This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22707524-2248-48ea-815f-578f49b19436.roa File: 22707524-2248-48ea-815f-578f49b19436.roa (raw, json) Hash identifier: fe034WnBtuFinRptIYu7rq19OozfzbkZbEFpFjLILHE= Subject key identifier: 66:42:6B:6B:61:6A:E2:65:7B:AE:E9:B0:49:70:38:69:3D:C4:A5:58 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 119736F6E5A715C3A20669713E9A9B4182F64494 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22707524-2248-48ea-815f-578f49b19436.roa Signing time: Tue 11 Nov 2025 00:00:43 +0000 ROA not before: Tue 11 Nov 2025 00:00:43 +0000 ROA not after: Tue 16 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 00:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:97:36:f6:e5:a7:15:c3:a2:06:69:71:3e:9a:9b:41:82:f6:44:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 11 00:00:43 2025 GMT Not After : Dec 16 23:59:59 2025 GMT Subject: serialNumber=e4746802e6f0857b063cf37859540b2076bf46d5c3c79db26d0333bef133454a, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f9:6f:a9:40:3d:16:b0:e9:7f:dc:7a:6a:9b: bb:2f:28:61:41:29:53:2f:cc:a7:58:42:70:6a:d6: 7a:e6:a2:7d:37:03:73:e2:ac:a1:01:38:f8:a6:98: 7b:8b:95:bd:89:c2:7e:55:a6:a0:95:39:60:57:a6: e7:f5:6b:f1:56:8a:55:db:77:76:ab:b3:27:7e:f5: 7d:55:1c:cb:11:95:b4:45:7f:c1:c6:94:f6:25:1e: c1:2b:02:e7:d9:4f:82:17:cb:e8:18:ae:8f:b9:39: 3d:f4:ef:84:dd:7b:52:db:dc:3a:f9:43:49:69:8c: 50:16:c9:d0:7b:e9:49:43:99:ce:c4:c1:7d:89:c9: 74:fd:9b:eb:85:bf:e3:d2:fb:0b:d3:63:7f:b3:d8: 72:ad:ae:4c:5d:14:67:0b:9d:8e:e3:15:9e:7d:60: 78:96:50:3e:fc:87:13:e3:47:f2:ac:c7:cb:e6:83: c9:61:df:09:38:24:8e:05:29:31:d7:94:4a:c1:86: db:45:c6:4a:d5:e0:d2:89:3d:92:23:96:c8:c4:7a: b7:f2:9b:9c:e9:04:c1:79:8b:67:fb:07:4a:9a:47: e0:65:b3:89:b9:27:c5:df:7a:e4:55:4d:9b:62:08: 87:98:c0:a1:50:3a:b0:2c:78:8f:9f:a9:50:77:ae: ac:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:42:6B:6B:61:6A:E2:65:7B:AE:E9:B0:49:70:38:69:3D:C4:A5:58 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/22707524-2248-48ea-815f-578f49b19436.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.150.0/24 Signature Algorithm: sha256WithRSAEncryption 64:cc:03:cf:3e:8a:a4:ca:84:1b:d2:ae:d5:45:e4:b3:81:8a: dc:67:4e:26:01:12:ee:6c:5c:9c:a9:bb:93:fd:55:73:ea:f1: 43:98:5e:b9:03:c5:56:77:e1:de:eb:41:7f:16:59:aa:4d:17: 9b:48:d2:e8:45:68:b2:6d:b8:42:8a:9b:e8:01:cb:8c:88:87: 2f:20:51:3b:d1:b6:dc:1e:7a:29:45:25:fa:78:ba:72:96:46: 3f:fc:6b:10:56:03:a0:f2:53:ab:52:b4:cc:fb:5b:9c:79:26: d3:d2:f4:45:d0:8d:b7:43:e6:e5:59:c9:b9:c3:c9:6c:6d:01: a3:8b:13:ec:6c:bf:ca:ed:2d:b7:c3:91:cb:ac:8e:73:a7:80: 8e:30:3f:00:3d:e0:5a:41:42:d0:1f:e2:79:b3:c9:dc:c5:73: 2f:34:2f:7d:38:52:1a:73:1f:91:51:82:23:2d:f8:ea:e9:27: 87:c1:f0:e9:6c:fd:f8:15:6c:9f:d5:d0:7a:9c:19:d6:ab:4f: 27:2d:19:d8:09:9b:b2:db:8f:a1:a6:32:37:d5:32:94:24:a0: 5b:41:3b:85:3f:a9:44:69:38:c8:67:11:1c:b1:c5:b6:86:75: 2d:1c:99:37:64:21:bc:f7:c2:fb:b5:35:0a:99:65:8e:21:5b: 63:af:28:7b -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUEZc29uWnFcOiBmlxPpqbQYL2RJQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTExMTAwMDA0M1oX DTI1MTIxNjIzNTk1OVowejFJMEcGA1UEBRNAZTQ3NDY4MDJlNmYwODU3YjA2M2Nm Mzc4NTk1NDBiMjA3NmJmNDZkNWMzYzc5ZGIyNmQwMzMzYmVmMTMzNDU0YTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzPlvqUA9FrDpf9x6apu7LyhhQSlT L8ynWEJwatZ65qJ9NwNz4qyhATj4pph7i5W9icJ+VaaglTlgV6bn9WvxVopV23d2 q7MnfvV9VRzLEZW0RX/BxpT2JR7BKwLn2U+CF8voGK6PuTk99O+E3XtS29w6+UNJ aYxQFsnQe+lJQ5nOxMF9icl0/Zvrhb/j0vsL02N/s9hyra5MXRRnC52O4xWefWB4 llA+/IcT40fyrMfL5oPJYd8JOCSOBSkx15RKwYbbRcZK1eDSiT2SI5bIxHq38puc 6QTBeYtn+wdKmkfgZbOJuSfF33rkVU2bYgiHmMChUDqwLHiPn6lQd66seQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFGZCa2thauJle67psElwOGk9xKVYMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzIyNzA3NTI0LTIyNDgtNDhlYS04MTVmLTU3OGY0OWIxOTQzNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQArymWMA0GCSqGSIb3DQEBCwUAA4IBAQBkzAPPPoqkyoQb0q7VReSz gYrcZ04mARLubFycqbuT/VVz6vFDmF65A8VWd+He60F/FlmqTRebSNLoRWiybbhC ipvoAcuMiIcvIFE70bbcHnopRSX6eLpylkY//GsQVgOg8lOrUrTM+1uceSbT0vRF 0I23Q+blWcm5w8lsbQGjixPsbL/K7S23w5HLrI5zp4COMD8APeBaQULQH+J5s8nc xXMvNC99OFIacx+RUYIjLfjq6SeHwfDpbP34FWyf1dB6nBnWq08nLRnYCZuy24+h pjI31TKUJKBbQTuFP6lEaTjIZxEcscW2hnUtHJk3ZCG898L7tTUKmWWOIVtjryh7 -----END CERTIFICATE-----Generated at Wed Dec 3 01:18:05 2025 by rpki-client