This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/565f9740-389f-45ac-956e-b96e19889315.roa File: 565f9740-389f-45ac-956e-b96e19889315.roa (raw, json) Hash identifier: zkt/uWV4awZGVartbifogB/keUxqxjGfhH88Z7gL9/Y= Subject key identifier: 03:3B:53:02:3C:04:9F:65:DA:6B:18:22:85:89:01:96:FE:7A:3C:2A Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Certificate serial: 146482115EF13F64296E5B942694E53D4B03CEC8 Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/565f9740-389f-45ac-956e-b96e19889315.roa Signing time: Wed 12 Nov 2025 00:00:38 +0000 ROA not before: Wed 12 Nov 2025 00:00:38 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 159.248.224.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/manifest.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:64:82:11:5e:f1:3f:64:29:6e:5b:94:26:94:e5:3d:4b:03:ce:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7 Validity Not Before: Nov 12 00:00:38 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=a2f21ecf563c23b46f4d6183a052d868e38277d6c865048c8c2c05c6709506bf, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:27:9e:cf:44:0e:5d:2e:bd:68:e1:6d:3d:d3: e5:7b:51:a5:d3:15:59:26:c8:20:50:01:aa:e7:75: a1:dc:02:e0:09:58:35:a3:dc:9d:35:cd:4d:d0:5e: a8:bc:65:79:8b:00:3a:21:e9:7f:5f:91:70:31:eb: 14:d4:de:58:6a:b3:b7:8b:8a:ec:54:60:ef:c3:da: 21:32:a2:b6:a9:d5:61:f1:0c:9d:8e:39:42:88:e7: e4:35:04:20:bf:01:89:65:7f:b0:7e:c7:9b:ad:25: f4:0d:9d:c3:e6:4f:9d:a6:f4:d7:86:19:ee:51:31: 38:ac:2c:df:55:8a:a7:b6:8d:3b:b7:a1:06:43:d8: 3a:4b:e6:d7:a6:2d:7b:af:4b:40:c2:7a:fd:e2:2f: 7b:62:9a:56:0b:53:ce:4b:8a:41:ec:d3:7f:47:98: 6c:58:fe:d6:ea:b8:80:99:1a:f1:45:53:ac:18:4c: 3a:56:ad:e7:3a:65:dd:6f:9a:e6:48:0f:6c:19:82: 8a:87:ae:50:62:d3:3f:f1:de:10:a3:62:ef:4e:6b: a2:d9:8e:1c:3f:46:64:ec:76:4c:c0:41:15:31:df: af:0b:bb:f3:23:a4:d0:b7:73:9e:30:d2:88:c0:a4: 6b:7a:32:13:20:64:19:be:cc:80:8c:b7:3e:93:cb: 94:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:3B:53:02:3C:04:9F:65:DA:6B:18:22:85:89:01:96:FE:7A:3C:2A X509v3 Authority Key Identifier: keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/565f9740-389f-45ac-956e-b96e19889315.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.248.224.0/21 Signature Algorithm: sha256WithRSAEncryption 47:f8:3f:b1:9f:c6:90:6c:e6:69:04:08:a7:d1:52:b0:72:9c: 66:4b:84:34:fa:0e:82:df:66:38:98:69:2d:16:a2:5b:8c:90: 8e:44:31:79:cd:56:12:7a:39:13:8e:3d:e0:58:56:26:89:0b: 41:95:26:ca:f1:1c:d1:43:22:1f:71:59:df:44:97:81:3d:de: 5c:8e:cd:5c:3b:1a:42:ad:67:28:22:be:3d:53:3e:06:dd:66: 6f:8c:87:f0:f0:97:6a:9f:a2:f5:f1:be:23:d5:d2:a2:2e:c5: 00:e9:5d:f4:78:08:28:dc:ff:63:68:24:04:6a:e9:b6:c0:4e: 1a:0e:09:fd:ec:1a:6d:1b:bd:92:c5:ca:91:35:13:c4:7a:b8: 72:8a:43:16:26:e0:97:1b:87:9a:dc:07:a7:66:8d:88:08:a5: 9f:3a:09:bf:47:cb:72:1a:c6:30:70:be:77:45:76:f0:49:a4: 7f:d1:28:e2:37:b6:99:24:1e:01:13:23:e6:1c:4c:45:91:eb: e4:85:b1:9d:ba:fd:f2:55:ec:92:e9:54:b2:a6:d4:b3:1b:71: 60:f0:9a:41:cf:7c:83:ec:46:44:e3:7f:1b:17:74:43:54:25: 35:ac:52:86:53:56:0e:f5:d7:aa:6f:61:c1:e2:f9:10:a9:e2: 9f:a1:06:17 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUFGSCEV7xP2QpbluUJpTlPUsDzsgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI1MTExMjAwMDAzOFoX DTI1MTIxNzIzNTk1OVowejFJMEcGA1UEBRNAYTJmMjFlY2Y1NjNjMjNiNDZmNGQ2 MTgzYTA1MmQ4NjhlMzgyNzdkNmM4NjUwNDhjOGMyYzA1YzY3MDk1MDZiZjEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhSeez0QOXS69aOFtPdPle1Gl0xVZ JsggUAGq53Wh3ALgCVg1o9ydNc1N0F6ovGV5iwA6Iel/X5FwMesU1N5YarO3i4rs VGDvw9ohMqK2qdVh8QydjjlCiOfkNQQgvwGJZX+wfsebrSX0DZ3D5k+dpvTXhhnu UTE4rCzfVYqnto07t6EGQ9g6S+bXpi17r0tAwnr94i97YppWC1POS4pB7NN/R5hs WP7W6riAmRrxRVOsGEw6Vq3nOmXdb5rmSA9sGYKKh65QYtM/8d4Qo2LvTmui2Y4c P0Zk7HZMwEEVMd+vC7vzI6TQt3OeMNKIwKRrejITIGQZvsyAjLc+k8uU/QIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFAM7UwI8BJ9l2msYIoWJAZb+ejwqMB8GA1UdIwQY MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzU2NWY5NzQwLTM4OWYtNDVhYy05NTZlLWI5NmUxOTg4OTMxNS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvYTViMDFiZGQtY2RlYi00Y2ZjLThjOTMtN2U3MGM1ZTA5MzA2LmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDn/jgMA0GCSqGSIb3DQEBCwUAA4IBAQBH+D+xn8aQbOZpBAin0VKw cpxmS4Q0+g6C32Y4mGktFqJbjJCORDF5zVYSejkTjj3gWFYmiQtBlSbK8RzRQyIf cVnfRJeBPd5cjs1cOxpCrWcoIr49Uz4G3WZvjIfw8Jdqn6L18b4j1dKiLsUA6V30 eAgo3P9jaCQEaum2wE4aDgn97BptG72SxcqRNRPEerhyikMWJuCXG4ea3AenZo2I CKWfOgm/R8tyGsYwcL53RXbwSaR/0SjiN7aZJB4BEyPmHExFkevkhbGduv3yVeyS 6VSyptSzG3Fg8JpBz3yD7EZE438bF3RDVCU1rFKGU1YO9deqb2HB4vkQqeKfoQYX -----END CERTIFICATE-----Generated at Sat Dec 6 16:31:03 2025 by rpki-client