This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0bf15d3f-c546-4bb6-a764-82165c384d37.roa File: 0bf15d3f-c546-4bb6-a764-82165c384d37.roa (raw, json) Hash identifier: riQ4OigVMA/6ztt1jMjGMZbSAxv30F/DqUjq1/O/+NM= Subject key identifier: 59:0C:83:F8:98:E2:15:03:40:85:60:08:F1:F5:04:92:12:6B:A0:A7 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 7D363F117C7D1BCF2B747B098C0064FEB60304 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0bf15d3f-c546-4bb6-a764-82165c384d37.roa Signing time: Sat 06 Dec 2025 00:00:27 +0000 ROA not before: Sat 06 Dec 2025 00:00:27 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.200.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:36:3f:11:7c:7d:1b:cf:2b:74:7b:09:8c:00:64:fe:b6:03:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Dec 6 00:00:27 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=1f0a68e4c74354735dad2871d85dd3dd639dc656f8347ad659334e033deafe18, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:22:b9:22:61:15:39:3f:40:46:16:35:b7:ea: 77:a8:34:af:ca:0d:7d:ef:3d:00:74:48:03:20:de: 1d:18:3f:2b:07:ad:51:b3:aa:d0:b1:f5:c2:d3:29: 8f:1b:cd:42:bd:6a:34:51:2d:5d:c7:52:af:18:3e: 05:f5:24:13:31:7b:ba:b6:8c:4f:73:fe:97:e0:8f: 0b:a9:72:e0:0a:9a:3a:1f:7f:82:94:68:b4:cb:aa: a4:8e:e7:75:ec:8d:01:29:0e:70:59:72:60:3f:0d: 0b:58:bc:09:75:70:50:be:2c:fb:de:48:4c:6b:37: f1:3c:4a:81:f4:1e:0a:ae:49:9a:52:d9:05:3c:20: bf:40:68:bd:55:f5:5f:4c:85:59:75:82:8d:55:d3: 29:5f:a9:1f:5e:ec:70:d2:4d:0b:61:71:9c:2a:df: 19:fe:05:f4:60:a8:34:30:33:7f:26:4b:18:c9:4e: cd:d8:70:4f:39:ee:26:ad:14:ec:6b:9e:4f:11:6a: 3c:2a:00:c5:a3:a3:e5:fa:62:c2:82:12:b9:73:16: a4:62:be:91:6f:6f:26:fd:fd:cf:aa:ef:23:9a:62: 47:06:0d:d9:ca:d7:03:c2:71:81:8b:87:84:6d:cb: a4:3b:8f:56:b3:69:75:e3:6b:f4:92:d1:c8:7c:28: 0f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:0C:83:F8:98:E2:15:03:40:85:60:08:F1:F5:04:92:12:6B:A0:A7 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0bf15d3f-c546-4bb6-a764-82165c384d37.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.200.0/21 Signature Algorithm: sha256WithRSAEncryption 7e:93:16:3f:01:a9:9b:9d:d5:7a:8d:f1:b7:65:4b:ee:c4:14: 5b:ce:b7:f1:0c:2e:d9:de:00:3e:fa:31:ab:29:a3:a7:ff:81: 20:59:c7:74:07:fa:4e:72:80:70:01:7b:c2:3c:f7:49:0b:6d: 9e:1d:3f:91:d2:cf:98:68:21:d9:40:01:05:84:47:d6:20:a4: 2b:1b:94:d8:0e:8e:fd:78:de:09:12:f1:f0:ed:9d:8d:55:52: 8e:9a:15:7e:56:29:36:e6:37:86:8d:5f:41:c0:50:fe:29:0a: ae:d9:c2:b6:43:ed:08:2d:3c:7b:e9:6f:f0:9d:83:7e:87:48: f1:ee:10:b6:e7:58:78:e0:fb:54:e1:43:26:67:b0:a4:7c:07: 1f:3c:8a:47:b9:7e:21:69:14:59:db:c9:de:66:e3:69:33:e6: 0c:88:e7:35:36:81:d6:54:d9:c9:1c:89:2d:4f:98:93:44:82: 10:54:b6:1f:e7:5a:67:5b:dc:f1:b6:5f:24:aa:33:d8:18:39: 6b:13:95:b5:f7:b2:95:0d:d7:8e:fa:7f:48:63:d0:2c:77:15: 2d:b0:18:75:dd:8a:ed:ce:32:fe:c4:ec:07:f6:e1:36:6c:23: 1b:ab:0d:9f:f2:ee:c6:4b:f9:07:11:2d:3e:ed:0b:c1:97:fc: d5:0f:ac:c6 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgITfTY/EXx9G88rdHsJjABk/rYDBDANBgkqhkiG9w0BAQsF ADBKMRUwEwYDVQQDEwxBOTE1MDlFQzAwMDAxMTAvBgNVBAUTKDE2RjUyNEY4RTBF QzdDQUUwNzY5QzQyRTUwRkZCM0EyQjU2NEE2QUMwHhcNMjUxMjA2MDAwMDI3WhcN MjYwMzA2MjM1OTU5WjB6MUkwRwYDVQQFE0AxZjBhNjhlNGM3NDM1NDczNWRhZDI4 NzFkODVkZDNkZDYzOWRjNjU2ZjgzNDdhZDY1OTMzNGUwMzNkZWFmZTE4MS0wKwYD VQQDEyQ1ODgxMDQwMy05YmEwLTQwM2EtODA5Yi1jNzgyNTJhYjdmNWQwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtIrkiYRU5P0BGFjW36neoNK/KDX3v PQB0SAMg3h0YPysHrVGzqtCx9cLTKY8bzUK9ajRRLV3HUq8YPgX1JBMxe7q2jE9z /pfgjwupcuAKmjoff4KUaLTLqqSO53XsjQEpDnBZcmA/DQtYvAl1cFC+LPveSExr N/E8SoH0HgquSZpS2QU8IL9AaL1V9V9MhVl1go1V0ylfqR9e7HDSTQthcZwq3xn+ BfRgqDQwM38mSxjJTs3YcE857iatFOxrnk8RajwqAMWjo+X6YsKCErlzFqRivpFv byb9/c+q7yOaYkcGDdnK1wPCcYGLh4Rty6Q7j1azaXXja/SS0ch8KA+1AgMBAAGj ggJIMIICRDAdBgNVHQ4EFgQUWQyD+JjiFQNAhWAI8fUEkhJroKcwHwYDVR0jBBgw FoAUFvUk+ODsfK4HacQuUP+zorVkpqwwDgYDVR0PAQH/BAQDAgeAMH4GCCsGAQUF BwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBv c2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0Z2VWstT0Rz Zks0SGFjUXVVUC16b3JWa3Bxdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4ZTVkYmQyMTkv MGJmMTVkM2YtYzU0Ni00YmI2LWE3NjQtODIxNjVjMzg0ZDM3LnJvYTCBlQYDVR0f BIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFzdC0yLmFt YXpvbmF3cy5jb20vdm9sdW1lL2RiOWEzNzJhLTA5YmMtNGEzMi1iZmU0LThjNDhl NWRiZDIxOS82ZWNiM2NjYS00ODhkLTQzYjktYTUwYi1kMzdjMGM1NWE5ZTEuY3Js MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAOvKcgwDQYJKoZIhvcNAQELBQADggEBAH6TFj8BqZud1XqN8bdlS+7E FFvOt/EMLtneAD76Maspo6f/gSBZx3QH+k5ygHABe8I890kLbZ4dP5HSz5hoIdlA AQWER9YgpCsblNgOjv143gkS8fDtnY1VUo6aFX5WKTbmN4aNX0HAUP4pCq7ZwrZD 7QgtPHvpb/Cdg36HSPHuELbnWHjg+1ThQyZnsKR8Bx88ike5fiFpFFnbyd5m42kz 5gyI5zU2gdZU2ckciS1PmJNEghBUth/nWmdb3PG2XySqM9gYOWsTlbX3spUN1476 f0hj0Cx3FS2wGHXdiu3OMv7E7Af24TZsIxurDZ/y7sZL+QcRLT7tC8GX/NUPrMY= -----END CERTIFICATE-----Generated at Sat Dec 6 18:38:42 2025 by rpki-client