This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c0e0735d-a91e-478d-82d2-a3f04ee435d2.roa File: c0e0735d-a91e-478d-82d2-a3f04ee435d2.roa (raw, json) Hash identifier: dngnzQwTgokIUJHlfsUHEMr7JSeZwnI1DbcF5rSvErA= Subject key identifier: 8B:FC:93:05:7D:99:9A:04:62:BB:29:D0:4C:F3:FC:02:D7:9A:F4:AA Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 7D4275CC71A9EBE88312A9DF3F7B6C524EFE8D12 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c0e0735d-a91e-478d-82d2-a3f04ee435d2.roa Signing time: Sat 06 Dec 2025 00:00:10 +0000 ROA not before: Sat 06 Dec 2025 00:00:10 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 43.218.158.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:42:75:cc:71:a9:eb:e8:83:12:a9:df:3f:7b:6c:52:4e:fe:8d:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 6 00:00:10 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=d3c428cda1ea5ae7b84042792364c8e9ecc1e78a217abd3c59ca545cdd520b88, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:0f:fe:ce:80:b2:bf:d7:dd:29:97:6e:8a:b6: 32:5d:84:7b:b9:a3:60:2d:30:b8:f0:92:01:fa:a4: 5c:e8:5f:36:5e:9b:23:a2:13:87:0e:b5:9c:ce:34: 5d:12:e3:b1:f2:f5:69:a7:ef:ac:bd:77:88:85:67: fd:ab:62:d9:44:9f:be:20:65:de:47:38:e4:8e:4d: 32:a1:5e:1a:8b:d8:23:23:c3:c1:67:3b:6a:48:f2: 89:2a:3d:62:cf:8b:b6:68:9c:07:2a:1e:0d:4f:08: 49:a2:86:06:83:29:25:30:e5:6c:d4:7b:ab:03:b6: a4:aa:c6:cb:37:aa:37:4d:72:33:64:22:fc:1e:7a: 36:24:43:63:e5:31:31:02:1c:b2:0b:23:a7:be:91: 30:21:dc:6e:c9:c2:c8:5a:58:35:3d:59:e9:b3:d8: 95:14:3b:72:96:69:5a:03:6c:93:e7:79:ee:e8:4f: c3:f3:09:a2:75:14:29:97:31:3b:99:56:fb:f4:66: a5:9a:e6:59:73:0f:b4:e3:a6:9b:ce:93:6f:fa:54: 91:c1:e1:94:2c:cf:2d:16:9e:96:45:3b:86:4c:2c: c9:af:03:54:e1:10:e2:37:fd:5f:7e:de:b1:1e:58: fa:45:51:a4:bc:58:d2:b3:55:79:4b:78:45:dd:80: 52:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:FC:93:05:7D:99:9A:04:62:BB:29:D0:4C:F3:FC:02:D7:9A:F4:AA X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c0e0735d-a91e-478d-82d2-a3f04ee435d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.218.158.0/23 Signature Algorithm: sha256WithRSAEncryption 81:37:c0:3e:b8:58:c3:d9:21:a6:fe:b7:73:62:ba:25:d9:12: 7f:82:ae:e1:0c:e0:81:40:a0:da:c4:c6:79:fb:fa:3b:42:e9: 2f:04:d3:82:4e:1b:0d:74:a0:38:43:c3:37:2d:05:6b:65:f3: f1:d7:0d:3e:96:6d:e8:a8:2d:0b:ba:0e:34:14:09:d4:01:06: dd:08:d5:40:8f:83:14:99:6d:94:b9:1d:05:9e:b7:4a:1a:e6: 11:0f:33:27:77:aa:ce:68:23:93:7b:bb:23:eb:96:ba:11:ee: b5:cd:fd:6b:7a:e1:b4:cc:94:7e:5b:61:c4:5f:4b:e0:1f:a2: 91:04:87:93:1d:fa:e6:20:34:de:5c:f9:13:d9:35:eb:86:41: ac:94:f5:63:fd:e4:fc:6f:aa:42:f0:de:22:fa:12:d5:9d:b4: 9b:61:12:54:25:43:f7:4c:36:f2:1d:30:d8:00:ed:08:71:44: 44:63:3d:9d:66:ee:79:e9:fc:28:3a:9b:e8:ab:a4:e4:38:37: 52:b1:46:fa:0b:5d:dd:8a:24:2d:9b:35:31:dc:78:2f:48:26: 0a:54:e2:ca:41:b2:27:d0:26:91:2d:7a:74:2a:07:eb:62:7f: d1:2e:bf:c2:d4:3f:02:ae:4d:3c:5b:c5:f4:d1:bf:64:6f:00: 20:dd:8b:8c -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUfUJ1zHGp6+iDEqnfP3tsUk7+jRIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwNjAwMDAxMFoX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNAZDNjNDI4Y2RhMWVhNWFlN2I4NDA0 Mjc5MjM2NGM4ZTllY2MxZTc4YTIxN2FiZDNjNTljYTU0NWNkZDUyMGI4ODEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApg/+zoCyv9fdKZduirYyXYR7uaNg LTC48JIB+qRc6F82XpsjohOHDrWczjRdEuOx8vVpp++svXeIhWf9q2LZRJ++IGXe Rzjkjk0yoV4ai9gjI8PBZztqSPKJKj1iz4u2aJwHKh4NTwhJooYGgyklMOVs1Hur A7akqsbLN6o3TXIzZCL8Hno2JENj5TExAhyyCyOnvpEwIdxuycLIWlg1PVnps9iV FDtylmlaA2yT53nu6E/D8wmidRQplzE7mVb79GalmuZZcw+046abzpNv+lSRweGU LM8tFp6WRTuGTCzJrwNU4RDiN/1fft6xHlj6RVGkvFjSs1V5S3hF3YBSpwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFIv8kwV9mZoEYrsp0Ezz/ALXmvSqMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2MwZTA3MzVkLWE5MWUtNDc4ZC04MmQyLWEzZjA0ZWU0MzVkMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBK9qeMA0GCSqGSIb3DQEBCwUAA4IBAQCBN8A+uFjD2SGm/rdzYrol 2RJ/gq7hDOCBQKDaxMZ5+/o7QukvBNOCThsNdKA4Q8M3LQVrZfPx1w0+lm3oqC0L ug40FAnUAQbdCNVAj4MUmW2UuR0FnrdKGuYRDzMnd6rOaCOTe7sj65a6Ee61zf1r euG0zJR+W2HEX0vgH6KRBIeTHfrmIDTeXPkT2TXrhkGslPVj/eT8b6pC8N4i+hLV nbSbYRJUJUP3TDbyHTDYAO0IcUREYz2dZu556fwoOpvoq6TkODdSsUb6C13diiQt mzUx3HgvSCYKVOLKQbIn0CaRLXp0KgfrYn/RLr/C1D8Crk08W8X00b9kbwAg3YuM -----END CERTIFICATE-----Generated at Sat Dec 6 13:38:03 2025 by rpki-client