This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa File: 2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa (raw, json) Hash identifier: P9InS/XVOLOk4R1ePBm1Szb3AzBdZtakRQCjb4eu2W8= Subject key identifier: E0:9B:D9:95:AD:DF:90:7B:83:51:F9:1F:E8:BB:27:EC:74:0D:26:6E Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 16FFAB6C095D40AF46378D24697AB47688CBE715 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa Signing time: Sat 06 Dec 2025 00:00:28 +0000 ROA not before: Sat 06 Dec 2025 00:00:28 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:ff:ab:6c:09:5d:40:af:46:37:8d:24:69:7a:b4:76:88:cb:e7:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Dec 6 00:00:28 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=27caa20666460d68207e61f96c645603ca08c06306e8f379cf8f32917f279d07, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c1:d4:46:f1:92:e3:c8:5e:58:31:59:01:fe: 82:34:00:35:6b:c9:31:4b:ae:95:9c:74:16:b9:fe: c1:69:f3:65:ca:aa:ed:8b:94:9c:d3:74:c1:c2:83: c6:5a:92:0f:03:f3:4e:4c:56:48:3c:88:26:60:30: 95:b4:65:c5:f1:3c:b4:f1:56:37:96:a8:59:cd:0f: 10:b8:0b:0c:5b:38:39:a8:b7:e6:bb:61:4a:e2:6c: ae:67:c3:41:56:0c:86:9d:26:63:ea:2e:e0:8d:ac: f8:8a:52:cd:6d:85:e8:f2:68:7c:17:80:dd:33:22: 53:b8:97:1f:13:df:98:4f:91:73:02:fe:89:5b:80: 14:07:f7:e5:40:90:9b:db:6c:2c:e8:cd:59:91:1f: 95:2e:93:87:01:fe:c0:30:b6:c8:8c:eb:ca:94:f7: e4:27:63:21:b3:91:b9:81:a4:19:9e:20:44:2d:47: 58:3f:66:66:e5:28:e3:3a:44:98:8f:dd:99:dd:da: 42:c3:c8:be:a0:20:93:bb:89:9d:d9:ef:be:25:e5: 06:d1:46:89:b5:fc:fe:24:80:b5:37:9e:ab:fa:00: 9b:a6:a5:2d:f9:e6:91:96:bf:51:8e:ed:b3:5a:c1: 6a:de:dc:f8:b8:f2:e9:fd:c6:45:df:f5:34:b3:90: 46:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:9B:D9:95:AD:DF:90:7B:83:51:F9:1F:E8:BB:27:EC:74:0D:26:6E X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.193.0/24 Signature Algorithm: sha256WithRSAEncryption ba:a8:6b:dd:ed:14:80:88:aa:73:38:37:77:e3:24:53:43:db: d0:20:0d:b5:97:29:a7:af:06:35:a0:34:40:0e:90:f6:ad:f8: 06:37:61:66:de:e6:70:ec:70:c2:33:5e:e8:01:fa:39:c3:eb: 66:ee:42:6d:be:8d:61:e7:dd:76:2f:2a:d8:15:69:10:dc:60: 89:e0:c0:be:e4:90:80:e4:84:0c:2b:28:68:e2:b4:30:1e:e9: d1:9c:8f:5d:ec:6d:fd:2a:fe:55:cb:9d:a2:61:82:3f:33:95: 06:3a:6a:70:43:38:de:15:38:24:79:ca:a1:f2:dc:8b:20:f0: 3e:96:6a:70:14:2f:78:68:25:48:fa:85:2b:de:64:88:79:b6: 48:7a:51:48:1e:82:7c:94:4d:02:47:0c:88:3c:fb:f5:ce:a0: b0:19:1e:ff:e7:17:25:9c:f9:16:0b:b8:d9:80:4c:42:b1:fb: 51:d9:2e:1e:26:80:65:9b:df:93:a5:73:d7:2c:81:9c:c5:ba: 93:14:f7:09:69:55:bd:5d:45:60:3a:71:06:f8:c7:4c:cd:6d: 98:c9:d0:c0:3a:f4:92:3d:e9:6f:ca:42:bd:ea:ca:62:66:10: b8:b0:47:8a:81:90:23:e0:1d:f4:cc:0e:5f:0b:52:3f:88:21: 98:29:1b:84 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUFv+rbAldQK9GN40kaXq0dojL5xUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MTIwNjAwMDAyOFoX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNAMjdjYWEyMDY2NjQ2MGQ2ODIwN2U2 MWY5NmM2NDU2MDNjYTA4YzA2MzA2ZThmMzc5Y2Y4ZjMyOTE3ZjI3OWQwNzEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn8HURvGS48heWDFZAf6CNAA1a8kx S66VnHQWuf7BafNlyqrti5Sc03TBwoPGWpIPA/NOTFZIPIgmYDCVtGXF8Ty08VY3 lqhZzQ8QuAsMWzg5qLfmu2FK4myuZ8NBVgyGnSZj6i7gjaz4ilLNbYXo8mh8F4Dd MyJTuJcfE9+YT5FzAv6JW4AUB/flQJCb22ws6M1ZkR+VLpOHAf7AMLbIjOvKlPfk J2Mhs5G5gaQZniBELUdYP2Zm5SjjOkSYj92Z3dpCw8i+oCCTu4md2e++JeUG0UaJ tfz+JIC1N56r+gCbpqUt+eaRlr9Rju2zWsFq3tz4uPLp/cZF3/U0s5BGpwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFOCb2ZWt35B7g1H5H+i7J+x0DSZuMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzJmNDdkY2RkLWMzODQtNGViMi1hZWZkLWY0YWQ2NGYyNmNjZS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQArynBMA0GCSqGSIb3DQEBCwUAA4IBAQC6qGvd7RSAiKpzODd34yRT Q9vQIA21lymnrwY1oDRADpD2rfgGN2Fm3uZw7HDCM17oAfo5w+tm7kJtvo1h5912 LyrYFWkQ3GCJ4MC+5JCA5IQMKyho4rQwHunRnI9d7G39Kv5Vy52iYYI/M5UGOmpw QzjeFTgkecqh8tyLIPA+lmpwFC94aCVI+oUr3mSIebZIelFIHoJ8lE0CRwyIPPv1 zqCwGR7/5xclnPkWC7jZgExCsftR2S4eJoBlm9+TpXPXLIGcxbqTFPcJaVW9XUVg OnEG+MdMzW2YydDAOvSSPelvykK96spiZhC4sEeKgZAj4B30zA5fC1I/iCGYKRuE -----END CERTIFICATE-----Generated at Sat Dec 6 09:52:09 2025 by rpki-client