This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/1dffeac8-b779-49ef-ba27-58bc19891e60.roa File: 1dffeac8-b779-49ef-ba27-58bc19891e60.roa (raw, json) Hash identifier: W5s2+KsThmK2t/kTEoDyc0qk5t8nWR8Vcr0OHIME7gY= Subject key identifier: 01:C1:51:AE:AB:BA:76:A1:11:D7:40:AC:AE:01:19:F7:8F:79:E8:5D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 60F8414BD059C9A2EDABE9F691332535512C2474 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/1dffeac8-b779-49ef-ba27-58bc19891e60.roa Signing time: Sat 06 Dec 2025 00:00:07 +0000 ROA not before: Sat 06 Dec 2025 00:00:07 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.144.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:f8:41:4b:d0:59:c9:a2:ed:ab:e9:f6:91:33:25:35:51:2c:24:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Dec 6 00:00:07 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=bf17e93fcc0892d3e4f1332f82a249d412dc614be17d95f07445d92c98450cdc, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:25:47:c8:41:60:39:df:cc:bc:b0:b1:94:fb: 3e:fe:f7:6d:50:dc:0b:a0:79:1b:b1:55:31:29:32: f3:a9:fb:82:48:c3:69:1b:b2:36:b9:f8:5c:32:9e: 51:89:ae:4c:50:05:c5:bf:60:07:e1:cd:7b:ec:02: 00:73:84:1b:69:fa:32:78:95:a1:fc:44:03:05:2e: 2e:17:09:1e:33:41:a6:b4:09:7e:56:67:b2:d5:77: f5:3a:8a:96:24:b1:ff:79:a7:89:0f:e9:d3:31:fe: 54:43:64:41:3d:fd:a0:e6:c5:c7:16:7e:74:fb:25: 81:71:f6:04:4a:a2:2b:69:e7:b7:9c:df:56:ca:91: 85:6e:aa:39:f0:71:aa:04:6e:8d:ae:30:37:83:53: e6:46:54:0e:6c:ba:d4:e5:6a:90:49:97:48:ce:43: 65:fd:a4:cd:bb:27:13:5f:11:1b:1c:95:e2:f6:1d: 0a:b6:fa:e0:3e:fa:5e:e0:86:d1:6f:aa:89:7a:bb: 2e:4c:3d:8a:5c:86:94:b4:e4:53:02:cc:ef:30:5e: 1f:94:b6:fd:fd:84:c9:aa:3b:77:b5:18:38:38:68: 72:58:0b:1a:82:bb:94:4a:17:f0:0f:45:a2:63:01: 7f:66:23:d2:ea:14:b3:af:47:7a:ce:0a:57:98:ed: 9e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:C1:51:AE:AB:BA:76:A1:11:D7:40:AC:AE:01:19:F7:8F:79:E8:5D X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/1dffeac8-b779-49ef-ba27-58bc19891e60.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.144.0/22 Signature Algorithm: sha256WithRSAEncryption ca:c5:70:f3:88:1e:dc:6a:0f:0d:f4:d8:25:54:62:61:47:b9: fc:17:90:ce:8d:ea:65:7b:1c:09:e2:54:bc:86:00:0d:f9:73: 00:85:63:ea:24:b9:69:00:58:64:48:28:e8:c3:16:1d:a1:f0: e7:0f:1c:1f:e7:ee:7e:a0:f2:9c:04:68:5d:b2:54:15:e7:64: 08:62:30:01:e0:13:0b:15:92:cf:dd:e9:33:78:09:4b:a9:7d: 30:f2:d9:bf:41:aa:92:53:7b:34:84:cc:d0:8f:43:05:c9:b4: be:32:0c:d7:95:4e:13:ac:72:d3:d8:5c:63:32:b5:ac:54:8d: 05:13:41:bf:97:23:27:e5:6c:77:60:e7:e1:a5:80:2a:7f:fe: 87:85:53:7f:30:e1:90:cb:83:3b:f3:99:0c:0f:e3:05:28:e0: d8:71:b4:3c:8c:65:8b:69:ad:cd:a3:9d:1f:d4:d5:d3:7b:5e: c1:da:fc:c3:29:0a:87:d4:bb:96:ff:f9:7d:66:05:b4:ff:4d: de:84:b5:7c:26:4a:6f:db:43:0c:ea:d1:cb:ce:42:5c:30:38: c8:c6:c7:71:5d:68:23:c2:35:e8:ab:4c:b7:58:21:14:74:52: 5d:1c:2a:d6:63:a2:98:ef:34:52:38:a3:47:98:9c:09:11:3a: 7f:5a:78:e6 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUYPhBS9BZyaLtq+n2kTMlNVEsJHQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTIwNjAwMDAwN1oX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNAYmYxN2U5M2ZjYzA4OTJkM2U0ZjEz MzJmODJhMjQ5ZDQxMmRjNjE0YmUxN2Q5NWYwNzQ0NWQ5MmM5ODQ1MGNkYzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1yVHyEFgOd/MvLCxlPs+/vdtUNwL oHkbsVUxKTLzqfuCSMNpG7I2ufhcMp5Ria5MUAXFv2AH4c177AIAc4QbafoyeJWh /EQDBS4uFwkeM0GmtAl+Vmey1Xf1OoqWJLH/eaeJD+nTMf5UQ2RBPf2g5sXHFn50 +yWBcfYESqIraee3nN9WypGFbqo58HGqBG6NrjA3g1PmRlQObLrU5WqQSZdIzkNl /aTNuycTXxEbHJXi9h0KtvrgPvpe4IbRb6qJersuTD2KXIaUtORTAszvMF4flLb9 /YTJqjt3tRg4OGhyWAsagruUShfwD0WiYwF/ZiPS6hSzr0d6zgpXmO2e/wIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFAHBUa6runahEddArK4BGfePeehdMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzFkZmZlYWM4LWI3NzktNDllZi1iYTI3LTU4YmMxOTg5MWU2MC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrymQMA0GCSqGSIb3DQEBCwUAA4IBAQDKxXDziB7cag8N9NglVGJh R7n8F5DOjeplexwJ4lS8hgAN+XMAhWPqJLlpAFhkSCjowxYdofDnDxwf5+5+oPKc BGhdslQV52QIYjAB4BMLFZLP3ekzeAlLqX0w8tm/QaqSU3s0hMzQj0MFybS+MgzX lU4TrHLT2FxjMrWsVI0FE0G/lyMn5Wx3YOfhpYAqf/6HhVN/MOGQy4M785kMD+MF KODYcbQ8jGWLaa3No50f1NXTe17B2vzDKQqH1LuW//l9ZgW0/03ehLV8Jkpv20MM 6tHLzkJcMDjIxsdxXWgjwjXoq0y3WCEUdFJdHCrWY6KY7zRSOKNHmJwJETp/Wnjm -----END CERTIFICATE-----Generated at Sat Dec 6 17:22:15 2025 by rpki-client