0f:9a:24:4e:d5:90:0c:38:a2:b1:23:e4:f2: cb:f0:e5:32:86:3b:37:a5:c2:07:21:ca:4b:da:4a:f1:0b:5f: 58:ae:a9:dd:37:bb:dc:86:02:5c:7c:ad:d3:3e:f9:94:46:49: 78:9f:a6:c1:9f:b0:40:d1:fd:82:88:dc:28:73:aa:c2:66:69: fc:7b:5c:03:8b:86:17:69:10:36:e0:f3:57:3a:63:98:b3:de: 0a:72:05:0b:07:13:06:57:6e:f7:f3:ad:f1:09:44:03:af:fa: a9:a9:4a:7a -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUJ2eoXMu2uAggMQHwIxlvN28TZiMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTExMjAwMDA0MloX DTI1MTIxNzIzNTk1OVowejFJMEcGA1UEBRNAODlhNWQyY2NmODQyODgzMGMyNWZk ZGUyNzI3YzZkMTUyZTJiYmMwOGEzOTRjOWUyZDczZWQzOTExMGZhZTExYzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArdjdb4tVu4obrJCdrtjQLnwv6iHP 6W/t18ypNMBXq/ygAdSy/P+ehPKMKFGvxwyHJSjqhV3oV6irptU5YOrDiO7pHQ3/ DK00DhKmqxeDtXQj5VV4sZPFRGFI3lVdt/FxNw2AfAE4l/S+0dKTwtpPHSUJVzm4 6REbFVbSCWTY5NAKZc5ljU1r2hpd4kKLkwthByJaNJh/W22/3kD1gb/mtP8kW4K9 GZEoA6NL0Wo7Q50YE9HHInV75UrzTSzCMn7l8CazBqTk41UyG0UWUeHjYPAO687d 4l/mDIn7FGEQ+V9DreKHoHqEmzBoxK4hnvBgdSTST6WJF4t+oYvAJ+AEPQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFCW4N3vgpZyEmWGsSEFLTpAVcnl1MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzM2ODRlNTBjLWM1MGYtNGViYi1iMzI3LWUwNzU5MjQxMTk3ZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJABlAAAAMA0GCSqGSIb3DQEBCwUAA4IBAQDpGNv7Q+MESB9fzjPb OYumnrQjTiSg3Kwnz0wmQA5LT+eg8MoriQTM1yyWnbEWdKx+E59QgwVABCYs1fTs 82Y3dSOQGuediLRp7R7lE9qAMoVovgyr75lREanWrTpZDLSvARDRgU/MFy9EgfbR whODAdyXq1WbAD8jsWb0h7U0dSYuTfLT2vYRicEJNVyb1yLWOLYk/g+aJE7VkAw4 orEj5PLL8OUyhjs3pcIHIcpL2krxC19YrqndN7vchgJcfK3TPvmURkl4n6bBn7BA 0f2CiNwoc6rCZmn8e1wDi4YXaRA24PNXOmOYs94KcgULBxMGV273863xCUQDr/qp qUp6 -----END CERTIFICATE-----Generated at Wed Dec 3 01:18:49 2025 by rpki-client