This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa File: 3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa (raw, json) Hash identifier: 55JqWeNnPUgIMiCbIulJEhJREuoglf7zd0Hdhdnk7JI= Subject key identifier: 1A:9F:64:82:23:81:76:AB:B6:1D:4E:B3:07:6C:0C:19:29:56:69:FD Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 701A2373006EA1EBC518857B32EBF7DCE46BF6E7 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa Signing time: Sat 06 Dec 2025 00:00:07 +0000 ROA not before: Sat 06 Dec 2025 00:00:07 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.136.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:1a:23:73:00:6e:a1:eb:c5:18:85:7b:32:eb:f7:dc:e4:6b:f6:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Dec 6 00:00:07 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=459b4ccebebdb6cb7cc5c24ba9651b8313e7945de94a18385ce435f4312b20b8, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c1:c7:b6:7f:1c:97:41:c1:28:fe:90:c3:3d: bb:2c:d0:96:4b:54:48:79:d9:a2:d5:8c:57:09:d7: fa:00:de:fc:f3:b6:fd:c4:a9:23:27:4f:5e:c9:e0: e7:be:bc:5b:54:73:9a:ae:e5:dc:55:3b:94:23:c2: 45:89:d1:29:2e:22:2b:d4:dd:a5:53:7b:2d:ff:b1: f2:63:26:39:7d:39:db:6e:d6:ba:36:70:8c:ca:8f: 45:0a:95:27:16:16:a3:09:a2:bd:8e:c2:8a:41:12: 4a:ac:91:eb:b1:80:cb:87:6e:ac:a0:5c:c2:e0:ed: 28:98:d8:44:02:1f:92:99:93:44:d0:e1:80:ef:4f: 18:a2:41:4a:e7:48:f5:ee:1d:0e:07:68:e7:4d:1e: f7:68:8b:7d:f8:18:eb:75:36:e2:51:ec:26:66:64: 8a:50:b5:bc:77:6f:28:bf:1c:3e:19:bf:4f:ae:13: ae:19:1b:11:07:0f:29:7d:d9:39:5c:9b:af:82:08: 92:d7:52:b7:bd:01:bc:b2:3e:be:b4:f3:66:1c:75: 70:77:6e:d6:41:da:12:9b:0e:26:01:27:75:44:67: 00:b3:9f:46:5c:d5:e0:15:5f:ee:2e:18:13:77:85: cc:0e:9b:00:e7:d7:d7:fb:fc:a9:5d:3e:31:29:79: 09:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:9F:64:82:23:81:76:AB:B6:1D:4E:B3:07:6C:0C:19:29:56:69:FD X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/3b8557c0-d5ee-4f9d-80ac-e41a37ffff27.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.136.0/21 Signature Algorithm: sha256WithRSAEncryption e9:6a:5d:e5:81:c2:fd:ab:cc:b7:1a:22:cb:97:77:55:51:27: ba:41:a0:f8:dd:97:bc:87:99:4a:c2:c8:15:f7:6b:bb:71:e7: 79:09:80:af:fd:69:14:d3:3c:b0:fb:e0:21:67:76:51:1a:d1: 60:b1:79:30:f5:34:bf:b3:49:38:0c:b2:6c:78:f4:ae:9a:52: 97:72:15:41:20:63:8e:02:8b:c2:53:f2:9e:62:98:2d:63:b1: 3a:5a:c6:a2:cf:45:88:74:e2:47:df:9e:d0:b5:05:13:ee:3c: eb:0e:1a:7b:38:33:a6:a6:36:29:05:24:22:d4:1f:99:a8:bb: 2b:96:2d:63:45:ae:48:5e:8b:20:1b:c0:67:e2:e4:be:31:2b: 0b:96:2e:0c:06:0c:00:e4:74:76:f9:ce:1c:60:f6:9c:e8:fc: 51:2a:a3:48:1b:3f:f2:ed:87:97:f5:a2:eb:65:21:59:dc:d8: d3:56:0d:ad:2a:c0:99:8b:a5:1a:1a:46:13:10:4c:61:fa:89: 51:2f:ed:0c:b1:bd:6b:63:a3:10:ab:87:6a:2d:50:ab:70:88: da:a3:a4:f6:dd:ff:ac:e8:f8:c0:8e:d6:be:26:40:e0:3b:96: 0d:48:ad:f2:54:07:cb:0f:d7:6d:d8:20:03:81:1a:6b:4c:df: 10:a1:f8:4d -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUcBojcwBuoevFGIV7Muv33ORr9ucwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTIwNjAwMDAwN1oX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNANDU5YjRjY2ViZWJkYjZjYjdjYzVj MjRiYTk2NTFiODMxM2U3OTQ1ZGU5NGExODM4NWNlNDM1ZjQzMTJiMjBiODEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz8HHtn8cl0HBKP6Qwz27LNCWS1RI edmi1YxXCdf6AN7887b9xKkjJ09eyeDnvrxbVHOaruXcVTuUI8JFidEpLiIr1N2l U3st/7HyYyY5fTnbbta6NnCMyo9FCpUnFhajCaK9jsKKQRJKrJHrsYDLh26soFzC 4O0omNhEAh+SmZNE0OGA708YokFK50j17h0OB2jnTR73aIt9+BjrdTbiUewmZmSK ULW8d28ovxw+Gb9PrhOuGRsRBw8pfdk5XJuvggiS11K3vQG8sj6+tPNmHHVwd27W QdoSmw4mASd1RGcAs59GXNXgFV/uLhgTd4XMDpsA59fX+/ypXT4xKXkJfQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFBqfZIIjgXarth1OswdsDBkpVmn9MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzNiODU1N2MwLWQ1ZWUtNGY5ZC04MGFjLWU0MWEzN2ZmZmYyNy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDrymIMA0GCSqGSIb3DQEBCwUAA4IBAQDpal3lgcL9q8y3GiLLl3dV USe6QaD43Ze8h5lKwsgV92u7ced5CYCv/WkU0zyw++AhZ3ZRGtFgsXkw9TS/s0k4 DLJsePSumlKXchVBIGOOAovCU/KeYpgtY7E6Wsaiz0WIdOJH357QtQUT7jzrDhp7 ODOmpjYpBSQi1B+ZqLsrli1jRa5IXosgG8Bn4uS+MSsLli4MBgwA5HR2+c4cYPac 6PxRKqNIGz/y7YeX9aLrZSFZ3NjTVg2tKsCZi6UaGkYTEExh+olRL+0Msb1rY6MQ q4dqLVCrcIjao6T23f+s6PjAjta+JkDgO5YNSK3yVAfLD9dt2CADgRprTN8QofhN -----END CERTIFICATE-----Generated at Sat Dec 6 15:46:26 2025 by rpki-client