This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/baa1273d-7883-4b5d-8e1c-23ebac490846.roa File: baa1273d-7883-4b5d-8e1c-23ebac490846.roa (raw, json) Hash identifier: INpmlXPd3ZkeJAF+b5z1zBx4Ks5QFZu5FK7FkbZEbdg= Subject key identifier: A2:E8:F1:6E:51:20:BC:E3:58:8B:7E:AD:5A:8C:A8:FC:FA:98:84:10 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 50760405B676039CCC490930B9B19B98387C0707 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/baa1273d-7883-4b5d-8e1c-23ebac490846.roa Signing time: Sun 07 Dec 2025 00:00:44 +0000 ROA not before: Sun 07 Dec 2025 00:00:44 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:4040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:76:04:05:b6:76:03:9c:cc:49:09:30:b9:b1:9b:98:38:7c:07:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Dec 7 00:00:44 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=f2647f16d72cd37044188d9189f950f21fd0e6887b4a8a66024cd4aef8b5fa23, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:94:3d:e9:17:3a:90:c8:fe:8d:1c:b5:0c:76: ac:77:c2:ff:12:07:42:1b:e0:8f:14:33:c2:61:34: eb:d2:02:0b:5f:72:87:0f:c6:ca:70:e6:20:6e:12: 86:33:dd:94:8c:b8:be:56:94:d6:0a:11:92:16:de: db:5e:a1:81:bd:b9:59:ad:3b:c5:2c:5f:6c:5e:96: 02:72:04:df:96:11:ad:55:9c:34:07:59:0a:84:91: 2c:7c:04:ac:25:55:06:5a:ad:fd:db:22:70:95:18: 59:8d:9f:0c:05:f9:8e:6e:db:06:e1:ac:1c:bd:5c: 7c:e3:36:4e:c6:e5:f3:33:3d:32:6e:0d:74:45:9f: 4b:cd:34:21:a5:80:3b:dd:99:15:5a:dd:e8:79:aa: 2e:b5:c2:16:29:d9:5f:bb:51:6c:9d:64:5e:29:60: bc:2d:bd:29:a6:4c:12:e1:fb:0c:cc:08:c9:c8:1e: 4d:de:85:1e:56:55:11:7d:21:98:7f:47:ab:67:21: 8d:2d:2c:6e:5a:bb:fe:46:81:66:c4:be:27:62:8c: 5b:a3:9c:5c:26:4b:1a:82:d5:5d:70:da:db:41:19: 62:8d:6e:fa:83:54:67:02:f7:d2:b4:a9:ce:c3:20: b6:34:57:3d:f0:97:e8:07:59:a6:80:91:79:05:c6: 01:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:E8:F1:6E:51:20:BC:E3:58:8B:7E:AD:5A:8C:A8:FC:FA:98:84:10 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/baa1273d-7883-4b5d-8e1c-23ebac490846.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:4040::/48 Signature Algorithm: sha256WithRSAEncryption a0:2e:0c:26:a1:f9:c9:7c:e1:f0:f9:c3:7e:9b:40:2b:7b:88: f7:6c:50:c3:d2:be:d6:4d:e5:aa:f4:2d:c4:9d:8a:0a:51:1c: 71:c8:68:f0:95:38:82:e5:54:33:8d:cb:53:65:64:39:a7:4e: 68:4f:bc:55:1f:d3:50:e0:2b:c9:72:56:fe:07:43:d9:23:80: ac:50:d3:93:c4:cf:69:bd:05:23:b8:5e:37:21:c8:e4:ec:6d: da:f7:41:d5:d6:af:f3:28:93:47:0c:16:d7:83:dc:d2:8d:8b: 6b:c6:19:da:61:d4:73:1b:05:26:2c:a4:90:7a:16:be:98:da: 6f:d9:38:36:b1:d5:89:a3:e5:7e:26:d9:17:d3:ce:ba:2e:a4: 34:eb:fe:5d:59:d8:0a:1e:cc:86:07:b8:17:db:d9:e3:87:29: 45:54:99:6d:c9:21:5d:12:04:80:fc:4a:70:95:50:24:fc:c5: 8f:e1:4e:fb:26:c0:1d:7a:6e:52:89:f0:48:b5:23:c5:46:43: eb:bf:b1:39:b8:b4:e1:49:db:a7:0d:bb:0a:c6:8f:df:c3:cf: 74:0a:98:95:c4:d0:da:2e:15:d3:91:3c:3c:2a:7c:c5:dd:24: 1f:17:43:58:26:31:e1:e9:27:6e:22:68:fd:01:f5:49:23:ec: c2:18:3d:39 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUUHYEBbZ2A5zMSQkwubGbmDh8BwcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTIwNzAwMDA0NFoX DTI2MDMwNzIzNTk1OVowejFJMEcGA1UEBRNAZjI2NDdmMTZkNzJjZDM3MDQ0MTg4 ZDkxODlmOTUwZjIxZmQwZTY4ODdiNGE4YTY2MDI0Y2Q0YWVmOGI1ZmEyMzEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxpQ96Rc6kMj+jRy1DHasd8L/EgdC G+CPFDPCYTTr0gILX3KHD8bKcOYgbhKGM92UjLi+VpTWChGSFt7bXqGBvblZrTvF LF9sXpYCcgTflhGtVZw0B1kKhJEsfASsJVUGWq392yJwlRhZjZ8MBfmObtsG4awc vVx84zZOxuXzMz0ybg10RZ9LzTQhpYA73ZkVWt3oeaoutcIWKdlfu1FsnWReKWC8 Lb0ppkwS4fsMzAjJyB5N3oUeVlURfSGYf0erZyGNLSxuWrv+RoFmxL4nYoxbo5xc JksagtVdcNrbQRlijW76g1RnAvfStKnOwyC2NFc98JfoB1mmgJF5BcYBtwIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFKLo8W5RILzjWIt+rVqMqPz6mIQQMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2JhYTEyNzNkLTc4ODMtNGI1ZC04ZTFjLTIzZWJhYzQ5MDg0Ni5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJA+A/0BAMA0GCSqGSIb3DQEBCwUAA4IBAQCgLgwmofnJfOHw+cN+ m0Are4j3bFDD0r7WTeWq9C3EnYoKURxxyGjwlTiC5VQzjctTZWQ5p05oT7xVH9NQ 4CvJclb+B0PZI4CsUNOTxM9pvQUjuF43Icjk7G3a90HV1q/zKJNHDBbXg9zSjYtr xhnaYdRzGwUmLKSQeha+mNpv2Tg2sdWJo+V+JtkX0866LqQ06/5dWdgKHsyGB7gX 29njhylFVJltySFdEgSA/EpwlVAk/MWP4U77JsAdem5SifBItSPFRkPrv7E5uLTh SdunDbsKxo/fw890CpiVxNDaLhXTkTw8KnzF3SQfF0NYJjHh6SduImj9AfVJI+zC GD05 -----END CERTIFICATE-----Generated at Fri Dec 26 07:47:28 2025 by rpki-client