This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa File: 82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa (raw, json) Hash identifier: QXGSd+TQ+IuzPahzyTm8NSVacWTxuDI+gBi5F6Zjrnk= Subject key identifier: B1:47:83:92:54:0C:55:E4:76:46:E3:C0:B7:4F:C1:43:50:7F:69:A4 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 29109F3A92F9E1F1C02508C90A61DED2670754AF Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa Signing time: Sat 06 Dec 2025 00:00:28 +0000 ROA not before: Sat 06 Dec 2025 00:00:28 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:10:9f:3a:92:f9:e1:f1:c0:25:08:c9:0a:61:de:d2:67:07:54:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Dec 6 00:00:28 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=a1e210fba1cb7af4425ea2285a4006e56dbbf720f41e7ee553005cfd7da79392, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c6:7a:f1:99:d2:25:df:e0:db:16:b4:2c:72: 5b:97:5c:50:09:c8:4c:9e:6d:f5:02:bf:a0:ba:b6: 95:2f:b9:46:31:cd:66:52:8d:c8:63:f5:75:33:69: e0:d5:29:6b:23:a5:8b:4a:4b:c8:a6:d7:1c:93:f1: 20:f9:83:3b:c0:a5:83:97:8d:d3:ed:c6:7c:97:41: f1:24:b4:52:ac:5e:39:a9:1c:c1:cf:8f:38:c3:80: 4d:db:2d:4a:7b:7c:18:45:fb:c1:79:e8:d1:d4:e8: 12:59:96:75:fe:c3:27:b7:21:9e:ae:bf:c3:87:d4: eb:41:47:9f:bb:a0:ef:4a:db:b7:44:59:ae:8f:87: 59:6d:11:be:26:7d:da:92:10:da:2e:46:64:86:50: 02:9e:18:61:08:1e:c4:3f:7a:29:9b:d0:aa:1c:22: 7e:ad:b8:b7:8a:66:73:56:a4:23:b2:cf:23:0e:9f: 51:d3:b1:bc:ff:31:8b:c9:a8:0a:06:db:c7:6f:7d: 4a:f8:93:b9:bd:db:32:8f:86:6d:14:d3:97:66:b0: b3:21:6d:ab:0a:e3:9b:25:cb:4b:47:24:ea:06:91: a4:1a:71:a6:2c:5c:6c:79:01:99:8e:a1:1e:18:e4: 79:d0:a2:2a:37:61:da:b6:01:7b:36:7c:d3:1f:3c: b5:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:47:83:92:54:0C:55:E4:76:46:E3:C0:B7:4F:C1:43:50:7F:69:A4 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/82456ff2-f8c4-4c5a-9458-82d909f83f7d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.196.0/22 Signature Algorithm: sha256WithRSAEncryption 64:63:03:98:75:a3:ad:c1:27:64:88:5c:67:b0:72:2c:c2:fe: 46:d4:74:30:52:b5:87:cf:ec:7c:bd:b8:8c:e0:df:1e:56:6d: 64:59:f4:7c:cc:5f:bc:d4:fd:22:68:3c:f4:a9:67:cf:49:7d: e2:74:08:0b:9d:13:d9:f8:aa:02:e5:af:36:bb:a5:ba:d0:ef: 68:b8:f4:bb:83:aa:9f:8b:cf:f5:5f:c9:3a:e4:b0:c1:b2:fb: 31:09:dd:07:2c:c7:89:67:4e:88:92:a8:c2:5d:75:ae:aa:29: 7b:50:2d:cb:01:69:65:d0:c4:58:13:cb:bf:fa:47:db:44:70: bd:84:4a:3f:40:20:a7:8a:c6:5e:f5:d5:3b:78:55:94:b6:1e: c4:02:a0:7b:19:20:82:48:40:f7:21:bf:72:d3:6f:a8:41:e9: 4d:b3:be:f4:08:e6:da:c8:75:86:01:8b:57:fc:cc:7b:05:99: 5e:d2:c5:d8:d5:48:73:82:10:4e:3c:5e:d2:90:2c:25:bf:94: 20:4b:01:1a:3a:b2:aa:49:d1:1a:56:f4:59:73:f3:98:cb:e4: d3:b9:9c:28:38:fc:c0:0c:a3:64:1a:52:25:d8:c0:c8:de:32: de:d4:9f:b0:e6:3b:a8:30:a8:9e:82:3b:c1:5d:7a:2a:12:e1: 58:c0:3a:7c -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUKRCfOpL54fHAJQjJCmHe0mcHVK8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MTIwNjAwMDAyOFoX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNAYTFlMjEwZmJhMWNiN2FmNDQyNWVh MjI4NWE0MDA2ZTU2ZGJiZjcyMGY0MWU3ZWU1NTMwMDVjZmQ3ZGE3OTM5MjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA38Z68ZnSJd/g2xa0LHJbl1xQCchM nm31Ar+guraVL7lGMc1mUo3IY/V1M2ng1SlrI6WLSkvIptcck/Eg+YM7wKWDl43T 7cZ8l0HxJLRSrF45qRzBz484w4BN2y1Ke3wYRfvBeejR1OgSWZZ1/sMntyGerr/D h9TrQUefu6DvStu3RFmuj4dZbRG+Jn3akhDaLkZkhlACnhhhCB7EP3opm9CqHCJ+ rbi3imZzVqQjss8jDp9R07G8/zGLyagKBtvHb31K+JO5vdsyj4ZtFNOXZrCzIW2r CuObJctLRyTqBpGkGnGmLFxseQGZjqEeGOR50KIqN2HatgF7NnzTHzy1SQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFLFHg5JUDFXkdkbjwLdPwUNQf2mkMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzgyNDU2ZmYyLWY4YzQtNGM1YS05NDU4LTgyZDkwOWY4M2Y3ZC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCrynEMA0GCSqGSIb3DQEBCwUAA4IBAQBkYwOYdaOtwSdkiFxnsHIs wv5G1HQwUrWHz+x8vbiM4N8eVm1kWfR8zF+81P0iaDz0qWfPSX3idAgLnRPZ+KoC 5a82u6W60O9ouPS7g6qfi8/1X8k65LDBsvsxCd0HLMeJZ06IkqjCXXWuqil7UC3L AWll0MRYE8u/+kfbRHC9hEo/QCCnisZe9dU7eFWUth7EAqB7GSCCSED3Ib9y02+o QelNs770CObayHWGAYtX/Mx7BZle0sXY1UhzghBOPF7SkCwlv5QgSwEaOrKqSdEa VvRZc/OYy+TTuZwoOPzADKNkGlIl2MDI3jLe1J+w5juoMKiegjvBXXoqEuFYwDp8 -----END CERTIFICATE-----Generated at Sat Dec 6 21:36:24 2025 by rpki-client