This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/882a767c-0faf-4e71-a224-ecec47d98fcb.roa File: 882a767c-0faf-4e71-a224-ecec47d98fcb.roa (raw, json) Hash identifier: rgmgKkFA/1ZuGJ4QRcU97a/WiPe2lq2P1GX24tqN91U= Subject key identifier: 2B:2B:A1:1E:ED:99:D0:EB:49:84:6E:06:A8:5F:A2:5B:DB:E2:9E:46 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 2970F6840BB91424444AB3C8C4218D814CECF329 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/882a767c-0faf-4e71-a224-ecec47d98fcb.roa Signing time: Sat 06 Dec 2025 00:00:09 +0000 ROA not before: Sat 06 Dec 2025 00:00:09 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 122.248.224.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:70:f6:84:0b:b9:14:24:44:4a:b3:c8:c4:21:8d:81:4c:ec:f3:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Dec 6 00:00:09 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=fbb639ef47fa24c01e175a163998d09a930c74f2843ce0f6afb21f555ed6c09a, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:8f:ef:8c:f0:a8:ff:01:48:75:4b:c7:53:dc: aa:c2:6a:6b:9a:1f:ed:09:a8:42:9f:b4:cd:c7:86: d7:30:84:8c:1a:29:00:f8:97:c3:c2:c3:13:4c:44: 38:5b:5e:cc:6c:c2:a9:a5:06:ac:3d:cc:33:25:59: 35:98:f4:94:95:db:cb:04:8d:57:3b:38:69:38:a9: e4:aa:9d:a8:df:13:d9:35:54:91:49:e5:e2:72:02: 8e:b4:32:20:c4:61:4c:c2:62:27:99:26:8d:1f:d5: c7:3f:20:10:de:06:6b:16:c1:d7:68:4a:20:4d:f0: b0:93:25:4f:84:90:25:a8:bd:3a:70:91:95:2d:5f: 16:24:e1:12:8e:1d:14:7c:e8:62:14:10:bd:3f:81: fc:e8:da:0d:ef:5e:2a:c0:cd:5e:9c:e7:6a:be:b6: 0d:56:2c:1a:6e:d4:cd:8b:29:c1:05:60:96:85:ad: 4c:52:dd:bf:82:84:70:73:a3:9d:6f:36:eb:9f:3d: b3:06:d3:97:d9:ea:39:06:78:3c:d5:6f:39:17:45: 3a:e5:04:55:c3:65:7f:4e:76:8c:67:ea:6c:3d:82: da:dd:f7:6c:e0:0e:b1:a0:03:7a:84:68:28:ea:af: e7:fa:07:f0:a8:76:9e:19:d4:55:b3:16:05:4f:70: 5d:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:2B:A1:1E:ED:99:D0:EB:49:84:6E:06:A8:5F:A2:5B:DB:E2:9E:46 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/882a767c-0faf-4e71-a224-ecec47d98fcb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.224.0/21 Signature Algorithm: sha256WithRSAEncryption ee:bd:6f:06:e2:c6:41:92:97:ef:d6:88:ff:78:2b:f6:43:3a: 39:8e:a6:5e:c0:5b:da:f2:9e:f0:dc:59:2a:5a:a4:8f:86:a0: 39:24:ad:30:9c:ff:fc:03:14:ec:6b:7a:69:09:7e:5f:b0:e7: 97:bd:26:9a:76:8d:f7:e9:e6:76:92:4d:06:c8:82:cc:35:0f: 8f:1b:8c:1d:e7:88:c7:a0:10:42:f3:c4:54:75:e2:8c:ac:48: 98:c8:7f:32:df:f6:db:a4:57:0e:e6:18:d6:c4:00:04:42:52: 96:8e:31:c3:42:cf:03:a2:59:34:26:af:83:48:52:0c:fe:85: 70:46:79:b7:fa:94:c3:b2:ec:c7:35:d4:12:73:c0:f2:8a:72: bb:ac:ec:07:d3:a6:e6:68:3c:e6:e3:18:7b:a5:64:86:93:fb: 4d:25:6b:a8:96:59:04:22:18:f8:df:49:12:73:1b:6d:f9:6a: 03:57:25:7b:0b:ed:1d:f9:4f:95:56:67:9e:d0:96:3f:b5:0e: 3f:2e:0f:0d:ea:7b:49:f2:11:87:f1:dc:e7:4c:81:2c:21:69: ca:b2:53:3c:2b:7f:ad:2f:56:98:bb:88:2a:a5:24:51:9d:92: 39:12:bb:cc:22:57:17:3a:05:81:b0:b5:ed:9e:db:43:4c:30: be:c9:a3:01 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUKXD2hAu5FCRESrPIxCGNgUzs8ykwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTIwNjAwMDAwOVoX DTI2MDMwNjIzNTk1OVowejFJMEcGA1UEBRNAZmJiNjM5ZWY0N2ZhMjRjMDFlMTc1 YTE2Mzk5OGQwOWE5MzBjNzRmMjg0M2NlMGY2YWZiMjFmNTU1ZWQ2YzA5YTEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo4/vjPCo/wFIdUvHU9yqwmprmh/t CahCn7TNx4bXMISMGikA+JfDwsMTTEQ4W17MbMKppQasPcwzJVk1mPSUldvLBI1X OzhpOKnkqp2o3xPZNVSRSeXicgKOtDIgxGFMwmInmSaNH9XHPyAQ3gZrFsHXaEog TfCwkyVPhJAlqL06cJGVLV8WJOESjh0UfOhiFBC9P4H86NoN714qwM1enOdqvrYN ViwabtTNiynBBWCWha1MUt2/goRwc6Odbzbrnz2zBtOX2eo5Bng81W85F0U65QRV w2V/TnaMZ+psPYLa3fds4A6xoAN6hGgo6q/n+gfwqHaeGdRVsxYFT3BdowIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFCsroR7tmdDrSYRuBqhfolvb4p5GMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 Lzg4MmE3NjdjLTBmYWYtNGU3MS1hMjI0LWVjZWM0N2Q5OGZjYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDevjgMA0GCSqGSIb3DQEBCwUAA4IBAQDuvW8G4sZBkpfv1oj/eCv2 Qzo5jqZewFva8p7w3FkqWqSPhqA5JK0wnP/8AxTsa3ppCX5fsOeXvSaado336eZ2 kk0GyILMNQ+PG4wd54jHoBBC88RUdeKMrEiYyH8y3/bbpFcO5hjWxAAEQlKWjjHD Qs8Dolk0Jq+DSFIM/oVwRnm3+pTDsuzHNdQSc8DyinK7rOwH06bmaDzm4xh7pWSG k/tNJWuollkEIhj430kScxtt+WoDVyV7C+0d+U+VVmee0JY/tQ4/Lg8N6ntJ8hGH 8dznTIEsIWnKslM8K3+tL1aYu4gqpSRRnZI5ErvMIlcXOgWBsLXtnttDTDC+yaMB -----END CERTIFICATE-----Generated at Sat Dec 6 09:56:47 2025 by rpki-client