This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/d953b731-7921-47dd-abf3-b7b8cc367900.roa File: d953b731-7921-47dd-abf3-b7b8cc367900.roa (raw, json) Hash identifier: aXN/Mp7fby5XcX6lsymhb6JcsHglVTPldRt7Y8yfOuw= Subject key identifier: 1C:ED:BA:24:C2:78:41:FD:37:03:99:BD:E5:E2:54:F8:BC:E2:63:2A Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 72D02AA5BE9CCDD4FFCFCD7604E2A3CB84E16262 Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/d953b731-7921-47dd-abf3-b7b8cc367900.roa Signing time: Tue 11 Nov 2025 00:00:36 +0000 ROA not before: Tue 11 Nov 2025 00:00:36 +0000 ROA not after: Tue 16 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 122.248.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 00:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:d0:2a:a5:be:9c:cd:d4:ff:cf:cd:76:04:e2:a3:cb:84:e1:62:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 11 00:00:36 2025 GMT Not After : Dec 16 23:59:59 2025 GMT Subject: serialNumber=f4e3189b4a3ddf3f2cea1726d65d3913d2e3c92d267d1d1bd50516ccac1e6c37, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d2:82:e1:f1:25:d2:11:a5:7e:48:8a:21:ee: a2:4e:de:8e:45:25:22:d5:14:72:5b:55:f6:1f:10: f5:85:b0:86:34:8d:40:48:ba:87:91:09:0b:d4:27: d2:76:60:06:1f:b0:9f:98:a1:e9:69:34:73:23:79: 6e:d9:59:8d:c0:4b:b4:0b:6e:5a:ce:4d:ba:6a:7d: 79:5b:f1:d3:e0:3d:f1:db:37:63:40:44:aa:84:ce: 0a:08:a4:08:8c:b4:50:a2:96:07:32:87:09:59:26: f9:e8:32:7b:89:13:a3:13:29:dc:1e:c2:d3:53:25: 01:10:91:37:a3:e5:c0:95:7a:e1:68:e8:27:04:ec: 2b:e6:61:a8:c7:97:a2:80:5a:96:1e:c3:fc:fe:c7: ec:29:15:4f:ca:34:17:8a:31:6c:ba:d4:77:8b:08: 99:ff:0a:f3:81:d9:a5:1b:62:97:20:ec:77:7e:e2: bb:b8:55:ad:3d:2c:e1:e7:e1:64:94:53:37:ae:84: 18:4a:14:f3:36:5e:78:11:20:2d:29:93:2c:52:3e: 42:62:94:f0:87:d7:ac:6f:9b:0b:2d:09:b9:c2:13: a1:8f:3c:3e:05:51:92:2d:e7:05:de:f6:8e:81:77: 2d:b3:d9:75:6d:d4:7f:dc:07:70:15:2d:c9:50:fa: f6:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:ED:BA:24:C2:78:41:FD:37:03:99:BD:E5:E2:54:F8:BC:E2:63:2A X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/d953b731-7921-47dd-abf3-b7b8cc367900.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.192.0/18 Signature Algorithm: sha256WithRSAEncryption 0d:bb:1a:03:1e:7a:5e:ff:19:d4:0e:3a:35:98:83:0b:6d:2b: dc:e2:e7:0a:63:c2:9e:7e:1f:69:22:9a:14:cd:f0:fd:f9:92: 6c:a2:87:05:13:a6:c6:ed:01:3a:3a:1e:ff:db:68:e3:e7:8e: 95:33:08:a6:0b:ce:35:cd:c9:ce:dd:0d:29:c2:2a:7c:ea:17: 7d:c4:e5:0d:8a:15:87:82:b5:0f:f5:20:3d:e6:27:5d:28:ee: 1c:27:76:22:dd:ea:22:06:84:90:98:09:dc:2c:d0:ec:af:0c: eb:26:ed:18:2b:09:6d:e8:b1:a8:28:23:da:c9:94:f3:fc:90: 6d:ca:3d:e5:82:e3:87:30:a3:b1:37:55:56:e7:02:75:8d:cf: 32:bd:51:94:a9:47:3a:63:5b:4e:25:88:a0:5b:12:96:e2:7d: 82:6d:54:a0:79:69:ed:b4:3e:8c:f6:39:e6:29:ad:04:6e:12: 82:8e:86:27:74:50:d6:25:3f:36:b8:82:85:b3:f5:53:7a:dd: 56:a1:7c:d9:6d:20:49:f0:d8:4a:82:ec:6a:da:24:6a:61:ab: c6:e4:82:f6:dd:97:46:ae:8a:b8:f2:1a:2b:79:fd:b4:f3:d5: 69:7b:e3:6e:87:88:0b:cd:55:e6:6c:c6:24:2d:b9:07:68:ec: e4:c6:1e:37 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUctAqpb6czdT/z812BOKjy4ThYmIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTExMTAwMDAzNloX DTI1MTIxNjIzNTk1OVowejFJMEcGA1UEBRNAZjRlMzE4OWI0YTNkZGYzZjJjZWEx NzI2ZDY1ZDM5MTNkMmUzYzkyZDI2N2QxZDFiZDUwNTE2Y2NhYzFlNmMzNzEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm9KC4fEl0hGlfkiKIe6iTt6ORSUi 1RRyW1X2HxD1hbCGNI1ASLqHkQkL1CfSdmAGH7CfmKHpaTRzI3lu2VmNwEu0C25a zk26an15W/HT4D3x2zdjQESqhM4KCKQIjLRQopYHMocJWSb56DJ7iROjEyncHsLT UyUBEJE3o+XAlXrhaOgnBOwr5mGox5eigFqWHsP8/sfsKRVPyjQXijFsutR3iwiZ /wrzgdmlG2KXIOx3fuK7uFWtPSzh5+FklFM3roQYShTzNl54ESAtKZMsUj5CYpTw h9esb5sLLQm5whOhjzw+BVGSLecF3vaOgXcts9l1bdR/3AdwFS3JUPr20wIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFBztuiTCeEH9NwOZveXiVPi84mMqMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 L2Q5NTNiNzMxLTc5MjEtNDdkZC1hYmYzLWI3YjhjYzM2NzkwMC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGevjAMA0GCSqGSIb3DQEBCwUAA4IBAQANuxoDHnpe/xnUDjo1mIML bSvc4ucKY8Kefh9pIpoUzfD9+ZJsoocFE6bG7QE6Oh7/22jj546VMwimC841zcnO 3Q0pwip86hd9xOUNihWHgrUP9SA95iddKO4cJ3Yi3eoiBoSQmAncLNDsrwzrJu0Y Kwlt6LGoKCPayZTz/JBtyj3lguOHMKOxN1VW5wJ1jc8yvVGUqUc6Y1tOJYigWxKW 4n2CbVSgeWnttD6M9jnmKa0EbhKCjoYndFDWJT82uIKFs/VTet1WoXzZbSBJ8NhK guxq2iRqYavG5IL23ZdGroq48horef2089Vpe+Nuh4gLzVXmbMYkLbkHaOzkxh43 -----END CERTIFICATE-----Generated at Wed Dec 3 01:18:48 2025 by rpki-client