This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/49119734-9dbc-4bd4-98be-57e4ce078928.roa File: 49119734-9dbc-4bd4-98be-57e4ce078928.roa (raw, json) Hash identifier: Tu8KJsB24gvGTIUjn+HPIkPOVBYVMazosJy1Qzbh6a8= Subject key identifier: 05:66:A5:02:55:DD:ED:28:28:86:12:A3:14:63:C0:1A:B0:B4:0B:35 Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Certificate serial: 783C217B30C44BE4351C544D2B6E4499A28C19AE Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/49119734-9dbc-4bd4-98be-57e4ce078928.roa Signing time: Tue 18 Nov 2025 00:00:31 +0000 ROA not before: Tue 18 Nov 2025 00:00:31 +0000 ROA not after: Mon 16 Feb 2026 23:59:59 +0000 asID: 7224 IP address blocks: 43.224.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:04:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:3c:21:7b:30:c4:4b:e4:35:1c:54:4d:2b:6e:44:99:a2:8c:19:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918806F0000, serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08 Validity Not Before: Nov 18 00:00:31 2025 GMT Not After : Feb 16 23:59:59 2026 GMT Subject: serialNumber=9d174759f0644d8345d4c8fe668e8d5b3e3b387ae377e0f24cc3ed2af45cb40b, CN=bb9a9116-f615-462e-a680-5266b327e0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:23:48:50:4c:ee:d4:25:95:7a:2a:13:8d:4a: eb:f9:8e:a0:7b:b5:18:99:58:97:4e:b1:39:17:dc: 27:a5:04:f0:1a:75:99:51:12:43:e1:1f:eb:aa:59: bb:1e:51:16:b6:bc:24:6d:ce:e6:b7:fc:9f:b0:a7: 01:6b:0b:82:e9:b7:ee:2e:a1:62:05:5f:41:6b:8b: b8:79:de:60:52:53:20:12:97:ce:97:63:67:14:7a: 2b:ab:8e:e0:45:6f:4c:2c:7a:cd:eb:68:e2:89:bc: 97:f8:19:2f:41:07:c2:43:f5:51:5b:5a:d7:89:12: 0e:fa:2e:f5:41:4e:06:62:9f:91:53:c4:e6:5a:ab: 57:53:96:52:2f:8e:15:ca:98:e3:ca:e8:c2:3b:b0: a5:df:22:4e:48:c8:86:4c:64:1e:3a:80:de:7c:1d: 72:a1:da:dc:3f:b6:f4:c7:b8:ce:37:24:87:1c:11: 4d:31:f0:b7:5e:72:5e:77:5d:61:8c:a6:98:39:f4: 44:42:56:b6:cf:a3:ea:64:c3:43:2a:5a:37:a6:de: da:46:0c:88:82:52:60:0e:e8:90:df:fe:e7:82:18: aa:62:b1:ae:72:4b:b8:d2:09:8f:c3:0f:f4:e7:57: cb:95:52:19:ec:53:8c:9d:c4:5b:10:84:0e:41:5d: d0:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:66:A5:02:55:DD:ED:28:28:86:12:A3:14:63:C0:1A:B0:B4:0B:35 X509v3 Authority Key Identifier: keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/49119734-9dbc-4bd4-98be-57e4ce078928.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.224.76.0/22 Signature Algorithm: sha256WithRSAEncryption 2f:23:c0:cc:75:38:f8:6b:0f:c9:6c:6f:c4:b0:11:84:73:83: 67:80:bd:87:da:01:12:d7:9d:42:9d:18:b6:20:86:a6:f9:7a: 8d:45:8a:d5:c6:4a:49:27:a1:d4:5a:c2:74:4a:dd:3e:70:a9: b6:e1:68:03:39:1d:51:92:63:d3:d6:f4:43:7b:7b:f4:e4:47: 7f:f9:93:f3:9a:2c:9d:8e:35:a2:f6:fc:00:fc:a2:64:19:e8: 36:43:ce:e1:2b:7a:af:08:26:a3:fb:3c:b9:d0:e7:22:0f:22: 02:2a:58:8c:71:fc:ec:d0:54:fa:f1:9d:1e:ca:c1:3a:eb:22: 72:12:2e:4a:04:7e:14:84:e3:c4:d0:ea:c0:0f:ea:c3:53:99: 39:00:3e:08:b5:20:30:77:fc:ce:11:37:2e:3a:42:29:4c:fd: 6f:65:7c:a3:04:07:ff:0d:3e:c6:cb:a1:30:50:a2:70:94:01: 34:d2:81:d7:27:4a:cc:30:d2:a4:b4:b1:5b:4d:79:fe:4e:08: 24:51:b6:b3:6b:98:b5:7f:12:34:e8:01:1c:d7:8b:16:c9:04: 6b:27:f3:e4:11:a0:d1:b1:69:1b:c7:5e:b3:76:4d:10:0c:df: 8f:79:fa:95:1d:bf:04:79:11:cb:ca:51:72:21:ab:f0:7e:f5: f0:82:cf:85 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUeDwhezDES+Q1HFRNK25EmaKMGa4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODgwNkYwMDAwMTEwLwYDVQQFEyhFN0NBREE1RjA4 ODFENzdCRUE0OEIwNzY4QTM3NjZCNTAwNjVBRjA4MB4XDTI1MTExODAwMDAzMVoX DTI2MDIxNjIzNTk1OVowejFJMEcGA1UEBRNAOWQxNzQ3NTlmMDY0NGQ4MzQ1ZDRj OGZlNjY4ZThkNWIzZTNiMzg3YWUzNzdlMGYyNGNjM2VkMmFmNDVjYjQwYjEtMCsG A1UEAxMkYmI5YTkxMTYtZjYxNS00NjJlLWE2ODAtNTI2NmIzMjdlMGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAriNIUEzu1CWVeioTjUrr+Y6ge7UY mViXTrE5F9wnpQTwGnWZURJD4R/rqlm7HlEWtrwkbc7mt/yfsKcBawuC6bfuLqFi BV9Ba4u4ed5gUlMgEpfOl2NnFHorq47gRW9MLHrN62jiibyX+BkvQQfCQ/VRW1rX iRIO+i71QU4GYp+RU8TmWqtXU5ZSL44VypjjyujCO7Cl3yJOSMiGTGQeOoDefB1y odrcP7b0x7jONySHHBFNMfC3XnJed11hjKaYOfREQla2z6PqZMNDKlo3pt7aRgyI glJgDuiQ3/7nghiqYrGucku40gmPww/051fLlVIZ7FOMncRbEIQOQV3QDQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFAVmpQJV3e0oKIYSoxRjwBqwtAs1MB8GA1UdIwQY MBaAFOfK2l8Igdd76kiwdoo3ZrUAZa8IMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi81OHJhWHdp QjEzdnFTTEIyaWpkbXRRQmxyd2cuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvNzA4YWFmYWYtMDBiNC00ODViLTg1NGMtMGIzMmNhMzBmNTdi LzQ5MTE5NzM0LTlkYmMtNGJkNC05OGJlLTU3ZTRjZTA3ODkyOC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS83MDhhYWZhZi0wMGI0LTQ4NWItODU0Yy0wYjMy Y2EzMGY1N2IvMTJlNTkwMDEtMzVhYy00YWJmLTg1OGYtMzdiOTU1YTI0YjNmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK+BMMA0GCSqGSIb3DQEBCwUAA4IBAQAvI8DMdTj4aw/JbG/EsBGE c4NngL2H2gES151CnRi2IIam+XqNRYrVxkpJJ6HUWsJ0St0+cKm24WgDOR1RkmPT 1vRDe3v05Ed/+ZPzmiydjjWi9vwA/KJkGeg2Q87hK3qvCCaj+zy50OciDyICKliM cfzs0FT68Z0eysE66yJyEi5KBH4UhOPE0OrAD+rDU5k5AD4ItSAwd/zOETcuOkIp TP1vZXyjBAf/DT7Gy6EwUKJwlAE00oHXJ0rMMNKktLFbTXn+TggkUbaza5i1fxI0 6AEc14sWyQRrJ/PkEaDRsWkbx16zdk0QDN+PefqVHb8EeRHLylFyIavwfvXwgs+F -----END CERTIFICATE-----Generated at Sat Dec 6 17:55:56 2025 by rpki-client