This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9d703748-f446-47a1-b0a7-5e3357f2e0d2.roa File: 9d703748-f446-47a1-b0a7-5e3357f2e0d2.roa (raw, json) Hash identifier: yHhTo2zzTs16il8tTHrPT+IjNjDaqMzdbXx4MKJFj8Q= Subject key identifier: CC:E5:6D:9A:5D:7A:CC:D8:0F:07:10:F9:8C:42:DC:1C:4F:7C:D7:C2 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 063568671946AB682C979E6785416E577BD51B20 Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9d703748-f446-47a1-b0a7-5e3357f2e0d2.roa Signing time: Thu 20 Nov 2025 00:00:05 +0000 ROA not before: Thu 20 Nov 2025 00:00:05 +0000 ROA not after: Wed 18 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 159.248.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 00:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:35:68:67:19:46:ab:68:2c:97:9e:67:85:41:6e:57:7b:d5:1b:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: Nov 20 00:00:05 2025 GMT Not After : Feb 18 23:59:59 2026 GMT Subject: serialNumber=763b80d2fb91c9a40556ff2789c16cf41d3277d108a8c50a6cf775fda990304f, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:32:89:78:da:d5:bc:1c:9e:8a:4f:ff:12:e2: 45:d3:9d:5e:ee:58:5e:1e:59:53:83:58:2f:cc:3d: ee:c1:0c:db:22:0c:b5:cf:84:ae:9b:f0:e9:bb:06: 51:8e:65:b0:97:cf:ad:4f:33:9f:82:10:d5:0e:b2: 6b:3e:15:36:b8:ee:32:0e:85:63:29:b7:34:c9:85: eb:ee:9c:a3:26:2a:ec:92:10:26:c7:ae:f8:9a:3c: 7b:a6:53:b5:5c:df:6d:03:56:65:fd:d0:e0:66:52: 87:b0:d6:9c:60:42:0e:a8:b6:20:dd:a9:e3:87:8d: 89:cf:25:cb:91:e0:64:65:a9:ba:4b:8d:7e:0e:c2: 2d:7f:13:86:0d:f6:15:d2:75:fc:37:cf:42:51:c6: 88:ac:5d:4c:ec:bf:1d:09:c6:9c:8a:5c:56:e1:cd: d7:f3:d9:ca:b3:e5:fa:5d:df:31:a3:99:39:ad:cf: c0:3c:a9:7d:82:51:0c:47:49:76:f6:29:e0:63:10: 32:45:ee:e6:63:2e:d9:cf:d9:f4:50:cc:cf:31:53: 9e:86:e0:2b:7d:5e:60:1c:88:ce:6c:dd:0d:cf:84: ba:79:7d:e7:bd:a1:f0:f9:dd:c2:87:7e:d9:e4:ee: e9:3f:9e:76:59:4d:96:c4:7c:7e:ff:94:5f:c5:fd: ff:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:E5:6D:9A:5D:7A:CC:D8:0F:07:10:F9:8C:42:DC:1C:4F:7C:D7:C2 X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9d703748-f446-47a1-b0a7-5e3357f2e0d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.248.132.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:bf:ec:dc:91:ba:8f:71:c1:73:10:15:41:60:59:60:b5:98: e2:f0:da:6c:6f:96:7e:eb:8c:55:f7:d1:8d:3b:5a:df:92:e5: 1c:ff:a0:76:de:f3:0c:15:8d:86:9b:38:05:19:dd:82:3b:44: bd:96:95:86:56:25:89:7e:57:98:17:6f:f6:7c:9c:f1:1b:c2: 27:26:9c:29:a2:0a:01:ee:24:f6:f8:f7:64:b0:29:9c:f6:0d: c1:c6:f2:f6:dc:f6:9b:3b:00:22:eb:ba:53:e7:9c:84:d6:a8: 5e:4d:62:ae:eb:76:a9:00:bb:42:31:e1:62:86:e0:c4:1b:0b: d5:cd:94:d6:2d:0c:15:3c:45:c5:8d:40:44:cf:01:0c:e0:4d: 1c:f4:64:b0:2a:0b:41:9d:c1:e8:75:a1:88:f7:a6:2c:21:48: b4:9a:02:d0:ad:6e:b3:98:19:72:d8:e1:8d:31:2e:97:64:28: 74:bd:70:32:2b:0a:0e:56:e4:3f:b4:94:b3:87:f0:83:1c:8e: fd:97:b2:74:f9:3b:e2:af:25:5f:64:66:90:8f:e5:57:19:44: ee:50:8c:9a:2d:4c:45:70:75:64:8c:51:52:b9:8a:f2:29:55: f3:3e:cd:4a:85:33:dd:63:cf:8a:e2:71:98:56:c8:e4:b2:98: b3:a5:c0:46 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUBjVoZxlGq2gsl55nhUFuV3vVGyAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI1MTEyMDAwMDAwNVoX DTI2MDIxODIzNTk1OVowejFJMEcGA1UEBRNANzYzYjgwZDJmYjkxYzlhNDA1NTZm ZjI3ODljMTZjZjQxZDMyNzdkMTA4YThjNTBhNmNmNzc1ZmRhOTkwMzA0ZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjTKJeNrVvByeik//EuJF051e7lhe HllTg1gvzD3uwQzbIgy1z4Sum/DpuwZRjmWwl8+tTzOfghDVDrJrPhU2uO4yDoVj Kbc0yYXr7pyjJirskhAmx674mjx7plO1XN9tA1Zl/dDgZlKHsNacYEIOqLYg3anj h42JzyXLkeBkZam6S41+DsItfxOGDfYV0nX8N89CUcaIrF1M7L8dCcacilxW4c3X 89nKs+X6Xd8xo5k5rc/APKl9glEMR0l29ingYxAyRe7mYy7Zz9n0UMzPMVOehuAr fV5gHIjObN0Nz4S6eX3nvaHw+d3Ch37Z5O7pP552WU2WxHx+/5Rfxf3/EwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFMzlbZpdeszYDwcQ+YxC3BxPfNfCMB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzlkNzAzNzQ4LWY0NDYtNDdhMS1iMGE3LTVlMzM1N2YyZTBkMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvYTViMDFiZGQtY2RlYi00Y2ZjLThjOTMtN2U3MGM1ZTA5MzA2LmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAn/iEMA0GCSqGSIb3DQEBCwUAA4IBAQB+v+zckbqPccFzEBVBYFlg tZji8Npsb5Z+64xV99GNO1rfkuUc/6B23vMMFY2GmzgFGd2CO0S9lpWGViWJfleY F2/2fJzxG8InJpwpogoB7iT2+PdksCmc9g3BxvL23PabOwAi67pT55yE1qheTWKu 63apALtCMeFihuDEGwvVzZTWLQwVPEXFjUBEzwEM4E0c9GSwKgtBncHodaGI96Ys IUi0mgLQrW6zmBly2OGNMS6XZCh0vXAyKwoOVuQ/tJSzh/CDHI79l7J0+TviryVf ZGaQj+VXGUTuUIyaLUxFcHVkjFFSuYryKVXzPs1KhTPdY8+K4nGYVsjkspizpcBG -----END CERTIFICATE-----Generated at Fri Dec 12 22:48:33 2025 by rpki-client