This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/64aa0337-4cf9-42c7-b236-4cd36e69005e.roa File: 64aa0337-4cf9-42c7-b236-4cd36e69005e.roa (raw, json) Hash identifier: 4PBc91Rm7YX2A6MGKkrIHjBF7olPV+lGe4LIsWEPXbg= Subject key identifier: 5F:91:A8:9E:2D:11:C4:80:C5:70:35:BE:50:2D:B4:41:A1:08:E0:2F Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 23B4D33DEAB9158976EC17878EBCF029AE9D0D07 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/64aa0337-4cf9-42c7-b236-4cd36e69005e.roa Signing time: Sun 07 Dec 2025 00:00:26 +0000 ROA not before: Sun 07 Dec 2025 00:00:26 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80f1::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:b4:d3:3d:ea:b9:15:89:76:ec:17:87:8e:bc:f0:29:ae:9d:0d:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Dec 7 00:00:26 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=efbc1089bbff57c91af52ac4fed48d38305893e2a930c43084ce0b92c24949cb, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:89:d6:05:c3:c7:e2:2d:2f:71:54:ee:e8:15: 20:5b:aa:04:e0:16:3f:a4:50:4b:35:62:49:0c:08: 3b:e0:46:1d:77:00:0a:52:f0:9e:53:fc:f7:f2:8d: df:e2:3e:fa:4c:ae:51:07:21:7e:d1:ab:89:1d:c5: e8:4d:e8:61:d7:e2:0d:62:19:89:b3:b4:0b:11:dc: e2:ed:87:b6:b5:97:81:23:81:63:42:7c:e1:15:cd: 26:6b:20:68:f3:2e:94:d0:79:86:fc:b4:4b:84:08: 00:58:3b:28:df:c7:69:cd:5c:c9:a6:04:7b:9d:9a: 04:50:51:e0:33:48:a3:61:13:2e:b7:e0:f0:e7:73: a8:63:63:55:73:ec:4b:c6:a5:be:59:9c:e2:24:15: f5:55:a6:47:dd:1f:b2:b8:1a:7b:31:61:67:f2:a9: 8a:6c:e0:2d:1c:b1:af:88:32:d6:95:40:0f:30:f1: 84:d7:c1:0d:e5:2d:b3:47:af:5e:30:f6:25:38:c8: ed:44:d1:b7:6c:dc:29:15:30:1d:8c:69:ba:ce:80: 61:38:02:a5:14:79:7a:a8:19:ad:1a:64:64:e8:86: 6f:eb:3d:03:18:6a:25:24:82:cf:bd:4d:9b:26:0c: 7f:5a:0a:c0:2f:ee:a3:2e:e3:a0:86:76:89:71:b2: 1b:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:91:A8:9E:2D:11:C4:80:C5:70:35:BE:50:2D:B4:41:A1:08:E0:2F X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/64aa0337-4cf9-42c7-b236-4cd36e69005e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80f1::/32 Signature Algorithm: sha256WithRSAEncryption 97:12:74:5a:26:b8:ff:8d:22:74:f7:51:e8:8c:c6:10:a8:1f: 9d:0b:ed:5c:95:5a:04:2e:ea:ef:9a:4d:6a:55:21:ab:5b:6e: 76:44:11:8c:74:3f:e4:73:d7:11:10:f7:65:28:af:35:a6:48: 45:a8:ca:f6:50:b2:e0:8a:00:b2:c5:d5:b8:fc:2f:95:8c:eb: 68:1d:ac:16:4b:6a:af:d5:72:5a:b7:96:6a:80:20:a9:76:a0: 40:3d:ac:3f:f7:a0:ec:62:66:2c:c4:f8:50:e3:a8:31:2c:0d: 3c:67:9b:84:ab:77:b8:38:af:e8:3a:11:3a:69:c7:0d:a2:80: a4:fa:88:de:99:74:37:bb:34:8e:2d:46:73:ff:b2:9d:7c:8c: bd:10:24:5b:ad:18:ee:53:8e:55:aa:6f:44:d0:a3:32:4d:88: 59:bd:6b:c5:22:cf:8a:eb:64:41:f1:b3:e1:12:34:95:74:ee: 44:fd:8e:3c:3c:36:96:1c:df:04:4f:e9:7b:60:b5:fe:67:f8: db:7c:de:cd:a8:b5:36:87:c6:84:01:be:c9:d7:57:dd:3a:44: b1:18:a4:f0:aa:19:eb:c1:f7:b5:22:63:6b:fb:89:ef:3b:d2: e7:9b:c6:0d:93:98:bb:a0:77:60:d6:89:02:84:72:7a:5e:b3: 94:93:0b:fb -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgIUI7TTPeq5FYl27BeHjrzwKa6dDQcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTIwNzAwMDAyNloX DTI2MDMwNzIzNTk1OVowejFJMEcGA1UEBRNAZWZiYzEwODliYmZmNTdjOTFhZjUy YWM0ZmVkNDhkMzgzMDU4OTNlMmE5MzBjNDMwODRjZTBiOTJjMjQ5NDljYjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA54nWBcPH4i0vcVTu6BUgW6oE4BY/ pFBLNWJJDAg74EYddwAKUvCeU/z38o3f4j76TK5RByF+0auJHcXoTehh1+INYhmJ s7QLEdzi7Ye2tZeBI4FjQnzhFc0mayBo8y6U0HmG/LRLhAgAWDso38dpzVzJpgR7 nZoEUFHgM0ijYRMut+Dw53OoY2NVc+xLxqW+WZziJBX1VaZH3R+yuBp7MWFn8qmK bOAtHLGviDLWlUAPMPGE18EN5S2zR69eMPYlOMjtRNG3bNwpFTAdjGm6zoBhOAKl FHl6qBmtGmRk6IZv6z0DGGolJILPvU2bJgx/WgrAL+6jLuOghnaJcbIbbwIDAQAB o4ICSTCCAkUwHQYDVR0OBBYEFF+RqJ4tEcSAxXA1vlAttEGhCOAvMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzY0YWEwMzM3LTRjZjktNDJjNy1iMjM2LTRjZDM2ZTY5MDA1ZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJA+A8TANBgkqhkiG9w0BAQsFAAOCAQEAlxJ0Wia4/40idPdR6IzG EKgfnQvtXJVaBC7q75pNalUhq1tudkQRjHQ/5HPXERD3ZSivNaZIRajK9lCy4IoA ssXVuPwvlYzraB2sFktqr9VyWreWaoAgqXagQD2sP/eg7GJmLMT4UOOoMSwNPGeb hKt3uDiv6DoROmnHDaKApPqI3pl0N7s0ji1Gc/+ynXyMvRAkW60Y7lOOVapvRNCj Mk2IWb1rxSLPiutkQfGz4RI0lXTuRP2OPDw2lhzfBE/pe2C1/mf423zezai1NofG hAG+yddX3TpEsRik8KoZ68H3tSJja/uJ7zvS55vGDZOYu6B3YNaJAoRyel6zlJML +w== -----END CERTIFICATE-----Generated at Fri Dec 26 07:47:29 2025 by rpki-client