This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa File: 0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa (raw, json) Hash identifier: W6sdFPvSmKG6OVID0kq/qNrisOOp+zfD25K2qkQjtmg= Subject key identifier: 54:52:AD:D3:68:2A:8F:5F:6E:1C:19:45:CF:EC:B7:E6:31:15:1A:70 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 6CCF5F3388DD2948EE26744DBFD9D354B2C59ECD Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa Signing time: Sun 07 Dec 2025 00:00:46 +0000 ROA not before: Sun 07 Dec 2025 00:00:46 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014:800::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:cf:5f:33:88:dd:29:48:ee:26:74:4d:bf:d9:d3:54:b2:c5:9e:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Dec 7 00:00:46 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=9540d9a99acb360abdb97801714a1b3387a5dc262222eeceb1c2e449cee94610, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:01:4a:88:33:46:dc:79:86:15:da:78:c3:42: 5f:e0:87:de:96:f7:e6:12:57:a8:6a:88:59:ae:a2: 35:28:ac:33:91:a7:89:df:ab:c3:e7:c4:3e:94:53: 88:6f:9b:09:2a:71:4b:7a:2d:fd:87:91:14:fe:2e: 25:b7:55:65:ff:32:dd:93:1b:83:91:a0:31:64:fa: e8:0e:cf:da:5a:a8:20:b2:32:19:df:7b:43:3c:75: 2e:e7:d3:5e:f8:3a:ef:fa:b7:e2:ad:5b:bb:d3:a3: 82:00:79:1c:10:87:7b:be:e5:81:5a:a7:70:8d:dd: d2:d6:a1:26:f5:b2:ab:8d:58:70:09:0b:41:f4:e8: 96:dc:6c:68:f9:39:66:79:62:03:7e:1f:fb:f9:2d: 5d:35:3d:9b:ff:d7:a2:dd:ce:70:4e:e3:35:fd:c4: 4a:e2:ac:10:55:a1:03:e3:f4:72:56:e1:18:06:66: f4:fc:62:9f:6f:0d:88:6e:ae:48:b8:bc:ce:7d:86: 70:6b:dd:d1:5f:13:e3:5c:92:cd:cc:e7:6e:77:da: 32:8f:92:d1:c3:37:69:9d:dc:03:fd:52:fe:a9:85: 35:22:cd:c0:a6:90:04:cc:60:66:38:a1:f5:6f:e5: 53:e0:a5:b8:8c:84:56:2e:d8:bd:b2:96:d3:1a:0c: 81:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:52:AD:D3:68:2A:8F:5F:6E:1C:19:45:CF:EC:B7:E6:31:15:1A:70 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/0feedd18-2b71-48d5-a2ee-07ca90b4d203.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014:800::/38 Signature Algorithm: sha256WithRSAEncryption b5:21:bb:d5:a5:9d:80:b1:36:dc:90:34:3a:3c:d7:92:7e:85: bb:7b:48:e3:f0:ad:35:56:f2:d5:e7:da:7d:28:e6:6f:df:b7: ed:55:24:d2:e0:b0:21:ee:2e:e2:36:f1:e8:bd:dc:fe:6d:46: dc:78:90:73:74:f4:f9:02:9a:8c:0f:eb:b4:57:38:94:20:7f: 44:aa:f1:08:68:57:18:d0:d9:4f:74:91:cc:66:a6:46:ac:f9: d2:2d:1c:ce:fa:2f:34:e9:89:a1:57:73:38:54:4f:50:5e:ef: d4:85:98:13:1c:d7:cb:f3:e0:b6:29:23:be:2f:ae:4b:26:d3: 06:a8:4a:15:ee:fa:be:14:dc:0f:27:9f:b8:b0:49:98:3c:02: 0a:e6:25:1b:13:e2:44:2e:34:20:1f:c5:67:b8:c9:69:2c:c1: 39:b6:d4:72:52:f6:69:bb:f6:47:9b:60:20:2a:d8:76:dc:b9: 03:b6:40:87:31:e0:2e:26:34:85:67:9a:ce:bb:f7:1c:99:28: 4f:57:9a:5c:55:ac:40:26:94:fa:32:d4:6a:c3:80:a6:a3:64: fa:46:11:a8:0e:13:fb:e7:54:27:6e:2f:ca:85:be:25:9c:d0: 00:5b:5e:ae:9a:0d:8e:97:83:98:e8:83:c6:a6:f9:8c:ea:f2: 41:b1:ed:d2 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUbM9fM4jdKUjuJnRNv9nTVLLFns0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTIwNzAwMDA0NloX DTI2MDMwNzIzNTk1OVowejFJMEcGA1UEBRNAOTU0MGQ5YTk5YWNiMzYwYWJkYjk3 ODAxNzE0YTFiMzM4N2E1ZGMyNjIyMjJlZWNlYjFjMmU0NDljZWU5NDYxMDEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqgFKiDNG3HmGFdp4w0Jf4Ifelvfm EleoaohZrqI1KKwzkaeJ36vD58Q+lFOIb5sJKnFLei39h5EU/i4lt1Vl/zLdkxuD kaAxZProDs/aWqggsjIZ33tDPHUu59Ne+Drv+rfirVu706OCAHkcEId7vuWBWqdw jd3S1qEm9bKrjVhwCQtB9OiW3Gxo+TlmeWIDfh/7+S1dNT2b/9ei3c5wTuM1/cRK 4qwQVaED4/RyVuEYBmb0/GKfbw2Ibq5IuLzOfYZwa93RXxPjXJLNzOdud9oyj5LR wzdpndwD/VL+qYU1Is3AppAEzGBmOKH1b+VT4KW4jIRWLti9spbTGgyBawIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFFRSrdNoKo9fbhwZRc/st+YxFRpwMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzBmZWVkZDE4LTJiNzEtNDhkNS1hMmVlLTA3Y2E5MGI0ZDIwMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AFAgwDQYJKoZIhvcNAQELBQADggEBALUhu9WlnYCxNtyQNDo8 15J+hbt7SOPwrTVW8tXn2n0o5m/ft+1VJNLgsCHuLuI28ei93P5tRtx4kHN09PkC mowP67RXOJQgf0Sq8QhoVxjQ2U90kcxmpkas+dItHM76LzTpiaFXczhUT1Be79SF mBMc18vz4LYpI74vrksm0waoShXu+r4U3A8nn7iwSZg8AgrmJRsT4kQuNCAfxWe4 yWkswTm21HJS9mm79kebYCAq2HbcuQO2QIcx4C4mNIVnms679xyZKE9XmlxVrEAm lPoy1GrDgKajZPpGEagOE/vnVCduL8qFviWc0ABbXq6aDY6Xg5jog8am+Yzq8kGx 7dI= -----END CERTIFICATE-----Generated at Fri Dec 26 07:47:29 2025 by rpki-client