This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5bf4d29d-b755-45e9-ad12-cad8b88b01bc.roa File: 5bf4d29d-b755-45e9-ad12-cad8b88b01bc.roa (raw, json) Hash identifier: MX8bQLHsmp8mGPHwl8CfhMrphECUQNNMe0Nh/n1KVNY= Subject key identifier: C6:67:C4:E5:CD:D4:80:B3:D5:F1:B4:3C:27:E6:F8:C7:4B:67:FE:CA Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 0473F70D006D90F1FB536DAE170360DB7291CFAD Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5bf4d29d-b755-45e9-ad12-cad8b88b01bc.roa Signing time: Thu 04 Dec 2025 00:40:22 +0000 ROA not before: Thu 04 Dec 2025 00:40:22 +0000 ROA not after: Wed 04 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 43.208.0.0/13 maxlen: 13 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:73:f7:0d:00:6d:90:f1:fb:53:6d:ae:17:03:60:db:72:91:cf:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 4 00:40:22 2025 GMT Not After : Mar 4 23:59:59 2026 GMT Subject: serialNumber=12c85dab257e911f62cc78eddcc591664a54132ce6c9b7f6a6a689fc4e07b52c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:3d:ab:d4:89:f2:e3:b1:5d:56:02:e7:9a:3d: 87:80:f0:7f:49:73:eb:90:3a:3f:de:1f:c2:27:8d: ba:db:45:b6:b2:c3:c8:a0:93:c2:53:ba:1d:b4:99: 91:e6:9c:cc:57:ca:65:3f:57:b1:33:d6:ae:19:3f: 2b:5f:e5:4f:9c:f0:35:dc:1b:b2:0a:b8:5d:55:7c: 46:36:cf:66:73:ba:c0:6f:66:11:d7:89:2d:fd:4e: fe:d2:46:68:9b:6b:58:b3:df:8f:e6:d2:2d:7b:ca: c1:27:8e:21:3d:2b:10:94:aa:dc:a6:01:e4:fe:ed: ee:89:cb:52:30:5c:ef:96:4e:09:fd:2b:47:cc:28: fa:b0:de:f5:79:64:fa:bb:c0:94:1b:6e:ad:24:9e: 93:47:57:ed:8c:80:b7:d3:11:cc:6b:64:fc:0d:38: 88:1f:68:3b:29:c7:85:37:0e:d9:18:04:67:fb:93: d9:0b:47:4f:75:cd:34:cd:a9:b8:c2:71:fc:80:f3: bf:85:f0:32:5d:3e:bf:dd:a6:b9:ea:f7:97:f1:cf: b8:fc:29:8e:05:00:ae:26:13:da:74:1d:00:c4:16: ca:e4:fe:19:20:b1:1d:02:98:c2:d4:c8:1a:62:6f: 15:1f:fb:e0:c3:18:dc:10:1d:d7:91:9a:6d:a0:27: f3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:67:C4:E5:CD:D4:80:B3:D5:F1:B4:3C:27:E6:F8:C7:4B:67:FE:CA X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/5bf4d29d-b755-45e9-ad12-cad8b88b01bc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.208.0.0/13 Signature Algorithm: sha256WithRSAEncryption 11:ed:73:dd:0a:67:9c:2d:a1:43:67:8c:60:81:c2:db:e5:40: a7:4e:9b:cb:d2:38:49:9a:bd:84:81:f2:d8:9d:d6:21:35:0f: a2:be:23:04:c0:b0:e4:e4:bc:cc:51:d4:9d:e2:5b:0a:45:47: a3:da:13:f1:7a:d4:80:47:22:a9:5e:53:3c:ee:8d:dd:a6:4e: 54:2f:f4:90:3d:3c:fa:b1:80:4d:4d:2c:fc:e0:cc:fc:d0:48: 8d:c5:74:fc:d2:d7:00:db:f4:0e:89:40:b6:c9:a6:99:4d:05: 46:35:6f:86:fe:71:d5:7a:f3:b4:bb:0a:67:0f:63:9c:1f:0c: 95:e4:83:d9:f9:71:39:b9:51:2c:96:fc:c2:63:fb:a9:31:0d: 68:eb:4d:a6:ae:6b:96:03:38:4e:53:69:eb:70:da:d6:26:cd: 18:40:8d:ee:19:fe:bb:25:7d:2d:d7:76:95:b3:62:ad:95:e1: b8:2e:d4:4e:fc:28:b4:c3:9d:bc:5a:03:ba:4e:67:73:31:e3: 4b:f5:00:b8:2e:51:32:f5:2f:34:39:a1:6e:1a:b1:91:6c:b6: 1e:53:88:c9:dd:e5:f5:4e:15:86:6f:47:7e:4c:a9:0c:71:32: f2:63:13:60:3c:6d:3c:f1:55:70:ac:84:3e:a5:8d:72:e2:b1: db:48:ff:ce -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgIUBHP3DQBtkPH7U22uFwNg23KRz60wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwNDAwNDAyMloX DTI2MDMwNDIzNTk1OVowejFJMEcGA1UEBRNAMTJjODVkYWIyNTdlOTExZjYyY2M3 OGVkZGNjNTkxNjY0YTU0MTMyY2U2YzliN2Y2YTZhNjg5ZmM0ZTA3YjUyYzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8z2r1Iny47FdVgLnmj2HgPB/SXPr kDo/3h/CJ42620W2ssPIoJPCU7odtJmR5pzMV8plP1exM9auGT8rX+VPnPA13Buy CrhdVXxGNs9mc7rAb2YR14kt/U7+0kZom2tYs9+P5tIte8rBJ44hPSsQlKrcpgHk /u3uictSMFzvlk4J/StHzCj6sN71eWT6u8CUG26tJJ6TR1ftjIC30xHMa2T8DTiI H2g7KceFNw7ZGARn+5PZC0dPdc00zam4wnH8gPO/hfAyXT6/3aa56veX8c+4/CmO BQCuJhPadB0AxBbK5P4ZILEdApjC1MgaYm8VH/vgwxjcEB3XkZptoCfzuwIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFMZnxOXN1ICz1fG0PCfm+MdLZ/7KMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzViZjRkMjlkLWI3NTUtNDVlOS1hZDEyLWNhZDhiODhiMDFiYy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMDK9AwDQYJKoZIhvcNAQELBQADggEBABHtc90KZ5wtoUNnjGCBwtvl QKdOm8vSOEmavYSB8tid1iE1D6K+IwTAsOTkvMxR1J3iWwpFR6PaE/F61IBHIqle Uzzujd2mTlQv9JA9PPqxgE1NLPzgzPzQSI3FdPzS1wDb9A6JQLbJpplNBUY1b4b+ cdV687S7CmcPY5wfDJXkg9n5cTm5USyW/MJj+6kxDWjrTaaua5YDOE5Taetw2tYm zRhAje4Z/rslfS3XdpWzYq2V4bgu1E78KLTDnbxaA7pOZ3Mx40v1ALguUTL1LzQ5 oW4asZFsth5TiMnd5fVOFYZvR35MqQxxMvJjE2A8bTzxVXCshD6ljXLisdtI/84= -----END CERTIFICATE-----Generated at Sat Dec 6 09:58:00 2025 by rpki-client