This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa File: 6b15abb6-10b7-4ecd-9947-c96012f824c6.roa (raw, json) Hash identifier: YDEb1HZpmKP7sx/WuOw3OFG2ObkpXND2FyRZjfR2dvk= Subject key identifier: 33:AA:C5:F4:CA:63:C6:BE:42:07:E5:B3:3E:15:83:46:5A:1D:2D:32 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 30E203771D4D720DB7F79DCBBE1E684DD8BB088F Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa Signing time: Tue 11 Nov 2025 00:00:38 +0000 ROA not before: Tue 11 Nov 2025 00:00:38 +0000 ROA not after: Tue 16 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 00:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:e2:03:77:1d:4d:72:0d:b7:f7:9d:cb:be:1e:68:4d:d8:bb:08:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 11 00:00:38 2025 GMT Not After : Dec 16 23:59:59 2025 GMT Subject: serialNumber=28d3a1a86c0c1bbba6ef1c22fedee9367dc3f2f90d4317bc75f04b6d639bf78a, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:3f:5a:28:1b:ea:40:a6:18:39:90:ea:89:5d: d1:a8:29:ac:2d:5e:cc:7a:78:7a:cf:da:e9:a4:04: e8:2a:a0:38:fa:e2:dc:e2:d2:ed:60:56:a4:18:a5: 13:f5:3c:b3:47:6b:b6:c6:43:e9:9e:64:97:32:af: b4:1e:d1:9e:f6:68:e6:f6:fc:a5:9f:26:e2:7e:9b: d5:19:dc:e6:b6:ac:b3:7d:f5:fe:bb:20:0e:67:78: f3:c3:b0:c0:91:df:69:c0:38:d8:5f:ba:37:5a:f6: 41:64:ae:15:a0:f2:02:45:dd:e3:19:38:1b:28:84: 44:5f:b5:c3:45:f1:50:81:d5:69:f8:bf:73:a9:e2: 57:62:7c:d9:6c:9c:7d:65:cb:12:37:72:99:ff:65: af:1d:1a:ec:00:22:48:bb:75:03:2c:d0:bc:be:0d: e4:33:72:17:8d:4b:7a:73:5c:5f:a4:e6:48:f8:45: 6e:2b:ee:53:b6:86:99:4c:84:9e:64:fb:86:29:36: c8:69:07:12:5c:55:08:8c:35:5d:a3:9f:d2:76:bc: fc:ac:51:ad:40:0d:e0:52:88:0c:7a:2e:87:db:1d: 38:3b:2f:15:c0:b6:7c:61:71:b1:36:e7:69:73:b4: dd:59:38:6f:fe:98:29:02:23:d1:99:d4:02:2e:6b: 56:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:AA:C5:F4:CA:63:C6:BE:42:07:E5:B3:3E:15:83:46:5A:1D:2D:32 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/6b15abb6-10b7-4ecd-9947-c96012f824c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.132.0/22 Signature Algorithm: sha256WithRSAEncryption 63:80:98:5f:59:54:30:57:fc:c1:36:51:2a:c8:f0:79:65:6e: bd:7e:c5:a9:a0:de:bc:1f:52:d9:17:5a:96:e7:b3:47:36:7a: 88:59:32:6a:2a:9f:f7:c9:b5:cb:69:7f:b2:bc:bd:bf:ff:8e: c2:e5:b2:26:a7:f9:35:bb:7e:ff:04:e0:b6:07:26:2c:4c:fe: 12:f4:67:00:93:75:37:d4:87:03:b3:80:91:26:0a:09:22:35: d6:51:3e:78:7f:86:c7:ec:72:88:c0:e7:11:0f:a6:ca:f1:a3: bc:b1:18:47:7b:6c:c0:ed:21:d4:46:57:57:d2:a7:a6:56:42: 35:d5:08:e1:62:ea:3f:91:a2:d2:b6:ff:81:2c:37:10:11:a3: dc:d5:6e:5a:5e:03:2d:31:f3:33:8b:98:3d:8a:0f:e8:64:8a: 30:89:62:f6:ac:b7:8d:ce:9a:53:f9:4e:ef:ec:e7:f2:76:b6: 8b:c5:1a:71:c9:52:9e:a0:7a:c4:29:57:61:6a:2e:bb:fc:da: f3:ed:20:b2:50:f5:3f:fb:7e:26:86:0f:01:5c:46:60:92:84: 1d:b1:e3:9e:04:f3:7d:d6:3c:f9:ac:72:dc:d0:4c:5d:a7:fe: fb:5d:ae:1e:25:85:81:96:f2:de:68:53:fd:b3:a2:41:69:84: 2b:53:0a:a4 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUMOIDdx1Ncg23953Lvh5oTdi7CI8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTExMTAwMDAzOFoX DTI1MTIxNjIzNTk1OVowejFJMEcGA1UEBRNAMjhkM2ExYTg2YzBjMWJiYmE2ZWYx YzIyZmVkZWU5MzY3ZGMzZjJmOTBkNDMxN2JjNzVmMDRiNmQ2MzliZjc4YTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmD9aKBvqQKYYOZDqiV3RqCmsLV7M enh6z9rppAToKqA4+uLc4tLtYFakGKUT9TyzR2u2xkPpnmSXMq+0HtGe9mjm9vyl nybifpvVGdzmtqyzffX+uyAOZ3jzw7DAkd9pwDjYX7o3WvZBZK4VoPICRd3jGTgb KIREX7XDRfFQgdVp+L9zqeJXYnzZbJx9ZcsSN3KZ/2WvHRrsACJIu3UDLNC8vg3k M3IXjUt6c1xfpOZI+EVuK+5TtoaZTISeZPuGKTbIaQcSXFUIjDVdo5/Sdrz8rFGt QA3gUogMei6H2x04Oy8VwLZ8YXGxNudpc7TdWThv/pgpAiPRmdQCLmtWwwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFDOqxfTKY8a+Qgflsz4Vg0ZaHS0yMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzZiMTVhYmI2LTEwYjctNGVjZC05OTQ3LWM5NjAxMmY4MjRjNi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrymEMA0GCSqGSIb3DQEBCwUAA4IBAQBjgJhfWVQwV/zBNlEqyPB5 ZW69fsWpoN68H1LZF1qW57NHNnqIWTJqKp/3ybXLaX+yvL2//47C5bImp/k1u37/ BOC2ByYsTP4S9GcAk3U31IcDs4CRJgoJIjXWUT54f4bH7HKIwOcRD6bK8aO8sRhH e2zA7SHURldX0qemVkI11QjhYuo/kaLStv+BLDcQEaPc1W5aXgMtMfMzi5g9ig/o ZIowiWL2rLeNzppT+U7v7OfydraLxRpxyVKeoHrEKVdhai67/Nrz7SCyUPU/+34m hg8BXEZgkoQdseOeBPN91jz5rHLc0Exdp/77Xa4eJYWBlvLeaFP9s6JBaYQrUwqk -----END CERTIFICATE-----Generated at Wed Dec 3 01:16:08 2025 by rpki-client