This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/10466492-6e57-4b27-906d-531139de21f0.roa File: 10466492-6e57-4b27-906d-531139de21f0.roa (raw, json) Hash identifier: ZWyLPzg97YhjlrM3Cwba6NGMSFnH6Sv9nF04OfSCRQM= Subject key identifier: 7B:8A:EE:9B:71:43:0B:CF:5E:1D:DE:F1:1D:E5:7D:1D:4B:23:3E:CB Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0CA0647D8F8BFEBEACE13BB3041442C6516911A9 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/10466492-6e57-4b27-906d-531139de21f0.roa Signing time: Sat 06 Dec 2025 00:00:09 +0000 ROA not before: Sat 06 Dec 2025 00:00:09 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 43.218.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:a0:64:7d:8f:8b:fe:be:ac:e1:3b:b3:04:14:42:c6:51:69:11:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 6 00:00:09 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=08203a199059400d55527ecef8fcc5e0a665bca313bb6ea80fc5fd543dc00ed4, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bc:b7:03:30:6a:b8:1c:88:ee:56:ab:0e:17: 57:0d:de:de:d8:b7:6f:3c:64:3e:53:86:7c:76:8b: f8:9e:09:f8:3d:56:1c:5d:4a:b9:81:db:df:76:ec: 0a:57:14:c9:00:54:fa:28:b4:3e:51:5f:4a:35:5c: a0:fe:2d:37:39:b4:d5:43:03:a8:03:df:68:76:f2: b7:8d:b2:9d:e5:e6:e2:f3:14:e1:af:59:a2:1b:0a: 4a:90:da:e5:e5:ab:48:f7:48:84:54:47:51:b9:e1: 3e:3e:0e:7e:d7:46:b4:db:3c:fa:94:0b:dd:ed:9c: 40:43:89:7e:2e:07:52:59:5c:d7:f1:35:4f:4d:df: 4c:e3:36:85:8c:a1:f0:1c:fd:c6:60:d0:46:d9:0d: b9:a8:ad:e1:4a:26:4d:5b:31:a5:f5:29:41:c5:e1: fe:94:b0:e2:fa:8b:63:42:c8:0d:01:2a:bf:11:1a: 01:42:9c:c0:7a:6f:d5:0e:18:4d:70:18:77:2d:a9: e0:51:91:89:7c:2b:af:b5:4e:89:1f:72:5c:b9:63: 3e:a9:59:9b:dd:e4:6b:62:a5:9b:e2:c7:99:6d:73: 5b:9f:fb:54:e5:0b:c6:85:33:39:ed:65:6a:f5:23: 0a:43:7a:ba:ed:7b:80:67:21:23:4a:9a:91:68:97: 62:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:8A:EE:9B:71:43:0B:CF:5E:1D:DE:F1:1D:E5:7D:1D:4B:23:3E:CB X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/10466492-6e57-4b27-906d-531139de21f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.218.156.0/24 Signature Algorithm: sha256WithRSAEncryption 28:7b:3b:36:2f:9a:d7:b8:f1:33:17:a2:ae:df:9b:e0:bd:5f: ad:9d:fe:8c:f4:d9:ad:e5:28:b9:3b:bf:e6:48:00:ce:3e:f0: 11:53:8a:23:52:0c:72:81:38:dd:be:78:6f:84:36:1d:53:c3: a2:00:04:99:76:bf:6a:c8:df:04:e4:97:8f:da:87:51:df:37: 4b:cd:b2:66:b0:64:66:1b:2e:b4:b2:4b:f1:07:4a:e4:95:d1: f2:1b:d8:52:99:af:2d:58:b4:f7:ef:a9:56:93:82:f2:60:f0: 99:58:15:cd:20:79:7c:9c:a4:85:79:32:de:5f:3c:9b:69:20: 34:3a:90:ee:4e:a1:2b:50:0e:ac:50:d2:7b:51:ed:7f:9c:72: ce:01:43:b0:c8:78:9f:af:4f:fb:2f:98:21:dd:48:0c:c3:c9: 23:00:0a:47:55:8d:fd:52:ef:b6:f7:36:c9:1f:d9:25:5a:e1: 9b:43:59:fa:09:da:79:46:a6:31:a2:62:27:67:69:1a:db:7d: 02:94:40:2d:4e:65:4f:11:00:58:23:32:36:de:6c:89:cd:14: f3:98:ed:0b:e3:68:48:e1:ce:16:93:fa:50:52:e8:e8:74:39: 5c:d7:b2:cd:44:ba:bb:da:9e:4c:8b:6d:df:72:52:41:78:21: e1:80:25:ad -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUDKBkfY+L/r6s4TuzBBRCxlFpEakwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwNjAwMDAwOVoX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNAMDgyMDNhMTk5MDU5NDAwZDU1NTI3 ZWNlZjhmY2M1ZTBhNjY1YmNhMzEzYmI2ZWE4MGZjNWZkNTQzZGMwMGVkNDEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtby3AzBquByI7larDhdXDd7e2Ldv PGQ+U4Z8dov4ngn4PVYcXUq5gdvfduwKVxTJAFT6KLQ+UV9KNVyg/i03ObTVQwOo A99odvK3jbKd5ebi8xThr1miGwpKkNrl5atI90iEVEdRueE+Pg5+10a02zz6lAvd 7ZxAQ4l+LgdSWVzX8TVPTd9M4zaFjKHwHP3GYNBG2Q25qK3hSiZNWzGl9SlBxeH+ lLDi+otjQsgNASq/ERoBQpzAem/VDhhNcBh3LangUZGJfCuvtU6JH3JcuWM+qVmb 3eRrYqWb4seZbXNbn/tU5QvGhTM57WVq9SMKQ3q67XuAZyEjSpqRaJdixQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFHuK7ptxQwvPXh3e8R3lfR1LIz7LMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzEwNDY2NDkyLTZlNTctNGIyNy05MDZkLTUzMTEzOWRlMjFmMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK9qcMA0GCSqGSIb3DQEBCwUAA4IBAQAoezs2L5rXuPEzF6Ku35vg vV+tnf6M9Nmt5Si5O7/mSADOPvARU4ojUgxygTjdvnhvhDYdU8OiAASZdr9qyN8E 5JeP2odR3zdLzbJmsGRmGy60skvxB0rkldHyG9hSma8tWLT376lWk4LyYPCZWBXN IHl8nKSFeTLeXzybaSA0OpDuTqErUA6sUNJ7Ue1/nHLOAUOwyHifr0/7L5gh3UgM w8kjAApHVY39Uu+29zbJH9klWuGbQ1n6Cdp5RqYxomInZ2ka230ClEAtTmVPEQBY IzI23myJzRTzmO0L42hI4c4Wk/pQUujodDlc17LNRLq72p5Mi23fclJBeCHhgCWt -----END CERTIFICATE-----Generated at Sat Dec 6 12:13:46 2025 by rpki-client