This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa File: 0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa (raw, json) Hash identifier: C56nxljR4As7jdfBYUhyRnX/IPeZsbbVEMBqyw+mLFE= Subject key identifier: 41:29:3F:35:B0:4B:AA:49:CB:2A:C9:F9:54:F1:3B:42:0C:9D:F3:FE Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 0FE834052C63A9AD2E20004CB712CC5A773FF805 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa Signing time: Sun 07 Dec 2025 00:00:43 +0000 ROA not before: Sun 07 Dec 2025 00:00:43 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:e8:34:05:2c:63:a9:ad:2e:20:00:4c:b7:12:cc:5a:77:3f:f8:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Dec 7 00:00:43 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=433ded483bd44c6cbd1840f5b0375deeb697a351a75a904d4f79eae89190d7c8, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:b5:df:10:1d:7d:99:bc:b3:f2:a3:72:38:92: 6c:d0:46:80:90:13:16:f8:80:cf:81:e8:e5:e1:7f: 40:da:58:b0:d8:c6:c3:6e:89:04:c0:9f:38:34:c2: 7f:b7:d5:4f:ae:1d:12:65:8c:ef:d6:23:05:b4:06: 86:73:4d:61:92:c9:eb:7b:a7:5a:6c:dd:37:38:bd: 01:aa:00:46:56:b2:88:73:63:a9:bc:ca:e2:5f:51: 84:2e:49:98:bb:47:4f:f8:3e:8b:3f:99:f8:18:12: 9e:21:68:a6:fd:be:7f:8d:5c:0b:9b:70:b4:c2:b8: fb:4a:e5:be:89:15:77:2b:55:7e:da:2a:8b:77:5e: 68:69:8a:ce:46:89:e3:f3:5f:c4:f0:12:0a:d3:dd: 47:0c:d3:de:a2:37:f0:73:f2:0b:35:29:ac:db:ca: c3:db:db:54:0b:9b:df:0a:8c:6e:15:7c:31:b4:63: 18:a5:d9:b8:24:e1:05:04:e9:8a:f5:c4:82:1e:7b: af:f0:c9:0c:6b:bb:ea:42:01:c9:51:eb:81:61:c8: 19:0c:01:89:25:97:84:bc:cb:f1:76:ce:03:4d:06: 1d:81:24:b2:5c:ed:88:05:2c:8f:f7:d8:d8:4e:00: a7:9a:ad:1f:a9:4a:59:c0:88:0a:ef:49:d6:76:63: ac:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:29:3F:35:B0:4B:AA:49:CB:2A:C9:F9:54:F1:3B:42:0C:9D:F3:FE X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0d6f5c86-57d8-4e0d-8445-30cb122bb4dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014::/36 Signature Algorithm: sha256WithRSAEncryption 91:f5:16:3c:ca:fb:a6:c4:68:21:b8:82:59:88:b5:08:ae:74: 83:64:ac:71:6a:93:40:6f:aa:a1:69:8b:b2:f3:6e:9d:18:fc: 29:b8:ed:2b:8d:7c:7c:9b:7c:0b:13:12:85:24:42:db:18:af: 2d:c8:6b:4d:95:09:95:70:44:7a:46:db:88:06:54:60:39:df: 8f:15:8b:85:b9:93:a0:ef:d5:ef:9b:88:7c:b5:df:99:49:d4: b7:d7:6f:20:ff:bd:ba:a7:a4:9b:7c:e9:82:e1:43:26:60:c3: dd:a1:93:3d:58:49:7e:b0:ff:44:6d:ef:cc:1c:05:44:df:8a: 1d:81:f2:25:61:8a:7f:14:b0:ea:c0:35:db:9d:1d:35:6a:75: 36:5d:ba:c5:bb:21:4c:50:c9:e6:0d:b9:f5:ad:c5:e6:e0:c6: 58:90:e1:49:02:14:60:fc:65:17:39:e1:4d:dc:6a:87:98:3f: ad:4f:c2:0b:8a:c1:3a:66:c6:6f:98:d4:65:62:53:9b:da:14: b5:9d:37:d4:31:a6:f5:68:e0:c5:12:99:55:02:64:8e:97:db: 91:33:2b:ca:87:ad:c2:3d:a0:36:5a:e4:40:3c:4e:c3:f7:57: 46:b8:a7:b0:4c:a4:2a:ad:1b:07:ec:41:85:f3:f3:40:5f:e3: 34:3b:d7:48 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUD+g0BSxjqa0uIABMtxLMWnc/+AUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTIwNzAwMDA0M1oX DTI2MDMwNzIzNTk1OVowejFJMEcGA1UEBRNANDMzZGVkNDgzYmQ0NGM2Y2JkMTg0 MGY1YjAzNzVkZWViNjk3YTM1MWE3NWE5MDRkNGY3OWVhZTg5MTkwZDdjODEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3bXfEB19mbyz8qNyOJJs0EaAkBMW +IDPgejl4X9A2liw2MbDbokEwJ84NMJ/t9VPrh0SZYzv1iMFtAaGc01hksnre6da bN03OL0BqgBGVrKIc2OpvMriX1GELkmYu0dP+D6LP5n4GBKeIWim/b5/jVwLm3C0 wrj7SuW+iRV3K1V+2iqLd15oaYrORonj81/E8BIK091HDNPeojfwc/ILNSms28rD 29tUC5vfCoxuFXwxtGMYpdm4JOEFBOmK9cSCHnuv8MkMa7vqQgHJUeuBYcgZDAGJ JZeEvMvxds4DTQYdgSSyXO2IBSyP99jYTgCnmq0fqUpZwIgK70nWdmOscwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFEEpPzWwS6pJyyrJ+VTxO0IMnfP+MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzBkNmY1Yzg2LTU3ZDgtNGUwZC04NDQ1LTMwY2IxMjJiYjRkZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYEJA+AFAAwDQYJKoZIhvcNAQELBQADggEBAJH1FjzK+6bEaCG4glmI tQiudINkrHFqk0BvqqFpi7Lzbp0Y/Cm47SuNfHybfAsTEoUkQtsYry3Ia02VCZVw RHpG24gGVGA5348Vi4W5k6Dv1e+biHy135lJ1LfXbyD/vbqnpJt86YLhQyZgw92h kz1YSX6w/0Rt78wcBUTfih2B8iVhin8UsOrANdudHTVqdTZdusW7IUxQyeYNufWt xebgxliQ4UkCFGD8ZRc54U3caoeYP61PwguKwTpmxm+Y1GViU5vaFLWdN9QxpvVo 4MUSmVUCZI6X25EzK8qHrcI9oDZa5EA8TsP3V0a4p7BMpCqtGwfsQYXz80Bf4zQ7 10g= -----END CERTIFICATE-----Generated at Fri Dec 26 07:47:29 2025 by rpki-client