This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/8c170584-7c9b-414b-8cba-a934a0a79bbe.roa File: 8c170584-7c9b-414b-8cba-a934a0a79bbe.roa (raw, json) Hash identifier: qeiN2jY48ldTzPZErmuiZOmp5qE9mu9/GnZEk7z/YWM= Subject key identifier: C8:B5:98:E0:6D:5B:71:34:25:6D:F6:CA:E7:10:8F:3A:DE:FA:18:7D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 14EA697E2155DBD6C16070730FFE1C0AD2ACBCB2 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/8c170584-7c9b-414b-8cba-a934a0a79bbe.roa Signing time: Wed 12 Nov 2025 00:00:43 +0000 ROA not before: Wed 12 Nov 2025 00:00:43 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2400:6500:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 00:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:ea:69:7e:21:55:db:d6:c1:60:70:73:0f:fe:1c:0a:d2:ac:bc:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 12 00:00:43 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=65961dbc9c336bcfb00f5e3788c984e7441a1276f53c0769f65cf681e5d09f06, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4a:7d:9a:c7:ab:74:9b:7c:9d:2e:74:e7:58: aa:e0:78:a0:37:5e:4b:fe:66:bb:95:fe:b1:17:c0: 60:a8:e4:54:1f:93:6d:7b:26:f7:cd:0d:1a:4b:ac: 63:24:b5:06:01:49:41:3c:b1:89:ab:7a:d2:aa:90: 2a:a4:33:c0:26:ff:1b:19:69:c5:15:31:7a:82:37: 19:fb:de:2a:b9:b7:c3:ee:77:09:b0:8b:ea:73:0e: d1:7f:5a:d1:55:ba:26:56:7c:ce:d4:45:58:d3:e7: 87:dc:a6:4e:ad:e1:9e:43:2d:e5:6b:75:30:11:2c: df:18:a6:8e:6b:76:74:bf:5b:e8:90:82:ba:26:40: 61:de:97:34:9e:d5:f9:61:fc:04:bb:f4:66:5e:26: f9:d4:9c:ec:0e:05:91:9f:2f:85:9f:88:4d:21:63: c0:9b:dc:e6:9a:7b:58:1b:d1:4a:f7:46:2f:9e:5e: 6a:bd:08:cb:72:ee:08:05:4a:0c:49:21:f5:90:e0: e6:76:76:9e:b4:b5:4e:85:91:96:80:6f:fb:b4:d7: 80:e1:37:93:a2:24:d3:db:d1:27:69:c6:d7:e9:bc: 36:a2:c2:fe:5d:1e:bf:38:55:d2:31:e1:26:b4:70: f5:91:25:ca:b3:96:0e:79:c8:e6:32:c2:73:86:50: e9:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:B5:98:E0:6D:5B:71:34:25:6D:F6:CA:E7:10:8F:3A:DE:FA:18:7D X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/8c170584-7c9b-414b-8cba-a934a0a79bbe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6500:4000::/48 Signature Algorithm: sha256WithRSAEncryption f6:83:50:cb:41:3a:d1:03:8a:18:92:3e:38:3f:4f:bd:22:88: 01:b4:cd:f5:f8:02:9b:a9:c1:c1:d6:b1:37:36:93:33:e3:04: da:92:56:1b:31:85:ea:57:3e:48:1d:49:24:f5:e1:7b:c1:80: 42:16:4b:9b:42:5b:f7:1a:96:a8:71:8d:ea:51:83:55:d5:d1: 8e:55:8c:a5:d2:d9:0f:c2:ab:ff:0e:2b:94:01:15:06:e8:d2: e9:9c:eb:87:26:21:19:9f:38:fd:5b:a4:db:f6:4f:dd:cb:c0: a2:47:84:b4:13:fd:e8:ac:99:6d:54:28:02:41:9d:86:c2:2f: 2a:0d:71:37:cc:76:3c:1a:02:9a:4d:c4:f7:2b:20:8f:4e:ac: 63:74:26:72:1c:48:fd:26:5b:a6:da:77:d3:9a:68:cb:e6:36: d7:57:31:34:79:79:25:7d:43:2e:26:bf:e3:c8:cc:d1:0d:50: ee:0f:b4:d5:1e:5d:af:7b:1f:27:a8:5a:ec:e8:dd:10:f2:ab: 2e:1a:6c:3c:1d:a1:e8:49:53:94:f5:43:84:63:cf:9f:21:4e: c0:b7:4c:66:5d:13:07:22:73:be:7b:40:1b:f7:ab:5b:da:b7: c7:7e:6e:c1:9d:08:c5:b6:69:83:ce:e8:65:95:48:4f:1a:53: 6c:2f:88:f7 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUFOppfiFV29bBYHBzD/4cCtKsvLIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTExMjAwMDA0M1oX DTI1MTIxNzIzNTk1OVowejFJMEcGA1UEBRNANjU5NjFkYmM5YzMzNmJjZmIwMGY1 ZTM3ODhjOTg0ZTc0NDFhMTI3NmY1M2MwNzY5ZjY1Y2Y2ODFlNWQwOWYwNjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0p9mserdJt8nS5051iq4HigN15L /ma7lf6xF8BgqORUH5Nteyb3zQ0aS6xjJLUGAUlBPLGJq3rSqpAqpDPAJv8bGWnF FTF6gjcZ+94qubfD7ncJsIvqcw7Rf1rRVbomVnzO1EVY0+eH3KZOreGeQy3la3Uw ESzfGKaOa3Z0v1vokIK6JkBh3pc0ntX5YfwEu/RmXib51JzsDgWRny+Fn4hNIWPA m9zmmntYG9FK90Yvnl5qvQjLcu4IBUoMSSH1kODmdnaetLVOhZGWgG/7tNeA4TeT oiTT29EnacbX6bw2osL+XR6/OFXSMeEmtHD1kSXKs5YOecjmMsJzhlDpbQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFMi1mOBtW3E0JW32yucQjzre+hh9MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzhjMTcwNTg0LTdjOWItNDE0Yi04Y2JhLWE5MzRhMGE3OWJiZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJABlAEAAMA0GCSqGSIb3DQEBCwUAA4IBAQD2g1DLQTrRA4oYkj44 P0+9IogBtM31+AKbqcHB1rE3NpMz4wTaklYbMYXqVz5IHUkk9eF7wYBCFkubQlv3 GpaocY3qUYNV1dGOVYyl0tkPwqv/DiuUARUG6NLpnOuHJiEZnzj9W6Tb9k/dy8Ci R4S0E/3orJltVCgCQZ2Gwi8qDXE3zHY8GgKaTcT3KyCPTqxjdCZyHEj9Jlum2nfT mmjL5jbXVzE0eXklfUMuJr/jyMzRDVDuD7TVHl2vex8nqFrs6N0Q8qsuGmw8HaHo SVOU9UOEY8+fIU7At0xmXRMHInO+e0Ab96tb2rfHfm7BnQjFtmmDzuhllUhPGlNs L4j3 -----END CERTIFICATE-----Generated at Wed Dec 3 01:18:48 2025 by rpki-client