This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa File: 55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa (raw, json) Hash identifier: GkRsbQCpmBeLyYx0QPwZLpcXKrxPpMMh1htebP7epe8= Subject key identifier: F5:05:29:51:EA:E4:4B:6B:D7:7F:14:25:CA:37:6F:AF:4C:D7:79:D1 Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 3601B7A8B58D2C861B6A651A3A11727CACEE8471 Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa Signing time: Wed 12 Nov 2025 00:01:04 +0000 ROA not before: Wed 12 Nov 2025 00:01:04 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 159.248.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:01:b7:a8:b5:8d:2c:86:1b:6a:65:1a:3a:11:72:7c:ac:ee:84:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: Nov 12 00:01:04 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=c21cb5886d3d0fba061a7781839cefb82d898662740b3c4c579a630c81223a02, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:a6:e2:a9:09:f4:cf:48:c7:e9:6f:5b:53:f5: 7e:4b:df:dd:d9:53:92:c8:2c:41:a0:62:6d:f2:cb: 65:43:4d:94:6b:1b:21:b1:d6:64:93:28:00:59:02: 92:a7:25:49:fa:59:2a:fa:d5:2f:2b:56:d6:df:4f: 15:41:6e:76:4f:87:aa:e8:76:36:c6:e3:93:36:7f: 20:8a:2b:ee:d7:87:38:aa:76:e6:20:90:49:1d:96: 0f:f6:f4:08:4b:39:63:be:6f:7c:a1:e4:ec:33:cc: 46:25:f9:90:a5:59:4a:1a:98:03:29:21:5c:c7:17: bf:d8:3d:d3:7e:72:e6:47:80:d9:12:25:53:8b:7b: 15:45:a4:4c:88:cb:79:0b:28:44:c5:82:14:f4:40: 73:8a:48:b7:6f:d2:40:f5:58:52:29:46:c1:74:92: 5a:c8:43:a9:14:3c:b6:5b:b3:4e:3a:70:29:66:cd: 48:0b:2b:a1:40:d1:91:04:ed:88:19:0b:50:4f:a7: 5c:84:de:39:d6:6e:7d:3a:ef:9c:aa:a7:aa:de:2c: 94:de:07:b5:1f:42:a0:e5:ff:91:7c:f2:79:5a:34: b8:65:fe:6a:9b:e5:be:50:7a:d2:ce:48:1b:9a:f4: 4e:83:c5:be:4c:88:b5:ba:93:6c:f2:03:b3:54:e1: b2:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:05:29:51:EA:E4:4B:6B:D7:7F:14:25:CA:37:6F:AF:4C:D7:79:D1 X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/55d6cbae-8b7f-45a9-8d9b-458d10a9b1ca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.248.216.0/21 Signature Algorithm: sha256WithRSAEncryption 4e:fb:f0:01:51:dc:30:5b:a6:b9:04:75:de:10:78:9f:49:f4: ca:60:96:64:b3:3e:45:e6:eb:5d:b5:a6:06:67:5c:5a:c0:86: d1:16:2d:69:3f:1c:ca:45:fd:63:74:e5:28:85:99:34:4d:44: 05:46:0d:11:bc:88:ab:a3:32:57:1c:93:5b:91:f3:b1:92:f5: 31:b8:84:72:e1:b2:b6:93:99:cf:2f:2e:18:f9:8b:56:1e:6b: 58:dc:58:7b:8e:55:f6:3d:f8:fe:6a:82:a3:4a:af:b3:49:34: f3:65:03:ab:50:7f:65:8b:ac:e8:75:0d:55:48:33:3c:d1:ee: 0f:ef:d4:99:ca:dd:2f:26:05:a7:c8:88:10:92:11:9c:43:2f: 94:8f:9c:16:7a:f9:55:66:fb:de:b5:22:ec:6b:1b:59:a2:8e: c5:44:74:b2:11:17:50:41:14:97:cc:84:12:ad:29:ed:4d:be: 14:d9:19:de:49:d1:33:47:c8:47:b1:a8:e2:87:c2:43:e3:d1: 4f:97:99:1b:cf:45:c6:0d:d8:dd:c7:59:dd:a5:7a:b6:69:9f: 9b:2f:49:cc:c4:81:3b:18:d0:5c:95:21:72:e3:cf:ce:59:cb: d3:2d:24:fa:65:0d:69:04:66:7b:16:d2:ce:eb:df:3d:f0:39: 02:b6:e8:9c -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUNgG3qLWNLIYbamUaOhFyfKzuhHEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI1MTExMjAwMDEwNFoX DTI1MTIxNzIzNTk1OVowejFJMEcGA1UEBRNAYzIxY2I1ODg2ZDNkMGZiYTA2MWE3 NzgxODM5Y2VmYjgyZDg5ODY2Mjc0MGIzYzRjNTc5YTYzMGM4MTIyM2EwMjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn6biqQn0z0jH6W9bU/V+S9/d2VOS yCxBoGJt8stlQ02UaxshsdZkkygAWQKSpyVJ+lkq+tUvK1bW308VQW52T4eq6HY2 xuOTNn8giivu14c4qnbmIJBJHZYP9vQISzljvm98oeTsM8xGJfmQpVlKGpgDKSFc xxe/2D3TfnLmR4DZEiVTi3sVRaRMiMt5CyhExYIU9EBziki3b9JA9VhSKUbBdJJa yEOpFDy2W7NOOnApZs1ICyuhQNGRBO2IGQtQT6dchN451m59Ou+cqqeq3iyU3ge1 H0Kg5f+RfPJ5WjS4Zf5qm+W+UHrSzkgbmvROg8W+TIi1upNs8gOzVOGyYQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFPUFKVHq5Etr138UJco3b69M13nRMB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU1ZDZjYmFlLThiN2YtNDVhOS04ZDliLTQ1OGQxMGE5YjFjYS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvYTViMDFiZGQtY2RlYi00Y2ZjLThjOTMtN2U3MGM1ZTA5MzA2LmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDn/jYMA0GCSqGSIb3DQEBCwUAA4IBAQBO+/ABUdwwW6a5BHXeEHif SfTKYJZksz5F5utdtaYGZ1xawIbRFi1pPxzKRf1jdOUohZk0TUQFRg0RvIirozJX HJNbkfOxkvUxuIRy4bK2k5nPLy4Y+YtWHmtY3Fh7jlX2Pfj+aoKjSq+zSTTzZQOr UH9li6zodQ1VSDM80e4P79SZyt0vJgWnyIgQkhGcQy+Uj5wWevlVZvvetSLsaxtZ oo7FRHSyERdQQRSXzIQSrSntTb4U2RneSdEzR8hHsajih8JD49FPl5kbz0XGDdjd x1ndpXq2aZ+bL0nMxIE7GNBclSFy48/OWcvTLST6ZQ1pBGZ7FtLO69898DkCtuic -----END CERTIFICATE-----Generated at Sat Dec 6 10:58:53 2025 by rpki-client