This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c7b491e4-76ae-4305-8132-a670b41c66fd.roa File: c7b491e4-76ae-4305-8132-a670b41c66fd.roa (raw, json) Hash identifier: cWINDmMGV/MfnbP6IrvKnQzGEZH8rDn9dUt41b5L5Vc= Subject key identifier: F6:AD:B5:99:CF:1E:3C:23:BB:54:6B:01:48:5D:52:6B:49:42:CE:B5 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 721626A30C15BF6C3DC6D0D6B1FA1035869A2937 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c7b491e4-76ae-4305-8132-a670b41c66fd.roa Signing time: Sun 07 Dec 2025 00:00:40 +0000 ROA not before: Sun 07 Dec 2025 00:00:40 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:80ff:4000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:16:26:a3:0c:15:bf:6c:3d:c6:d0:d6:b1:fa:10:35:86:9a:29:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Dec 7 00:00:40 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=8ef1a5968f2e4035032fbd0d79e28e5df69b3f597bf6583f9b87080ecb5efe8c, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:04:5b:70:90:89:47:f6:01:1b:4c:79:f7:6d: b9:c2:df:db:d0:d4:cc:7b:93:ee:6e:22:e6:4e:f1: 4a:6d:79:63:32:d8:05:d6:c0:9b:19:c4:6a:7c:af: c4:fa:25:1d:a3:38:f3:73:5b:62:70:bc:57:2a:cb: 9a:88:56:0d:82:57:fc:09:5a:9c:cd:cd:1c:b2:2d: 13:77:69:41:8f:4d:98:dc:c5:51:e0:5d:64:8a:0f: 7d:ff:93:f7:92:70:53:36:67:20:b0:ac:68:e5:d0: 10:4d:85:1d:b5:e7:34:a0:88:6f:7b:d3:e3:9f:59: e2:02:c9:05:ef:7b:93:cc:90:bd:9f:6e:79:b6:d5: 76:ee:db:69:e3:44:16:6a:57:09:1c:e4:99:06:53: 4e:21:fc:8a:f9:0c:66:5e:96:71:ee:b0:9f:e8:81: ae:4b:d0:ea:85:8d:d0:86:af:fb:69:0b:5f:76:20: 46:2c:34:5d:40:fd:97:19:a1:0d:c6:a1:85:c7:45: d2:1f:be:2b:45:1a:89:ed:0d:2e:39:26:2b:aa:3c: 1b:2e:2c:04:e1:64:97:1c:43:47:3f:55:f7:6a:db: 91:1e:f4:8c:62:a2:53:9d:71:97:b6:3d:67:79:02: ce:84:cb:6e:b6:2f:67:47:44:dc:31:f5:b1:d3:1f: 4f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:AD:B5:99:CF:1E:3C:23:BB:54:6B:01:48:5D:52:6B:49:42:CE:B5 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/c7b491e4-76ae-4305-8132-a670b41c66fd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:80ff:4000::/40 Signature Algorithm: sha256WithRSAEncryption 55:ef:e3:0b:10:63:65:b7:32:38:13:3d:75:5d:bc:c2:f3:9e: 82:4c:f7:dc:30:6f:2a:14:85:67:47:27:a1:5d:56:4e:c6:a1: 01:43:a9:9c:36:a9:51:70:4e:4a:8f:2e:92:70:c1:2e:b7:73: 66:21:18:fa:6c:4f:8d:34:9f:20:0d:83:65:82:12:d3:17:71: af:6c:61:a7:e6:49:e1:d3:88:f5:75:36:fa:38:96:f9:cc:50: d6:ec:c6:55:a0:37:6f:1d:ce:58:58:f7:c4:6c:1e:d7:8b:35: dd:2a:82:88:0d:e3:55:e4:ad:6d:dd:14:81:21:6a:16:36:79: 4d:72:6a:46:02:8c:7e:e2:97:f7:b1:12:76:1d:42:db:0a:6d: 75:3d:3d:e1:90:19:e1:24:43:bb:92:20:fe:3b:05:56:77:13: 0a:79:01:fc:b4:61:60:d9:fe:66:09:68:6a:c9:88:da:4b:64: f4:53:2b:48:0e:54:d4:3a:b9:b6:79:a3:c5:e6:29:c3:81:6b: 1f:0f:b9:dc:ad:42:2d:cc:c5:be:84:d5:80:8a:a5:89:16:84: d3:e5:29:9b:93:ba:71:72:91:cb:40:21:d5:da:ec:83:ab:86: ca:30:eb:0f:27:cd:1f:a3:6e:a8:1a:d4:5d:8d:16:4f:10:b1: 0f:6d:ba:cb -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUchYmowwVv2w9xtDWsfoQNYaaKTcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTIwNzAwMDA0MFoX DTI2MDMwNzIzNTk1OVowejFJMEcGA1UEBRNAOGVmMWE1OTY4ZjJlNDAzNTAzMmZi ZDBkNzllMjhlNWRmNjliM2Y1OTdiZjY1ODNmOWI4NzA4MGVjYjVlZmU4YzEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxQRbcJCJR/YBG0x59225wt/b0NTM e5PubiLmTvFKbXljMtgF1sCbGcRqfK/E+iUdozjzc1ticLxXKsuaiFYNglf8CVqc zc0csi0Td2lBj02Y3MVR4F1kig99/5P3knBTNmcgsKxo5dAQTYUdtec0oIhve9Pj n1niAskF73uTzJC9n255ttV27ttp40QWalcJHOSZBlNOIfyK+QxmXpZx7rCf6IGu S9DqhY3Qhq/7aQtfdiBGLDRdQP2XGaENxqGFx0XSH74rRRqJ7Q0uOSYrqjwbLiwE 4WSXHENHP1X3atuRHvSMYqJTnXGXtj1neQLOhMtuti9nR0TcMfWx0x9PGwIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFPattZnPHjwju1RrAUhdUmtJQs61MB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2M3YjQ5MWU0LTc2YWUtNDMwNS04MTMyLWE2NzBiNDFjNjZmZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJA+A/0AwDQYJKoZIhvcNAQELBQADggEBAFXv4wsQY2W3MjgTPXVd vMLznoJM99wwbyoUhWdHJ6FdVk7GoQFDqZw2qVFwTkqPLpJwwS63c2YhGPpsT400 nyANg2WCEtMXca9sYafmSeHTiPV1Nvo4lvnMUNbsxlWgN28dzlhY98RsHteLNd0q gogN41XkrW3dFIEhahY2eU1yakYCjH7il/exEnYdQtsKbXU9PeGQGeEkQ7uSIP47 BVZ3Ewp5Afy0YWDZ/mYJaGrJiNpLZPRTK0gOVNQ6ubZ5o8XmKcOBax8PudytQi3M xb6E1YCKpYkWhNPlKZuTunFykctAIdXa7IOrhsow6w8nzR+jbqga1F2NFk8QsQ9t uss= -----END CERTIFICATE-----Generated at Fri Dec 26 07:47:28 2025 by rpki-client