This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7b26d410-17d7-4310-bb58-41c465f8eef2.roa File: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (raw, json) Hash identifier: iZ5upg9JhYgqzuisO9iMHg6o3uglr67eIAFDAVOMJFQ= Subject key identifier: 62:09:7A:5D:DE:EF:67:D5:46:79:EF:3A:7B:69:CD:A5:EF:E2:2D:35 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 3481991829BC8AB6BE82F365B764A9B561861C3B Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7b26d410-17d7-4310-bb58-41c465f8eef2.roa Signing time: Tue 11 Nov 2025 00:00:44 +0000 ROA not before: Tue 11 Nov 2025 00:00:44 +0000 ROA not after: Tue 16 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.148.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 00:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:81:99:18:29:bc:8a:b6:be:82:f3:65:b7:64:a9:b5:61:86:1c:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 11 00:00:44 2025 GMT Not After : Dec 16 23:59:59 2025 GMT Subject: serialNumber=23359f845936831c7380a4d77693714622e724118458dc23f5b41880f6a8a38f, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:72:85:4a:95:3f:78:55:61:69:b4:b3:e5:61: e9:bb:83:0d:96:5c:4e:6f:dc:37:9a:a4:f5:fa:16: 9b:1d:fc:55:da:00:7d:85:aa:a0:16:96:36:50:90: 4f:10:ec:af:a8:7e:29:e3:87:ea:c5:fa:04:f2:82: 65:66:ae:7d:70:92:56:db:9b:da:34:39:08:e7:65: 2c:95:3c:f2:1b:52:ee:88:68:57:08:63:4c:7c:d7: e5:f2:47:24:bd:56:70:56:f0:c7:92:c9:42:fc:71: bf:9b:b1:04:82:96:f4:50:f4:00:78:58:0c:9d:71: 8c:f5:2e:fd:04:94:e1:1e:05:5f:a5:8f:62:2d:20: 3e:11:a1:e3:2b:58:96:9e:86:78:63:38:61:0a:ad: ad:ee:f4:c8:bf:e5:30:7a:86:a2:32:d6:90:0f:ed: 34:87:a2:1b:da:6a:d5:13:c5:13:cb:ec:04:d8:b7: a4:e7:32:15:1e:11:6a:65:f1:01:74:92:04:c1:68: 25:5c:85:73:74:02:90:5a:9d:13:77:36:1a:07:10: e0:68:07:ff:8f:eb:4b:45:f4:c0:8d:53:17:54:8e: 1b:f5:59:8c:a2:11:f0:98:39:70:1d:54:44:7b:6f: d3:a6:7a:e9:5f:cf:ac:c8:87:e8:86:ff:09:c3:50: 3e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:09:7A:5D:DE:EF:67:D5:46:79:EF:3A:7B:69:CD:A5:EF:E2:2D:35 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7b26d410-17d7-4310-bb58-41c465f8eef2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.148.0/23 Signature Algorithm: sha256WithRSAEncryption 63:fd:7a:50:26:5f:3a:c2:25:40:31:fb:15:f7:d2:54:b7:bb: e1:88:1e:37:96:d2:d6:15:c4:cf:6c:a1:70:51:02:7b:b3:6a: ec:2d:23:c4:f3:23:98:77:7c:58:bd:7d:2c:68:6b:be:71:4a: 90:0a:f0:8d:5d:0c:4c:74:a6:82:86:79:ed:89:bb:2f:d3:b9: db:06:73:42:97:5b:eb:a4:9d:56:08:20:4a:8f:cd:84:ed:73: 36:d0:83:6d:64:6e:91:56:2f:7e:cd:50:d4:a7:8c:e5:b4:3a: 27:29:38:63:66:df:a3:51:45:87:90:32:fa:20:ce:0a:69:53: bb:8c:36:02:66:d2:62:5b:a4:e5:17:16:54:4f:9c:82:4b:7e: b0:a9:ce:26:5d:3d:cc:8d:0b:c3:77:30:b8:b9:15:9f:bf:67: ba:30:04:30:08:2c:b2:cf:93:e6:90:d3:67:14:9d:7d:0a:9e: 4a:f7:fd:0b:17:fb:25:81:69:60:de:02:24:96:c9:55:da:36: 9e:7f:1d:de:80:b0:ca:b7:4c:07:d7:dd:65:7c:ee:4a:3e:7e: 9b:15:f3:8d:d0:42:4a:e0:48:e9:cb:f3:c5:a3:04:8a:63:f3: ab:9b:71:84:fb:3c:71:57:22:e9:a6:9d:6e:9c:96:f7:8f:9b: 4d:aa:28:46 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUNIGZGCm8ira+gvNlt2SptWGGHDswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTExMTAwMDA0NFoX DTI1MTIxNjIzNTk1OVowejFJMEcGA1UEBRNAMjMzNTlmODQ1OTM2ODMxYzczODBh NGQ3NzY5MzcxNDYyMmU3MjQxMTg0NThkYzIzZjViNDE4ODBmNmE4YTM4ZjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0XKFSpU/eFVhabSz5WHpu4MNllxO b9w3mqT1+habHfxV2gB9haqgFpY2UJBPEOyvqH4p44fqxfoE8oJlZq59cJJW25va NDkI52UslTzyG1LuiGhXCGNMfNfl8kckvVZwVvDHkslC/HG/m7EEgpb0UPQAeFgM nXGM9S79BJThHgVfpY9iLSA+EaHjK1iWnoZ4YzhhCq2t7vTIv+UweoaiMtaQD+00 h6Ib2mrVE8UTy+wE2Lek5zIVHhFqZfEBdJIEwWglXIVzdAKQWp0TdzYaBxDgaAf/ j+tLRfTAjVMXVI4b9VmMohHwmDlwHVREe2/TpnrpX8+syIfohv8Jw1A+fQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFGIJel3e72fVRnnvOntpzaXv4i01MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzdiMjZkNDEwLTE3ZDctNDMxMC1iYjU4LTQxYzQ2NWY4ZWVmMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrymUMA0GCSqGSIb3DQEBCwUAA4IBAQBj/XpQJl86wiVAMfsV99JU t7vhiB43ltLWFcTPbKFwUQJ7s2rsLSPE8yOYd3xYvX0saGu+cUqQCvCNXQxMdKaC hnntibsv07nbBnNCl1vrpJ1WCCBKj82E7XM20INtZG6RVi9+zVDUp4zltDonKThj Zt+jUUWHkDL6IM4KaVO7jDYCZtJiW6TlFxZUT5yCS36wqc4mXT3MjQvDdzC4uRWf v2e6MAQwCCyyz5PmkNNnFJ19Cp5K9/0LF/slgWlg3gIklslV2jaefx3egLDKt0wH 191lfO5KPn6bFfON0EJK4Ejpy/PFowSKY/Orm3GE+zxxVyLppp1unJb3j5tNqihG -----END CERTIFICATE-----Generated at Wed Dec 3 01:17:11 2025 by rpki-client