This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b315d37b-5fed-4398-8cbe-bcccf2224ffb.roa File: b315d37b-5fed-4398-8cbe-bcccf2224ffb.roa (raw, json) Hash identifier: XgEcI7F4ScTwIGWRc23FjZ00UPKGq4RCf4xe6PaoTUo= Subject key identifier: 7D:32:04:CE:F1:5C:DC:81:5B:AE:B3:65:24:85:54:51:70:1B:27:E5 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5CA1CF9F60B4EF8BEA85041BD28FD53EC9CE548C Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b315d37b-5fed-4398-8cbe-bcccf2224ffb.roa Signing time: Sun 07 Dec 2025 00:00:31 +0000 ROA not before: Sun 07 Dec 2025 00:00:31 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 43.214.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 17:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:a1:cf:9f:60:b4:ef:8b:ea:85:04:1b:d2:8f:d5:3e:c9:ce:54:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 7 00:00:31 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=0373842b94dcb552c840950455372c66fa10f8c3490e62cf10abbd5d72466fd5, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:db:a4:07:3a:31:b9:ac:bf:fd:c9:1c:6b:1d: d5:6a:7b:7c:5a:83:3d:fe:32:62:c9:b2:df:9f:b6: cf:63:1b:e6:d4:47:20:3d:b1:09:bb:a4:63:f3:ba: a0:0e:6e:ee:76:fd:84:2e:9e:b4:08:f6:46:f9:22: dc:33:3c:bf:9e:06:15:26:33:85:84:31:76:88:bc: 46:f6:44:8c:a5:47:ce:f9:c4:20:39:6b:5c:1e:29: d6:bd:ec:fc:f1:96:e1:64:a1:53:82:16:38:dd:9c: c7:13:5c:26:46:d0:f0:eb:96:01:d2:58:24:45:34: 9e:88:8d:1b:0d:a9:85:e4:f3:5b:b9:5d:e9:06:a2: 61:2f:1b:cc:5b:ab:e9:c1:57:02:d4:c9:cc:55:a6: e5:e5:b4:d7:9e:6d:9c:1b:94:11:44:3b:7d:5a:c5: bf:f5:a2:80:86:37:4a:de:4c:60:a3:98:8a:3a:5e: 91:dc:10:9c:bc:9b:5a:12:e0:1d:11:4f:78:7d:77: 01:58:6e:b5:ff:e5:81:22:28:90:82:53:10:99:a3: f7:a0:20:b7:6b:24:49:35:46:b5:ad:ce:b0:10:29: cf:b8:da:1d:b7:fa:dd:00:ad:ff:1e:1c:d7:af:3d: d1:7e:d5:a5:ca:8a:76:28:c5:f8:a4:78:46:87:ff: d6:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:32:04:CE:F1:5C:DC:81:5B:AE:B3:65:24:85:54:51:70:1B:27:E5 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b315d37b-5fed-4398-8cbe-bcccf2224ffb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.214.0.0/15 Signature Algorithm: sha256WithRSAEncryption 20:b3:64:05:d8:c0:33:79:3c:93:a8:64:0e:be:c6:21:bc:1d: 86:c0:96:43:b9:89:43:a3:5a:b5:e3:2f:1d:b4:f6:b0:ee:1e: 2c:75:3c:45:15:7f:55:2d:24:91:9d:ae:5a:59:1f:00:38:ce: 6e:d8:14:10:9d:22:f7:42:98:fd:69:fe:81:af:b1:46:28:ab: 95:09:8d:92:33:c2:b3:40:e6:ba:7c:f4:8f:4a:d9:5f:96:99: f9:12:67:11:5a:21:8f:e7:4d:e0:ce:93:88:68:1b:7a:75:eb: 17:84:bc:6b:dd:8c:5c:d4:64:42:2d:93:ae:90:9f:02:b9:5a: 27:3d:0f:7b:09:c6:6e:0a:c9:d1:94:83:e3:19:c3:d3:9f:c5: 45:98:e1:3c:a9:6f:84:fc:30:9c:3e:45:a2:1b:e8:2e:5f:18: b8:5c:d1:e2:8e:16:f8:5c:d4:f1:3b:81:e3:a2:5e:4d:09:16: 1f:42:c0:84:04:1f:e3:e4:50:c9:3d:46:c7:77:fc:9c:33:2e: 9d:e0:7b:d4:d9:cc:d7:01:65:1f:22:b4:1e:55:a1:33:76:dd: 3f:1b:ac:fc:6a:15:c7:25:e1:d3:88:ee:5d:89:5f:a8:2a:b0: 9d:05:c9:b7:75:41:98:34:4f:04:50:fc:01:2f:f4:9f:fc:4c: 0f:3a:5d:52 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgIUXKHPn2C074vqhQQb0o/VPsnOVIwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MTIwNzAwMDAzMVoX DTI2MDMwNzIzNTk1OVowejFJMEcGA1UEBRNAMDM3Mzg0MmI5NGRjYjU1MmM4NDA5 NTA0NTUzNzJjNjZmYTEwZjhjMzQ5MGU2MmNmMTBhYmJkNWQ3MjQ2NmZkNTEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv9ukBzoxuay//ckcax3Vant8WoM9 /jJiybLfn7bPYxvm1EcgPbEJu6Rj87qgDm7udv2ELp60CPZG+SLcMzy/ngYVJjOF hDF2iLxG9kSMpUfO+cQgOWtcHinWvez88ZbhZKFTghY43ZzHE1wmRtDw65YB0lgk RTSeiI0bDamF5PNbuV3pBqJhLxvMW6vpwVcC1MnMVabl5bTXnm2cG5QRRDt9WsW/ 9aKAhjdK3kxgo5iKOl6R3BCcvJtaEuAdEU94fXcBWG61/+WBIiiQglMQmaP3oCC3 ayRJNUa1rc6wECnPuNodt/rdAK3/HhzXrz3RftWlyop2KMX4pHhGh//WYwIDAQAB o4ICRzCCAkMwHQYDVR0OBBYEFH0yBM7xXNyBW66zZSSFVFFwGyflMB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx L2IzMTVkMzdiLTVmZWQtNDM5OC04Y2JlLWJjY2NmMjIyNGZmYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMBK9YwDQYJKoZIhvcNAQELBQADggEBACCzZAXYwDN5PJOoZA6+xiG8 HYbAlkO5iUOjWrXjLx209rDuHix1PEUVf1UtJJGdrlpZHwA4zm7YFBCdIvdCmP1p /oGvsUYoq5UJjZIzwrNA5rp89I9K2V+WmfkSZxFaIY/nTeDOk4hoG3p16xeEvGvd jFzUZEItk66QnwK5Wic9D3sJxm4KydGUg+MZw9OfxUWY4Typb4T8MJw+RaIb6C5f GLhc0eKOFvhc1PE7geOiXk0JFh9CwIQEH+PkUMk9Rsd3/JwzLp3ge9TZzNcBZR8i tB5VoTN23T8brPxqFccl4dOI7l2JX6gqsJ0Fybd1QZg0TwRQ/AEv9J/8TA86XVI= -----END CERTIFICATE-----Generated at Sat Dec 20 13:54:19 2025 by rpki-client