This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b7c0696d-ba0c-47de-9916-42ee007b9201.roa File: b7c0696d-ba0c-47de-9916-42ee007b9201.roa (raw, json) Hash identifier: 9ONJ2uWj7AjjLYS7qyachXo4JwSkp8+OqynPWm0fzyA= Subject key identifier: F5:DF:BE:9B:92:43:6B:38:F4:F7:1E:F6:1C:6A:0C:FC:34:02:C2:9F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 65F828C4C009D83C63E69F1275479C7E2236B8E9 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b7c0696d-ba0c-47de-9916-42ee007b9201.roa Signing time: Thu 04 Dec 2025 00:10:27 +0000 ROA not before: Thu 04 Dec 2025 00:10:27 +0000 ROA not after: Wed 04 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 43.221.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:f8:28:c4:c0:09:d8:3c:63:e6:9f:12:75:47:9c:7e:22:36:b8:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 4 00:10:27 2025 GMT Not After : Mar 4 23:59:59 2026 GMT Subject: serialNumber=e92245ece22c394cd3d1765fc5fad3c1ee4e50ce9513c0b45d62e45c9da2795e, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:09:ea:45:71:5e:5d:5a:81:7a:1c:77:53:15: 57:cb:9b:83:cb:53:d1:15:6a:87:82:13:8b:ab:d0: 0c:72:7f:fd:ec:44:d1:d2:ad:d4:da:01:b0:45:80: e1:83:ae:7b:ad:60:92:c2:d6:32:7e:00:6b:cd:cd: 18:3d:34:fb:0f:70:3e:47:a9:c8:ac:d7:bd:09:13: fb:97:f7:86:a6:07:3f:10:ca:53:c2:6e:87:44:0c: 7d:98:e9:5d:71:ee:c6:d1:5b:bc:b3:95:29:34:ac: cc:a4:72:c2:1b:59:3b:8c:40:12:7d:fa:94:c5:ab: f8:87:06:58:d1:80:13:4d:f1:4c:1d:af:fc:22:e2: 02:e4:eb:be:ad:5e:7a:d8:d2:77:33:8c:ec:9d:89: ed:10:80:e2:a8:b4:09:de:b8:c8:f2:ea:dc:18:e0: 32:31:5f:72:e4:74:fb:28:89:96:c7:17:22:57:dc: 52:0e:f3:46:0f:7b:2a:4f:99:28:ba:b0:11:fe:73: 45:b5:0d:1c:62:4b:6c:3e:e0:48:d7:f9:5d:16:26: 56:e9:6f:10:bf:06:9d:91:4b:a7:58:d9:50:c7:a3: 27:ca:4b:8e:c0:3e:95:b4:50:a7:98:dc:b2:ca:90: 43:09:bb:1f:86:ad:6a:0b:f2:e8:50:50:75:48:98: 72:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:DF:BE:9B:92:43:6B:38:F4:F7:1E:F6:1C:6A:0C:FC:34:02:C2:9F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b7c0696d-ba0c-47de-9916-42ee007b9201.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.221.0.0/16 Signature Algorithm: sha256WithRSAEncryption bb:a3:d7:10:1c:b5:63:7d:6e:30:55:fd:f4:b4:c4:7d:07:60: 53:b0:6d:f0:a9:c1:ab:14:b7:af:7d:8b:60:f1:f5:3e:5f:77: a2:ff:ab:0d:f7:7b:3f:bf:29:35:5c:07:d3:45:c9:4a:b5:6d: 76:79:be:d1:46:af:f6:5e:03:48:88:fe:11:85:f9:1d:10:a8: 42:bb:a4:e5:fd:c9:53:78:01:ff:58:7d:c5:4b:64:9a:db:88: b5:35:61:20:1e:4e:19:6c:d2:d6:a9:16:15:e5:4c:99:9f:df: a5:0a:b7:b2:cb:fa:38:51:44:78:35:05:44:a7:71:e8:92:b4: a6:a1:11:de:40:12:04:0f:a9:8e:69:e1:95:15:68:e4:cf:04: 26:60:68:e1:f3:20:b2:cd:31:8e:79:1a:e7:8c:5d:8b:f2:8d: 93:db:be:49:b3:8a:f0:8e:b4:d0:23:48:a0:9d:64:d9:d7:8f: 0b:1e:48:d8:67:18:cb:a8:57:6c:c0:4c:84:2a:97:c6:14:04: 0d:b7:e1:61:b8:f7:07:81:fd:c7:1a:39:c5:62:a9:b5:f6:91: 57:8f:27:42:6a:b1:f8:94:96:94:75:58:4c:54:76:20:71:f4: 0b:a7:97:5c:df:9c:ee:6f:4d:1c:93:09:72:d6:8b:fc:35:a3: 72:d1:d6:52 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgIUZfgoxMAJ2Dxj5p8SdUecfiI2uOkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwNDAwMTAyN1oX DTI2MDMwNDIzNTk1OVowejFJMEcGA1UEBRNAZTkyMjQ1ZWNlMjJjMzk0Y2QzZDE3 NjVmYzVmYWQzYzFlZTRlNTBjZTk1MTNjMGI0NWQ2MmU0NWM5ZGEyNzk1ZTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtAnqRXFeXVqBehx3UxVXy5uDy1PR FWqHghOLq9AMcn/97ETR0q3U2gGwRYDhg657rWCSwtYyfgBrzc0YPTT7D3A+R6nI rNe9CRP7l/eGpgc/EMpTwm6HRAx9mOldce7G0Vu8s5UpNKzMpHLCG1k7jEASffqU xav4hwZY0YATTfFMHa/8IuIC5Ou+rV562NJ3M4zsnYntEIDiqLQJ3rjI8urcGOAy MV9y5HT7KImWxxciV9xSDvNGD3sqT5kourAR/nNFtQ0cYktsPuBI1/ldFiZW6W8Q vwadkUunWNlQx6MnykuOwD6VtFCnmNyyypBDCbsfhq1qC/LoUFB1SJhyiwIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFPXfvpuSQ2s49Pce9hxqDPw0AsKfMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2I3YzA2OTZkLWJhMGMtNDdkZS05OTE2LTQyZWUwMDdiOTIwMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAK90wDQYJKoZIhvcNAQELBQADggEBALuj1xActWN9bjBV/fS0xH0H YFOwbfCpwasUt699i2Dx9T5fd6L/qw33ez+/KTVcB9NFyUq1bXZ5vtFGr/ZeA0iI /hGF+R0QqEK7pOX9yVN4Af9YfcVLZJrbiLU1YSAeThls0tapFhXlTJmf36UKt7LL +jhRRHg1BUSnceiStKahEd5AEgQPqY5p4ZUVaOTPBCZgaOHzILLNMY55GueMXYvy jZPbvkmzivCOtNAjSKCdZNnXjwseSNhnGMuoV2zATIQql8YUBA234WG49weB/cca OcViqbX2kVePJ0JqsfiUlpR1WExUdiBx9Aunl1zfnO5vTRyTCXLWi/w1o3LR1lI= -----END CERTIFICATE-----Generated at Sat Dec 6 21:37:01 2025 by rpki-client