This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa File: 0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa (raw, json) Hash identifier: E63/PRfPuiddezwGGylWnwb7tLNsK2qxydwE1fAIdv0= Subject key identifier: 3A:7E:71:EF:65:BA:CB:E8:8B:9A:40:51:5E:65:C7:F1:D4:32:CB:59 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 09A0DA185AD63872265CB1CA8CCE1056392B5CE1 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa Signing time: Sat 06 Dec 2025 00:00:30 +0000 ROA not before: Sat 06 Dec 2025 00:00:30 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:a0:da:18:5a:d6:38:72:26:5c:b1:ca:8c:ce:10:56:39:2b:5c:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Dec 6 00:00:30 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=00488be3e9d1c130a5073f171f5fb742d9b873853d49acd27ccc0d175e038ab4, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:2d:3d:dd:25:ab:ba:c4:c7:78:2c:93:43:d0: 4b:f0:86:73:50:34:f1:e8:92:bb:88:8d:1d:e1:ef: a3:1f:67:f3:18:c4:bb:63:00:24:ac:a2:44:27:4c: 34:e8:f5:e3:42:86:50:46:34:fe:5d:cc:4a:1d:c7: 63:9f:bf:1c:40:5b:ee:91:c8:20:8e:4f:e2:bf:01: 24:87:ef:d6:a6:53:f8:74:8d:ed:2f:a5:07:5c:c6: f8:84:0c:d1:4f:de:2b:b8:9d:6c:6c:7e:9c:1c:a9: 95:10:ce:fd:af:9f:36:f0:e0:d6:c2:23:c5:95:fa: 14:81:05:f7:97:0b:2b:11:10:c3:68:61:a7:1d:84: bd:48:a3:dd:81:a3:f1:94:04:02:ec:0f:b3:b7:34: 30:98:cf:a9:a5:25:fd:0a:aa:09:36:1c:3c:e0:2c: 2a:06:7f:b7:99:ea:16:fa:74:63:a8:61:ba:19:96: 24:c7:78:eb:69:49:97:22:08:7c:83:74:ec:95:c2: 22:03:2c:1f:11:34:95:7e:d9:aa:4e:59:b7:f0:db: 3b:df:8b:20:7d:1e:00:ff:7d:b2:32:39:c5:c2:5f: 89:3e:e8:41:7b:f7:a3:5f:43:6b:3e:c7:dd:d0:2f: 83:3c:ed:bd:9c:3e:f0:c3:c9:a0:07:a4:4a:4e:d8: 02:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:7E:71:EF:65:BA:CB:E8:8B:9A:40:51:5E:65:C7:F1:D4:32:CB:59 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/0c5c54ff-f977-4b96-8ce9-a1eaf082fe9c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.232.0/22 Signature Algorithm: sha256WithRSAEncryption 31:c0:c2:5b:ea:63:58:e3:cc:c9:10:92:9c:fb:39:b0:4e:38: c8:0b:6a:7e:37:a8:97:8a:52:b4:b0:ef:50:88:12:40:ff:bf: a5:fc:04:ec:ad:82:c7:89:ea:8c:fd:ce:e7:e1:ee:7f:fb:6c: 51:f1:da:9a:d1:34:9e:7f:e2:e3:ac:e5:96:bb:db:ed:2f:5e: 83:83:f9:16:06:5d:8b:63:e9:0e:d9:f0:1e:5c:e8:3b:8b:31: b2:0e:f5:fd:d5:7b:ed:c2:17:11:31:87:a4:58:02:92:3e:eb: 2c:3d:4d:4f:57:31:7d:30:e3:ac:84:48:96:ae:d7:69:49:a6: 74:33:54:8e:d6:07:ef:02:aa:42:cf:ac:a2:2a:d4:e1:d1:5b: a3:f1:16:30:05:82:2f:07:1b:e1:4d:d7:f3:ff:7f:65:8a:f2: 2a:33:3a:64:c1:ed:ea:dd:94:5b:8b:96:27:00:91:cc:31:6a: ad:33:54:a6:f2:96:1d:62:70:f4:8b:43:15:b3:97:ac:0d:06: 2a:da:9e:6b:e4:4a:ff:bc:be:73:51:e6:6a:73:f4:f4:c1:48: 46:54:51:83:c4:01:89:13:ae:30:b1:70:c8:ff:8b:95:6d:dd: 45:53:79:02:13:07:d3:e5:0d:79:b3:57:3e:9b:0f:45:63:a0: a1:24:82:d6 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUCaDaGFrWOHImXLHKjM4QVjkrXOEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MTIwNjAwMDAzMFoX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNAMDA0ODhiZTNlOWQxYzEzMGE1MDcz ZjE3MWY1ZmI3NDJkOWI4NzM4NTNkNDlhY2QyN2NjYzBkMTc1ZTAzOGFiNDEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8y093SWrusTHeCyTQ9BL8IZzUDTx 6JK7iI0d4e+jH2fzGMS7YwAkrKJEJ0w06PXjQoZQRjT+XcxKHcdjn78cQFvukcgg jk/ivwEkh+/WplP4dI3tL6UHXMb4hAzRT94ruJ1sbH6cHKmVEM79r5828ODWwiPF lfoUgQX3lwsrERDDaGGnHYS9SKPdgaPxlAQC7A+ztzQwmM+ppSX9CqoJNhw84Cwq Bn+3meoW+nRjqGG6GZYkx3jraUmXIgh8g3TslcIiAywfETSVftmqTlm38Ns734sg fR4A/32yMjnFwl+JPuhBe/ejX0NrPsfd0C+DPO29nD7ww8mgB6RKTtgCJwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFDp+ce9lusvoi5pAUV5lx/HUMstZMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzBjNWM1NGZmLWY5NzctNGI5Ni04Y2U5LWExZWFmMDgyZmU5Yy5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrynoMA0GCSqGSIb3DQEBCwUAA4IBAQAxwMJb6mNY48zJEJKc+zmw TjjIC2p+N6iXilK0sO9QiBJA/7+l/ATsrYLHieqM/c7n4e5/+2xR8dqa0TSef+Lj rOWWu9vtL16Dg/kWBl2LY+kO2fAeXOg7izGyDvX91XvtwhcRMYekWAKSPussPU1P VzF9MOOshEiWrtdpSaZ0M1SO1gfvAqpCz6yiKtTh0Vuj8RYwBYIvBxvhTdfz/39l ivIqMzpkwe3q3ZRbi5YnAJHMMWqtM1Sm8pYdYnD0i0MVs5esDQYq2p5r5Er/vL5z UeZqc/T0wUhGVFGDxAGJE64wsXDI/4uVbd1FU3kCEwfT5Q15s1c+mw9FY6ChJILW -----END CERTIFICATE-----Generated at Sat Dec 6 14:42:31 2025 by rpki-client