This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7b26d410-17d7-4310-bb58-41c465f8eef2.roa File: 7b26d410-17d7-4310-bb58-41c465f8eef2.roa (raw, json) Hash identifier: n1kg4tDD9KCpPUv6L5rqRkioae0zUB8A2YrnCFiHVJ0= Subject key identifier: 5F:3F:2A:4B:21:A1:AC:73:AD:00:82:DC:9F:2F:D0:86:82:32:F4:5D Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 060148BC1A5E9832877370C65DD50BFBA580B8BF Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7b26d410-17d7-4310-bb58-41c465f8eef2.roa Signing time: Sat 06 Dec 2025 00:00:11 +0000 ROA not before: Sat 06 Dec 2025 00:00:11 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.148.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:01:48:bc:1a:5e:98:32:87:73:70:c6:5d:d5:0b:fb:a5:80:b8:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Dec 6 00:00:11 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=4a5b698678d57d90f7eda806101304aa7cc5941f33acc19b57666febbd578f74, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a5:f5:fa:63:4a:f6:82:98:69:3a:ce:ec:bb: b1:25:7c:db:a0:e2:a8:07:4a:05:1f:74:b7:41:6d: 0d:52:f1:a9:61:40:c3:3d:d8:78:ea:83:3c:f2:e7: 74:f5:0f:bf:96:97:c4:8f:d8:80:2f:c8:bc:c2:db: c4:5e:b4:a2:76:08:6e:c0:32:76:a5:54:c0:c9:c3: c5:2e:7f:6e:9b:f1:3f:27:b6:0e:29:d6:89:dc:a2: 42:c2:83:a7:1f:cd:89:86:69:0e:f6:df:fa:13:7d: 69:c3:4f:c5:bb:6a:32:6b:d2:23:f5:e1:f0:02:c9: 12:15:e8:5a:01:4c:54:07:7d:0b:4e:37:2c:a7:7f: 61:1f:de:3b:b7:cc:c6:e9:eb:74:94:0a:56:9a:0a: 63:f3:5d:89:7a:fd:30:40:63:c6:32:83:0f:e1:44: af:d0:6c:45:24:98:a8:81:b0:a1:7c:45:83:bd:69: 61:bb:66:d9:03:f4:e4:69:f2:a3:21:29:c6:e2:fc: c0:17:00:ab:07:c4:5e:26:0a:c6:2f:b9:eb:3e:bd: ec:b3:98:b5:15:21:43:53:cd:01:41:cb:d0:95:ca: 31:f2:14:bd:6e:ef:ad:25:c6:be:be:84:3f:8c:ba: 30:2e:9e:c8:66:d7:a8:0c:37:07:58:51:6a:94:47: fd:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:3F:2A:4B:21:A1:AC:73:AD:00:82:DC:9F:2F:D0:86:82:32:F4:5D X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/7b26d410-17d7-4310-bb58-41c465f8eef2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.148.0/23 Signature Algorithm: sha256WithRSAEncryption 91:75:a6:dd:40:f3:cf:c3:05:fd:58:61:c4:d5:05:f4:f6:36: 41:d9:c0:37:cf:83:21:06:6c:2d:95:83:3c:76:50:70:32:dd: c7:6f:b1:d3:e6:b4:94:01:77:6a:4c:6a:72:ed:5d:62:9f:6a: 5b:05:54:be:d9:60:56:7d:f0:ad:6f:ff:5a:26:d5:8a:9e:7e: f0:02:66:fa:e5:94:54:23:59:2a:58:8b:ba:62:74:e6:be:5f: 2d:a3:3f:df:4c:57:3c:b3:4f:0c:6e:f6:86:66:d3:fb:96:e5: e4:81:33:aa:15:1b:b1:80:18:60:1a:0e:e3:0e:d6:80:1f:23: 0f:96:5c:f1:c2:d8:68:fd:d7:2f:e3:a3:56:1b:cc:7d:82:3d: bd:bd:60:8e:6d:20:4b:94:f7:9c:e9:1e:ea:fc:be:42:4b:c1: 14:e3:6d:31:fb:d2:26:70:b4:ec:fd:c5:c1:b5:ee:e0:b4:df: 87:c2:8e:be:bd:1e:b4:84:c1:20:3e:19:4a:ff:88:1f:19:97: 2f:9d:53:2b:88:a8:50:34:1a:53:0e:21:20:7c:fa:a4:36:20: 8f:b6:b9:99:06:10:4c:76:43:b4:16:d7:ad:eb:ab:4d:d2:d5: 60:65:de:18:77:4f:4c:fa:ac:db:06:ee:06:b3:00:a3:56:e7: b5:e1:c4:f4 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUBgFIvBpemDKHc3DGXdUL+6WAuL8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTIwNjAwMDAxMVoX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNANGE1YjY5ODY3OGQ1N2Q5MGY3ZWRh ODA2MTAxMzA0YWE3Y2M1OTQxZjMzYWNjMTliNTc2NjZmZWJiZDU3OGY3NDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1KX1+mNK9oKYaTrO7LuxJXzboOKo B0oFH3S3QW0NUvGpYUDDPdh46oM88ud09Q+/lpfEj9iAL8i8wtvEXrSidghuwDJ2 pVTAycPFLn9um/E/J7YOKdaJ3KJCwoOnH82JhmkO9t/6E31pw0/Fu2oya9Ij9eHw AskSFehaAUxUB30LTjcsp39hH947t8zG6et0lApWmgpj812Jev0wQGPGMoMP4USv 0GxFJJiogbChfEWDvWlhu2bZA/TkafKjISnG4vzAFwCrB8ReJgrGL7nrPr3ss5i1 FSFDU80BQcvQlcox8hS9bu+tJca+voQ/jLowLp7IZteoDDcHWFFqlEf92wIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFF8/KkshoaxzrQCC3J8v0IaCMvRdMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzdiMjZkNDEwLTE3ZDctNDMxMC1iYjU4LTQxYzQ2NWY4ZWVmMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrymUMA0GCSqGSIb3DQEBCwUAA4IBAQCRdabdQPPPwwX9WGHE1QX0 9jZB2cA3z4MhBmwtlYM8dlBwMt3Hb7HT5rSUAXdqTGpy7V1in2pbBVS+2WBWffCt b/9aJtWKnn7wAmb65ZRUI1kqWIu6YnTmvl8toz/fTFc8s08MbvaGZtP7luXkgTOq FRuxgBhgGg7jDtaAHyMPllzxwtho/dcv46NWG8x9gj29vWCObSBLlPec6R7q/L5C S8EU420x+9ImcLTs/cXBte7gtN+Hwo6+vR60hMEgPhlK/4gfGZcvnVMriKhQNBpT DiEgfPqkNiCPtrmZBhBMdkO0Ftet66tN0tVgZd4Yd09M+qzbBu4GswCjVue14cT0 -----END CERTIFICATE-----Generated at Sat Dec 6 19:49:39 2025 by rpki-client