This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa File: ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa (raw, json) Hash identifier: eqOjF8I1eTsSRJr5OzgFKPW9mN7/s8Y0QERSNUFt6QQ= Subject key identifier: 35:FB:CB:F5:74:74:31:E0:5E:AD:42:21:1A:B8:C4:A3:A9:08:DF:50 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 5C3E188D60C3E9B084CEE11538BE5286D96F2285 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa Signing time: Sun 07 Dec 2025 00:00:42 +0000 ROA not before: Sun 07 Dec 2025 00:00:42 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:8020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:3e:18:8d:60:c3:e9:b0:84:ce:e1:15:38:be:52:86:d9:6f:22:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Dec 7 00:00:42 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=c3c52cf5edcceb55f1ab734dc876afbe29d62f11e2f8383910bcd9fb48558f8e, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:34:dc:53:57:de:5f:a3:9b:52:79:89:80:70: cf:d1:bb:11:51:66:a6:08:11:c0:bd:7a:1c:2c:0e: af:be:7e:4e:9a:bf:0a:4c:39:ad:7b:23:74:08:9d: ce:ec:96:52:f2:03:34:f8:72:37:76:0e:47:b9:61: cf:b0:5e:0e:16:05:0d:b8:7f:05:64:8a:93:de:47: bf:ae:f0:47:a8:dc:43:a3:28:4c:98:41:52:f9:2c: d8:e5:34:a8:7a:60:7f:45:64:c0:00:fc:66:a5:b6: 97:7b:a6:3d:dc:d3:45:67:25:a3:55:cd:f2:3a:80: cf:81:88:df:d4:06:fa:45:f6:a8:32:8b:8b:d9:ef: c6:61:6f:8d:bd:16:15:f3:3a:c3:c6:32:33:bc:e4: 68:8c:40:5e:04:e1:1a:99:ba:17:01:27:90:02:f5: f7:17:91:df:b0:1d:bf:9f:62:03:6a:9b:55:fa:e0: 4e:7f:dd:ac:b7:f9:20:a7:0f:ad:72:78:38:4f:f7: c5:c7:65:9e:56:1c:0e:cc:6a:39:e1:ab:4b:e6:c6: d7:1f:26:28:7d:02:e5:8b:33:69:f6:35:48:ee:bf: 63:28:d2:74:61:ae:51:65:33:92:97:3d:19:6e:1c: ed:ad:c5:ed:c9:76:8c:bf:34:2d:bf:7f:f8:94:24: 2d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:FB:CB:F5:74:74:31:E0:5E:AD:42:21:1A:B8:C4:A3:A9:08:DF:50 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/ab4ad185-2bfb-4281-9e23-00a2ab4b6e8f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:8020::/48 Signature Algorithm: sha256WithRSAEncryption 72:fe:d1:4c:02:74:2c:eb:f8:43:61:63:8b:73:9f:4a:3d:ed: cd:00:e2:97:d5:fc:75:a6:5e:6e:5e:e1:33:af:71:0c:df:e1: 58:bb:d9:72:6f:27:aa:4f:63:3e:ce:19:c9:bf:3e:1e:93:46: eb:7f:ef:28:55:3d:c3:36:ca:66:ad:54:ad:84:6b:58:b0:bf: 04:38:5a:e6:95:f5:47:87:23:a5:e0:f2:5f:0a:7e:11:49:ab: 89:04:e3:37:1e:78:38:34:5d:3c:dc:22:d7:52:bd:66:ec:2c: 07:50:f6:da:59:f2:bc:e6:39:3e:57:c9:ab:cf:ad:de:71:4d: d9:3d:d6:5b:26:82:92:40:7b:72:2f:29:97:19:c6:f7:e4:5a: a9:45:68:95:15:74:39:26:b7:1b:3e:b7:44:e4:e9:f9:e8:01: 60:a1:85:77:08:96:a7:c1:8b:84:7f:93:7e:c9:ef:85:30:dd: 8d:fc:ff:82:10:b3:88:bc:0e:7e:10:3a:1e:e2:a9:f3:0e:8b: cb:f8:da:8c:99:9d:a3:6e:d3:b0:ff:82:7b:e0:16:ae:c3:92: 90:4c:10:23:d4:f7:f5:e3:15:57:7a:0b:89:e9:2c:b8:c6:64: bb:ab:15:ee:bc:95:08:0d:50:dc:4e:0e:8e:0c:13:10:87:dc: 11:cd:f4:b6 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUXD4YjWDD6bCEzuEVOL5ShtlvIoUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTIwNzAwMDA0MloX DTI2MDMwNzIzNTk1OVowejFJMEcGA1UEBRNAYzNjNTJjZjVlZGNjZWI1NWYxYWI3 MzRkYzg3NmFmYmUyOWQ2MmYxMWUyZjgzODM5MTBiY2Q5ZmI0ODU1OGY4ZTEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5TTcU1feX6ObUnmJgHDP0bsRUWam CBHAvXocLA6vvn5Omr8KTDmteyN0CJ3O7JZS8gM0+HI3dg5HuWHPsF4OFgUNuH8F ZIqT3ke/rvBHqNxDoyhMmEFS+SzY5TSoemB/RWTAAPxmpbaXe6Y93NNFZyWjVc3y OoDPgYjf1Ab6RfaoMouL2e/GYW+NvRYV8zrDxjIzvORojEBeBOEamboXASeQAvX3 F5HfsB2/n2IDaptV+uBOf92st/kgpw+tcng4T/fFx2WeVhwOzGo54atL5sbXHyYo fQLlizNp9jVI7r9jKNJ0Ya5RZTOSlz0ZbhztrcXtyXaMvzQtv3/4lCQtSQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFDX7y/V0dDHgXq1CIRq4xKOpCN9QMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2FiNGFkMTg1LTJiZmItNDI4MS05ZTIzLTAwYTJhYjRiNmU4Zi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/4AgMA0GCSqGSIb3DQEBCwUAA4IBAQBy/tFMAnQs6/hDYWOL c59KPe3NAOKX1fx1pl5uXuEzr3EM3+FYu9lybyeqT2M+zhnJvz4ek0brf+8oVT3D NspmrVSthGtYsL8EOFrmlfVHhyOl4PJfCn4RSauJBOM3Hng4NF083CLXUr1m7CwH UPbaWfK85jk+V8mrz63ecU3ZPdZbJoKSQHtyLymXGcb35FqpRWiVFXQ5JrcbPrdE 5On56AFgoYV3CJanwYuEf5N+ye+FMN2N/P+CELOIvA5+EDoe4qnzDovL+NqMmZ2j btOw/4J74Bauw5KQTBAj1Pf14xVXeguJ6Sy4xmS7qxXuvJUIDVDcTg6ODBMQh9wR zfS2 -----END CERTIFICATE-----Generated at Fri Dec 26 07:47:30 2025 by rpki-client