This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/b3ba338e-4843-454b-abe5-65f09756225a.roa File: b3ba338e-4843-454b-abe5-65f09756225a.roa (raw, json) Hash identifier: osPZlUv3k9bODbjWFQATaZ5WatToqhR98hXI3sVeu9o= Subject key identifier: F0:1C:4C:76:8A:39:4D:59:2A:EB:1C:68:B6:7C:B8:F2:3A:B0:C2:28 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 521F12D022D842EADBD27B092318C664AE8313DB Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/b3ba338e-4843-454b-abe5-65f09756225a.roa Signing time: Sat 06 Dec 2025 00:00:31 +0000 ROA not before: Sat 06 Dec 2025 00:00:31 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 175.41.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:1f:12:d0:22:d8:42:ea:db:d2:7b:09:23:18:c6:64:ae:83:13:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Dec 6 00:00:31 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=c9851d034f504e1f5c722e9432198db70bd845de1fda25bad2538ba92e46e213, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ec:87:cd:1b:3f:1b:d8:89:ce:e4:9c:dd:80: 14:de:6b:e6:4f:60:82:a4:63:e5:d8:d2:dc:13:cf: 15:64:62:33:b0:3e:fd:81:c1:a8:d9:f3:eb:c7:08: a1:06:00:ad:13:ec:c4:11:1c:37:60:c3:42:05:2f: 14:10:1a:a1:5b:8b:ea:68:2a:a6:af:79:2e:e1:b0: ef:87:45:99:87:60:df:b6:ec:b6:2b:14:35:f5:b0: eb:93:2e:96:4e:56:f8:21:e3:5e:99:5d:55:57:98: f3:cf:09:66:78:6a:2d:c5:03:34:2a:5c:c1:9b:34: 94:04:4f:46:f0:fb:16:19:21:96:22:13:c3:17:ef: b6:e0:f7:6a:8e:c7:1f:e3:94:69:06:96:35:93:38: 33:a0:20:ad:95:e7:fc:4a:cf:da:fd:b7:38:ab:9b: 4c:6f:4b:af:44:e3:09:e0:66:f0:8e:1f:53:03:78: fe:2f:3d:87:c6:72:57:b7:0c:cf:81:fe:f9:51:49: 27:4c:3c:c3:92:4c:85:88:f6:59:4f:2a:4d:3b:79: 3d:77:04:ca:c5:ab:e5:17:15:f3:e0:6b:48:d3:83: 90:97:c6:1b:16:06:13:67:77:81:36:8e:31:da:a2: a5:1d:53:32:e6:92:f6:c9:05:a5:98:df:ea:c2:1f: 01:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:1C:4C:76:8A:39:4D:59:2A:EB:1C:68:B6:7C:B8:F2:3A:B0:C2:28 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/b3ba338e-4843-454b-abe5-65f09756225a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.41.192.0/24 Signature Algorithm: sha256WithRSAEncryption 08:ed:db:3b:9d:6e:ed:2e:74:0b:a1:e5:0c:b3:05:35:c9:82: b2:9a:61:34:cc:fe:dc:74:48:55:8a:3d:40:69:80:c4:ff:4c: db:8d:4c:c0:93:80:e6:e7:84:89:19:e4:47:2f:1a:2b:d0:9c: db:f6:4b:09:f8:82:c4:f6:e8:c7:70:1f:e2:84:74:ab:a5:43: c1:2d:f6:b4:ee:34:9e:54:52:f3:80:a6:b5:e1:e7:45:ee:66: 30:45:e7:5e:aa:83:97:bd:db:43:65:e0:7a:ba:d6:33:99:a1: 2a:85:91:68:cd:1c:43:b7:01:ca:a1:55:50:45:00:08:57:42: 70:cc:1c:83:1b:af:b8:17:49:92:c2:39:d0:07:6a:d3:b8:b3: a4:b8:8f:a3:5d:54:2a:55:d1:d4:f2:0b:78:e8:31:70:d0:22: 67:79:c6:7d:28:fa:5d:dc:a1:77:11:ae:e3:7d:7e:5d:aa:9c: 76:89:cb:a8:ff:44:a2:45:0a:8d:d6:cb:fc:13:62:38:00:d5: 6d:c3:ac:30:26:e5:89:08:68:a0:af:07:62:95:41:1f:4f:cb: 9e:98:43:54:ff:33:4b:50:f6:95:1c:b9:e8:1b:8b:ec:11:79: 1c:1b:d1:a4:fd:80:c8:2c:f5:f3:38:fc:e4:30:cc:fe:29:a5: c7:83:d1:ce -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUUh8S0CLYQurb0nsJIxjGZK6DE9swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MTIwNjAwMDAzMVoX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNAYzk4NTFkMDM0ZjUwNGUxZjVjNzIy ZTk0MzIxOThkYjcwYmQ4NDVkZTFmZGEyNWJhZDI1MzhiYTkyZTQ2ZTIxMzEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsuyHzRs/G9iJzuSc3YAU3mvmT2CC pGPl2NLcE88VZGIzsD79gcGo2fPrxwihBgCtE+zEERw3YMNCBS8UEBqhW4vqaCqm r3ku4bDvh0WZh2Dftuy2KxQ19bDrky6WTlb4IeNemV1VV5jzzwlmeGotxQM0KlzB mzSUBE9G8PsWGSGWIhPDF++24Pdqjscf45RpBpY1kzgzoCCtlef8Ss/a/bc4q5tM b0uvROMJ4Gbwjh9TA3j+Lz2HxnJXtwzPgf75UUknTDzDkkyFiPZZTypNO3k9dwTK xavlFxXz4GtI04OQl8YbFgYTZ3eBNo4x2qKlHVMy5pL2yQWlmN/qwh8BJwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFPAcTHaKOU1ZKuscaLZ8uPI6sMIoMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 L2IzYmEzMzhlLTQ4NDMtNDU0Yi1hYmU1LTY1ZjA5NzU2MjI1YS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQArynAMA0GCSqGSIb3DQEBCwUAA4IBAQAI7ds7nW7tLnQLoeUMswU1 yYKymmE0zP7cdEhVij1AaYDE/0zbjUzAk4Dm54SJGeRHLxor0Jzb9ksJ+ILE9ujH cB/ihHSrpUPBLfa07jSeVFLzgKa14edF7mYwRedeqoOXvdtDZeB6utYzmaEqhZFo zRxDtwHKoVVQRQAIV0JwzByDG6+4F0mSwjnQB2rTuLOkuI+jXVQqVdHU8gt46DFw 0CJnecZ9KPpd3KF3Ea7jfX5dqpx2icuo/0SiRQqN1sv8E2I4ANVtw6wwJuWJCGig rwdilUEfT8uemENU/zNLUPaVHLnoG4vsEXkcG9Gk/YDILPXzOPzkMMz+KaXHg9HO -----END CERTIFICATE-----Generated at Sat Dec 6 16:56:36 2025 by rpki-client