This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/a78b90df-233b-4ec6-89d2-de27ac2dc044.roa File: a78b90df-233b-4ec6-89d2-de27ac2dc044.roa (raw, json) Hash identifier: DPPoux71lGrxQrMl9eg2Wg/DcwR5KcobcuR9JnfGEdE= Subject key identifier: 1D:0E:00:68:57:C1:FF:7D:35:F4:7A:FA:36:7A:5E:2E:25:E7:A9:66 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 2AD1B779E0A0B51F685AFC7CBED86AA25D050FDD Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/a78b90df-233b-4ec6-89d2-de27ac2dc044.roa Signing time: Sat 06 Dec 2025 00:00:31 +0000 ROA not before: Sat 06 Dec 2025 00:00:31 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.236.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:d1:b7:79:e0:a0:b5:1f:68:5a:fc:7c:be:d8:6a:a2:5d:05:0f:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Dec 6 00:00:31 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=c28c0952cef23691c515fae2d4816d94670ec7026e892844e937a3ef900a3c35, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:34:db:92:64:8a:64:2b:8b:14:94:f8:34:75: 69:8f:bd:5d:04:06:77:73:76:7a:6f:f6:08:eb:8d: 8c:cb:00:0d:92:f3:1c:0a:36:7d:12:e1:8b:a9:42: e2:30:c3:fe:52:fc:66:9b:3f:44:d0:61:cb:34:19: fa:b2:9d:7c:23:71:83:e7:4e:5a:c6:71:e7:26:4b: 4c:a8:d7:99:2d:61:fa:90:52:ce:8b:fa:96:24:ae: 49:0b:24:74:20:84:bf:49:5a:72:24:34:64:17:33: 1b:67:83:b7:06:3d:52:2e:e2:3f:c4:c6:55:bb:72: 85:8a:20:31:20:53:fa:e6:03:26:a5:ee:70:a9:b6: 1c:d6:ea:61:04:4b:b3:f6:af:af:53:ed:f3:2f:9d: f0:7f:aa:90:b8:8b:30:16:d2:1d:22:14:f0:1e:15: 21:20:7b:56:58:d9:9e:cd:b0:e9:ff:7f:68:42:55: 87:09:b3:65:ae:44:8a:71:aa:29:b5:68:d6:6b:b3: 82:f7:d9:54:23:0d:d7:b9:40:ea:25:be:2b:f2:04: e0:5f:56:40:b0:a1:aa:0a:a2:91:82:4c:31:30:8c: 20:76:3d:e9:fb:06:8d:93:47:6c:9d:8f:be:79:9a: 5e:0a:27:bb:2b:c0:97:e0:99:29:e4:69:16:4a:ae: 85:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:0E:00:68:57:C1:FF:7D:35:F4:7A:FA:36:7A:5E:2E:25:E7:A9:66 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/a78b90df-233b-4ec6-89d2-de27ac2dc044.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.236.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:fe:70:51:d1:4f:c4:63:e1:d4:f8:32:39:37:f6:08:23:ef: 45:db:19:b5:d1:98:6e:f8:55:fc:ea:7d:8a:1b:3b:85:59:bb: ca:6f:c2:77:dc:a5:ce:4e:5d:6b:f1:b9:45:ff:ee:88:bb:a3: 36:5d:fe:7c:dc:3b:e6:7d:2f:6d:a9:3a:32:2c:db:de:98:6b: 7a:75:11:b4:a9:ab:fe:51:b7:43:04:9b:0b:66:c7:3d:40:a1: a2:a0:5f:72:67:f1:8f:97:d0:b5:46:5e:b2:23:4d:f0:92:74: 4d:09:00:ab:d3:69:1a:90:63:26:f2:f2:b3:58:e5:6a:1d:8b: 51:d4:17:9a:4d:2c:b7:6b:44:83:2e:94:8c:66:78:46:b2:56: 1f:53:8c:71:cb:b2:55:e3:64:f7:39:84:17:3f:7e:9c:97:5a: 90:12:5e:31:57:b9:b6:5c:f6:8a:26:e7:40:dc:05:0c:73:5a: 45:2c:fc:ec:1a:23:38:bc:c0:3a:4b:ab:bf:c2:6f:5d:6d:4d: e2:5e:99:48:b7:93:6c:a8:11:7a:58:58:7c:56:a7:d5:30:fc: 2b:34:61:0e:de:5d:a8:f4:57:79:d0:d1:72:d0:5c:f0:82:b9: 5a:36:ba:25:a1:75:a2:a9:b8:e5:a2:4c:4f:d2:82:3b:36:3e: 82:04:cc:09 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUKtG3eeCgtR9oWvx8vthqol0FD90wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MTIwNjAwMDAzMVoX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNAYzI4YzA5NTJjZWYyMzY5MWM1MTVm YWUyZDQ4MTZkOTQ2NzBlYzcwMjZlODkyODQ0ZTkzN2EzZWY5MDBhM2MzNTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyzTbkmSKZCuLFJT4NHVpj71dBAZ3 c3Z6b/YI642MywANkvMcCjZ9EuGLqULiMMP+Uvxmmz9E0GHLNBn6sp18I3GD505a xnHnJktMqNeZLWH6kFLOi/qWJK5JCyR0IIS/SVpyJDRkFzMbZ4O3Bj1SLuI/xMZV u3KFiiAxIFP65gMmpe5wqbYc1uphBEuz9q+vU+3zL53wf6qQuIswFtIdIhTwHhUh IHtWWNmezbDp/39oQlWHCbNlrkSKcaoptWjWa7OC99lUIw3XuUDqJb4r8gTgX1ZA sKGqCqKRgkwxMIwgdj3p+waNk0dsnY++eZpeCie7K8CX4Jkp5GkWSq6FtQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFB0OAGhXwf99NfR6+jZ6Xi4l56lmMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 L2E3OGI5MGRmLTIzM2ItNGVjNi04OWQyLWRlMjdhYzJkYzA0NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBrynsMA0GCSqGSIb3DQEBCwUAA4IBAQB+/nBR0U/EY+HU+DI5N/YI I+9F2xm10Zhu+FX86n2KGzuFWbvKb8J33KXOTl1r8blF/+6Iu6M2Xf583DvmfS9t qToyLNvemGt6dRG0qav+UbdDBJsLZsc9QKGioF9yZ/GPl9C1Rl6yI03wknRNCQCr 02kakGMm8vKzWOVqHYtR1BeaTSy3a0SDLpSMZnhGslYfU4xxy7JV42T3OYQXP36c l1qQEl4xV7m2XPaKJudA3AUMc1pFLPzsGiM4vMA6S6u/wm9dbU3iXplIt5NsqBF6 WFh8VqfVMPwrNGEO3l2o9Fd50NFy0FzwgrlaNroloXWiqbjlokxP0oI7Nj6CBMwJ -----END CERTIFICATE-----Generated at Sat Dec 6 11:48:40 2025 by rpki-client