This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/42932dd4-2720-47b3-a472-fc2c8a50a46c.roa File: 42932dd4-2720-47b3-a472-fc2c8a50a46c.roa (raw, json) Hash identifier: nX53gsp63aFe1Zk0fvuz7gf9dNGw1Q0a6vNdlF04HMM= Subject key identifier: 4D:78:31:AF:74:2D:01:05:C5:24:EB:CB:96:68:ED:7A:7C:6B:13:1C Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 27A225D0726DD627F58C560AC15FD1E8854561A8 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/42932dd4-2720-47b3-a472-fc2c8a50a46c.roa Signing time: Sat 06 Dec 2025 00:00:05 +0000 ROA not before: Sat 06 Dec 2025 00:00:05 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.130.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:a2:25:d0:72:6d:d6:27:f5:8c:56:0a:c1:5f:d1:e8:85:45:61:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Dec 6 00:00:05 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=a9fa7472d287cd0d06b50285a429bcc382ce5e9a4f19ba548c00c19c0c11fb1c, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:24:96:71:70:71:08:9c:64:42:99:3a:db:88: c1:88:54:9c:82:92:55:ce:c4:df:07:4e:9d:d1:41: cf:fa:54:80:3b:05:05:cd:85:51:b9:15:87:03:1e: 18:74:3e:01:d3:ac:83:3a:19:7e:f1:1a:db:a8:37: 72:ec:21:73:9b:5d:f3:5d:07:ca:17:d8:59:b9:b2: 53:f4:02:a7:ed:c4:1d:9a:a8:e6:58:c5:05:45:b8: 96:5b:26:82:2e:57:9e:ce:59:61:0b:25:1e:12:4e: 56:ef:e2:62:78:71:7b:1a:f2:95:df:54:bd:b9:96: 96:01:77:75:86:db:a5:a8:f9:3d:70:38:a7:2a:8e: 26:5d:61:cc:c7:fb:ec:5f:07:b7:ce:f0:57:a8:f0: 38:d7:ee:14:7b:90:76:9d:fd:1b:6e:02:c7:2e:ab: d9:55:e6:57:a1:4c:0b:17:50:c9:85:7f:05:9e:3d: 42:43:29:51:78:30:4b:ae:bd:fb:79:3d:0b:bf:ce: 01:5a:6b:fe:82:6b:1c:5a:6e:45:8e:d0:4d:5e:28: f9:3c:c2:0a:a4:70:ad:38:97:ff:b9:6c:cb:71:be: 02:56:c1:28:ea:66:3a:2d:22:cd:05:ad:17:a8:49: 62:15:40:a4:ce:38:59:38:3e:be:90:a0:19:cc:77: 70:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:78:31:AF:74:2D:01:05:C5:24:EB:CB:96:68:ED:7A:7C:6B:13:1C X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/42932dd4-2720-47b3-a472-fc2c8a50a46c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.130.0/23 Signature Algorithm: sha256WithRSAEncryption c6:f2:19:d4:31:b1:da:a9:78:00:25:ab:8c:a1:20:01:e9:b4: 0c:31:d2:6d:66:8e:df:68:db:8a:d5:eb:cc:12:5e:2a:23:20: 7f:84:ee:37:28:8d:8e:60:54:1d:b1:f7:14:64:2f:5b:36:9e: 90:db:c7:e7:15:83:a2:10:8e:4b:0b:3f:93:c7:36:33:3e:95: d6:3c:ac:a0:f6:b8:b0:0f:83:7e:d1:a6:37:97:91:2b:e0:8a: d4:e7:49:65:7a:23:29:11:b3:6b:a5:2f:c6:3e:c8:f3:df:36: 52:a7:ca:23:66:27:2d:21:d6:95:64:3f:00:3a:52:84:f2:a4: 1f:aa:1a:07:65:55:82:6d:b5:bd:b6:34:79:49:f5:b4:7d:a6: 7d:c3:d9:d0:e2:11:0c:96:4b:ab:7d:eb:56:26:f0:72:35:23: 7e:23:9a:11:fe:4b:c5:e5:2c:46:79:8e:9d:80:14:55:dc:2d: b1:72:e4:4c:68:1c:2e:1b:c1:ee:94:ac:52:84:b6:aa:89:95: 13:f1:b8:36:b0:9e:3f:0d:f4:c9:92:c1:57:a7:55:68:8f:5f: be:d1:dc:77:84:36:fa:57:6a:17:ef:7c:18:f1:fe:c1:e3:bf: 90:20:f7:db:b5:b2:91:d9:50:f0:9a:cd:f6:78:a7:df:2e:7e: 32:61:32:1d -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUJ6Il0HJt1if1jFYKwV/R6IVFYagwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTIwNjAwMDAwNVoX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNAYTlmYTc0NzJkMjg3Y2QwZDA2YjUw Mjg1YTQyOWJjYzM4MmNlNWU5YTRmMTliYTU0OGMwMGMxOWMwYzExZmIxYzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2CSWcXBxCJxkQpk624jBiFScgpJV zsTfB06d0UHP+lSAOwUFzYVRuRWHAx4YdD4B06yDOhl+8RrbqDdy7CFzm13zXQfK F9hZubJT9AKn7cQdmqjmWMUFRbiWWyaCLleezllhCyUeEk5W7+JieHF7GvKV31S9 uZaWAXd1htulqPk9cDinKo4mXWHMx/vsXwe3zvBXqPA41+4Ue5B2nf0bbgLHLqvZ VeZXoUwLF1DJhX8Fnj1CQylReDBLrr37eT0Lv84BWmv+gmscWm5FjtBNXij5PMIK pHCtOJf/uWzLcb4CVsEo6mY6LSLNBa0XqEliFUCkzjhZOD6+kKAZzHdwRQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFE14Ma90LQEFxSTry5Zo7Xp8axMcMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzQyOTMyZGQ0LTI3MjAtNDdiMy1hNDcyLWZjMmM4YTUwYTQ2Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrymCMA0GCSqGSIb3DQEBCwUAA4IBAQDG8hnUMbHaqXgAJauMoSAB 6bQMMdJtZo7faNuK1evMEl4qIyB/hO43KI2OYFQdsfcUZC9bNp6Q28fnFYOiEI5L Cz+TxzYzPpXWPKyg9riwD4N+0aY3l5Er4IrU50lleiMpEbNrpS/GPsjz3zZSp8oj ZictIdaVZD8AOlKE8qQfqhoHZVWCbbW9tjR5SfW0faZ9w9nQ4hEMlkurfetWJvBy NSN+I5oR/kvF5SxGeY6dgBRV3C2xcuRMaBwuG8HulKxShLaqiZUT8bg2sJ4/DfTJ ksFXp1Voj1++0dx3hDb6V2oX73wY8f7B47+QIPfbtbKR2VDwms32eKffLn4yYTId -----END CERTIFICATE-----Generated at Sat Dec 6 18:13:24 2025 by rpki-client