This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa File: 9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa (raw, json) Hash identifier: UaHt+4lelzGalTP6o6RTVxgEfhRYbwB09w3EQYZfbmg= Subject key identifier: A0:3F:D7:EC:EF:E9:C5:59:00:DE:D8:53:C8:D6:2D:F0:DE:F5:5C:16 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 640CB5DC3DCF71142700E9BE31345427ADB678A7 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa Signing time: Tue 11 Nov 2025 00:00:39 +0000 ROA not before: Tue 11 Nov 2025 00:00:39 +0000 ROA not after: Tue 16 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 00:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:0c:b5:dc:3d:cf:71:14:27:00:e9:be:31:34:54:27:ad:b6:78:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 11 00:00:39 2025 GMT Not After : Dec 16 23:59:59 2025 GMT Subject: serialNumber=5b7eb3fd8d95d2f681709f55a7342120eb658cbe99a154af4185353ff88f305c, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:65:34:cc:87:4e:b3:f5:db:c0:68:7f:28:19: fc:ca:cb:c2:5f:22:28:1d:f3:1b:3b:29:27:98:33: bc:9f:8e:67:59:2c:f0:c7:eb:62:f2:5a:92:f6:cc: 2c:3b:ad:24:b5:18:f2:59:16:d4:45:b9:6b:01:df: 6b:e6:60:8a:6d:15:39:82:37:e3:79:7f:b7:27:82: 54:d5:22:ed:4e:2e:5d:65:7d:67:aa:2b:0f:49:98: 47:72:39:00:cf:b2:0a:b0:9d:41:63:ef:3e:30:b9: dd:52:c3:cb:af:20:73:ea:0a:fe:73:73:ad:97:92: 59:21:04:1e:93:bf:82:72:71:ea:21:98:9e:be:d3: 52:9d:e7:d9:68:b4:7f:fc:e7:92:3d:2c:6c:f0:38: 22:1d:20:84:9d:55:1b:ba:dc:7b:fb:a6:6f:85:2e: bc:52:fe:95:15:a6:9c:a5:9a:85:38:34:3f:d4:fb: 96:46:5f:1a:a2:9a:1d:9e:1b:62:56:d5:9f:98:6e: c7:45:30:e5:51:fa:34:ce:84:dc:ee:02:5f:59:a8: 8b:0c:70:e8:90:b5:ea:da:bd:94:c1:81:e0:9a:3b: 96:16:ff:1c:5d:6a:d9:6d:a5:83:2b:12:28:ef:13: f8:81:e4:f6:da:f2:19:b4:e0:73:4a:82:42:2b:2f: 72:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:3F:D7:EC:EF:E9:C5:59:00:DE:D8:53:C8:D6:2D:F0:DE:F5:5C:16 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9e37f855-48bf-420a-a86c-5eeb4fc1f790.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.128.0/18 Signature Algorithm: sha256WithRSAEncryption b0:86:1a:54:b0:99:75:94:43:7b:27:19:cd:6b:7d:70:20:e6: 88:e0:d8:31:2a:83:06:0d:56:d8:3b:f3:97:78:c0:1a:e6:6e: 85:77:d1:58:02:64:34:22:a7:3b:e3:f2:62:98:94:32:aa:04: dd:a3:ac:77:a1:05:89:ad:57:d3:1d:15:95:1e:df:62:7e:f1: 03:1f:e3:5c:e2:a4:75:a6:c2:f9:4b:ae:2c:ce:d2:78:d8:71: 09:af:0d:40:ef:95:ac:d8:c8:84:32:f3:8c:c9:0e:1d:b3:a2: a3:1c:5e:73:c7:49:ad:42:a9:77:44:6c:49:9c:83:2c:c7:97: 71:49:ba:2b:13:ca:49:22:2f:06:92:12:e5:90:f7:4e:16:92: 9a:ab:26:65:a9:8e:51:93:1d:f1:c8:c4:25:8c:df:80:5e:f9: 3a:22:38:e2:0d:1a:2a:f0:f6:05:54:54:88:2c:52:7c:ae:fc: 6a:d5:f9:26:94:0e:63:f3:e0:68:3d:f3:ba:83:63:97:04:82: 49:88:72:d6:8d:51:45:84:9b:e3:d1:49:d5:85:6f:3c:37:89: 3e:d7:8c:5a:5c:a3:9b:41:28:70:a6:6e:09:43:92:4c:a6:24: 53:7e:1f:a5:44:e4:54:20:c9:fd:96:a3:a4:93:62:09:31:f3: 0e:3a:4f:69 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUZAy13D3PcRQnAOm+MTRUJ622eKcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTExMTAwMDAzOVoX DTI1MTIxNjIzNTk1OVowejFJMEcGA1UEBRNANWI3ZWIzZmQ4ZDk1ZDJmNjgxNzA5 ZjU1YTczNDIxMjBlYjY1OGNiZTk5YTE1NGFmNDE4NTM1M2ZmODhmMzA1YzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmGU0zIdOs/XbwGh/KBn8ysvCXyIo HfMbOyknmDO8n45nWSzwx+ti8lqS9swsO60ktRjyWRbURblrAd9r5mCKbRU5gjfj eX+3J4JU1SLtTi5dZX1nqisPSZhHcjkAz7IKsJ1BY+8+MLndUsPLryBz6gr+c3Ot l5JZIQQek7+CcnHqIZievtNSnefZaLR//OeSPSxs8DgiHSCEnVUbutx7+6ZvhS68 Uv6VFaacpZqFODQ/1PuWRl8aopodnhtiVtWfmG7HRTDlUfo0zoTc7gJfWaiLDHDo kLXq2r2UwYHgmjuWFv8cXWrZbaWDKxIo7xP4geT22vIZtOBzSoJCKy9y5QIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFKA/1+zv6cVZAN7YU8jWLfDe9VwWMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzllMzdmODU1LTQ4YmYtNDIwYS1hODZjLTVlZWI0ZmMxZjc5MC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrymAMA0GCSqGSIb3DQEBCwUAA4IBAQCwhhpUsJl1lEN7JxnNa31w IOaI4NgxKoMGDVbYO/OXeMAa5m6Fd9FYAmQ0Iqc74/JimJQyqgTdo6x3oQWJrVfT HRWVHt9ifvEDH+Nc4qR1psL5S64sztJ42HEJrw1A75Ws2MiEMvOMyQ4ds6KjHF5z x0mtQql3RGxJnIMsx5dxSborE8pJIi8GkhLlkPdOFpKaqyZlqY5Rkx3xyMQljN+A Xvk6IjjiDRoq8PYFVFSILFJ8rvxq1fkmlA5j8+BoPfO6g2OXBIJJiHLWjVFFhJvj 0UnVhW88N4k+14xaXKObQShwpm4JQ5JMpiRTfh+lRORUIMn9lqOkk2IJMfMOOk9p -----END CERTIFICATE-----Generated at Wed Dec 3 01:15:27 2025 by rpki-client