This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/adf75e2e-9d2c-4718-a49d-ad44079b266b.roa File: adf75e2e-9d2c-4718-a49d-ad44079b266b.roa (raw, json) Hash identifier: N/cY7SofU7BQTjSpADixy6DLuAFs/nCWf8HWg3e5lnI= Subject key identifier: 7B:69:75:86:1D:B6:5C:FC:56:90:11:DB:EC:C8:F6:A4:DE:3E:24:B2 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 421FED8C489E4CDE9DCF497EB5540F28EEBFD46A Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/adf75e2e-9d2c-4718-a49d-ad44079b266b.roa Signing time: Sat 06 Dec 2025 00:00:09 +0000 ROA not before: Sat 06 Dec 2025 00:00:09 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:1f:ed:8c:48:9e:4c:de:9d:cf:49:7e:b5:54:0f:28:ee:bf:d4:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Dec 6 00:00:09 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=b38433251acd639a9b50bf6f762874dc5897520dfdc9f8c8e351fb53aeea9811, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:94:b8:28:ac:e5:20:8a:d2:dd:ca:1c:0b:3a: dd:0d:7a:03:9f:58:cc:cb:aa:0f:c9:a4:0c:18:bf: d6:db:37:b5:30:d6:b4:9d:b5:70:5e:8e:b0:71:e9: 6f:00:5a:34:86:e3:5c:52:0e:4c:d7:54:3b:27:f7: bf:08:de:5e:4e:ff:6a:89:95:74:f4:a6:1d:4f:e4: 83:37:77:68:03:a1:2a:40:92:a0:b5:66:57:3b:3f: dd:36:66:34:cf:5b:0c:0f:6f:94:1c:19:d3:b2:f1: fd:32:69:80:f3:bc:5f:8d:bd:7f:3e:56:81:8b:25: 8d:aa:4d:63:9b:23:e3:69:1f:a4:a0:de:f7:40:a6: dd:40:51:b0:ea:e0:16:ec:9e:b0:26:49:27:2e:b6: fd:58:d6:75:a8:b6:ad:36:b4:97:00:75:98:46:cb: f0:a1:3f:0e:6e:1e:9a:e0:1c:6c:e6:fd:65:2e:ec: 2e:dd:ef:a6:23:a7:41:9c:51:da:e8:a4:32:53:a8: fd:be:9a:b4:d7:84:fe:53:d0:10:7c:c9:ae:e0:ad: 50:cc:e5:83:7c:7d:6f:68:ca:bc:2d:66:f5:1e:6a: 91:a3:04:22:cc:6e:ee:77:19:88:34:77:06:5d:1a: a6:ab:f8:92:89:a9:0a:e5:1e:b9:05:fe:40:2b:20: f7:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:69:75:86:1D:B6:5C:FC:56:90:11:DB:EC:C8:F6:A4:DE:3E:24:B2 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/adf75e2e-9d2c-4718-a49d-ad44079b266b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.152.0/21 Signature Algorithm: sha256WithRSAEncryption 08:5c:89:6b:54:20:73:2b:ff:8d:a8:34:65:48:d0:14:c9:70: ae:a9:34:9b:e9:7c:ec:ad:84:37:a3:64:bc:21:91:65:b0:29: 65:07:96:4f:20:d3:4d:40:fd:8d:c8:db:0b:64:0c:7c:5a:20: 0b:30:2a:4a:d5:21:01:03:f1:91:d5:c7:6f:2c:c7:16:8d:be: db:15:0c:12:a6:1d:85:b7:72:a9:cd:e9:4d:63:88:ea:cd:9f: 3e:56:cd:a3:5f:72:b5:69:c0:c7:bf:03:29:5c:c8:a3:87:4d: 0b:55:02:23:d0:03:dd:78:b6:1e:67:d3:5a:92:88:40:9e:a7: 69:ff:48:3e:fe:90:ab:09:b9:3e:09:3d:71:61:4b:9f:1f:e0: f3:5a:ef:e3:7a:b0:f1:9b:5e:aa:48:1e:e9:2e:81:c3:0f:9e: 74:ce:3a:13:fa:6b:b2:5a:8b:c9:3f:bc:1a:20:52:ba:aa:ee: 3d:bc:6b:be:92:fb:69:36:ff:28:5b:96:b9:09:bd:02:21:f4: 35:22:46:41:b8:5b:00:fc:19:d8:aa:05:7a:16:19:8e:e7:05: 28:60:72:99:60:81:32:22:a7:af:78:28:2d:9e:1f:8a:30:e4: 7f:da:56:79:5c:2e:49:22:5b:05:99:00:c9:0f:53:05:d3:cb: 01:6c:0f:06 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUQh/tjEieTN6dz0l+tVQPKO6/1GowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTIwNjAwMDAwOVoX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNAYjM4NDMzMjUxYWNkNjM5YTliNTBi ZjZmNzYyODc0ZGM1ODk3NTIwZGZkYzlmOGM4ZTM1MWZiNTNhZWVhOTgxMTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA75S4KKzlIIrS3cocCzrdDXoDn1jM y6oPyaQMGL/W2ze1MNa0nbVwXo6wcelvAFo0huNcUg5M11Q7J/e/CN5eTv9qiZV0 9KYdT+SDN3doA6EqQJKgtWZXOz/dNmY0z1sMD2+UHBnTsvH9MmmA87xfjb1/PlaB iyWNqk1jmyPjaR+koN73QKbdQFGw6uAW7J6wJkknLrb9WNZ1qLatNrSXAHWYRsvw oT8Obh6a4Bxs5v1lLuwu3e+mI6dBnFHa6KQyU6j9vpq014T+U9AQfMmu4K1QzOWD fH1vaMq8LWb1HmqRowQizG7udxmINHcGXRqmq/iSiakK5R65Bf5AKyD3twIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFHtpdYYdtlz8VpAR2+zI9qTePiSyMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 L2FkZjc1ZTJlLTlkMmMtNDcxOC1hNDlkLWFkNDQwNzliMjY2Yi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDrymYMA0GCSqGSIb3DQEBCwUAA4IBAQAIXIlrVCBzK/+NqDRlSNAU yXCuqTSb6XzsrYQ3o2S8IZFlsCllB5ZPINNNQP2NyNsLZAx8WiALMCpK1SEBA/GR 1cdvLMcWjb7bFQwSph2Ft3KpzelNY4jqzZ8+Vs2jX3K1acDHvwMpXMijh00LVQIj 0APdeLYeZ9NakohAnqdp/0g+/pCrCbk+CT1xYUufH+DzWu/jerDxm16qSB7pLoHD D550zjoT+muyWovJP7waIFK6qu49vGu+kvtpNv8oW5a5Cb0CIfQ1IkZBuFsA/BnY qgV6FhmO5wUoYHKZYIEyIqeveCgtnh+KMOR/2lZ5XC5JIlsFmQDJD1MF08sBbA8G -----END CERTIFICATE-----Generated at Sat Dec 6 12:49:38 2025 by rpki-client