This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/f54cd21d-ebef-4509-8295-1f7547d0d717.roa File: f54cd21d-ebef-4509-8295-1f7547d0d717.roa (raw, json) Hash identifier: lov3p94bzOA/f5wWZN1UstZNwQ+Xm/a9eJezqv7P+zk= Subject key identifier: 33:54:75:2B:55:E7:05:B3:C0:84:FA:F1:ED:AD:13:16:12:F7:81:65 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 418388E0D2AAAC963BEC6A4891DF2B7877146D69 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/f54cd21d-ebef-4509-8295-1f7547d0d717.roa Signing time: Sun 07 Dec 2025 00:00:44 +0000 ROA not before: Sun 07 Dec 2025 00:00:44 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8018:400::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Dec 2025 00:02:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:83:88:e0:d2:aa:ac:96:3b:ec:6a:48:91:df:2b:78:77:14:6d:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Dec 7 00:00:44 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=1d7e7a4de0dff5135059d54c5485d3f234407c9e3a85a0fbe4ac52a8e11b59fc, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:68:59:73:6e:34:01:54:e7:b7:f8:8d:12:31: 08:ca:0e:9c:77:84:51:ae:41:8c:e5:08:ac:d7:bc: 00:ba:46:a3:54:04:c9:e8:64:13:c6:a0:d3:71:0d: 51:81:b2:55:6e:25:83:af:eb:c6:31:e6:7f:30:a1: ee:73:62:23:9c:ce:ff:bd:c8:e9:07:c3:c6:f6:f0: 17:ab:81:44:21:a8:bd:20:65:79:e9:f5:9b:ac:bc: 16:c4:41:8e:29:18:b3:22:93:51:cc:08:7a:8a:19: 67:b3:06:7c:4f:53:fa:b1:6b:d4:d0:c2:05:7c:fd: 17:0d:6c:14:ed:15:49:43:12:57:b3:8d:cd:84:19: 58:29:fc:fb:75:76:d3:6e:f5:e0:99:ad:8d:7b:2f: 84:15:5c:6e:09:a4:d2:23:36:38:d9:e3:22:c4:15: 17:fa:0d:11:51:e9:0a:2a:66:15:6c:9b:a4:ac:27: 0b:73:7c:43:93:4a:23:bf:b6:7c:8f:a7:db:8c:39: 35:0f:bb:9f:58:a2:75:72:f3:53:42:24:15:33:14: 7a:3b:d9:d1:64:c5:52:1a:5d:83:e0:6a:62:23:f6: 63:46:88:e5:3b:0f:2c:7f:77:a3:7d:96:d7:89:9f: d7:b6:ba:2c:f4:7a:96:df:8d:b2:53:f0:84:03:16: 07:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:54:75:2B:55:E7:05:B3:C0:84:FA:F1:ED:AD:13:16:12:F7:81:65 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/f54cd21d-ebef-4509-8295-1f7547d0d717.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8018:400::/38 Signature Algorithm: sha256WithRSAEncryption 66:89:33:66:83:26:0e:c6:99:1a:59:21:a9:89:82:13:0e:e2: 6d:47:96:f7:83:44:81:16:74:1f:fb:d6:5c:08:0a:37:38:06: a2:59:af:2e:50:67:2b:19:d0:c7:ed:70:55:43:96:29:5f:81: 68:8d:8e:05:33:14:94:3e:f9:ff:1c:a0:0d:11:d4:7f:8b:bc: 21:cf:89:fe:78:37:bb:4b:f5:52:31:e0:aa:16:9d:26:9b:c1: 35:58:4d:54:97:77:9c:3f:0b:66:02:12:68:59:bc:bc:d5:29: e6:fe:c7:88:e8:f7:62:c5:79:e4:b7:99:39:9c:27:f9:08:da: e1:7b:e7:68:19:52:9a:e1:3c:cd:64:19:34:dd:d6:88:4d:8a: 9a:94:14:4b:00:bd:07:d3:2c:0b:4d:73:02:f8:51:8b:49:5a: 86:c8:09:cc:d1:ec:78:ad:86:2f:cd:08:e7:ce:c0:3f:1e:14: 43:04:63:54:0f:65:4c:32:4f:4c:f3:43:5f:99:fa:06:90:5d: 6b:b2:90:ea:83:75:87:c2:31:f4:51:a9:98:7d:e1:dc:f8:fb: a8:15:df:48:27:58:b5:8c:a2:92:30:fe:70:93:e6:b4:7e:0b: 93:f6:1b:7b:f6:75:a6:b6:1d:9b:98:8f:c7:f3:5e:70:7a:94: 59:2a:32:aa -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUQYOI4NKqrJY77GpIkd8reHcUbWkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTIwNzAwMDA0NFoX DTI2MDMwNzIzNTk1OVowejFJMEcGA1UEBRNAMWQ3ZTdhNGRlMGRmZjUxMzUwNTlk NTRjNTQ4NWQzZjIzNDQwN2M5ZTNhODVhMGZiZTRhYzUyYThlMTFiNTlmYzEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjmhZc240AVTnt/iNEjEIyg6cd4RR rkGM5Qis17wAukajVATJ6GQTxqDTcQ1RgbJVbiWDr+vGMeZ/MKHuc2IjnM7/vcjp B8PG9vAXq4FEIai9IGV56fWbrLwWxEGOKRizIpNRzAh6ihlnswZ8T1P6sWvU0MIF fP0XDWwU7RVJQxJXs43NhBlYKfz7dXbTbvXgma2Ney+EFVxuCaTSIzY42eMixBUX +g0RUekKKmYVbJukrCcLc3xDk0ojv7Z8j6fbjDk1D7ufWKJ1cvNTQiQVMxR6O9nR ZMVSGl2D4GpiI/ZjRojlOw8sf3ejfZbXiZ/Xtros9HqW342yU/CEAxYH9wIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFDNUdStV5wWzwIT68e2tExYS94FlMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2Y1NGNkMjFkLWViZWYtNDUwOS04Mjk1LTFmNzU0N2QwZDcxNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AGAQwDQYJKoZIhvcNAQELBQADggEBAGaJM2aDJg7GmRpZIamJ ghMO4m1HlveDRIEWdB/71lwICjc4BqJZry5QZysZ0MftcFVDlilfgWiNjgUzFJQ+ +f8coA0R1H+LvCHPif54N7tL9VIx4KoWnSabwTVYTVSXd5w/C2YCEmhZvLzVKeb+ x4jo92LFeeS3mTmcJ/kI2uF752gZUprhPM1kGTTd1ohNipqUFEsAvQfTLAtNcwL4 UYtJWobICczR7Hithi/NCOfOwD8eFEMEY1QPZUwyT0zzQ1+Z+gaQXWuykOqDdYfC MfRRqZh94dz4+6gV30gnWLWMopIw/nCT5rR+C5P2G3v2daa2HZuYj8fzXnB6lFkq Mqo= -----END CERTIFICATE-----Generated at Sun Dec 14 07:50:12 2025 by rpki-client