This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa File: 245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa (raw, json) Hash identifier: 77L/bNHp8w4yFCp+OLzg5ldZu/g8b3ZjRhypYKOpX2o= Subject key identifier: 2F:06:3E:62:C2:6B:27:73:3A:49:15:27:2E:CE:FB:BA:BE:8C:F2:C4 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 22AE7EDA1728214D943D2C1D64B6271E90CBD929 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa Signing time: Tue 11 Nov 2025 00:00:38 +0000 ROA not before: Tue 11 Nov 2025 00:00:38 +0000 ROA not after: Tue 16 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 122.248.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 00:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:ae:7e:da:17:28:21:4d:94:3d:2c:1d:64:b6:27:1e:90:cb:d9:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 11 00:00:38 2025 GMT Not After : Dec 16 23:59:59 2025 GMT Subject: serialNumber=04a9f4f798c85f5360df3e9b025c1593dc6813be22751d5fcc53bf0d25c5e617, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:63:85:15:7a:e3:7e:94:ad:bd:ff:54:57:62: 70:40:93:04:e5:2a:89:8c:f3:f6:0d:9d:81:0b:e9: 47:fc:00:f9:7e:a8:c2:73:91:89:37:9f:7f:92:50: 30:39:38:b5:09:b4:32:fa:c1:04:53:37:34:ec:b8: af:31:6b:d1:d9:ad:81:1d:9f:7c:f6:33:45:3f:13: ad:a4:e3:1a:f8:69:41:b2:33:91:b7:eb:b8:77:f1: 7f:64:43:9c:df:91:84:1e:00:ed:6d:78:64:93:7a: c4:5f:23:ef:80:9c:3e:96:66:28:34:aa:ee:f6:14: a4:c1:1e:4c:2a:6b:7d:cd:8c:d7:b4:10:a7:5a:ce: 58:72:bd:f7:ff:f6:1f:06:d5:5a:54:19:bb:c6:5e: ac:71:17:37:e2:1a:ba:5c:09:33:9a:31:e9:5d:3d: f2:46:af:89:db:1f:46:d4:9a:36:fe:f2:ef:4d:a2: 32:35:d2:d5:2e:be:99:e3:99:1c:3d:72:f0:11:ad: 55:b0:59:11:08:67:4b:ec:47:91:91:49:3b:61:28: c8:dd:62:d0:13:bd:5b:66:62:c7:a1:96:5e:c3:93: f7:bf:8d:be:fa:0c:eb:4a:f4:dd:13:64:a7:ee:18: 15:a3:a5:19:cd:cc:ac:21:f4:e1:b0:34:37:14:86: 2f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:06:3E:62:C2:6B:27:73:3A:49:15:27:2E:CE:FB:BA:BE:8C:F2:C4 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/245fa4eb-6d0d-4df7-9e2d-29a7d39adcb9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.192.0/19 Signature Algorithm: sha256WithRSAEncryption ec:ec:89:66:48:24:bc:26:00:e7:bc:64:b8:f7:f0:ea:88:6c: 8d:7c:ca:47:ec:fd:1a:3e:d8:33:c9:8c:50:cb:49:50:6f:07: 43:49:7f:4a:90:67:e1:1f:c4:df:33:e3:72:3d:71:bf:63:74: 47:ce:cb:5b:52:e0:2d:b0:c7:55:2c:0b:f9:65:ac:88:2e:c1: 60:fb:b3:9b:45:7c:b3:56:f0:17:ae:6e:76:aa:31:58:4d:69: d1:16:4e:42:62:ff:98:8e:f6:7c:0f:8c:ab:57:20:19:d2:13: 7d:3d:48:a7:79:83:2e:65:18:ac:03:4f:91:ab:34:09:52:70: a8:f3:98:a3:9e:92:26:7a:5d:ae:dd:10:4c:e7:0e:9f:34:33: 28:e1:9f:24:a8:dd:7f:6d:6e:45:c3:76:1d:4e:62:d8:35:69: 3d:1c:81:b1:40:a4:a5:d4:cb:a8:e2:05:1b:bd:e3:d9:d7:0a: 4b:ac:ce:cd:57:43:78:bf:34:3e:70:c6:00:ea:c1:99:65:40: c8:7b:a4:b6:bc:d2:a7:0f:fe:8d:1b:c1:6f:10:74:86:3a:4e: 8c:5f:87:88:ab:43:ec:f8:16:4e:62:71:cb:95:aa:8f:25:4f: c8:66:b8:39:5e:8a:80:23:b1:03:9c:77:69:e9:ea:99:2f:0f: d5:ea:c6:83 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUIq5+2hcoIU2UPSwdZLYnHpDL2SkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTExMTAwMDAzOFoX DTI1MTIxNjIzNTk1OVowejFJMEcGA1UEBRNAMDRhOWY0Zjc5OGM4NWY1MzYwZGYz ZTliMDI1YzE1OTNkYzY4MTNiZTIyNzUxZDVmY2M1M2JmMGQyNWM1ZTYxNzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyWOFFXrjfpStvf9UV2JwQJME5SqJ jPP2DZ2BC+lH/AD5fqjCc5GJN59/klAwOTi1CbQy+sEEUzc07LivMWvR2a2BHZ98 9jNFPxOtpOMa+GlBsjORt+u4d/F/ZEOc35GEHgDtbXhkk3rEXyPvgJw+lmYoNKru 9hSkwR5MKmt9zYzXtBCnWs5Ycr33//YfBtVaVBm7xl6scRc34hq6XAkzmjHpXT3y Rq+J2x9G1Jo2/vLvTaIyNdLVLr6Z45kcPXLwEa1VsFkRCGdL7EeRkUk7YSjI3WLQ E71bZmLHoZZew5P3v42++gzrSvTdE2Sn7hgVo6UZzcysIfThsDQ3FIYvlwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFC8GPmLCaydzOkkVJy7O+7q+jPLEMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 LzI0NWZhNGViLTZkMGQtNGRmNy05ZTJkLTI5YTdkMzlhZGNiOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFevjAMA0GCSqGSIb3DQEBCwUAA4IBAQDs7IlmSCS8JgDnvGS49/Dq iGyNfMpH7P0aPtgzyYxQy0lQbwdDSX9KkGfhH8TfM+NyPXG/Y3RHzstbUuAtsMdV LAv5ZayILsFg+7ObRXyzVvAXrm52qjFYTWnRFk5CYv+YjvZ8D4yrVyAZ0hN9PUin eYMuZRisA0+RqzQJUnCo85ijnpImel2u3RBM5w6fNDMo4Z8kqN1/bW5Fw3YdTmLY NWk9HIGxQKSl1Muo4gUbvePZ1wpLrM7NV0N4vzQ+cMYA6sGZZUDIe6S2vNKnD/6N G8FvEHSGOk6MX4eIq0Ps+BZOYnHLlaqPJU/IZrg5XoqAI7EDnHdp6eqZLw/V6saD -----END CERTIFICATE-----Generated at Wed Dec 3 01:16:19 2025 by rpki-client