This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9489db20-95e0-4921-9118-b2516a901b12.roa File: 9489db20-95e0-4921-9118-b2516a901b12.roa (raw, json) Hash identifier: 8/hxmkIiSnpgmAf+MHWOuf4GMnIVnhwX12COg1/ydB0= Subject key identifier: 50:2F:2B:12:D3:AC:AC:EB:D5:24:9D:8C:3E:76:82:59:76:CD:6D:5F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 365771EAB7266D19D8CC974B05EFF68930FA23F5 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9489db20-95e0-4921-9118-b2516a901b12.roa Signing time: Sat 06 Dec 2025 00:00:32 +0000 ROA not before: Sat 06 Dec 2025 00:00:32 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 43.216.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:57:71:ea:b7:26:6d:19:d8:cc:97:4b:05:ef:f6:89:30:fa:23:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 6 00:00:32 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=30aedb48200e4481fcf019160f38278b6dea9d0fff6154d60fc530e668861517, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:98:bd:08:30:4d:94:d0:75:aa:3b:0a:4f:f9: 97:af:80:be:8e:ea:c3:f0:b0:3c:01:6a:fa:5e:62: 77:c2:2d:cc:36:17:54:83:9c:56:63:9f:a1:a6:02: d8:d2:99:4a:15:d2:27:0a:68:2c:d2:f2:8d:eb:f5: 46:de:92:53:c7:8e:15:69:12:b1:0e:44:84:f4:50: 3e:36:49:e0:5a:6e:13:c6:41:10:38:f9:21:0f:e1: 55:72:5e:57:51:2d:f3:3d:f8:c5:64:79:20:1e:34: a5:23:96:e9:14:a8:5d:b3:38:cb:e7:2a:b0:ad:b1: 88:27:de:83:e5:e9:68:2f:e5:22:dd:83:ed:95:82: b9:6b:29:2f:54:71:df:91:21:27:39:cf:11:ef:2a: cf:e0:6b:13:3e:27:52:60:3f:44:68:d1:f4:3f:eb: 56:9c:bc:f1:22:1b:c0:f6:b4:22:46:d4:6d:a3:16: 62:92:75:da:e7:81:74:7a:7e:84:9d:02:5d:60:0a: b7:eb:4f:7f:e0:ef:8e:3a:14:fe:7e:94:92:49:4a: 8c:0b:13:8a:d1:bc:20:45:0f:1c:c1:20:94:fb:09: 8d:a6:c1:f0:b0:5d:e9:de:e8:ed:b5:45:35:1b:df: 88:6c:60:46:4c:e8:c3:70:dd:c9:32:6e:2e:4d:20: ce:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:2F:2B:12:D3:AC:AC:EB:D5:24:9D:8C:3E:76:82:59:76:CD:6D:5F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9489db20-95e0-4921-9118-b2516a901b12.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.216.72.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:b3:7a:d2:22:71:bd:03:67:51:4d:11:72:48:27:b5:b3:55: 52:b3:22:9f:11:d5:d2:cc:cf:46:84:19:2f:ad:a1:2c:d0:d2: d2:e8:2a:7e:bc:be:1a:56:96:e1:a2:02:c0:1a:cd:99:83:b8: f9:6a:e9:db:7c:ca:a2:ca:8b:10:b3:58:76:1b:41:79:2c:c9: bd:a8:70:fa:25:ab:77:3c:dc:11:1e:56:3e:ef:f6:45:0d:02: d1:d1:10:51:6a:a2:79:bc:09:4a:b9:ff:9c:6c:da:13:93:04: d2:9a:41:19:be:7d:2a:05:88:09:65:07:03:24:d0:63:0f:cf: 2f:9e:b6:e2:4b:6d:1c:5f:1b:7c:6e:6b:f8:28:c8:0e:35:f1: 89:95:40:27:cd:a9:c4:43:d8:9d:c9:c8:b0:38:1f:ce:a8:e0: 18:ab:ed:58:45:ce:1e:4c:50:fc:51:58:9f:a7:df:92:47:53: 11:a5:aa:26:9c:79:8f:37:66:8d:f1:b5:ee:88:3c:f5:65:2b: 3d:66:a0:95:48:b8:77:f7:70:b3:53:11:26:4c:7c:95:90:9f: 5e:50:b1:17:92:21:61:eb:59:42:de:57:d5:04:7f:69:c8:75: 93:2c:e1:1d:4c:55:4e:53:6d:22:c7:6d:0c:d3:8d:66:fe:02: 25:01:52:9d -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUNldx6rcmbRnYzJdLBe/2iTD6I/UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwNjAwMDAzMloX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNAMzBhZWRiNDgyMDBlNDQ4MWZjZjAx OTE2MGYzODI3OGI2ZGVhOWQwZmZmNjE1NGQ2MGZjNTMwZTY2ODg2MTUxNzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA05i9CDBNlNB1qjsKT/mXr4C+jurD 8LA8AWr6XmJ3wi3MNhdUg5xWY5+hpgLY0plKFdInCmgs0vKN6/VG3pJTx44VaRKx DkSE9FA+NkngWm4TxkEQOPkhD+FVcl5XUS3zPfjFZHkgHjSlI5bpFKhdszjL5yqw rbGIJ96D5eloL+Ui3YPtlYK5aykvVHHfkSEnOc8R7yrP4GsTPidSYD9EaNH0P+tW nLzxIhvA9rQiRtRtoxZiknXa54F0en6EnQJdYAq3609/4O+OOhT+fpSSSUqMCxOK 0bwgRQ8cwSCU+wmNpsHwsF3p3ujttUU1G9+IbGBGTOjDcN3JMm4uTSDOwQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFFAvKxLTrKzr1SSdjD52gll2zW1fMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx Lzk0ODlkYjIwLTk1ZTAtNDkyMS05MTE4LWIyNTE2YTkwMWIxMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK9hIMA0GCSqGSIb3DQEBCwUAA4IBAQA7s3rSInG9A2dRTRFySCe1 s1VSsyKfEdXSzM9GhBkvraEs0NLS6Cp+vL4aVpbhogLAGs2Zg7j5aunbfMqiyosQ s1h2G0F5LMm9qHD6Jat3PNwRHlY+7/ZFDQLR0RBRaqJ5vAlKuf+cbNoTkwTSmkEZ vn0qBYgJZQcDJNBjD88vnrbiS20cXxt8bmv4KMgONfGJlUAnzanEQ9idyciwOB/O qOAYq+1YRc4eTFD8UVifp9+SR1MRpaomnHmPN2aN8bXuiDz1ZSs9ZqCVSLh393Cz UxEmTHyVkJ9eULEXkiFh61lC3lfVBH9pyHWTLOEdTFVOU20ix20M041m/gIlAVKd -----END CERTIFICATE-----Generated at Sat Dec 6 12:45:23 2025 by rpki-client