This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa File: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (raw, json) Hash identifier: 3idRwkohe2nCD9Gbupe7DWsKMLQJv6wYpeNbU363pfw= Subject key identifier: 02:59:5C:52:9F:6C:04:4C:6F:F0:B3:85:60:D6:E7:34:56:65:A0:2F Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 6DB0BFC92EA8BBD35D4A317348724805C70E9E16 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa Signing time: Sat 06 Dec 2025 00:00:28 +0000 ROA not before: Sat 06 Dec 2025 00:00:28 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:b0:bf:c9:2e:a8:bb:d3:5d:4a:31:73:48:72:48:05:c7:0e:9e:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Dec 6 00:00:28 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=c3641bac1d7b2b20533a77fa781f0a212cc267995492432f1f171d652f8dcb33, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:63:52:91:3a:32:98:1b:5b:11:b1:5f:e3:f6: 0d:20:a1:ce:ef:b5:29:3e:20:d0:8e:42:e1:c0:1a: 6c:c6:f9:02:93:25:ac:e8:de:3e:d3:cb:69:dc:b8: 87:38:bd:3f:cb:20:99:df:af:6e:eb:d6:ee:49:d6: 39:0d:e6:f8:e5:66:e6:17:58:9f:c3:d8:2f:f0:6e: d3:bb:be:1b:1b:bd:d2:e4:cc:68:87:85:ce:51:16: d7:3a:13:4c:f7:86:89:96:2a:77:a3:cd:61:c0:8c: f4:40:64:f1:f1:c3:9d:a9:7c:e6:45:15:d6:99:08: 9b:75:a5:e7:86:72:62:10:c2:41:c3:20:8c:76:55: 96:99:1d:f3:8b:19:4a:13:ac:87:ea:2d:c5:cf:bf: 00:6e:de:12:91:7c:65:91:1e:20:f2:19:a4:ee:a6: a8:97:ce:81:aa:66:11:d5:2e:8a:80:0c:31:72:71: 6d:2a:6f:a0:94:1d:ff:77:5d:41:0a:62:c0:1e:7a: c6:44:a7:79:11:1d:d5:b0:ca:7d:14:b7:0d:4f:77: c6:8e:e7:70:e3:b5:c9:0c:d9:f3:d9:8b:9e:3f:10: 9e:d9:af:3a:f9:f7:47:aa:2a:55:e6:b5:58:29:4b: 4d:ca:08:03:09:5b:b4:12:15:12:99:97:f2:b2:9f: 08:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:59:5C:52:9F:6C:04:4C:6F:F0:B3:85:60:D6:E7:34:56:65:A0:2F X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.194.0/23 Signature Algorithm: sha256WithRSAEncryption 04:b0:8a:e1:8d:15:5a:f9:05:5d:21:38:cc:10:03:bf:86:f8: 44:c5:5d:dd:0a:72:11:5a:8f:4c:f5:97:2e:c5:37:dc:1d:2f: c7:98:4a:b1:5c:ed:11:9b:77:a7:65:6e:2b:ca:7d:3a:76:18: 82:01:a4:4c:06:70:e8:3f:8c:70:fa:2e:63:66:e0:35:9b:b6: 1b:93:36:7e:65:a3:73:91:16:7b:86:53:10:d1:23:c6:84:c3: c4:d8:ab:6f:df:09:5b:91:1d:ca:13:4c:25:01:92:cc:a8:ff: ad:8f:fc:5c:db:91:1b:d5:81:db:97:8e:4f:88:fc:b4:10:10: 74:d0:a4:64:b5:c9:a3:65:53:43:4e:95:f3:c6:eb:7e:f7:28: bc:47:5d:e9:af:f1:6b:2a:5b:99:d8:b6:dc:e5:7d:f0:7b:d0: a3:96:ec:0b:d6:b9:c5:9a:39:53:b5:94:d2:51:ee:bb:ee:90: c7:25:67:d2:8a:99:65:41:65:24:65:e0:13:f1:e1:9c:59:10: 3b:e9:50:64:26:4f:70:36:5d:5e:a8:f0:29:0c:f7:43:3b:90: 62:07:72:73:f1:39:7f:c1:1a:db:71:84:41:41:01:33:74:5c: 8b:15:8d:77:49:77:29:3b:34:b7:2f:ba:2e:ed:21:d9:3d:8b: 38:86:0c:83 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUbbC/yS6ou9NdSjFzSHJIBccOnhYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MTIwNjAwMDAyOFoX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNAYzM2NDFiYWMxZDdiMmIyMDUzM2E3 N2ZhNzgxZjBhMjEyY2MyNjc5OTU0OTI0MzJmMWYxNzFkNjUyZjhkY2IzMzEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWNSkToymBtbEbFf4/YNIKHO77Up PiDQjkLhwBpsxvkCkyWs6N4+08tp3LiHOL0/yyCZ369u69buSdY5Deb45WbmF1if w9gv8G7Tu74bG73S5Mxoh4XOURbXOhNM94aJlip3o81hwIz0QGTx8cOdqXzmRRXW mQibdaXnhnJiEMJBwyCMdlWWmR3zixlKE6yH6i3Fz78Abt4SkXxlkR4g8hmk7qao l86BqmYR1S6KgAwxcnFtKm+glB3/d11BCmLAHnrGRKd5ER3VsMp9FLcNT3fGjudw 47XJDNnz2YuePxCe2a86+fdHqipV5rVYKUtNyggDCVu0EhUSmZfysp8InwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFAJZXFKfbARMb/CzhWDW5zRWZaAvMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzZjZjU3YWE2LTZiYTMtNDNhZi1iYmQ1LTQ0NDg1ZTNiOWY2Ny5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrynCMA0GCSqGSIb3DQEBCwUAA4IBAQAEsIrhjRVa+QVdITjMEAO/ hvhExV3dCnIRWo9M9ZcuxTfcHS/HmEqxXO0Rm3enZW4ryn06dhiCAaRMBnDoP4xw +i5jZuA1m7YbkzZ+ZaNzkRZ7hlMQ0SPGhMPE2Ktv3wlbkR3KE0wlAZLMqP+tj/xc 25Eb1YHbl45PiPy0EBB00KRktcmjZVNDTpXzxut+9yi8R13pr/FrKluZ2Lbc5X3w e9CjluwL1rnFmjlTtZTSUe677pDHJWfSipllQWUkZeAT8eGcWRA76VBkJk9wNl1e qPApDPdDO5BiB3Jz8Tl/wRrbcYRBQQEzdFyLFY13SXcpOzS3L7ou7SHZPYs4hgyD -----END CERTIFICATE-----Generated at Sat Dec 6 11:57:35 2025 by rpki-client