This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/3523c675-14b3-4d2d-90e1-e439500ecaca.roa File: 3523c675-14b3-4d2d-90e1-e439500ecaca.roa (raw, json) Hash identifier: NirwmLWSf5B0zN0+2gtyYHsMf+ak5a21lEpDpzgTvCw= Subject key identifier: BC:E8:3F:F6:AA:CB:3E:82:A4:74:6B:4F:EB:42:14:E4:C6:6D:6E:47 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 72430D5BC0D3BAC8C4D9D020395BA5A69984B578 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/3523c675-14b3-4d2d-90e1-e439500ecaca.roa Signing time: Sun 07 Dec 2025 00:00:27 +0000 ROA not before: Sun 07 Dec 2025 00:00:27 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80f0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:43:0d:5b:c0:d3:ba:c8:c4:d9:d0:20:39:5b:a5:a6:99:84:b5:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Dec 7 00:00:27 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=a44e4ac86107ba71e536ebe6cfe0ff1fdb32212ebbb1dbacc478cc83928749c1, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a9:3e:90:3c:b0:fe:89:44:e4:eb:f0:74:01: 36:26:91:51:20:6b:ea:ab:97:3a:0a:f8:be:b3:ec: 02:48:fc:b8:99:84:9b:d3:9f:09:d6:57:f4:2d:3c: 66:e9:a9:8b:6f:d7:4b:94:b1:95:34:c7:35:d6:a7: 83:d5:b4:5b:43:2b:65:b5:4a:fb:05:e0:37:d3:e6: 4a:02:6a:94:1a:f5:d6:64:ce:2c:d7:32:ae:9c:cf: 77:db:2d:ff:2e:c8:d5:20:83:b4:56:42:f2:d5:5d: e3:f1:68:5a:4c:4e:6f:f0:bc:6a:44:c8:bf:05:3f: b8:4e:df:5e:57:ae:fc:a5:4d:9e:ec:02:4e:56:d4: 09:90:23:d8:db:3a:81:14:af:8a:9f:b6:4f:2a:dc: 50:c7:b1:a9:19:68:e0:31:92:7d:71:8a:35:58:23: a2:b9:0f:21:67:9a:ee:ef:fe:15:0d:2a:c4:c5:60: 7d:58:3c:27:20:96:f8:8d:6f:37:aa:ac:e8:f5:b3: fc:c5:64:cc:97:92:21:5f:33:20:46:c1:59:cc:dc: c2:8d:43:1d:33:22:e4:3f:01:1e:c1:e5:ae:54:01: 0d:62:fe:9f:a1:67:7e:63:e8:8b:89:14:3d:6e:12: ee:94:be:16:e6:e5:93:23:5b:03:34:35:61:07:b2: 8b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:E8:3F:F6:AA:CB:3E:82:A4:74:6B:4F:EB:42:14:E4:C6:6D:6E:47 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/3523c675-14b3-4d2d-90e1-e439500ecaca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80f0::/32 Signature Algorithm: sha256WithRSAEncryption 3f:82:d2:e7:f8:cd:53:d8:ce:fb:18:f5:b0:32:31:b0:c7:14: 6f:fb:ec:3a:85:5c:59:15:a6:36:97:97:08:5b:98:54:e6:3c: 7a:73:df:27:d6:7d:74:10:d8:45:6c:3b:60:20:7b:b9:94:df: a5:44:3b:bc:b0:b1:48:73:4b:ab:dc:a0:72:cc:ff:52:04:1b: e8:79:0f:7f:3e:eb:04:9f:0d:05:fc:ae:0e:64:03:17:cb:fa: 3e:83:0f:c3:ea:c3:f0:8d:ae:87:8a:89:d0:0c:33:8e:2a:33: 26:25:4a:63:40:fc:d4:1d:58:6a:7c:34:2e:60:40:ce:8e:03: f8:7d:93:67:a0:3a:6a:c2:7f:de:79:a7:7a:09:16:0a:48:63: 48:d7:be:ac:58:d1:e8:45:a1:a6:12:01:35:68:2b:73:08:b9: 5d:1a:bd:3d:fe:c7:5a:87:90:7b:a0:78:33:aa:d5:e7:25:4b: 51:3e:d0:7f:7a:8a:f2:de:29:67:d2:0f:2e:80:e6:b2:f4:1d: 4d:0a:77:8a:15:b9:b1:17:cc:c8:17:a8:ff:01:41:3d:e8:32: 09:43:72:82:93:58:f0:c9:54:2c:51:16:28:a9:4e:07:49:1c: b4:5a:1a:17:a9:d8:ca:c4:ae:8d:fa:fe:ae:45:0c:46:ac:3d: 33:20:e1:1b -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUckMNW8DTusjE2dAgOVulppmEtXgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTIwNzAwMDAyN1oX DTI2MDMwNzIzNTk1OVowejFJMEcGA1UEBRNAYTQ0ZTRhYzg2MTA3YmE3MWU1MzZl YmU2Y2ZlMGZmMWZkYjMyMjEyZWJiYjFkYmFjYzQ3OGNjODM5Mjg3NDljMTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnqk+kDyw/olE5OvwdAE2JpFRIGvq q5c6Cvi+s+wCSPy4mYSb058J1lf0LTxm6amLb9dLlLGVNMc11qeD1bRbQytltUr7 BeA30+ZKAmqUGvXWZM4s1zKunM932y3/LsjVIIO0VkLy1V3j8WhaTE5v8LxqRMi/ BT+4Tt9eV678pU2e7AJOVtQJkCPY2zqBFK+Kn7ZPKtxQx7GpGWjgMZJ9cYo1WCOi uQ8hZ5ru7/4VDSrExWB9WDwnIJb4jW83qqzo9bP8xWTMl5IhXzMgRsFZzNzCjUMd MyLkPwEeweWuVAENYv6foWd+Y+iLiRQ9bhLulL4W5uWTI1sDNDVhB7KLVwIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFLzoP/aqyz6CpHRrT+tCFOTGbW5HMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzM1MjNjNjc1LTE0YjMtNGQyZC05MGUxLWU0Mzk1MDBlY2FjYS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJA+A8DANBgkqhkiG9w0BAQsFAAOCAQEAP4LS5/jNU9jO+xj1sDIx sMcUb/vsOoVcWRWmNpeXCFuYVOY8enPfJ9Z9dBDYRWw7YCB7uZTfpUQ7vLCxSHNL q9ygcsz/UgQb6HkPfz7rBJ8NBfyuDmQDF8v6PoMPw+rD8I2uh4qJ0AwzjiozJiVK Y0D81B1Yanw0LmBAzo4D+H2TZ6A6asJ/3nmnegkWCkhjSNe+rFjR6EWhphIBNWgr cwi5XRq9Pf7HWoeQe6B4M6rV5yVLUT7Qf3qK8t4pZ9IPLoDmsvQdTQp3ihW5sRfM yBeo/wFBPegyCUNygpNY8MlULFEWKKlOB0kctFoaF6nYysSujfr+rkUMRqw9MyDh Gw== -----END CERTIFICATE-----Generated at Fri Dec 26 07:47:29 2025 by rpki-client