This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/7cba22a5-dc61-4413-aed2-8fb4cc8e3a49.roa File: 7cba22a5-dc61-4413-aed2-8fb4cc8e3a49.roa (raw, json) Hash identifier: xcBkeyWngsLgZu38V5/IBVcbnoN2Jco/i2r+0+DVmtY= Subject key identifier: 62:7C:BE:CD:5B:3B:57:9F:F3:80:CE:C7:9E:8F:69:70:32:F5:0D:83 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 02BF44AC8E15BB66CECD90DB33030028DA48E9C2 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/7cba22a5-dc61-4413-aed2-8fb4cc8e3a49.roa Signing time: Sun 07 Dec 2025 00:00:26 +0000 ROA not before: Sun 07 Dec 2025 00:00:26 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:8000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:bf:44:ac:8e:15:bb:66:ce:cd:90:db:33:03:00:28:da:48:e9:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Dec 7 00:00:26 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=22c154bb1af2ab79690c47819d70aabb9f0d564a1d3d091ee98b3c9624bcd2e8, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:84:fe:c0:96:c1:b7:05:f6:7c:7e:f6:52:d0: de:c8:b1:ac:9d:d0:53:d3:08:e0:24:d2:3b:94:21: 31:db:2f:f1:12:27:5d:f6:dd:41:fe:40:1d:ba:9d: 24:11:8e:40:91:63:da:cf:9d:c5:c2:88:58:52:69: 21:f4:96:79:db:81:f5:53:94:99:38:64:3e:52:08: b0:78:57:a3:c1:17:91:2f:8f:e1:12:a3:61:cd:a6: 01:42:de:91:e7:62:85:52:9d:79:41:5a:b4:47:3d: 3e:9c:0e:64:d4:15:d3:0a:58:3f:09:4d:5e:f8:cd: a2:24:59:67:d7:17:69:3d:b6:64:2f:12:c5:f2:21: ba:68:28:fa:fd:01:21:d3:c0:7a:f2:05:0e:46:69: 65:32:0a:85:47:d6:4a:70:a8:9b:50:9d:6e:05:d7: 38:61:2a:e9:34:81:42:83:5c:7c:b5:bf:e7:0c:1a: 94:14:73:d5:cb:a3:e0:f0:b1:82:40:27:6e:0d:95: 1c:2b:b3:cf:30:91:b2:14:7a:55:70:77:db:36:72: e7:ef:69:7b:be:2a:2a:42:40:c4:77:61:6e:df:cd: d2:1d:32:ff:da:87:c6:bd:88:9a:bb:b6:40:7f:e1: 40:63:37:a9:17:03:f5:47:19:be:1b:87:a3:d7:3f: e1:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:7C:BE:CD:5B:3B:57:9F:F3:80:CE:C7:9E:8F:69:70:32:F5:0D:83 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/7cba22a5-dc61-4413-aed2-8fb4cc8e3a49.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:8000::/40 Signature Algorithm: sha256WithRSAEncryption 40:f0:01:46:5e:1a:96:c6:f2:60:9e:84:a1:19:b9:a0:4c:4b: 30:be:a3:ce:95:6d:98:9c:75:f0:7b:47:b6:46:e2:38:80:cc: 0a:37:5c:f7:64:ea:b3:8e:2c:4d:e0:1e:0a:01:6f:42:42:0f: f5:8b:aa:96:b1:f4:a9:59:86:19:d2:a9:4f:30:c1:74:b7:22: 44:80:f5:9f:01:f3:f3:be:0a:68:d7:f7:6d:91:40:a2:f9:ce: 08:24:40:fd:5b:ac:7f:76:60:9e:87:f6:60:5c:5c:58:e9:56: a2:5c:54:42:66:24:80:54:a7:c6:13:d7:2c:71:61:29:0e:89: 62:c4:8b:aa:c0:0b:4b:dc:c8:38:66:cc:43:91:bf:2c:cc:eb: a1:f0:ba:a9:64:bf:73:3e:7f:8d:b1:7d:9f:1a:9f:f0:df:be: 63:46:ec:34:d1:bf:a8:2f:ad:21:e6:54:87:92:6a:d6:ba:d1: b7:eb:5d:ae:0d:d5:fa:34:ea:27:0f:5b:ec:a5:c6:5c:81:3c: e8:e0:ed:cc:82:69:6c:b0:13:b4:dc:9a:a7:0c:03:8c:74:4c: 41:d2:c9:3a:b5:a1:38:43:d9:53:70:f3:63:4d:96:11:d2:50: 4f:18:6c:05:3a:d4:38:83:ad:8d:27:18:2f:69:1e:4d:3e:26: 74:5c:16:b5 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUAr9ErI4Vu2bOzZDbMwMAKNpI6cIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTIwNzAwMDAyNloX DTI2MDMwNzIzNTk1OVowejFJMEcGA1UEBRNAMjJjMTU0YmIxYWYyYWI3OTY5MGM0 NzgxOWQ3MGFhYmI5ZjBkNTY0YTFkM2QwOTFlZTk4YjNjOTYyNGJjZDJlODEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz4T+wJbBtwX2fH72UtDeyLGsndBT 0wjgJNI7lCEx2y/xEidd9t1B/kAdup0kEY5AkWPaz53FwohYUmkh9JZ524H1U5SZ OGQ+UgiweFejwReRL4/hEqNhzaYBQt6R52KFUp15QVq0Rz0+nA5k1BXTClg/CU1e +M2iJFln1xdpPbZkLxLF8iG6aCj6/QEh08B68gUORmllMgqFR9ZKcKibUJ1uBdc4 YSrpNIFCg1x8tb/nDBqUFHPVy6Pg8LGCQCduDZUcK7PPMJGyFHpVcHfbNnLn72l7 vioqQkDEd2Fu383SHTL/2ofGvYiau7ZAf+FAYzepFwP1Rxm+G4ej1z/hTQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFGJ8vs1bO1ef84DOx56PaXAy9Q2DMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzdjYmEyMmE1LWRjNjEtNDQxMy1hZWQyLThmYjRjYzhlM2E0OS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A/4AwDQYJKoZIhvcNAQELBQADggEBAEDwAUZeGpbG8mCehKEZ uaBMSzC+o86VbZicdfB7R7ZG4jiAzAo3XPdk6rOOLE3gHgoBb0JCD/WLqpax9KlZ hhnSqU8wwXS3IkSA9Z8B8/O+CmjX922RQKL5zggkQP1brH92YJ6H9mBcXFjpVqJc VEJmJIBUp8YT1yxxYSkOiWLEi6rAC0vcyDhmzEORvyzM66Hwuqlkv3M+f42xfZ8a n/DfvmNG7DTRv6gvrSHmVIeSata60bfrXa4N1fo06icPW+ylxlyBPOjg7cyCaWyw E7TcmqcMA4x0TEHSyTq1oThD2VNw82NNlhHSUE8YbAU61DiDrY0nGC9pHk0+JnRc FrU= -----END CERTIFICATE-----Generated at Fri Dec 26 07:47:29 2025 by rpki-client