This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa File: 7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa (raw, json) Hash identifier: mr90+OuRqivi/gFgvBd4iqR2UjBX9ehfST4G9a6ekAc= Subject key identifier: B4:79:94:8F:9E:6F:0C:D5:1E:55:32:61:8C:5A:4E:69:CC:2A:D3:DE Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 385178B701C4F6D477BD499C7477FC9DFE32D394 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa Signing time: Sat 06 Dec 2025 00:00:30 +0000 ROA not before: Sat 06 Dec 2025 00:00:30 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:51:78:b7:01:c4:f6:d4:77:bd:49:9c:74:77:fc:9d:fe:32:d3:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Dec 6 00:00:30 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=08779fb552de7f1e650eaf6e1f3093593ccd6c36ee14ec41dc7b33686ecf3743, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:11:26:77:77:2d:97:74:17:a1:cb:de:c5:24: 28:ab:f1:9a:37:1c:60:22:78:24:42:28:5c:ee:95: 0d:21:f8:8c:6b:6b:9c:64:87:a8:f4:67:3d:ca:04: ac:6f:b7:a4:b0:11:4e:91:4f:1b:68:52:e9:53:0a: 1a:90:8c:f0:86:ee:7f:b9:09:55:f1:79:66:12:9c: be:e3:ca:3c:28:77:0a:a8:d4:8f:9f:9a:0d:5f:96: ef:ab:5f:93:a7:0d:e9:ff:1c:78:f8:83:79:9f:33: 57:06:91:12:a1:d8:03:d4:8f:38:6b:28:b2:cf:52: 30:f4:6b:89:8b:91:dc:ba:84:c6:8c:13:71:04:73: b7:f8:a5:aa:fe:d8:fa:a7:df:d7:b3:32:bc:f9:36: be:9f:0d:a5:c8:0b:c7:79:47:b4:99:e3:21:ab:09: 45:f6:e6:ca:7a:55:f1:40:46:29:52:9b:0e:2f:42: 0d:50:c7:aa:6d:7a:d2:b5:29:f7:81:f0:a3:5f:b7: a4:36:a7:35:4d:b0:dc:90:4a:61:ca:ae:b4:58:ea: cd:0e:71:94:ab:70:f8:d1:69:6f:4e:3f:20:80:61: 73:fa:64:07:e8:5f:2f:71:84:90:b3:83:cb:7c:67: 2f:30:a2:84:37:9a:7e:90:89:19:e4:91:93:35:1c: 46:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:79:94:8F:9E:6F:0C:D5:1E:55:32:61:8C:5A:4E:69:CC:2A:D3:DE X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/7a646ec3-fc0e-40e7-adb4-82d5fd83f029.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.192.0/18 Signature Algorithm: sha256WithRSAEncryption 69:49:60:dd:b1:95:57:cf:a4:65:0c:f2:0c:37:59:78:e6:aa: 89:93:be:43:92:50:46:05:66:28:d7:32:0c:54:58:52:df:b8: e3:0d:1f:f5:50:df:8e:78:55:7c:5a:3d:f8:27:05:58:23:00: b3:9d:f1:7c:28:b1:45:8d:ee:86:db:d5:06:3d:5f:41:b8:9f: 7b:8b:08:69:b9:74:2b:ae:24:37:eb:47:fd:4f:a6:6c:bd:0f: fb:41:a6:ee:5c:71:03:fd:37:d3:6f:42:ae:dc:80:bd:00:c1: c7:34:41:02:f6:59:10:12:0d:12:6a:10:fc:e2:fa:08:70:d9: a9:ed:c5:c2:c7:35:62:8c:65:1f:35:00:d8:14:15:39:0d:d6: ad:cc:45:64:4b:c8:9e:5a:d3:4e:29:cf:cd:96:f1:3d:a5:a6: 11:6e:a0:6d:1a:a1:ae:a3:6a:94:69:57:a9:33:59:1c:34:8f: cb:6a:46:dd:65:93:87:6f:1f:19:1c:1f:4a:f5:0b:38:49:03: 55:5f:b6:15:09:8b:b5:23:72:f2:8f:52:4c:a7:4b:1c:28:61: 89:3f:b5:5e:09:0a:ff:e0:f2:12:e4:b6:58:33:94:c6:65:ac: d9:6b:07:4c:44:69:1e:3b:6d:78:cc:91:82:79:24:6e:4b:74: 89:7b:2d:10 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUOFF4twHE9tR3vUmcdHf8nf4y05QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MTIwNjAwMDAzMFoX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNAMDg3NzlmYjU1MmRlN2YxZTY1MGVh ZjZlMWYzMDkzNTkzY2NkNmMzNmVlMTRlYzQxZGM3YjMzNjg2ZWNmMzc0MzEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzREmd3ctl3QXocvexSQoq/GaNxxg IngkQihc7pUNIfiMa2ucZIeo9Gc9ygSsb7eksBFOkU8baFLpUwoakIzwhu5/uQlV 8XlmEpy+48o8KHcKqNSPn5oNX5bvq1+Tpw3p/xx4+IN5nzNXBpESodgD1I84ayiy z1Iw9GuJi5HcuoTGjBNxBHO3+KWq/tj6p9/XszK8+Ta+nw2lyAvHeUe0meMhqwlF 9ubKelXxQEYpUpsOL0INUMeqbXrStSn3gfCjX7ekNqc1TbDckEphyq60WOrNDnGU q3D40WlvTj8ggGFz+mQH6F8vcYSQs4PLfGcvMKKEN5p+kIkZ5JGTNRxGNQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFLR5lI+ebwzVHlUyYYxaTmnMKtPeMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzdhNjQ2ZWMzLWZjMGUtNDBlNy1hZGI0LTgyZDVmZDgzZjAyOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGrynAMA0GCSqGSIb3DQEBCwUAA4IBAQBpSWDdsZVXz6RlDPIMN1l4 5qqJk75DklBGBWYo1zIMVFhS37jjDR/1UN+OeFV8Wj34JwVYIwCznfF8KLFFje6G 29UGPV9BuJ97iwhpuXQrriQ360f9T6ZsvQ/7QabuXHED/TfTb0Ku3IC9AMHHNEEC 9lkQEg0SahD84voIcNmp7cXCxzVijGUfNQDYFBU5DdatzEVkS8ieWtNOKc/NlvE9 paYRbqBtGqGuo2qUaVepM1kcNI/LakbdZZOHbx8ZHB9K9Qs4SQNVX7YVCYu1I3Ly j1JMp0scKGGJP7VeCQr/4PIS5LZYM5TGZazZawdMRGkeO214zJGCeSRuS3SJey0Q -----END CERTIFICATE-----Generated at Sat Dec 6 10:57:41 2025 by rpki-client