This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/fcd6adab-06f0-4676-9568-6d4d48f7658c.roa File: fcd6adab-06f0-4676-9568-6d4d48f7658c.roa (raw, json) Hash identifier: 7qFv7/S4ZCYOk7ry4v77f24Y1St+2VgNdsB9gS3rrXk= Subject key identifier: 30:B7:59:25:A9:6D:9A:60:94:2A:3E:05:F1:9F:B6:01:C4:98:79:7A Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 1D74FF97251E930090A6F001493A53819E8089FA Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/fcd6adab-06f0-4676-9568-6d4d48f7658c.roa Signing time: Tue 18 Nov 2025 00:00:10 +0000 ROA not before: Tue 18 Nov 2025 00:00:10 +0000 ROA not after: Mon 16 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2400:6500:ff00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Dec 2025 00:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:74:ff:97:25:1e:93:00:90:a6:f0:01:49:3a:53:81:9e:80:89:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 18 00:00:10 2025 GMT Not After : Feb 16 23:59:59 2026 GMT Subject: serialNumber=dd6e49403542c8131ab6ea71417019e831d93efb14f3f76dd9dafe43bc614c0e, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7c:7a:bf:54:75:bb:0a:0a:ca:71:70:14:8b: 8d:67:51:51:32:61:75:d6:eb:a5:61:12:56:7e:e1: c2:18:09:f2:b2:6a:a6:e4:33:a8:8d:df:bc:f2:0e: 84:7b:8d:3f:b3:2a:1c:ec:a7:f6:78:3d:9f:05:5a: a7:ef:42:9a:19:5e:b6:d7:57:60:35:5a:91:3f:77: e8:77:c6:f0:51:96:7f:b0:aa:40:b5:00:c1:99:21: f6:38:57:04:3c:f5:cb:3c:33:62:70:c9:d9:8f:bf: 7d:19:05:b4:8d:b8:f4:0e:57:e0:11:0e:96:38:0a: 83:19:4b:1d:3c:d5:15:b3:15:3d:b5:ec:db:37:c8: e7:fe:47:e5:52:db:b4:64:6a:75:fe:11:bf:0c:29: cd:f4:a1:60:b0:27:ab:2d:05:b6:13:49:78:6f:5a: 5c:e9:ee:54:a3:62:8e:e7:e6:28:4b:48:8b:e2:0a: 19:9a:13:c2:47:00:92:80:56:55:aa:b6:3a:73:b6: d0:64:9d:ed:ac:36:62:b2:0d:4a:8a:08:4f:00:bb: 0d:6d:da:18:04:ec:66:5a:a8:87:65:f6:ea:16:07: 56:b0:92:80:30:c4:90:e9:1a:0a:86:16:98:58:48: bd:12:38:9f:4c:dc:15:90:72:56:e7:bf:3e:c2:54: ce:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:B7:59:25:A9:6D:9A:60:94:2A:3E:05:F1:9F:B6:01:C4:98:79:7A X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/fcd6adab-06f0-4676-9568-6d4d48f7658c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6500:ff00::/48 Signature Algorithm: sha256WithRSAEncryption cd:49:49:a9:80:b1:82:d5:49:97:b7:b4:df:4d:6e:96:81:e0: e8:a1:16:24:a8:6b:e5:ea:a9:91:ac:b2:fa:7c:e0:03:a3:e7: 0e:b2:c6:a3:b0:e3:2c:15:80:88:79:b8:b9:2e:7d:8a:1f:ac: 2e:52:23:95:1b:50:08:ff:e3:6e:fa:20:9d:4f:68:2f:05:13: 96:7e:ea:1e:b1:49:c3:71:4a:0e:c8:6e:32:e6:b0:f4:10:45: d3:b8:0b:e8:cc:e4:b5:61:b2:46:33:87:b1:60:7e:3b:9b:37: 17:88:54:cf:4b:35:33:f2:d0:6e:2f:fb:52:9f:6b:5c:9f:2a: 68:f3:fe:c3:78:46:40:08:dc:79:6e:07:50:da:c4:71:b9:6b: 3c:6e:6a:79:ae:08:4c:ba:52:ff:81:60:02:79:0c:38:e6:dd: 77:4d:ae:d8:33:6a:b4:74:b2:95:ab:b9:02:81:61:cc:8f:51: 60:47:02:a6:18:1e:85:f5:b4:a7:ae:b5:fe:3f:ce:09:dc:af: 39:71:54:f0:a2:97:0e:80:ce:4e:ff:a0:3c:62:88:18:ea:17: 76:10:33:e0:4d:43:29:57:3b:78:97:16:af:fb:08:bb:8d:66: e3:c1:7e:78:2e:fc:de:fe:72:f5:10:e6:87:38:53:7a:9a:2d: 02:f0:3a:5c -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUHXT/lyUekwCQpvABSTpTgZ6AifowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTExODAwMDAxMFoX DTI2MDIxNjIzNTk1OVowejFJMEcGA1UEBRNAZGQ2ZTQ5NDAzNTQyYzgxMzFhYjZl YTcxNDE3MDE5ZTgzMWQ5M2VmYjE0ZjNmNzZkZDlkYWZlNDNiYzYxNGMwZTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwXx6v1R1uwoKynFwFIuNZ1FRMmF1 1uulYRJWfuHCGAnysmqm5DOojd+88g6Ee40/syoc7Kf2eD2fBVqn70KaGV6211dg NVqRP3fod8bwUZZ/sKpAtQDBmSH2OFcEPPXLPDNicMnZj799GQW0jbj0DlfgEQ6W OAqDGUsdPNUVsxU9tezbN8jn/kflUtu0ZGp1/hG/DCnN9KFgsCerLQW2E0l4b1pc 6e5Uo2KO5+YoS0iL4goZmhPCRwCSgFZVqrY6c7bQZJ3trDZisg1KighPALsNbdoY BOxmWqiHZfbqFgdWsJKAMMSQ6RoKhhaYWEi9EjifTNwVkHJW578+wlTO+QIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFDC3WSWpbZpglCo+BfGftgHEmHl6MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 L2ZjZDZhZGFiLTA2ZjAtNDY3Ni05NTY4LTZkNGQ0OGY3NjU4Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJABlAP8AMA0GCSqGSIb3DQEBCwUAA4IBAQDNSUmpgLGC1UmXt7Tf TW6WgeDooRYkqGvl6qmRrLL6fOADo+cOssajsOMsFYCIebi5Ln2KH6wuUiOVG1AI /+Nu+iCdT2gvBROWfuoesUnDcUoOyG4y5rD0EEXTuAvozOS1YbJGM4exYH47mzcX iFTPSzUz8tBuL/tSn2tcnypo8/7DeEZACNx5bgdQ2sRxuWs8bmp5rghMulL/gWAC eQw45t13Ta7YM2q0dLKVq7kCgWHMj1FgRwKmGB6F9bSnrrX+P84J3K85cVTwopcO gM5O/6A8YogY6hd2EDPgTUMpVzt4lxav+wi7jWbjwX54Lvze/nL1EOaHOFN6mi0C 8Dpc -----END CERTIFICATE-----Generated at Fri Nov 28 10:03:32 2025 by rpki-client