This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/05bc8dbb-c70a-48da-b45b-4448364614ff.roa File: 05bc8dbb-c70a-48da-b45b-4448364614ff.roa (raw, json) Hash identifier: qIdRpmBdkt5j6LH5saLB37Zp94oHt1Bb24SAmi7FS78= Subject key identifier: 43:13:9C:F9:4D:0D:E0:FA:AF:04:50:DF:A9:50:72:F9:E1:BC:8D:7B Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 709A6EE1018F93C1AA767A37C4F19893411036B1 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/05bc8dbb-c70a-48da-b45b-4448364614ff.roa Signing time: Sat 06 Dec 2025 00:00:33 +0000 ROA not before: Sat 06 Dec 2025 00:00:33 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:9a:6e:e1:01:8f:93:c1:aa:76:7a:37:c4:f1:98:93:41:10:36:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Dec 6 00:00:33 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=c729038266c40325f51c5fd4f4c52eb10d04be913c7d4af931c9f7eef7a77ec7, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:00:fd:f3:e9:6a:9b:3b:7a:3e:26:6a:af:bb: 8b:9e:3f:76:b4:65:99:ae:12:03:0a:39:c1:e5:37: d0:7f:a2:42:44:2f:5a:b2:53:a4:c0:8f:83:86:c5: f6:59:80:2e:87:ea:8c:70:ed:02:74:e7:cd:99:42: bf:37:0d:d4:00:d7:36:32:82:c0:a8:a0:b9:7a:35: 49:f8:b2:90:36:84:a7:44:aa:6a:35:8e:c7:f9:b1: c8:2d:44:d3:aa:fc:06:d0:40:36:bf:61:ee:61:0b: 1a:f0:03:d1:49:a9:24:f4:45:be:13:f2:3a:79:e3: 68:af:4b:6e:98:c5:9a:49:85:19:90:4a:63:cb:dd: 7f:fa:11:51:09:71:5c:73:26:5e:b9:cc:8d:8a:de: 6e:5c:1e:1c:1e:ad:e7:7c:bb:20:6c:3e:ea:5a:be: 07:9f:58:a2:78:2d:94:36:e0:c9:0f:3f:bd:a8:ca: a6:c7:9c:59:24:6f:14:ff:ff:66:62:cf:75:17:39: 1b:81:20:61:18:73:d9:50:00:05:65:7e:0d:1e:71: d7:67:2a:45:40:ec:6f:2d:0e:cf:c3:ae:0b:3d:24: da:08:ae:45:47:30:94:4f:cd:0d:d2:e8:bb:c3:b0: 2a:58:cc:1c:89:14:ef:e2:35:7f:93:59:f3:ba:cb: f1:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:13:9C:F9:4D:0D:E0:FA:AF:04:50:DF:A9:50:72:F9:E1:BC:8D:7B X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/05bc8dbb-c70a-48da-b45b-4448364614ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.208.0/20 Signature Algorithm: sha256WithRSAEncryption 63:2e:37:c8:25:0e:a0:df:64:5b:dd:d4:80:ae:63:58:84:1a: 8c:70:32:24:83:19:23:cd:66:04:0b:2f:8f:cf:c8:94:b8:9d: b0:cb:6a:4e:7d:37:d1:db:b8:09:b9:e5:11:9d:3e:3b:65:3d: 1d:c2:8c:3d:c8:2e:5c:e1:b9:90:66:ef:9a:d5:0d:db:a6:cc: a1:32:c3:5d:a9:a9:2a:76:da:2a:78:56:76:f2:15:a4:f7:0e: 9e:65:45:76:e6:27:8b:b0:75:bb:81:3c:b6:a8:a0:d2:0e:3c: 36:63:fd:8a:4f:33:fe:56:48:8a:a5:f8:b0:91:f4:0c:3a:df: 70:e2:6d:0f:22:e1:72:4f:d1:44:c7:4e:58:94:d5:b3:3f:34: 79:74:64:97:7f:ff:48:40:0b:e6:5f:1b:64:14:49:85:fa:92: 81:df:5d:0c:70:ec:ae:3c:a7:2f:1e:2f:39:f9:57:fd:8d:09: b9:db:60:c9:23:ab:51:2f:26:4b:af:7d:7c:57:04:14:83:0c: ec:b9:0b:70:f5:10:43:0d:b7:a3:09:77:58:ba:25:26:83:91: 6d:04:ae:99:e7:f2:4f:fb:18:2f:eb:8b:91:e0:b0:7d:b5:dd: 66:c0:49:98:46:ad:c4:2b:f8:3f:6d:cb:c5:85:b2:0f:ef:43: b6:3c:0d:16 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUcJpu4QGPk8Gqdno3xPGYk0EQNrEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MTIwNjAwMDAzM1oX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNAYzcyOTAzODI2NmM0MDMyNWY1MWM1 ZmQ0ZjRjNTJlYjEwZDA0YmU5MTNjN2Q0YWY5MzFjOWY3ZWVmN2E3N2VjNzEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqgD98+lqmzt6PiZqr7uLnj92tGWZ rhIDCjnB5TfQf6JCRC9aslOkwI+DhsX2WYAuh+qMcO0CdOfNmUK/Nw3UANc2MoLA qKC5ejVJ+LKQNoSnRKpqNY7H+bHILUTTqvwG0EA2v2HuYQsa8APRSakk9EW+E/I6 eeNor0tumMWaSYUZkEpjy91/+hFRCXFccyZeucyNit5uXB4cHq3nfLsgbD7qWr4H n1iieC2UNuDJDz+9qMqmx5xZJG8U//9mYs91FzkbgSBhGHPZUAAFZX4NHnHXZypF QOxvLQ7Pw64LPSTaCK5FRzCUT80N0ui7w7AqWMwciRTv4jV/k1nzusvxRQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFEMTnPlNDeD6rwRQ36lQcvnhvI17MB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzA1YmM4ZGJiLWM3MGEtNDhkYS1iNDViLTQ0NDgzNjQ2MTRmZi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQErynQMA0GCSqGSIb3DQEBCwUAA4IBAQBjLjfIJQ6g32Rb3dSArmNY hBqMcDIkgxkjzWYECy+Pz8iUuJ2wy2pOfTfR27gJueURnT47ZT0dwow9yC5c4bmQ Zu+a1Q3bpsyhMsNdqakqdtoqeFZ28hWk9w6eZUV25ieLsHW7gTy2qKDSDjw2Y/2K TzP+VkiKpfiwkfQMOt9w4m0PIuFyT9FEx05YlNWzPzR5dGSXf/9IQAvmXxtkFEmF +pKB310McOyuPKcvHi85+Vf9jQm522DJI6tRLyZLr318VwQUgwzsuQtw9RBDDbej CXdYuiUmg5FtBK6Z5/JP+xgv64uR4LB9td1mwEmYRq3EK/g/bcvFhbIP70O2PA0W -----END CERTIFICATE-----Generated at Sat Dec 6 10:53:47 2025 by rpki-client