This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/084fc721-60a4-414f-b72d-dc01788e0fc2.roa File: 084fc721-60a4-414f-b72d-dc01788e0fc2.roa (raw, json) Hash identifier: o3mjeVLFPm6CNwr060cJjwL217MVF4bhCQz8uecVB20= Subject key identifier: E6:0A:73:85:AD:15:4A:EC:F4:F2:72:4E:54:60:EC:9C:19:16:50:0F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 26B3EBD284FC2BFAA54B29B22E71DABFE4DCFAB6 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/084fc721-60a4-414f-b72d-dc01788e0fc2.roa Signing time: Sat 06 Dec 2025 00:10:27 +0000 ROA not before: Sat 06 Dec 2025 00:10:27 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 43.216.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:b3:eb:d2:84:fc:2b:fa:a5:4b:29:b2:2e:71:da:bf:e4:dc:fa:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 6 00:10:27 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=2924ea48644270aba67ddae6781a1b7ed9d60f19d090ee210fae2facbe4bebca, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:53:75:d7:de:f3:77:e3:0b:74:d4:22:e4:fc: b1:4b:6c:5c:12:86:f2:70:18:b3:75:f7:a7:c7:02: 24:61:c5:80:0f:cc:97:9c:7f:be:1d:fd:79:69:eb: 3a:34:13:e7:92:12:9e:75:a6:e1:b4:b2:c2:51:29: 70:7c:6d:95:89:63:82:98:a9:75:eb:3b:aa:fa:04: 30:1e:54:b1:5a:7c:34:c5:74:f7:f5:1a:fe:ac:3c: 10:d2:38:83:64:3c:b2:20:3e:ba:b6:92:ec:d2:7f: 44:85:86:a3:89:35:2c:4f:a2:b8:de:7c:99:bb:5b: 89:84:4a:f0:9a:82:34:78:c5:f9:3f:e6:51:4e:11: 29:51:39:ff:fb:8f:86:24:c0:33:a4:ed:50:b3:58: be:18:ca:d3:f6:df:3e:9c:fb:4e:61:cb:f6:67:c5: c0:11:e6:e1:88:41:cd:64:17:0a:de:51:ab:e6:87: 87:95:ce:d7:9d:36:cf:7c:bf:84:b5:1a:03:b7:c2: d4:6a:d3:44:13:13:30:30:6d:90:2d:a8:a8:06:47: 2d:64:e3:ef:ea:a6:33:eb:ce:ee:45:56:f8:92:d0: 79:50:16:c1:11:8a:76:9c:c6:ab:0a:67:bd:22:cb: 77:ce:b9:08:33:3d:47:68:a6:6d:a4:32:9f:e8:98: 0f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:0A:73:85:AD:15:4A:EC:F4:F2:72:4E:54:60:EC:9C:19:16:50:0F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/084fc721-60a4-414f-b72d-dc01788e0fc2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.216.61.0/24 Signature Algorithm: sha256WithRSAEncryption c5:8f:56:24:09:d1:3b:e5:4b:ef:a6:18:8a:bc:0c:a0:d6:d2: 4a:53:12:4a:24:74:cb:f0:b9:38:f9:51:dc:61:06:f3:e7:a1: a7:5a:65:ab:01:c1:72:46:e6:2b:d5:1b:93:93:52:6f:ce:b2: 33:de:b4:cd:70:24:2e:b3:33:14:12:f0:68:86:12:12:70:ee: 3e:52:6c:b8:d5:5b:2e:60:0e:ba:92:9f:e0:82:f8:41:7a:6a: 7f:86:1b:d2:8a:24:87:6b:06:2f:78:08:18:2b:3a:2f:f3:8b: ba:b3:7f:ac:e5:ba:f7:bb:9e:4a:21:f1:ef:9c:1d:45:bb:d0: e6:49:0b:10:1d:fb:a9:6c:c2:94:b9:af:f5:44:ae:63:37:07: 2f:d6:68:08:16:c1:96:c6:9d:05:84:cd:2a:a8:6b:09:d8:ca: 6b:fa:77:e1:17:00:a8:ff:10:2d:76:5d:6e:43:86:dd:52:0c: d5:7f:dc:30:ae:e8:55:87:04:02:32:fe:de:f9:59:76:46:3e: 61:42:38:4c:a9:80:b3:0d:36:d9:4d:1d:f8:49:fc:b4:fa:34: 27:a1:7a:d0:d0:e9:26:4c:42:18:75:bf:86:40:2b:bf:09:bc: 7b:4c:4a:02:ee:60:ae:45:c8:12:a5:30:cc:9f:86:bc:43:73: 86:bf:81:87 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUJrPr0oT8K/qlSymyLnHav+Tc+rYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwNjAwMTAyN1oX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNAMjkyNGVhNDg2NDQyNzBhYmE2N2Rk YWU2NzgxYTFiN2VkOWQ2MGYxOWQwOTBlZTIxMGZhZTJmYWNiZTRiZWJjYTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmlN1197zd+MLdNQi5PyxS2xcEoby cBizdfenxwIkYcWAD8yXnH++Hf15aes6NBPnkhKedabhtLLCUSlwfG2ViWOCmKl1 6zuq+gQwHlSxWnw0xXT39Rr+rDwQ0jiDZDyyID66tpLs0n9EhYajiTUsT6K43nyZ u1uJhErwmoI0eMX5P+ZRThEpUTn/+4+GJMAzpO1Qs1i+GMrT9t8+nPtOYcv2Z8XA EebhiEHNZBcK3lGr5oeHlc7XnTbPfL+EtRoDt8LUatNEExMwMG2QLaioBkctZOPv 6qYz687uRVb4ktB5UBbBEYp2nMarCme9Ist3zrkIMz1HaKZtpDKf6JgPfQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFOYKc4WtFUrs9PJyTlRg7JwZFlAPMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzA4NGZjNzIxLTYwYTQtNDE0Zi1iNzJkLWRjMDE3ODhlMGZjMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK9g9MA0GCSqGSIb3DQEBCwUAA4IBAQDFj1YkCdE75UvvphiKvAyg 1tJKUxJKJHTL8Lk4+VHcYQbz56GnWmWrAcFyRuYr1RuTk1JvzrIz3rTNcCQuszMU EvBohhIScO4+Umy41VsuYA66kp/ggvhBemp/hhvSiiSHawYveAgYKzov84u6s3+s 5br3u55KIfHvnB1Fu9DmSQsQHfupbMKUua/1RK5jNwcv1mgIFsGWxp0FhM0qqGsJ 2Mpr+nfhFwCo/xAtdl1uQ4bdUgzVf9wwruhVhwQCMv7e+Vl2Rj5hQjhMqYCzDTbZ TR34Sfy0+jQnoXrQ0OkmTEIYdb+GQCu/Cbx7TEoC7mCuRcgSpTDMn4a8Q3OGv4GH -----END CERTIFICATE-----Generated at Sat Dec 6 12:06:43 2025 by rpki-client