This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/fcc4293c-b24f-4fac-9395-546f748b3b13.roa File: fcc4293c-b24f-4fac-9395-546f748b3b13.roa (raw, json) Hash identifier: woWSTCxW1yAi5Eps1xHV/XvEo4/lMUcKRk+DY/laPX4= Subject key identifier: 85:1C:36:24:73:3D:50:CE:3E:61:3E:99:99:43:29:72:FF:66:1D:6E Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 509DBCF173DE46CDB2FD2A0BF3A02036AAF5F493 Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/fcc4293c-b24f-4fac-9395-546f748b3b13.roa Signing time: Sun 07 Dec 2025 00:00:45 +0000 ROA not before: Sun 07 Dec 2025 00:00:45 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 240f:8018::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Dec 2025 00:02:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:9d:bc:f1:73:de:46:cd:b2:fd:2a:0b:f3:a0:20:36:aa:f5:f4:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Dec 7 00:00:45 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=90b7605f2b4087e6121dff032d0696649d8bcf172354642cd7dee27370ed7d22, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:78:a9:69:e4:63:b9:16:55:a7:78:3a:bb:f0: 39:7d:73:db:a2:e4:42:0f:ec:8b:68:2c:84:ed:99: 9f:64:ba:20:b1:43:22:96:b7:bc:10:a9:0b:20:8f: 6b:fb:46:47:62:52:75:e6:11:5a:35:fe:03:fa:a5: a4:fc:cd:16:f8:57:c2:1c:ac:98:72:f1:0d:83:c0: e3:f4:b1:3d:18:56:1e:b0:fb:58:90:12:59:49:c7: e3:b6:09:59:72:f2:4c:5c:21:83:7f:db:83:ee:ac: 42:1a:ab:15:4a:53:e3:d0:19:b4:6d:b8:4f:19:1a: 3a:e4:da:38:c0:ff:54:2a:a5:57:6c:82:75:99:04: 66:e1:f0:60:fb:21:1d:b9:2a:70:c1:83:67:b1:86: db:24:dd:69:d3:f6:a5:bb:55:34:10:34:99:48:4c: 9b:70:a5:6d:41:4e:fb:ca:c8:1c:e9:8b:28:85:40: ba:c8:c0:1f:2b:33:db:44:56:30:5d:59:31:45:71: ca:3c:a4:6d:24:1e:99:c9:e3:37:f4:6d:8d:24:7d: 40:39:52:cf:de:09:17:31:e6:3b:ed:4c:5a:e0:25: a5:cd:94:31:97:71:5b:6a:51:58:ca:4c:96:14:c9: bd:df:15:df:cd:94:b4:66:74:e6:2c:7a:8f:49:04: 84:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:1C:36:24:73:3D:50:CE:3E:61:3E:99:99:43:29:72:FF:66:1D:6E X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/fcc4293c-b24f-4fac-9395-546f748b3b13.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 240f:8018::/38 Signature Algorithm: sha256WithRSAEncryption 79:86:1b:e3:d0:93:95:66:36:de:13:64:1b:5d:a1:6d:4d:5f: 06:e7:86:63:7c:3e:fd:90:ac:b0:a4:f8:f8:fe:de:a2:f6:e8: 01:e6:ab:1b:f2:a3:dc:3f:39:f1:4f:ca:06:07:28:f1:a8:32: 69:8f:17:e1:b8:0d:69:c0:08:9f:30:50:20:4c:92:f7:11:34: f9:4c:1e:3c:75:f0:2e:3e:b3:ab:cc:87:19:ba:03:72:12:a8: a4:28:f9:e7:3c:73:62:d0:e3:9b:d0:63:82:25:c1:45:d9:53: de:a8:a9:b0:64:3a:ad:da:f6:d4:30:3e:ac:37:1e:ae:18:44: ba:19:8a:bd:af:22:35:11:80:1a:e1:5c:b9:70:cc:8e:5d:35: 61:69:75:f1:dc:bc:28:69:7d:51:8a:7b:f7:17:cf:5a:93:24: a2:65:d7:bc:30:ac:13:e9:9e:bb:f0:a8:68:85:2b:51:eb:85: 31:be:62:a8:a3:64:e2:11:b2:18:b7:2b:9c:43:77:59:37:32: d3:97:f9:4b:c3:23:3e:23:22:e7:48:0e:00:dd:6e:cd:d5:55: c9:96:16:7f:f9:9c:dc:eb:28:4c:6a:af:f2:fd:67:56:36:65: 27:e4:82:14:47:4e:b4:0c:9d:61:60:05:5e:79:de:cf:1c:1d: b3:8e:14:c6 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgIUUJ288XPeRs2y/SoL86AgNqr19JMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI1MTIwNzAwMDA0NVoX DTI2MDMwNzIzNTk1OVowejFJMEcGA1UEBRNAOTBiNzYwNWYyYjQwODdlNjEyMWRm ZjAzMmQwNjk2NjQ5ZDhiY2YxNzIzNTQ2NDJjZDdkZWUyNzM3MGVkN2QyMjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo3ipaeRjuRZVp3g6u/A5fXPbouRC D+yLaCyE7ZmfZLogsUMilre8EKkLII9r+0ZHYlJ15hFaNf4D+qWk/M0W+FfCHKyY cvENg8Dj9LE9GFYesPtYkBJZScfjtglZcvJMXCGDf9uD7qxCGqsVSlPj0Bm0bbhP GRo65No4wP9UKqVXbIJ1mQRm4fBg+yEduSpwwYNnsYbbJN1p0/alu1U0EDSZSEyb cKVtQU77ysgc6YsohUC6yMAfKzPbRFYwXVkxRXHKPKRtJB6ZyeM39G2NJH1AOVLP 3gkXMeY77Uxa4CWlzZQxl3FbalFYykyWFMm93xXfzZS0ZnTmLHqPSQSEYQIDAQAB o4ICSjCCAkYwHQYDVR0OBBYEFIUcNiRzPVDOPmE+mZlDKXL/Zh1uMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2ZjYzQyOTNjLWIyNGYtNGZhYy05Mzk1LTU0NmY3NDhiM2IxMy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYCJA+AGAAwDQYJKoZIhvcNAQELBQADggEBAHmGG+PQk5VmNt4TZBtd oW1NXwbnhmN8Pv2QrLCk+Pj+3qL26AHmqxvyo9w/OfFPygYHKPGoMmmPF+G4DWnA CJ8wUCBMkvcRNPlMHjx18C4+s6vMhxm6A3ISqKQo+ec8c2LQ45vQY4IlwUXZU96o qbBkOq3a9tQwPqw3Hq4YRLoZir2vIjURgBrhXLlwzI5dNWFpdfHcvChpfVGKe/cX z1qTJKJl17wwrBPpnrvwqGiFK1HrhTG+YqijZOIRshi3K5xDd1k3MtOX+UvDIz4j IudIDgDdbs3VVcmWFn/5nNzrKExqr/L9Z1Y2ZSfkghRHTrQMnWFgBV553s8cHbOO FMY= -----END CERTIFICATE-----Generated at Sun Dec 14 03:39:47 2025 by rpki-client