This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/adf75e2e-9d2c-4718-a49d-ad44079b266b.roa File: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (raw, json) Hash identifier: sbGSBiN+e2Ag51zrXc1UwPae+VvT58VQo1yXZWqJMvI= Subject key identifier: 6A:F8:EC:9F:F1:CE:74:FF:A6:5C:C3:34:47:2B:9C:6A:0C:14:A2:F0 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 4479721594B6B661F51764CABCEA092E1C9BF145 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/adf75e2e-9d2c-4718-a49d-ad44079b266b.roa Signing time: Tue 11 Nov 2025 00:00:42 +0000 ROA not before: Tue 11 Nov 2025 00:00:42 +0000 ROA not after: Tue 16 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 00:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:79:72:15:94:b6:b6:61:f5:17:64:ca:bc:ea:09:2e:1c:9b:f1:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 11 00:00:42 2025 GMT Not After : Dec 16 23:59:59 2025 GMT Subject: serialNumber=9d78f7497b392583a9f750376f788b18cb19550143c319ebc9884e424e759b45, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c8:ef:f7:aa:78:28:52:b4:ff:bb:43:8c:fd: 04:51:cb:5a:1d:71:93:d9:a5:a6:d3:af:22:a5:1d: 1c:03:fe:00:04:b9:ad:65:4d:72:b2:16:1c:b7:ec: 1d:03:5a:a5:af:b8:4b:ce:ce:3a:4c:f9:df:92:8a: a8:d4:f9:3b:6b:a7:41:92:2b:12:50:8d:de:e1:7c: d6:fc:b4:5b:28:2b:ca:aa:53:eb:dd:41:85:30:bb: a4:e8:f2:12:f3:cf:5e:f5:25:e2:17:b6:c6:e5:e8: 86:ee:2c:06:d8:32:e3:e2:6c:a3:f6:3f:e2:2b:5f: 48:ca:77:0b:e0:58:ac:7a:0c:02:a2:66:a2:45:03: f1:d9:4b:4d:31:77:a0:89:f5:3f:de:bb:35:f9:33: 85:0a:6e:bc:83:b0:72:17:ce:95:8a:cf:5b:1f:bc: 22:3f:34:c3:3a:35:56:14:ec:82:47:22:57:63:4d: a2:7e:c6:54:e1:42:c6:a2:38:aa:7b:b9:72:b3:78: 17:94:67:9c:2b:34:fb:f7:63:6f:cc:45:64:a9:95: 63:17:1d:e6:bd:f8:d9:96:7c:33:f3:ff:6b:a3:27: 22:3e:7a:3b:38:24:6c:ce:eb:39:47:f6:4e:7c:fd: ce:66:02:d9:0d:22:db:03:e4:85:39:c0:52:27:5e: 5c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:F8:EC:9F:F1:CE:74:FF:A6:5C:C3:34:47:2B:9C:6A:0C:14:A2:F0 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/adf75e2e-9d2c-4718-a49d-ad44079b266b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.152.0/21 Signature Algorithm: sha256WithRSAEncryption 2b:a4:e6:8c:2d:9e:a1:f2:e7:e0:05:0f:a5:35:05:fc:c7:5c: be:c2:cc:dd:f8:e1:ee:b0:76:de:27:c8:9e:c3:c1:90:eb:1b: 4a:cf:01:37:ca:50:87:d0:8f:d3:ae:a5:8d:bd:65:55:27:ba: 64:5b:00:b7:02:c0:cd:09:fd:20:fa:63:07:62:1c:da:2f:51: 01:75:a0:8a:d1:a6:03:a8:35:f3:e1:3d:15:7c:33:ad:14:15: 45:fc:de:3f:d6:ec:37:7d:73:f7:48:bf:14:92:a3:88:3d:cb: 95:a7:b6:6c:32:0f:e6:f9:cc:75:a3:b5:ba:e2:e8:11:1f:9d: 3d:3e:50:83:3f:92:bd:28:47:93:75:9e:b3:aa:43:11:fe:73: 5b:f8:a9:77:d2:03:f5:43:a7:d4:29:a8:4a:a9:89:98:1f:cf: b3:bd:a0:f0:77:80:42:62:3f:ea:29:35:73:2b:db:56:27:ae: e6:f9:50:f9:25:0b:a8:bb:c0:95:c1:b1:bd:af:79:7a:8e:c4: f5:7b:a4:d7:b5:29:8b:f1:84:93:4c:50:5a:b2:a1:18:40:6e: 21:87:36:b9:d7:03:80:e6:0d:85:60:b3:ef:c8:21:7f:04:af: 7f:e7:fd:93:9f:eb:10:bc:04:2e:3f:31:a1:8a:51:a0:e8:3e: 72:24:e5:4d -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIURHlyFZS2tmH1F2TKvOoJLhyb8UUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTExMTAwMDA0MloX DTI1MTIxNjIzNTk1OVowejFJMEcGA1UEBRNAOWQ3OGY3NDk3YjM5MjU4M2E5Zjc1 MDM3NmY3ODhiMThjYjE5NTUwMTQzYzMxOWViYzk4ODRlNDI0ZTc1OWI0NTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvsjv96p4KFK0/7tDjP0EUctaHXGT 2aWm068ipR0cA/4ABLmtZU1yshYct+wdA1qlr7hLzs46TPnfkoqo1Pk7a6dBkisS UI3e4XzW/LRbKCvKqlPr3UGFMLuk6PIS889e9SXiF7bG5eiG7iwG2DLj4myj9j/i K19IyncL4FisegwComaiRQPx2UtNMXegifU/3rs1+TOFCm68g7ByF86Vis9bH7wi PzTDOjVWFOyCRyJXY02ifsZU4ULGojiqe7lys3gXlGecKzT792NvzEVkqZVjFx3m vfjZlnwz8/9royciPno7OCRszus5R/ZOfP3OZgLZDSLbA+SFOcBSJ15ceQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFGr47J/xznT/plzDNEcrnGoMFKLwMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 L2FkZjc1ZTJlLTlkMmMtNDcxOC1hNDlkLWFkNDQwNzliMjY2Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDrymYMA0GCSqGSIb3DQEBCwUAA4IBAQArpOaMLZ6h8ufgBQ+lNQX8 x1y+wszd+OHusHbeJ8iew8GQ6xtKzwE3ylCH0I/TrqWNvWVVJ7pkWwC3AsDNCf0g +mMHYhzaL1EBdaCK0aYDqDXz4T0VfDOtFBVF/N4/1uw3fXP3SL8UkqOIPcuVp7Zs Mg/m+cx1o7W64ugRH509PlCDP5K9KEeTdZ6zqkMR/nNb+Kl30gP1Q6fUKahKqYmY H8+zvaDwd4BCYj/qKTVzK9tWJ67m+VD5JQuou8CVwbG9r3l6jsT1e6TXtSmL8YST TFBasqEYQG4hhza51wOA5g2FYLPvyCF/BK9/5/2Tn+sQvAQuPzGhilGg6D5yJOVN -----END CERTIFICATE-----Generated at Wed Dec 3 01:14:38 2025 by rpki-client