This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa File: 55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa (raw, json) Hash identifier: yLSDYWvtNqDhK1vNzzdPN4byDWZTEZsu8BW74vjYoHA= Subject key identifier: 8C:48:12:5E:52:75:88:E5:DA:DD:6B:21:26:66:EE:01:52:F6:EF:6B Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 45A300794B3119C9F360E477739451211AD675B6 Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa Signing time: Sun 07 Dec 2025 00:00:36 +0000 ROA not before: Sun 07 Dec 2025 00:00:36 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 159.248.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 00:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:a3:00:79:4b:31:19:c9:f3:60:e4:77:73:94:51:21:1a:d6:75:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: Dec 7 00:00:36 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=f8ebf496625522070658fef471a8bb130c1858e7e66410f08b8dbc34c1a7f916, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5a:ea:79:50:c1:b1:fa:06:2e:31:fd:9e:45: ff:c6:59:41:bb:63:e3:88:39:e7:84:13:9a:d2:bb: 27:30:90:9b:40:39:ff:92:d8:f1:c1:f9:67:f5:e5: 79:07:c0:ef:e8:a0:b7:76:84:b8:72:a0:81:ac:70: a6:f4:34:00:15:83:49:36:94:ea:45:3e:6d:46:c2: f7:d6:d3:66:c7:ee:81:63:36:bd:94:8c:24:17:2f: b0:81:11:e0:5d:21:66:c7:5c:a0:78:d0:a8:97:c2: b9:55:e2:5e:af:dc:3d:b0:8c:59:5c:6d:ee:3a:48: c8:26:fa:3c:2e:21:84:a8:e0:ce:f9:5d:5b:09:a0: 9c:3e:51:09:2b:16:eb:1e:34:5d:d3:b1:6b:a4:05: 6a:d1:1e:72:2b:d7:3e:ae:a4:b9:bf:e1:e1:83:d6: f4:a4:b1:8d:a3:0e:ae:64:47:fc:86:fd:82:e7:1f: c5:52:8f:e6:88:fa:f7:82:e0:8d:d8:c1:4e:fd:6e: 10:c2:9d:8e:01:91:5d:ea:af:e7:2c:76:c4:70:bd: ab:58:a2:79:f9:d5:51:78:fd:c2:27:5a:0b:cb:33: 5e:fa:2e:3b:67:6a:9e:7e:95:67:13:32:5a:d6:4c: cc:8c:6d:b7:03:f0:2a:57:b6:78:8d:df:89:3c:75: f4:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:48:12:5E:52:75:88:E5:DA:DD:6B:21:26:66:EE:01:52:F6:EF:6B X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.248.216.0/21 Signature Algorithm: sha256WithRSAEncryption 2d:a1:70:4e:e3:54:55:17:95:2f:62:a8:1d:ff:45:35:a5:1a: f7:59:19:24:24:50:c3:90:15:07:01:e1:16:96:22:49:43:01: 8e:15:41:5d:5a:7a:9d:c7:7c:cb:eb:54:49:75:4b:88:ff:a3: 1e:04:8c:aa:ff:6b:3d:16:2d:22:16:69:71:8d:b7:ef:15:fa: 59:a8:3f:2b:e7:1b:46:e8:4a:cc:16:f8:8a:ec:0f:76:f7:2a: bb:f1:bd:0d:2b:7c:6f:db:ef:cd:53:9d:3b:3c:9d:10:31:01: d9:e8:16:c7:d2:f1:d0:54:cc:b9:7a:5c:e0:bf:90:91:76:bb: 9a:07:f3:ff:80:8c:41:51:d4:24:3e:37:1f:14:18:0a:fb:25: 9e:c2:21:b7:92:a7:2b:13:2b:76:c4:9d:4b:bd:97:f5:84:50: 75:77:10:42:b6:e5:ed:69:62:72:9c:e3:13:a0:66:c5:fc:48: 99:cc:72:49:99:8f:28:44:57:e0:03:e8:64:70:01:cd:3e:ff: 62:17:1c:1d:31:a7:82:d9:d1:f2:a1:f9:97:86:61:ac:eb:fa: 32:24:4a:1a:b1:9b:ad:a1:0e:cb:82:08:65:6f:4c:f4:6f:5e: 83:74:69:94:a0:fa:7a:37:cf:b2:41:1d:dc:68:b5:54:b6:95: 73:25:06:0b -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIURaMAeUsxGcnzYOR3c5RRIRrWdbYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI1MTIwNzAwMDAzNloX DTI2MDMwNzIzNTk1OVowejFJMEcGA1UEBRNAZjhlYmY0OTY2MjU1MjIwNzA2NThm ZWY0NzFhOGJiMTMwYzE4NThlN2U2NjQxMGYwOGI4ZGJjMzRjMWE3ZjkxNjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1rqeVDBsfoGLjH9nkX/xllBu2Pj iDnnhBOa0rsnMJCbQDn/ktjxwfln9eV5B8Dv6KC3doS4cqCBrHCm9DQAFYNJNpTq RT5tRsL31tNmx+6BYza9lIwkFy+wgRHgXSFmx1ygeNCol8K5VeJer9w9sIxZXG3u OkjIJvo8LiGEqODO+V1bCaCcPlEJKxbrHjRd07FrpAVq0R5yK9c+rqS5v+Hhg9b0 pLGNow6uZEf8hv2C5x/FUo/miPr3guCN2MFO/W4Qwp2OAZFd6q/nLHbEcL2rWKJ5 +dVReP3CJ1oLyzNe+i47Z2qefpVnEzJa1kzMjG23A/AqV7Z4jd+JPHX0JQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFIxIEl5SdYjl2t1rISZm7gFS9u9rMB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU1ZDZjYmFlLThiN2YtNDVhOS04ZDliLTQ1OGQxMGE5YjFjYS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvYTViMDFiZGQtY2RlYi00Y2ZjLThjOTMtN2U3MGM1ZTA5MzA2LmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDn/jYMA0GCSqGSIb3DQEBCwUAA4IBAQAtoXBO41RVF5UvYqgd/0U1 pRr3WRkkJFDDkBUHAeEWliJJQwGOFUFdWnqdx3zL61RJdUuI/6MeBIyq/2s9Fi0i FmlxjbfvFfpZqD8r5xtG6ErMFviK7A929yq78b0NK3xv2+/NU507PJ0QMQHZ6BbH 0vHQVMy5elzgv5CRdruaB/P/gIxBUdQkPjcfFBgK+yWewiG3kqcrEyt2xJ1LvZf1 hFB1dxBCtuXtaWJynOMToGbF/EiZzHJJmY8oRFfgA+hkcAHNPv9iFxwdMaeC2dHy ofmXhmGs6/oyJEoasZutoQ7Lgghlb0z0b16DdGmUoPp6N8+yQR3caLVUtpVzJQYL -----END CERTIFICATE-----Generated at Fri Dec 12 22:47:55 2025 by rpki-client