This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8804dfec-79d7-4390-a6a3-68e44e2370c9.roa File: 8804dfec-79d7-4390-a6a3-68e44e2370c9.roa (raw, json) Hash identifier: p5+FwW9DgXUMB7b3KZjcK9C1K60/ewHg5N4GHjcuZME= Subject key identifier: 5E:9E:E8:54:30:8E:8D:74:3D:95:63:18:4C:CE:59:10:46:A0:B1:BE Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 04F198386425F2C254F7E0C88FB56D0A78D3FD62 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8804dfec-79d7-4390-a6a3-68e44e2370c9.roa Signing time: Sun 07 Dec 2025 00:00:32 +0000 ROA not before: Sun 07 Dec 2025 00:00:32 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 43.208.56.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 17:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:f1:98:38:64:25:f2:c2:54:f7:e0:c8:8f:b5:6d:0a:78:d3:fd:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 7 00:00:32 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=8fd1e15a3310964c851f5773a25f340aa7d6322c8aa96220eb45055809767673, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7a:4b:38:b1:0b:f7:6d:1a:e2:d2:73:14:b1: a3:02:22:52:3d:ed:e3:50:08:ef:c8:79:91:77:a2: cb:df:d5:00:d4:a4:d9:b6:3e:f7:c7:4e:eb:a9:1d: b1:32:0f:bf:68:28:05:7f:76:c1:df:76:b1:e4:1f: 5f:62:e4:82:82:14:9b:f4:e2:7d:b2:9c:7a:69:f4: f5:23:3a:46:33:1f:76:fb:06:d0:93:f5:f1:43:e2: 00:25:94:e8:f4:59:c3:ca:3f:95:eb:83:6f:27:70: e9:3c:b5:8a:dd:24:82:5e:2b:ee:63:ee:f3:11:dd: aa:62:6d:42:50:3b:e4:56:5e:c8:68:7d:57:cc:81: c1:e5:78:58:4c:d1:5d:81:7e:d0:0b:67:ba:b9:32: 1c:8a:d2:0a:24:47:f6:63:bf:cd:2e:71:4a:41:66: 08:fa:5a:6d:bb:eb:2f:c2:f3:3f:ce:70:0a:06:f1: c3:69:bc:05:75:67:56:8f:7b:85:59:e6:34:88:97: 7f:0c:6b:70:b1:55:ea:c3:e7:f8:1a:5a:c2:06:75: d4:a5:03:0f:9a:15:ee:b3:9b:81:f9:3c:b8:b7:c7: d1:f7:7e:4d:35:88:cc:73:68:80:7c:ff:32:0d:ea: 3d:d3:12:4b:86:9b:6b:99:e2:87:7a:6a:09:f2:fb: 2f:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:9E:E8:54:30:8E:8D:74:3D:95:63:18:4C:CE:59:10:46:A0:B1:BE X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/8804dfec-79d7-4390-a6a3-68e44e2370c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.208.56.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:ef:a8:a6:57:be:36:bb:80:ab:3e:c0:9e:37:91:28:ad:0b: 1d:4f:c4:4d:ea:57:33:a5:e7:ae:57:60:cd:6a:09:7d:ff:11: 0b:65:34:e7:ed:11:80:e0:5d:c5:c5:b8:44:df:b8:5f:67:d4: 41:03:8d:3f:55:bf:4b:dc:61:78:d6:4f:ae:bb:fa:aa:e3:c6: 63:e3:0e:6a:cb:bd:4d:71:e5:06:81:87:ca:c3:f7:3d:27:ab: f4:ef:0c:94:03:e3:04:53:19:0a:df:b7:4a:99:8c:6d:9f:e9: ed:e2:89:40:ab:76:5c:66:4d:f3:a8:81:b2:ef:28:ac:4f:dc: a2:22:7f:9b:2f:ef:bf:8f:56:82:3a:01:67:30:ed:48:0c:a3: 7e:37:f6:6e:a1:95:a0:7c:d2:b7:eb:58:de:96:6e:e8:00:e8: 57:09:9d:f8:93:a0:77:e1:22:e0:fa:02:f4:7f:b1:78:b6:40: 1d:05:c3:9b:e4:df:79:8f:f7:7d:e7:95:b4:5d:80:92:c2:0a: da:4a:59:2b:bd:b3:cd:8c:be:ac:7f:df:ee:b6:df:a4:fc:a6: 32:b0:f7:68:91:51:48:f2:60:68:53:7d:e0:da:ed:51:34:bc: 2a:9b:32:64:8c:16:16:83:47:d5:76:be:4a:5f:fd:14:68:3f: 4e:42:74:8a -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUBPGYOGQl8sJU9+DIj7VtCnjT/WIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwNzAwMDAzMloX DTI2MDMwNzIzNTk1OVowejFJMEcGA1UEBRNAOGZkMWUxNWEzMzEwOTY0Yzg1MWY1 NzczYTI1ZjM0MGFhN2Q2MzIyYzhhYTk2MjIwZWI0NTA1NTgwOTc2NzY3MzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtnpLOLEL920a4tJzFLGjAiJSPe3j UAjvyHmRd6LL39UA1KTZtj73x07rqR2xMg+/aCgFf3bB33ax5B9fYuSCghSb9OJ9 spx6afT1IzpGMx92+wbQk/XxQ+IAJZTo9FnDyj+V64NvJ3DpPLWK3SSCXivuY+7z Ed2qYm1CUDvkVl7IaH1XzIHB5XhYTNFdgX7QC2e6uTIcitIKJEf2Y7/NLnFKQWYI +lptu+svwvM/znAKBvHDabwFdWdWj3uFWeY0iJd/DGtwsVXqw+f4GlrCBnXUpQMP mhXus5uB+Ty4t8fR935NNYjMc2iAfP8yDeo90xJLhptrmeKHemoJ8vsvHQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFF6e6FQwjo10PZVjGEzOWRBGoLG+MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzg4MDRkZmVjLTc5ZDctNDM5MC1hNmEzLTY4ZTQ0ZTIzNzBjOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBK9A4MA0GCSqGSIb3DQEBCwUAA4IBAQCf76imV742u4CrPsCeN5Eo rQsdT8RN6lczpeeuV2DNagl9/xELZTTn7RGA4F3FxbhE37hfZ9RBA40/Vb9L3GF4 1k+uu/qq48Zj4w5qy71NceUGgYfKw/c9J6v07wyUA+MEUxkK37dKmYxtn+nt4olA q3ZcZk3zqIGy7yisT9yiIn+bL++/j1aCOgFnMO1IDKN+N/ZuoZWgfNK361jelm7o AOhXCZ34k6B34SLg+gL0f7F4tkAdBcOb5N95j/d955W0XYCSwgraSlkrvbPNjL6s f9/utt+k/KYysPdokVFI8mBoU33g2u1RNLwqmzJkjBYWg0fVdr5KX/0UaD9OQnSK -----END CERTIFICATE-----Generated at Thu Dec 18 11:22:32 2025 by rpki-client