This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9ab8755a-b40e-412e-8b0b-d13e0c39aed0.roa File: 9ab8755a-b40e-412e-8b0b-d13e0c39aed0.roa (raw, json) Hash identifier: ztFCrms5eIZz0OGCuqbjOumaaA08AQzto4GoBsYumlw= Subject key identifier: 17:0E:9B:2F:EA:70:91:D3:05:33:C8:25:F4:22:4B:76:71:B5:5E:0F Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 2CD20E5512506A989839B46D83AC101339742BEE Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9ab8755a-b40e-412e-8b0b-d13e0c39aed0.roa Signing time: Sun 07 Dec 2025 00:00:33 +0000 ROA not before: Sun 07 Dec 2025 00:00:33 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 43.208.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 17:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:d2:0e:55:12:50:6a:98:98:39:b4:6d:83:ac:10:13:39:74:2b:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 7 00:00:33 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=34eaefcf88809d7ec1d09b6cde0e77f9804c3579406b0e2526d3661bc1c2c1d3, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ef:76:96:15:4b:4d:24:08:70:eb:5f:6b:13: 54:63:e1:10:eb:b0:26:89:50:7d:96:b7:91:ba:39: 9a:77:e9:94:08:41:34:e6:60:32:91:6b:38:61:87: 02:cf:84:a7:97:a7:70:b1:e2:cd:20:07:16:4a:db: 07:2f:ee:c2:c2:74:21:77:33:4a:e1:c4:23:82:42: 2c:e9:d3:60:a6:6c:a5:a7:35:8c:d9:91:15:c7:42: 02:98:ee:76:5d:6a:42:56:dc:a4:18:c6:a1:af:01: 4d:a0:87:78:9e:22:9e:01:88:f2:90:2d:05:16:30: 5c:b3:12:fb:69:ad:06:74:8f:6d:9f:91:e2:26:90: 2d:19:12:63:42:92:ae:ab:65:9d:18:bb:e9:ee:9f: 84:b0:0e:aa:40:1a:7d:99:32:06:49:99:1a:e9:e1: 8b:cd:0b:24:a7:ca:8d:43:89:fb:03:d6:2a:75:4a: b0:3f:74:8f:db:82:e4:82:0a:f8:35:1d:36:62:45: 18:ea:95:0e:fe:71:82:56:43:e8:91:8e:ec:2f:cd: fd:6d:62:8b:78:20:87:95:38:f3:0b:f2:d6:34:08: f5:6f:27:14:6f:ce:6e:72:bb:b0:55:6e:5d:bc:ca: 47:0a:7f:5f:dc:70:c7:e1:db:cd:f3:d3:57:15:e0: a5:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:0E:9B:2F:EA:70:91:D3:05:33:C8:25:F4:22:4B:76:71:B5:5E:0F X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9ab8755a-b40e-412e-8b0b-d13e0c39aed0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.208.53.0/24 Signature Algorithm: sha256WithRSAEncryption b8:ae:45:89:31:5e:f0:a3:8e:62:61:21:74:e9:ec:cf:42:9f: 1e:31:3c:ee:04:55:ef:aa:aa:ff:5b:cc:75:04:91:9b:01:b6: 9a:43:5c:cf:d5:00:66:87:6d:11:87:6a:9a:c7:c9:48:a2:ad: 22:22:27:0e:4e:11:e0:8c:ba:14:85:56:18:65:51:26:da:ac: 17:04:d0:f2:20:08:ca:55:57:cf:84:d1:e6:7b:9d:35:db:ee: 11:b3:6f:ab:ce:50:99:61:37:dc:93:6e:ea:4e:42:80:b0:3e: 22:00:fc:73:2d:b4:87:d4:73:62:f1:13:dd:1b:bb:63:de:11: 36:28:e4:e0:01:92:7f:08:c5:51:b0:97:24:a9:b7:a1:86:83: e5:87:7c:a4:15:16:97:43:e3:9b:9e:89:5d:a9:31:30:1d:77: 5f:75:b8:28:62:ef:c6:dd:2f:62:55:f6:21:88:c6:32:08:3b: d8:10:30:a6:8f:43:3b:c4:06:3e:94:72:f5:72:e0:7f:be:85: 44:89:29:a4:4c:dd:e2:5a:c5:7b:7c:f1:a7:bc:40:74:67:fe: 95:97:88:44:44:f1:3d:11:71:32:7a:f2:92:b2:73:78:94:c1: 2c:c5:04:12:0d:1d:bc:02:fc:e1:c5:ce:15:86:e8:49:fb:8a: 36:75:20:49 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIULNIOVRJQapiYObRtg6wQEzl0K+4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwNzAwMDAzM1oX DTI2MDMwNzIzNTk1OVowejFJMEcGA1UEBRNAMzRlYWVmY2Y4ODgwOWQ3ZWMxZDA5 YjZjZGUwZTc3Zjk4MDRjMzU3OTQwNmIwZTI1MjZkMzY2MWJjMWMyYzFkMzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApO92lhVLTSQIcOtfaxNUY+EQ67Am iVB9lreRujmad+mUCEE05mAykWs4YYcCz4Snl6dwseLNIAcWStsHL+7CwnQhdzNK 4cQjgkIs6dNgpmylpzWM2ZEVx0ICmO52XWpCVtykGMahrwFNoId4niKeAYjykC0F FjBcsxL7aa0GdI9tn5HiJpAtGRJjQpKuq2WdGLvp7p+EsA6qQBp9mTIGSZka6eGL zQskp8qNQ4n7A9YqdUqwP3SP24Lkggr4NR02YkUY6pUO/nGCVkPokY7sL839bWKL eCCHlTjzC/LWNAj1bycUb85ucruwVW5dvMpHCn9f3HDH4dvN89NXFeClBwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFBcOmy/qcJHTBTPIJfQiS3ZxtV4PMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzlhYjg3NTVhLWI0MGUtNDEyZS04YjBiLWQxM2UwYzM5YWVkMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK9A1MA0GCSqGSIb3DQEBCwUAA4IBAQC4rkWJMV7wo45iYSF06ezP Qp8eMTzuBFXvqqr/W8x1BJGbAbaaQ1zP1QBmh20Rh2qax8lIoq0iIicOThHgjLoU hVYYZVEm2qwXBNDyIAjKVVfPhNHme5012+4Rs2+rzlCZYTfck27qTkKAsD4iAPxz LbSH1HNi8RPdG7tj3hE2KOTgAZJ/CMVRsJckqbehhoPlh3ykFRaXQ+ObnoldqTEw HXdfdbgoYu/G3S9iVfYhiMYyCDvYEDCmj0M7xAY+lHL1cuB/voVEiSmkTN3iWsV7 fPGnvEB0Z/6Vl4hERPE9EXEyevKSsnN4lMEsxQQSDR28Avzhxc4VhuhJ+4o2dSBJ -----END CERTIFICATE-----Generated at Sat Dec 20 16:00:05 2025 by rpki-client