This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/42932dd4-2720-47b3-a472-fc2c8a50a46c.roa File: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (raw, json) Hash identifier: 1LQDJZsx6Ih/p1JXbixCJFIni4NstX9kTQqLItMf6Bo= Subject key identifier: 67:D8:FA:B2:4B:D7:8F:40:D8:73:DD:69:DC:84:00:6F:8E:56:3E:55 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 526A7FFB13F9B3486DF862A87E8E29D25C1D91F2 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/42932dd4-2720-47b3-a472-fc2c8a50a46c.roa Signing time: Tue 11 Nov 2025 00:00:36 +0000 ROA not before: Tue 11 Nov 2025 00:00:36 +0000 ROA not after: Tue 16 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.130.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 00:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:6a:7f:fb:13:f9:b3:48:6d:f8:62:a8:7e:8e:29:d2:5c:1d:91:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 11 00:00:36 2025 GMT Not After : Dec 16 23:59:59 2025 GMT Subject: serialNumber=ba761ea4d926b3d5dd3c9f57c0ca3488c65cc9f30bd948284392f1d58a0fa202, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:76:09:58:2f:26:c8:f9:1e:d9:e5:cf:4d:da: 2d:f3:7b:fc:68:35:ff:82:22:a9:06:54:bf:a7:1f: 6f:d8:6e:e4:e0:0b:3a:16:d3:a5:16:c0:45:aa:15: 02:fd:b2:20:47:b2:84:8b:8f:62:05:78:3c:21:d1: 18:fa:50:b0:24:e3:27:22:00:cb:9e:73:83:5b:78: 46:8c:bd:f3:24:2e:a9:78:b1:08:88:e3:f2:35:07: 1c:7e:be:a3:15:75:14:ab:41:8d:6c:be:70:8e:7d: e1:8b:c9:f6:d9:5d:ef:f4:23:4b:7e:a3:e0:15:98: 55:5a:cc:fb:7f:40:66:a0:f7:34:9f:3a:84:5e:35: a0:c8:d5:74:31:22:ed:bb:56:e7:30:eb:3a:9a:8c: a2:ba:4c:35:f9:a3:2f:d5:62:43:fe:1b:04:5e:b1: f8:8a:65:3d:b4:a4:1e:bb:27:6d:da:3c:cc:76:06: e6:b1:96:ba:85:28:34:b8:f4:cd:e2:c3:9b:a2:14: 00:06:27:0b:87:22:f5:2d:14:19:61:0f:b3:28:6f: f2:e3:07:7d:b9:56:62:2c:ed:00:a5:79:c1:d4:ca: 71:f3:fb:0f:db:d0:2d:04:a0:61:fd:20:42:de:74: 95:bc:3b:2d:2d:88:b5:6b:89:eb:a9:2c:3c:ff:76: 57:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:D8:FA:B2:4B:D7:8F:40:D8:73:DD:69:DC:84:00:6F:8E:56:3E:55 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/42932dd4-2720-47b3-a472-fc2c8a50a46c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.130.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:23:49:18:3c:57:c0:68:be:dc:7f:ef:1d:bc:7f:48:86:a2: f6:b4:94:fb:d1:1f:52:6d:56:fc:83:72:e8:39:16:47:bf:a5: 09:84:43:cd:fc:f6:53:36:ff:fd:40:42:25:5f:15:fd:47:4d: e0:e8:7d:0f:2d:ee:5f:d2:4f:aa:8c:2b:9b:5b:54:9a:b3:c3: 47:79:86:53:a6:52:c7:ea:7f:c7:23:96:f8:d9:ea:8b:b3:06: 5a:ba:9b:00:eb:2e:95:06:c4:3d:2b:5c:98:ea:72:5c:b4:e5: c5:bd:c0:5d:b5:2f:b8:cc:2a:f0:11:ef:cd:12:94:19:d5:5e: 22:af:54:ec:0a:2a:6e:b5:00:3f:18:b3:ad:58:a9:4b:50:f2: 5e:ef:e0:ce:7c:1a:c4:0d:cf:a4:98:a9:67:74:9b:66:86:e1: fb:f3:60:c6:e4:f9:21:4c:08:d9:a2:10:b1:0c:a6:1a:02:6f: 92:9d:3f:07:a4:9a:52:df:6f:1a:48:b2:37:d0:67:86:13:e6: 83:d8:62:3a:9f:47:4d:a1:d9:44:e5:60:29:cd:63:32:3c:64: c0:a1:af:98:a8:b2:d8:49:5a:86:3a:29:8f:9a:74:bb:46:a8: 1f:0b:e9:e1:b3:84:00:68:0f:b7:e2:26:58:a1:2d:8b:21:a2: ac:78:68:c5 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUUmp/+xP5s0ht+GKofo4p0lwdkfIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTExMTAwMDAzNloX DTI1MTIxNjIzNTk1OVowejFJMEcGA1UEBRNAYmE3NjFlYTRkOTI2YjNkNWRkM2M5 ZjU3YzBjYTM0ODhjNjVjYzlmMzBiZDk0ODI4NDM5MmYxZDU4YTBmYTIwMjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7HYJWC8myPke2eXPTdot83v8aDX/ giKpBlS/px9v2G7k4As6FtOlFsBFqhUC/bIgR7KEi49iBXg8IdEY+lCwJOMnIgDL nnODW3hGjL3zJC6peLEIiOPyNQccfr6jFXUUq0GNbL5wjn3hi8n22V3v9CNLfqPg FZhVWsz7f0BmoPc0nzqEXjWgyNV0MSLtu1bnMOs6moyiukw1+aMv1WJD/hsEXrH4 imU9tKQeuydt2jzMdgbmsZa6hSg0uPTN4sObohQABicLhyL1LRQZYQ+zKG/y4wd9 uVZiLO0ApXnB1Mpx8/sP29AtBKBh/SBC3nSVvDstLYi1a4nrqSw8/3ZXfwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFGfY+rJL149A2HPdadyEAG+OVj5VMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzQyOTMyZGQ0LTI3MjAtNDdiMy1hNDcyLWZjMmM4YTUwYTQ2Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrymCMA0GCSqGSIb3DQEBCwUAA4IBAQCNI0kYPFfAaL7cf+8dvH9I hqL2tJT70R9SbVb8g3LoORZHv6UJhEPN/PZTNv/9QEIlXxX9R03g6H0PLe5f0k+q jCubW1Sas8NHeYZTplLH6n/HI5b42eqLswZaupsA6y6VBsQ9K1yY6nJctOXFvcBd tS+4zCrwEe/NEpQZ1V4ir1TsCiputQA/GLOtWKlLUPJe7+DOfBrEDc+kmKlndJtm huH782DG5PkhTAjZohCxDKYaAm+SnT8HpJpS328aSLI30GeGE+aD2GI6n0dNodlE 5WApzWMyPGTAoa+YqLLYSVqGOimPmnS7RqgfC+nhs4QAaA+34iZYoS2LIaKseGjF -----END CERTIFICATE-----Generated at Wed Dec 3 01:17:47 2025 by rpki-client