This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a018f2e9-f03d-4656-89f3-616151515896.roa File: a018f2e9-f03d-4656-89f3-616151515896.roa (raw, json) Hash identifier: 5GnVe3EdF33w/jgu82jaQfyXo1UmCIGCPbNfi0YGNEk= Subject key identifier: FE:84:DD:13:60:95:F2:6E:F8:72:10:03:8E:CB:5B:6F:C2:3F:6B:7E Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 3CBF837AFD3DC67EB7351044C5B0AF345AAC93B3 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a018f2e9-f03d-4656-89f3-616151515896.roa Signing time: Wed 03 Dec 2025 00:11:04 +0000 ROA not before: Wed 03 Dec 2025 00:11:04 +0000 ROA not after: Tue 03 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 126.191.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:bf:83:7a:fd:3d:c6:7e:b7:35:10:44:c5:b0:af:34:5a:ac:93:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 3 00:11:04 2025 GMT Not After : Mar 3 23:59:59 2026 GMT Subject: serialNumber=66e783b1fb6737cd93d49fa00835e67443962242258aab0712705afb60e7dff8, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:b1:5a:4c:50:27:a0:36:fa:63:31:c6:46:1f: 91:4c:0b:c2:ad:71:e2:33:d6:62:6f:91:71:95:20: 5a:9f:f4:3d:b2:f8:78:bc:46:d4:8c:65:f7:f8:2d: 9b:e4:20:ff:45:44:8b:d1:ab:3a:ed:c0:3a:14:21: 6a:f6:26:09:e0:da:83:75:87:5b:90:4f:47:5d:ac: 31:50:2a:3c:91:36:e0:c4:83:d8:be:39:b0:39:6e: 8a:51:17:cf:77:93:74:15:e0:8b:4f:c3:e2:40:ee: 28:92:15:66:f4:a1:df:79:d8:61:38:d3:3b:88:9f: 30:cd:28:54:5d:83:b2:d3:bc:7d:59:b7:32:7c:1c: c2:d7:54:13:b6:5a:91:e3:fd:bc:79:86:25:32:f6: c5:30:7e:48:98:cd:96:06:24:8a:58:c9:83:0c:9a: 14:09:41:f3:e6:f2:0d:da:ba:5e:36:87:e9:63:00: d5:85:66:e5:56:2a:8b:7f:ba:ab:2c:ab:f6:4c:fb: 9a:94:99:96:d4:7f:7b:cf:fa:96:51:2f:a8:35:c5: 07:81:c3:75:9c:1c:b7:2e:94:fa:04:f2:8c:ee:4e: cf:cb:24:43:9d:71:4c:11:cd:7c:fe:7b:0d:6f:c2: 03:e4:f0:a5:e3:fa:0a:0b:82:6c:e3:62:f1:f8:19: ff:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:84:DD:13:60:95:F2:6E:F8:72:10:03:8E:CB:5B:6F:C2:3F:6B:7E X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a018f2e9-f03d-4656-89f3-616151515896.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 126.191.0.0/16 Signature Algorithm: sha256WithRSAEncryption 28:5e:21:6a:70:1c:10:d3:22:f1:52:d9:5c:68:f9:39:93:c3: bc:08:45:fd:90:1a:27:4f:58:78:57:e6:74:2b:17:f3:49:6b: 64:ef:be:73:43:4c:71:1a:8e:d6:42:0b:4a:c2:4c:ef:40:0b: 26:0b:a6:0b:8b:cb:62:c7:74:78:94:ca:1c:bd:c2:c6:5f:1e: 7c:f1:03:0e:65:a3:96:8b:a5:a9:eb:a1:0b:dd:72:93:df:0b: c5:b4:e5:13:7a:13:0f:1a:b4:23:12:56:0f:a3:ab:20:64:e1: f4:88:f1:83:1f:fd:49:26:78:50:a5:3b:d7:37:87:52:95:f6: e5:f6:f7:75:fd:92:78:13:21:77:e6:38:86:a5:81:d5:0c:72: c1:c7:80:7f:43:63:3b:dd:93:35:41:d6:26:d2:eb:ff:69:dc: cf:f6:63:2c:52:a8:f0:ef:ad:f6:fc:78:6c:e0:e8:3c:2e:36: 1f:e1:06:9a:b1:15:5b:a6:5b:0d:4d:be:95:c7:93:58:29:9d: 11:72:35:d7:bc:98:d8:e0:5a:d4:0b:17:c5:74:d1:7c:28:4a: 7f:ce:7f:fd:c8:05:28:9a:98:e8:9f:1d:da:37:d2:42:59:51: 40:fe:00:15:95:da:7a:2c:53:91:32:c2:6c:13:24:a5:d2:da: e0:81:51:a4 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgIUPL+Dev09xn63NRBExbCvNFqsk7MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwMzAwMTEwNFoX DTI2MDMwMzIzNTk1OVowejFJMEcGA1UEBRNANjZlNzgzYjFmYjY3MzdjZDkzZDQ5 ZmEwMDgzNWU2NzQ0Mzk2MjI0MjI1OGFhYjA3MTI3MDVhZmI2MGU3ZGZmODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8rFaTFAnoDb6YzHGRh+RTAvCrXHi M9Zib5FxlSBan/Q9svh4vEbUjGX3+C2b5CD/RUSL0as67cA6FCFq9iYJ4NqDdYdb kE9HXawxUCo8kTbgxIPYvjmwOW6KURfPd5N0FeCLT8PiQO4okhVm9KHfedhhONM7 iJ8wzShUXYOy07x9WbcyfBzC11QTtlqR4/28eYYlMvbFMH5ImM2WBiSKWMmDDJoU CUHz5vIN2rpeNofpYwDVhWblViqLf7qrLKv2TPualJmW1H97z/qWUS+oNcUHgcN1 nBy3LpT6BPKM7k7PyyRDnXFMEc18/nsNb8ID5PCl4/oKC4Js42Lx+Bn/6wIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFP6E3RNglfJu+HIQA47LW2/CP2t+MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2EwMThmMmU5LWYwM2QtNDY1Ni04OWYzLTYxNjE1MTUxNTg5Ni5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAfr8wDQYJKoZIhvcNAQELBQADggEBACheIWpwHBDTIvFS2Vxo+TmT w7wIRf2QGidPWHhX5nQrF/NJa2TvvnNDTHEajtZCC0rCTO9ACyYLpguLy2LHdHiU yhy9wsZfHnzxAw5lo5aLpanroQvdcpPfC8W05RN6Ew8atCMSVg+jqyBk4fSI8YMf /UkmeFClO9c3h1KV9uX293X9kngTIXfmOIalgdUMcsHHgH9DYzvdkzVB1ibS6/9p 3M/2YyxSqPDvrfb8eGzg6DwuNh/hBpqxFVumWw1NvpXHk1gpnRFyNde8mNjgWtQL F8V00XwoSn/Of/3IBSiamOifHdo30kJZUUD+ABWV2nosU5EywmwTJKXS2uCBUaQ= -----END CERTIFICATE-----Generated at Sat Dec 6 10:04:28 2025 by rpki-client