This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/1dffeac8-b779-49ef-ba27-58bc19891e60.roa File: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (raw, json) Hash identifier: JGG4dTO8UJf/vYGc8fwxTAOM1h6nEPP82EI/7Dv4FHU= Subject key identifier: 13:79:E8:BF:F1:BB:47:4B:2F:69:1D:8F:A0:A4:EA:97:EB:A3:53:2D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 2DFD6ABACFE739186529EF26AE0C48EDDE09D273 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/1dffeac8-b779-49ef-ba27-58bc19891e60.roa Signing time: Tue 11 Nov 2025 00:00:39 +0000 ROA not before: Tue 11 Nov 2025 00:00:39 +0000 ROA not after: Tue 16 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.144.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 00:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:fd:6a:ba:cf:e7:39:18:65:29:ef:26:ae:0c:48:ed:de:09:d2:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 11 00:00:39 2025 GMT Not After : Dec 16 23:59:59 2025 GMT Subject: serialNumber=0dac2b1e1a0819b4c013d5306649311809540a72b2e588956061c31ca7811825, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c2:50:58:47:60:18:61:72:fd:4e:39:13:03: 60:2d:f6:0f:41:bb:ee:a3:f4:df:4a:95:ef:0d:ee: dd:23:39:78:aa:8a:0f:c1:dd:ca:05:e9:e4:f6:19: 6e:41:af:06:db:76:52:68:c2:80:32:85:be:fe:35: 2a:60:72:5b:8c:2f:ff:9e:8d:34:f7:b5:c5:f6:a6: 92:88:53:b8:0e:a9:69:29:fd:50:18:43:ef:69:4c: 89:1a:89:71:2c:ea:0f:6d:a8:29:94:e8:dc:28:0c: 2a:36:35:fd:fa:15:71:e2:b3:ae:06:04:7e:3e:17: e1:6c:65:09:28:70:56:bc:90:9b:5b:39:28:ee:1c: 00:c6:77:fe:a2:35:f6:41:27:7c:b6:b4:4a:7c:ab: 83:82:0b:f6:b1:97:bc:ba:4c:96:3e:c3:57:ab:10: 54:4c:94:cf:ac:95:ca:8a:16:3a:8d:6f:a5:5b:ec: 1e:ee:0e:c9:2d:7f:de:01:3e:cb:11:a1:17:a5:10: 6c:df:54:cc:b2:93:2e:50:d8:73:40:22:06:76:5e: a0:93:77:be:29:03:51:a6:31:2d:92:2a:59:0d:bb: b7:8d:4d:05:90:5c:be:89:25:4f:9e:93:7b:f5:2b: ba:2d:23:e9:f1:41:f0:c7:6a:75:4f:58:21:f5:80: 2a:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:79:E8:BF:F1:BB:47:4B:2F:69:1D:8F:A0:A4:EA:97:EB:A3:53:2D X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/1dffeac8-b779-49ef-ba27-58bc19891e60.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.144.0/22 Signature Algorithm: sha256WithRSAEncryption 21:0f:2b:d4:7a:71:8a:25:93:af:92:f9:48:fe:14:5f:14:63: 1a:ea:9b:fa:8d:90:77:9c:f2:be:ad:eb:bf:bc:53:b9:5e:fb: 45:f4:10:23:53:59:8d:eb:61:35:44:5e:8d:d2:58:f0:46:56: c8:fc:a4:79:fd:82:94:65:a4:bc:3e:67:83:dc:ee:47:a8:70: e3:45:7f:dd:5d:2e:df:4a:ba:8b:61:38:b1:52:54:46:7e:60: 0f:d2:ae:e5:a3:3d:1a:bf:1b:49:85:23:28:ff:56:1a:5f:84: b1:c0:5e:50:99:9b:93:49:3e:2f:c5:fb:03:47:03:ac:af:50: 7b:76:a1:fb:46:58:3d:02:8d:ff:9d:51:13:c9:93:3e:a2:03: 87:e1:18:d0:d8:c8:42:4b:66:6c:88:1f:45:1c:2a:aa:cb:43: 52:f6:37:59:0a:96:f8:e9:bf:4f:84:73:fe:53:e3:d1:9a:62: 6e:26:33:ee:36:54:15:13:48:40:b0:54:9d:1e:e3:aa:a7:90: 39:c8:75:ee:e2:1b:d9:50:bc:07:99:2e:13:14:de:37:6d:33: 94:ca:60:8c:f3:8a:e7:12:ca:8f:97:68:a4:2f:fb:eb:19:74: ea:da:48:01:c4:52:81:53:a8:91:57:2f:70:b0:3a:e8:6b:e2: be:89:9f:64 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIULf1qus/nORhlKe8mrgxI7d4J0nMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTExMTAwMDAzOVoX DTI1MTIxNjIzNTk1OVowejFJMEcGA1UEBRNAMGRhYzJiMWUxYTA4MTliNGMwMTNk NTMwNjY0OTMxMTgwOTU0MGE3MmIyZTU4ODk1NjA2MWMzMWNhNzgxMTgyNTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcJQWEdgGGFy/U45EwNgLfYPQbvu o/TfSpXvDe7dIzl4qooPwd3KBenk9hluQa8G23ZSaMKAMoW+/jUqYHJbjC//no00 97XF9qaSiFO4DqlpKf1QGEPvaUyJGolxLOoPbagplOjcKAwqNjX9+hVx4rOuBgR+ PhfhbGUJKHBWvJCbWzko7hwAxnf+ojX2QSd8trRKfKuDggv2sZe8ukyWPsNXqxBU TJTPrJXKihY6jW+lW+we7g7JLX/eAT7LEaEXpRBs31TMspMuUNhzQCIGdl6gk3e+ KQNRpjEtkipZDbu3jU0FkFy+iSVPnpN79Su6LSPp8UHwx2p1T1gh9YAqCwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFBN56L/xu0dLL2kdj6Ck6pfro1MtMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzFkZmZlYWM4LWI3NzktNDllZi1iYTI3LTU4YmMxOTg5MWU2MC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrymQMA0GCSqGSIb3DQEBCwUAA4IBAQAhDyvUenGKJZOvkvlI/hRf FGMa6pv6jZB3nPK+reu/vFO5XvtF9BAjU1mN62E1RF6N0ljwRlbI/KR5/YKUZaS8 PmeD3O5HqHDjRX/dXS7fSrqLYTixUlRGfmAP0q7loz0avxtJhSMo/1YaX4SxwF5Q mZuTST4vxfsDRwOsr1B7dqH7Rlg9Ao3/nVETyZM+ogOH4RjQ2MhCS2ZsiB9FHCqq y0NS9jdZCpb46b9PhHP+U+PRmmJuJjPuNlQVE0hAsFSdHuOqp5A5yHXu4hvZULwH mS4TFN43bTOUymCM84rnEsqPl2ikL/vrGXTq2kgBxFKBU6iRVy9wsDroa+K+iZ9k -----END CERTIFICATE-----Generated at Wed Dec 3 01:17:46 2025 by rpki-client