This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/43fd8687-12d4-49b5-9958-8536ce8160b4.roa File: 43fd8687-12d4-49b5-9958-8536ce8160b4.roa (raw, json) Hash identifier: uqGyuI64MyoSB2aCcDH4ZYFIVtRIimLKr+qLtdzGGDc= Subject key identifier: D3:3E:07:5B:A7:94:63:1B:6C:6E:FC:FE:FD:4A:F0:5D:EF:B8:77:E3 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 3CDAD31FC4B1BEBFFA9AEA7DB778C29A7C0D4DF8 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/43fd8687-12d4-49b5-9958-8536ce8160b4.roa Signing time: Tue 11 Nov 2025 00:00:40 +0000 ROA not before: Tue 11 Nov 2025 00:00:40 +0000 ROA not after: Tue 16 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 00:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:da:d3:1f:c4:b1:be:bf:fa:9a:ea:7d:b7:78:c2:9a:7c:0d:4d:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 11 00:00:40 2025 GMT Not After : Dec 16 23:59:59 2025 GMT Subject: serialNumber=30837fd3f554d0dfd9cda9da76da8097125677973960591e8ea13d2d7c03afb5, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2c:25:00:f2:c2:02:73:ba:63:b2:15:70:bd: df:46:96:58:a7:16:01:71:a6:6d:d5:56:03:23:1a: ff:d2:24:e0:71:55:7c:54:ce:04:75:3f:cf:05:00: a3:d6:ac:16:c9:a9:a9:69:ad:1d:10:52:5c:05:15: ae:29:20:87:de:94:5b:c2:22:de:d7:b1:8c:3f:76: 5c:98:69:64:50:1b:fe:f6:68:e9:52:1b:d0:54:05: df:f8:68:8a:c9:82:26:96:64:2e:24:cf:74:13:ea: 14:62:23:22:eb:5d:a4:2b:e0:35:41:26:0e:8c:9d: 05:f5:2f:32:c5:13:c8:f7:35:69:f4:f6:ff:2a:a1: 04:1d:f9:df:83:5f:ea:dd:6b:ee:b8:bf:81:d6:7a: 85:56:6e:1f:36:d7:c2:97:67:bc:e9:4c:b1:32:44: 82:87:85:f2:bb:07:00:6c:e8:2e:09:65:97:a6:a7: bc:cf:87:77:63:b5:79:55:a4:54:cc:97:79:b6:10: 10:7b:ab:e8:f8:b4:dc:b7:08:6f:d9:f8:c2:64:06: c7:fd:a5:b2:0b:40:3d:7b:21:ed:41:ef:c9:d9:d1: 7e:45:4e:ff:30:fe:01:a9:f6:a4:8c:cf:3f:81:06: 17:57:80:5f:15:7e:8b:d9:8a:60:9d:f1:21:76:cb: 79:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:3E:07:5B:A7:94:63:1B:6C:6E:FC:FE:FD:4A:F0:5D:EF:B8:77:E3 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/43fd8687-12d4-49b5-9958-8536ce8160b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.160.0/19 Signature Algorithm: sha256WithRSAEncryption c1:b3:ed:4d:34:f8:46:31:2f:07:69:5c:b6:60:1b:29:98:a7: cd:75:c8:59:2e:71:e9:5b:80:0d:ce:6b:da:d1:9c:fa:21:7f: b6:98:9f:61:b2:26:6e:2e:61:7b:60:83:5b:d8:b6:2b:41:1c: 60:de:db:f3:77:20:b2:92:63:19:e0:bf:25:a5:17:88:59:a8: ce:89:2d:a0:4b:3f:db:a1:db:29:99:17:79:88:4f:3b:18:e8: d3:44:da:87:46:a0:17:54:31:ec:04:8e:4c:84:67:79:96:d1: eb:70:c2:c6:42:60:f1:45:fd:51:cc:dc:5c:8a:7d:65:31:4c: 69:cf:7c:01:c1:fc:5c:23:96:60:f1:55:61:e8:fe:a2:74:09: 02:74:04:e7:56:51:3a:04:5e:ea:ea:c8:c3:df:62:66:82:41: 9b:d0:8d:63:a8:d2:62:76:83:16:8e:ed:fc:b6:e4:1e:3a:47: 79:60:5d:61:26:dc:86:38:8c:79:c8:d0:9f:89:69:01:fa:95: 61:42:03:fa:a6:db:7b:c2:5d:08:a1:60:97:d0:6a:d0:5d:31: 7b:68:44:a2:9e:03:19:16:a3:e4:f8:e1:ef:13:bb:ed:dc:1e: 0c:09:be:4e:3f:77:3a:c2:2a:a9:77:91:4b:e6:c4:e7:7d:b7: 33:b9:fb:9f -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUPNrTH8Sxvr/6mup9t3jCmnwNTfgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTExMTAwMDA0MFoX DTI1MTIxNjIzNTk1OVowejFJMEcGA1UEBRNAMzA4MzdmZDNmNTU0ZDBkZmQ5Y2Rh OWRhNzZkYTgwOTcxMjU2Nzc5NzM5NjA1OTFlOGVhMTNkMmQ3YzAzYWZiNTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApiwlAPLCAnO6Y7IVcL3fRpZYpxYB caZt1VYDIxr/0iTgcVV8VM4EdT/PBQCj1qwWyampaa0dEFJcBRWuKSCH3pRbwiLe 17GMP3ZcmGlkUBv+9mjpUhvQVAXf+GiKyYImlmQuJM90E+oUYiMi612kK+A1QSYO jJ0F9S8yxRPI9zVp9Pb/KqEEHfnfg1/q3WvuuL+B1nqFVm4fNtfCl2e86UyxMkSC h4XyuwcAbOguCWWXpqe8z4d3Y7V5VaRUzJd5thAQe6vo+LTctwhv2fjCZAbH/aWy C0A9eyHtQe/J2dF+RU7/MP4BqfakjM8/gQYXV4BfFX6L2YpgnfEhdst58QIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFNM+B1unlGMbbG78/v1K8F3vuHfjMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzQzZmQ4Njg3LTEyZDQtNDliNS05OTU4LTg1MzZjZTgxNjBiNC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFrymgMA0GCSqGSIb3DQEBCwUAA4IBAQDBs+1NNPhGMS8HaVy2YBsp mKfNdchZLnHpW4ANzmva0Zz6IX+2mJ9hsiZuLmF7YINb2LYrQRxg3tvzdyCykmMZ 4L8lpReIWajOiS2gSz/bodspmRd5iE87GOjTRNqHRqAXVDHsBI5MhGd5ltHrcMLG QmDxRf1RzNxcin1lMUxpz3wBwfxcI5Zg8VVh6P6idAkCdATnVlE6BF7q6sjD32Jm gkGb0I1jqNJidoMWju38tuQeOkd5YF1hJtyGOIx5yNCfiWkB+pVhQgP6ptt7wl0I oWCX0GrQXTF7aESingMZFqPk+OHvE7vt3B4MCb5OP3c6wiqpd5FL5sTnfbczufuf -----END CERTIFICATE-----Generated at Wed Dec 3 01:17:10 2025 by rpki-client