This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/197500e2-3802-44b2-a561-ca3dad01e209.roa File: 197500e2-3802-44b2-a561-ca3dad01e209.roa (raw, json) Hash identifier: LMkOhR8oitnpWIWwo+ff7iHTil9wckIVvZSko8EEekQ= Subject key identifier: 03:6F:AF:04:B0:FE:C7:65:BE:51:B1:89:E3:88:B9:E6:1D:B3:A6:0D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 3EA5ECF109755BA609A86C3D0D3DAB0DF23B9974 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/197500e2-3802-44b2-a561-ca3dad01e209.roa Signing time: Tue 11 Nov 2025 00:00:43 +0000 ROA not before: Tue 11 Nov 2025 00:00:43 +0000 ROA not after: Tue 16 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 00:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:a5:ec:f1:09:75:5b:a6:09:a8:6c:3d:0d:3d:ab:0d:f2:3b:99:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 11 00:00:43 2025 GMT Not After : Dec 16 23:59:59 2025 GMT Subject: serialNumber=9f24b74122ea88ad359e2b349a391fbfd4fe85133bba42274ae57c159d6c964e, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:50:3f:d2:8a:73:99:5d:29:09:50:e3:9f:6a: ce:e3:1a:a9:1d:69:05:02:28:6e:a1:d8:b8:4f:a8: 0d:f1:f7:39:00:ce:2b:67:81:61:af:b5:3b:f9:1f: 66:72:9a:8d:17:2d:af:47:7a:4c:96:96:53:86:53: e3:0e:8c:37:b1:f9:da:57:0d:69:32:ef:49:1e:d3: c0:96:3a:e1:e1:c7:09:d3:f3:fd:fc:6b:eb:ce:bf: 98:4f:58:b7:2b:3b:48:3c:29:9b:a7:65:90:b7:61: 17:a3:e2:c7:2c:c4:3d:bb:5d:71:91:30:84:1b:09: b8:0c:27:ab:bc:b4:d4:e0:91:e4:77:8a:48:fb:7c: 8a:ad:c7:c7:4a:c7:d1:60:c4:38:b8:d1:0c:a2:75: 05:95:bb:46:a3:90:e9:c5:31:8a:91:4a:4a:7e:43: f8:5c:61:e4:af:57:99:b0:2f:27:52:ca:af:5f:94: 56:a6:6c:d7:9b:e1:bd:34:8b:15:cc:76:de:fe:92: 00:ad:21:cf:8c:fc:f4:c5:24:c4:d6:3a:1b:74:95: 10:fa:3c:8b:13:57:da:95:e0:74:7e:0c:d0:5b:48: eb:ee:bf:cc:4c:f8:04:97:92:12:1a:4c:ef:e0:ee: 30:f7:62:ce:15:31:c3:b6:45:6a:a3:2c:9f:70:7f: dc:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:6F:AF:04:B0:FE:C7:65:BE:51:B1:89:E3:88:B9:E6:1D:B3:A6:0D X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/197500e2-3802-44b2-a561-ca3dad01e209.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.128.0/24 Signature Algorithm: sha256WithRSAEncryption cf:df:57:da:c1:41:fe:51:cc:41:87:51:15:af:6c:98:13:e4: ad:79:5a:28:60:f9:39:a3:d3:6b:c4:e8:dc:2d:51:95:c5:b6: c8:c4:7a:c1:ab:65:5a:f0:4f:b5:2f:c3:26:e4:cf:6b:18:fe: f7:96:3e:d2:41:ef:79:5c:7c:0d:92:d1:ae:fd:04:79:63:9f: 2f:1c:4e:9e:94:9e:bc:c4:b1:86:f2:37:73:8d:ec:52:a3:6e: 76:8a:72:25:1e:54:e4:ee:34:18:85:fc:7e:d3:de:67:d5:9b: e1:ac:a5:2a:27:1a:c3:6b:a1:f9:ce:9f:61:55:4f:ee:d1:ac: f1:a8:b9:12:b9:92:18:36:6d:fa:f1:1e:59:f7:10:7f:b1:da: a6:61:d0:88:5e:60:16:0b:dc:98:26:ed:4a:5c:dd:f9:4a:7a: 3b:a6:4b:01:5c:92:5d:e9:bc:7c:33:80:ed:35:e4:75:17:ee: ce:91:02:a5:8e:02:41:4c:95:95:64:e5:5b:64:7b:ab:34:98: bc:1c:54:34:4c:d6:62:c6:47:c0:2c:86:e5:0c:dc:e7:5e:07: 1b:9e:d3:3e:0a:02:09:b8:9b:00:46:80:45:50:7d:73:cb:4c: e7:c5:e9:08:d3:bb:91:57:bb:14:a3:ac:09:9f:0a:07:8c:bc: fc:d1:38:d0 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUPqXs8Ql1W6YJqGw9DT2rDfI7mXQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTExMTAwMDA0M1oX DTI1MTIxNjIzNTk1OVowejFJMEcGA1UEBRNAOWYyNGI3NDEyMmVhODhhZDM1OWUy YjM0OWEzOTFmYmZkNGZlODUxMzNiYmE0MjI3NGFlNTdjMTU5ZDZjOTY0ZTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt1A/0opzmV0pCVDjn2rO4xqpHWkF Aihuodi4T6gN8fc5AM4rZ4Fhr7U7+R9mcpqNFy2vR3pMlpZThlPjDow3sfnaVw1p Mu9JHtPAljrh4ccJ0/P9/Gvrzr+YT1i3KztIPCmbp2WQt2EXo+LHLMQ9u11xkTCE Gwm4DCervLTU4JHkd4pI+3yKrcfHSsfRYMQ4uNEMonUFlbtGo5DpxTGKkUpKfkP4 XGHkr1eZsC8nUsqvX5RWpmzXm+G9NIsVzHbe/pIArSHPjPz0xSTE1jobdJUQ+jyL E1faleB0fgzQW0jr7r/MTPgEl5ISGkzv4O4w92LOFTHDtkVqoyyfcH/cKwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFANvrwSw/sdlvlGxieOIueYds6YNMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzE5NzUwMGUyLTM4MDItNDRiMi1hNTYxLWNhM2RhZDAxZTIwOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQArymAMA0GCSqGSIb3DQEBCwUAA4IBAQDP31fawUH+UcxBh1EVr2yY E+SteVooYPk5o9NrxOjcLVGVxbbIxHrBq2Va8E+1L8Mm5M9rGP73lj7SQe95XHwN ktGu/QR5Y58vHE6elJ68xLGG8jdzjexSo252inIlHlTk7jQYhfx+095n1ZvhrKUq JxrDa6H5zp9hVU/u0azxqLkSuZIYNm368R5Z9xB/sdqmYdCIXmAWC9yYJu1KXN35 Sno7pksBXJJd6bx8M4DtNeR1F+7OkQKljgJBTJWVZOVbZHurNJi8HFQ0TNZixkfA LIblDNznXgcbntM+CgIJuJsARoBFUH1zy0znxekI07uRV7sUo6wJnwoHjLz80TjQ -----END CERTIFICATE-----Generated at Wed Dec 3 01:18:06 2025 by rpki-client