This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa File: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (raw, json) Hash identifier: IkDmY2VrM+MUCXVE/KGDwQp38xJerke+gZfTRPzKW38= Subject key identifier: 5F:80:2E:D0:68:BF:CB:82:12:11:86:78:FC:E0:81:94:2F:11:A5:13 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 161E961A584C89819D549932B0668D4F98C12AB0 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa Signing time: Tue 11 Nov 2025 00:00:40 +0000 ROA not before: Tue 11 Nov 2025 00:00:40 +0000 ROA not after: Tue 16 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.136.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 00:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:1e:96:1a:58:4c:89:81:9d:54:99:32:b0:66:8d:4f:98:c1:2a:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 11 00:00:40 2025 GMT Not After : Dec 16 23:59:59 2025 GMT Subject: serialNumber=8309b370eadbf5dcadc41879ce608181ef09be6be8708a68c10407b22f26a41d, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c7:0c:69:b3:d5:61:c1:aa:0f:c1:ee:9c:86: b5:4e:93:6d:e8:79:41:6c:d8:32:a7:c7:61:9f:b0: bf:4c:2f:6e:c3:4f:34:23:3d:1c:26:96:cd:71:18: ff:5e:a4:fb:af:c8:0c:29:5f:2c:e9:78:2e:b1:65: 80:6f:4f:c4:6b:1e:84:b9:4d:0f:05:13:36:55:42: 50:b5:c8:a1:08:b0:ce:ab:12:67:c1:36:d1:73:2c: b9:52:71:a1:29:b9:7b:76:31:8e:34:4a:8c:9b:e9: b3:fc:8b:fa:aa:b9:e1:57:7d:32:5a:c5:df:82:79: 2e:87:fd:71:9f:57:09:af:fc:d6:cb:6d:d5:04:48: 61:48:71:26:8f:86:25:cc:f7:50:de:d8:70:6e:ca: c2:48:bd:a8:f9:3f:51:3f:40:1d:6e:60:68:d0:73: 5a:60:e6:d9:cb:e2:bf:6d:aa:1c:0d:21:30:9f:2d: 85:b8:ec:ae:ff:e2:a4:3f:e2:61:97:16:47:dc:cb: 48:72:b7:18:43:c9:ed:0f:c9:b9:97:06:a6:f6:97: f7:d6:85:e7:07:41:e2:18:21:26:40:eb:79:4a:0a: 13:af:d7:39:15:45:b2:fc:b0:b5:51:f4:f9:8b:8d: b5:48:ff:30:2b:d1:a2:2d:0c:15:2c:3a:1a:e2:12: ad:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:80:2E:D0:68:BF:CB:82:12:11:86:78:FC:E0:81:94:2F:11:A5:13 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.136.0/21 Signature Algorithm: sha256WithRSAEncryption 5b:36:c8:8a:2e:8c:7f:93:be:53:ff:ff:eb:9d:df:39:ce:8d: c5:69:6d:dc:69:a3:e5:fe:3f:a9:25:c2:ae:93:5a:1b:84:28: db:ef:1d:95:d0:cf:1b:4e:83:c9:e8:c4:65:46:d9:35:cb:71: 57:f1:1f:8c:e9:b6:49:33:38:4f:77:71:88:92:63:cb:52:22: 0b:65:dd:0b:f8:9c:84:cc:70:7e:b0:10:ea:69:6a:7e:6f:76: b2:cd:fc:bf:80:0c:ba:e2:57:b1:f5:69:00:97:9c:fa:4d:c5: 54:2c:c0:62:98:29:72:59:7e:ef:5c:59:a4:88:e2:07:45:d0: cb:b9:16:f6:2d:47:bf:a3:32:d8:35:aa:93:99:39:3a:96:7f: 6b:56:03:3e:fe:d1:b6:5e:2a:64:08:29:05:2c:00:43:c0:fd: 19:10:92:56:d9:b8:99:06:66:12:5f:79:40:6e:c1:f9:75:d1: d1:84:83:3a:9a:8f:d2:72:79:5c:17:91:a9:da:9b:06:cf:f3: 24:74:da:e8:0b:74:ee:cd:5e:57:54:fa:ce:4c:6b:e9:2f:a6: 0d:df:e9:f8:21:86:84:78:95:1f:49:ab:fe:02:38:8a:ad:1f: 89:e0:cd:62:dd:cf:ed:d2:1d:6f:05:25:f0:08:18:55:9c:5e: d5:f0:a3:64 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUFh6WGlhMiYGdVJkysGaNT5jBKrAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTExMTAwMDA0MFoX DTI1MTIxNjIzNTk1OVowejFJMEcGA1UEBRNAODMwOWIzNzBlYWRiZjVkY2FkYzQx ODc5Y2U2MDgxODFlZjA5YmU2YmU4NzA4YTY4YzEwNDA3YjIyZjI2YTQxZDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxscMabPVYcGqD8HunIa1TpNt6HlB bNgyp8dhn7C/TC9uw080Iz0cJpbNcRj/XqT7r8gMKV8s6XgusWWAb0/Eax6EuU0P BRM2VUJQtcihCLDOqxJnwTbRcyy5UnGhKbl7djGONEqMm+mz/Iv6qrnhV30yWsXf gnkuh/1xn1cJr/zWy23VBEhhSHEmj4YlzPdQ3thwbsrCSL2o+T9RP0AdbmBo0HNa YObZy+K/baocDSEwny2FuOyu/+KkP+JhlxZH3MtIcrcYQ8ntD8m5lwam9pf31oXn B0HiGCEmQOt5SgoTr9c5FUWy/LC1UfT5i421SP8wK9GiLQwVLDoa4hKtTwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFF+ALtBov8uCEhGGePzggZQvEaUTMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzNiODU1N2MwLWQ1ZWUtNGY5ZC04MGFjLWU0MWEzN2ZmZmYyNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDrymIMA0GCSqGSIb3DQEBCwUAA4IBAQBbNsiKLox/k75T///rnd85 zo3FaW3caaPl/j+pJcKuk1obhCjb7x2V0M8bToPJ6MRlRtk1y3FX8R+M6bZJMzhP d3GIkmPLUiILZd0L+JyEzHB+sBDqaWp+b3ayzfy/gAy64lex9WkAl5z6TcVULMBi mClyWX7vXFmkiOIHRdDLuRb2LUe/ozLYNaqTmTk6ln9rVgM+/tG2XipkCCkFLABD wP0ZEJJW2biZBmYSX3lAbsH5ddHRhIM6mo/ScnlcF5Gp2psGz/MkdNroC3TuzV5X VPrOTGvpL6YN3+n4IYaEeJUfSav+AjiKrR+J4M1i3c/t0h1vBSXwCBhVnF7V8KNk -----END CERTIFICATE-----Generated at Wed Dec 3 01:17:10 2025 by rpki-client