This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/177c9702-ee39-42d1-b76f-6cee77f4fb45.roa File: 177c9702-ee39-42d1-b76f-6cee77f4fb45.roa (raw, json) Hash identifier: MBCm/wpjWTCynLBAAXlhwqpHi+4pATpa9VJ7w3ENyd0= Subject key identifier: 5E:31:89:53:63:8C:14:F6:19:AC:1A:99:FB:9A:19:44:D2:99:81:F5 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 0BA989B4189B732AB64A426ABA304B381E3D1131 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/177c9702-ee39-42d1-b76f-6cee77f4fb45.roa Signing time: Sat 06 Dec 2025 00:00:05 +0000 ROA not before: Sat 06 Dec 2025 00:00:05 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 122.248.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:a9:89:b4:18:9b:73:2a:b6:4a:42:6a:ba:30:4b:38:1e:3d:11:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Dec 6 00:00:05 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=0411bf631da136f3700d8945668636861d12d1ffbadc93334d1999aea7b393a4, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:53:a5:f1:5c:0a:da:85:e8:0f:61:86:fb:ce: 0b:cf:3c:12:57:e6:9e:64:d8:03:b8:fd:38:ae:c4: d3:e0:dd:a5:d2:18:f3:b2:52:c3:0b:2a:08:1a:65: 4a:18:78:a4:9c:9f:13:10:93:8a:d2:df:90:e3:64: 05:f4:ad:36:d5:22:cc:87:1a:d7:ce:b8:4c:e6:d5: 76:f6:78:db:b0:b8:b7:9a:d6:72:46:fd:c3:33:51: 2a:66:a8:06:9c:44:a7:67:bb:ab:ed:c1:20:87:cc: 33:2e:ef:d9:93:e0:b7:f4:91:96:5e:45:e9:dc:91: 2a:09:f4:3c:03:fb:9d:d4:70:00:67:81:99:e6:d1: 95:1b:16:22:d2:66:9a:e0:6a:00:90:36:e4:33:af: 3d:c5:f5:51:99:08:79:03:d6:0d:09:57:34:87:40: 0b:31:ec:09:bb:42:be:fd:80:1c:dd:af:25:86:92: 32:aa:4c:77:16:e3:5d:ad:a4:46:c2:0e:0d:9d:e2: b5:a7:02:5f:96:44:67:0c:6e:fb:ff:6a:55:e9:d4: 25:22:23:40:3c:fb:90:fa:09:1d:36:8b:90:b4:6c: 11:9c:20:4b:85:33:c0:7e:62:2b:3e:6a:43:86:f6: ef:cb:b5:57:99:4c:c0:ad:75:f6:96:df:c2:3d:5b: 61:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:31:89:53:63:8C:14:F6:19:AC:1A:99:FB:9A:19:44:D2:99:81:F5 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/177c9702-ee39-42d1-b76f-6cee77f4fb45.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.240.0/20 Signature Algorithm: sha256WithRSAEncryption cf:2b:4c:79:ab:6e:62:4d:0f:33:13:78:4f:8b:3b:df:ca:4c: 2b:03:f0:cb:d2:d1:21:c9:e0:5e:e9:7f:69:04:d6:5c:30:92: 39:0c:a4:e3:fb:ae:c8:8a:46:bb:d9:ce:a6:18:db:b0:91:75: 48:5d:a9:75:18:34:76:59:a4:4d:ac:e1:25:0c:f3:ab:c9:07: b9:8b:31:8f:9b:26:ca:2a:1b:c0:80:41:15:6a:0f:34:de:27: 30:f6:2d:57:bf:b8:3e:d3:67:f8:22:af:e2:11:a8:fc:02:38: 94:84:f9:be:91:71:ac:c6:ae:71:1c:9d:de:79:c5:a3:e1:86: 64:2f:63:46:8c:c8:86:ed:d4:3f:5f:86:2b:26:34:5b:2b:a6: 59:40:39:87:7a:05:f1:48:3a:76:9c:4f:b8:90:83:8c:b2:99: 87:29:6d:47:e3:76:b7:2c:11:17:13:b1:42:c3:1e:b9:a9:24: db:7c:41:2d:43:9c:7b:ba:c1:82:3e:7f:a5:3b:80:35:12:8d: 49:ec:71:8b:76:b1:67:bf:93:04:a1:0e:f6:ca:89:7b:51:a4: 23:61:01:5e:97:13:73:f2:72:fe:b3:16:37:37:bf:48:45:61: 45:3c:4e:a4:55:b1:ea:f5:1b:eb:19:b1:68:23:02:e4:fd:28: d5:44:07:6b -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUC6mJtBibcyq2SkJqujBLOB49ETEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTIwNjAwMDAwNVoX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNAMDQxMWJmNjMxZGExMzZmMzcwMGQ4 OTQ1NjY4NjM2ODYxZDEyZDFmZmJhZGM5MzMzNGQxOTk5YWVhN2IzOTNhNDEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsFOl8VwK2oXoD2GG+84LzzwSV+ae ZNgDuP04rsTT4N2l0hjzslLDCyoIGmVKGHiknJ8TEJOK0t+Q42QF9K021SLMhxrX zrhM5tV29njbsLi3mtZyRv3DM1EqZqgGnESnZ7ur7cEgh8wzLu/Zk+C39JGWXkXp 3JEqCfQ8A/ud1HAAZ4GZ5tGVGxYi0maa4GoAkDbkM689xfVRmQh5A9YNCVc0h0AL MewJu0K+/YAc3a8lhpIyqkx3FuNdraRGwg4NneK1pwJflkRnDG77/2pV6dQlIiNA PPuQ+gkdNouQtGwRnCBLhTPAfmIrPmpDhvbvy7VXmUzArXX2lt/CPVthBwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFF4xiVNjjBT2GawamfuaGUTSmYH1MB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzE3N2M5NzAyLWVlMzktNDJkMS1iNzZmLTZjZWU3N2Y0ZmI0NS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEevjwMA0GCSqGSIb3DQEBCwUAA4IBAQDPK0x5q25iTQ8zE3hPizvf ykwrA/DL0tEhyeBe6X9pBNZcMJI5DKTj+67Iika72c6mGNuwkXVIXal1GDR2WaRN rOElDPOryQe5izGPmybKKhvAgEEVag803icw9i1Xv7g+02f4Iq/iEaj8AjiUhPm+ kXGsxq5xHJ3eecWj4YZkL2NGjMiG7dQ/X4YrJjRbK6ZZQDmHegXxSDp2nE+4kIOM spmHKW1H43a3LBEXE7FCwx65qSTbfEEtQ5x7usGCPn+lO4A1Eo1J7HGLdrFnv5ME oQ72yol7UaQjYQFelxNz8nL+sxY3N79IRWFFPE6kVbHq9RvrGbFoIwLk/SjVRAdr -----END CERTIFICATE-----Generated at Sat Dec 6 11:55:04 2025 by rpki-client