This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/8bf311e9-d27f-46fa-8f05-2ed6b176b5b9.roa File: 8bf311e9-d27f-46fa-8f05-2ed6b176b5b9.roa (raw, json) Hash identifier: VHfgLgWNvd30Xb3ZaZhswEJO4ZSP4chUnLd8DBnvFb4= Subject key identifier: 2F:B5:F0:43:F9:BE:6A:FE:28:F7:34:F5:51:1F:7B:FF:D7:5F:34:4F Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 560C836397D382B21B2A4AA03632A3C3AFA4BF14 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/8bf311e9-d27f-46fa-8f05-2ed6b176b5b9.roa Signing time: Sun 07 Dec 2025 00:00:45 +0000 ROA not before: Sun 07 Dec 2025 00:00:45 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8014:400::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:0c:83:63:97:d3:82:b2:1b:2a:4a:a0:36:32:a3:c3:af:a4:bf:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Dec 7 00:00:45 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=fc8b4423335357c7b75430c7f538595cb255f8f7adcbc983e2b8f91749c21a4a, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c7:80:1b:29:e5:9b:d6:7c:a8:7d:6f:4b:fe: 63:78:a0:a2:6d:e8:1e:97:82:22:2f:a6:c4:14:9b: 9c:33:7c:7d:1d:f9:bf:bd:ef:af:32:61:fb:e0:64: dd:52:b1:36:f3:ac:d4:2f:ae:34:b4:18:6a:fa:c2: 32:98:e5:ce:b6:00:7d:91:4f:7c:59:ea:70:c4:57: 3e:8e:2d:a6:2d:78:64:5d:31:74:60:c5:bf:52:8a: d3:6b:91:eb:85:94:e2:93:46:95:bb:de:cd:e3:99: 4c:8f:61:b9:2e:3e:ed:b3:c6:94:7d:90:9b:db:5d: 9b:51:54:d2:b7:df:fa:ac:1b:f1:82:7d:19:79:61: 51:e1:b1:39:9c:e8:a1:76:42:43:f7:ca:45:58:c9: 2d:31:cd:86:df:61:6c:1c:7e:56:51:ea:96:8b:a9: 88:57:76:44:be:d8:5b:7f:d2:a0:b6:c3:79:85:f4: 4c:48:93:4c:a2:3c:2b:83:d3:2c:16:4a:19:74:3e: 0e:5b:ba:d7:e5:64:9c:1c:4b:32:09:25:61:a7:8d: 36:50:e1:2c:d4:71:c1:f8:99:ea:b0:1b:8c:ab:8a: 5a:0d:b7:01:d6:14:dc:fb:1c:8f:43:6d:e1:f8:ec: 99:9d:f8:ec:8a:ec:fc:e5:89:36:4b:76:5a:85:c0: fe:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:B5:F0:43:F9:BE:6A:FE:28:F7:34:F5:51:1F:7B:FF:D7:5F:34:4F X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/8bf311e9-d27f-46fa-8f05-2ed6b176b5b9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8014:400::/38 Signature Algorithm: sha256WithRSAEncryption 00:00:ed:51:20:e4:8f:07:87:fc:f8:ce:8c:92:ec:13:62:66: a1:7f:5f:8e:3f:25:aa:3a:4f:71:5f:32:19:5f:d2:d0:7e:7e: 13:f6:10:4a:96:c7:2b:c1:6c:16:10:20:26:c8:1c:69:eb:cc: 3d:4c:92:b5:ac:81:4f:c0:ed:a7:77:2f:bd:3a:75:fe:95:8d: 85:26:f3:44:d4:0c:f7:53:96:0d:8f:5d:34:88:3e:d8:20:c8: dc:c3:c7:0f:6d:df:29:c9:35:63:31:ef:cc:56:5d:05:ca:c0: c2:ea:b9:ae:f8:19:22:3a:b6:e3:ec:29:b9:00:a4:7e:6d:03: 25:5c:42:a1:ba:25:58:64:9e:1b:d9:b1:ee:5d:0d:33:f0:27: c9:f0:da:50:22:e2:fc:be:dd:bd:5c:14:32:4c:bc:10:1c:92: 65:24:fd:6e:2d:31:3a:a3:2c:5d:21:8a:df:d6:6f:bf:0d:48: 5d:04:38:c4:ab:8c:18:10:10:c8:59:6f:ec:24:19:bb:80:c8: ae:56:f8:41:0e:e9:87:08:b2:c2:9c:c5:47:39:fe:87:0a:e2: 2d:b4:a3:ea:d2:2f:bb:08:91:55:47:8d:5c:14:49:aa:a7:7b: f1:83:dc:6b:93:bc:49:e7:2b:a0:d8:e5:d4:f7:6a:e4:55:fb: 4f:da:50:8f -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUVgyDY5fTgrIbKkqgNjKjw6+kvxQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTIwNzAwMDA0NVoX DTI2MDMwNzIzNTk1OVowejFJMEcGA1UEBRNAZmM4YjQ0MjMzMzUzNTdjN2I3NTQz MGM3ZjUzODU5NWNiMjU1ZjhmN2FkY2JjOTgzZTJiOGY5MTc0OWMyMWE0YTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz8eAGynlm9Z8qH1vS/5jeKCibege l4IiL6bEFJucM3x9Hfm/ve+vMmH74GTdUrE286zUL640tBhq+sIymOXOtgB9kU98 WepwxFc+ji2mLXhkXTF0YMW/UorTa5HrhZTik0aVu97N45lMj2G5Lj7ts8aUfZCb 212bUVTSt9/6rBvxgn0ZeWFR4bE5nOihdkJD98pFWMktMc2G32FsHH5WUeqWi6mI V3ZEvthbf9KgtsN5hfRMSJNMojwrg9MsFkoZdD4OW7rX5WScHEsyCSVhp402UOEs 1HHB+JnqsBuMq4paDbcB1hTc+xyPQ23h+OyZnfjsiuz85Yk2S3ZahcD+4QIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFC+18EP5vmr+KPc09VEfe//XXzRPMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 LzhiZjMxMWU5LWQyN2YtNDZmYS04ZjA1LTJlZDZiMTc2YjViOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AFAQwDQYJKoZIhvcNAQELBQADggEBAAAA7VEg5I8Hh/z4zoyS 7BNiZqF/X44/Jao6T3FfMhlf0tB+fhP2EEqWxyvBbBYQICbIHGnrzD1MkrWsgU/A 7ad3L706df6VjYUm80TUDPdTlg2PXTSIPtggyNzDxw9t3ynJNWMx78xWXQXKwMLq ua74GSI6tuPsKbkApH5tAyVcQqG6JVhknhvZse5dDTPwJ8nw2lAi4vy+3b1cFDJM vBAckmUk/W4tMTqjLF0hit/Wb78NSF0EOMSrjBgQEMhZb+wkGbuAyK5W+EEO6YcI ssKcxUc5/ocK4i20o+rSL7sIkVVHjVwUSaqne/GD3GuTvEnnK6DY5dT3auRV+0/a UI8= -----END CERTIFICATE-----Generated at Fri Dec 26 07:47:28 2025 by rpki-client