This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa File: e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa (raw, json) Hash identifier: 9OizPigUZE6/PAl/qV5jIptlHQkQvMFcwl8vNkU9a3A= Subject key identifier: 56:6B:A3:61:9A:77:C1:87:3A:0B:80:FC:21:14:4F:3E:7B:80:AA:00 Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Certificate serial: 49D0128266C6AD69069E5F734BE3FDC54BB8C38F Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa Signing time: Tue 11 Nov 2025 00:00:41 +0000 ROA not before: Tue 11 Nov 2025 00:00:41 +0000 ROA not after: Tue 16 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 122.248.232.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 00:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:d0:12:82:66:c6:ad:69:06:9e:5f:73:4b:e3:fd:c5:4b:b8:c3:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91609040001, serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D Validity Not Before: Nov 11 00:00:41 2025 GMT Not After : Dec 16 23:59:59 2025 GMT Subject: serialNumber=84a6a2c54bf4d6ce2a7b53deac45bb9b01a6e8a089358b96f47e0e25772faa1b, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:63:37:e1:cc:ed:ff:2e:80:34:b8:cc:d0:71: c6:df:43:a4:e7:10:ad:88:b2:60:93:77:e5:f7:5c: 39:16:96:8d:a8:94:05:47:ce:a6:2a:a6:6b:22:b3: 7e:30:57:88:70:8a:48:80:17:56:a2:c1:7f:80:14: db:58:a1:a4:ce:3d:20:d0:6c:7b:7f:a4:77:6f:76: a3:ca:2b:29:d0:e5:0e:1d:99:a9:46:d6:03:13:4f: 6d:61:e1:0c:5a:58:e9:2c:6e:8e:7f:c4:00:e8:35: f8:66:3f:ad:9a:29:08:5b:76:0a:e7:c3:2f:be:e6: 15:32:52:88:b9:d5:e0:64:9f:e6:83:5d:d6:3f:39: 34:00:4b:d0:b8:e7:61:28:1c:98:95:80:40:e1:a6: a3:4d:8f:f7:cf:e9:20:46:a7:b7:79:52:97:04:f5: 12:bf:0f:6f:44:76:c1:0f:9c:5b:6a:96:ec:92:e7: d0:54:02:11:a0:dd:23:e7:72:e4:c3:82:b8:47:9d: 05:9b:0d:07:c2:b9:b2:d3:e3:d8:0d:6a:e5:86:0c: af:78:9c:e8:08:b8:18:71:79:df:b8:43:4b:1a:95: 2e:15:26:73:52:c7:68:02:81:7c:09:7d:58:a0:84: 14:20:d2:20:4c:4e:ca:44:85:2b:4f:f1:e0:16:00: 01:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:6B:A3:61:9A:77:C1:87:3A:0B:80:FC:21:14:4F:3E:7B:80:AA:00 X509v3 Authority Key Identifier: keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/e32c9cbd-a241-4df6-99bb-e7d15abe4b3b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.248.232.0/21 Signature Algorithm: sha256WithRSAEncryption 00:95:50:dd:9c:59:38:47:14:10:7c:72:c2:29:d0:b6:33:81: c1:9d:1a:a0:78:3e:32:44:0b:41:4a:f2:7e:37:e6:a7:4b:9a: 13:20:80:db:5d:c6:0a:6c:98:27:03:a7:a3:4c:15:0d:ef:79: f8:82:a5:43:e1:2d:98:08:56:02:ee:e9:f6:8e:91:cb:52:5a: a0:cd:21:42:91:e7:76:5d:c2:60:06:5f:0f:2b:63:88:84:e2: d1:30:03:3a:80:48:ae:cc:e6:22:95:e4:72:7d:83:8a:0c:6a: f6:ff:b2:ca:3c:b4:5b:f6:1d:a7:5c:8f:2c:d0:e9:57:cd:df: 10:a9:ba:9c:e0:b4:48:e0:d7:be:a9:a0:75:8a:3c:16:41:d6: 1f:46:03:bc:bb:eb:a9:7c:2e:c3:5e:cf:13:eb:09:0a:bd:ca: dd:0d:60:2a:36:00:88:5b:6e:0a:f7:17:49:eb:3b:f9:cd:10: 26:db:dd:7b:b5:0d:58:3b:89:84:a1:a6:d4:ba:db:8a:ea:4f: a6:e6:0d:f4:09:2b:df:f5:f6:2a:02:ef:20:b5:9b:97:ec:35: 8d:24:23:6c:66:de:9f:0c:e3:5f:62:8a:98:53:18:5a:43:17: de:21:27:a7:fb:f0:09:bb:3d:03:79:84:3e:2a:31:30:81:5a: 4f:28:95:72 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUSdASgmbGrWkGnl9zS+P9xUu4w48wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNjA5MDQwMDAxMTEwLwYDVQQFEyhCQ0U5QkExMTI5 MkY4NDc1MTJDMEE4NDEyRTUxRTZFM0JBMEQ5OTFEMB4XDTI1MTExMTAwMDA0MVoX DTI1MTIxNjIzNTk1OVowejFJMEcGA1UEBRNAODRhNmEyYzU0YmY0ZDZjZTJhN2I1 M2RlYWM0NWJiOWIwMWE2ZThhMDg5MzU4Yjk2ZjQ3ZTBlMjU3NzJmYWExYjEtMCsG A1UEAxMkMTY4NDExMWUtMzFjMS00MmU2LThmMjAtZmM5YWI4YjVjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuGM34czt/y6ANLjM0HHG30Ok5xCt iLJgk3fl91w5FpaNqJQFR86mKqZrIrN+MFeIcIpIgBdWosF/gBTbWKGkzj0g0Gx7 f6R3b3ajyisp0OUOHZmpRtYDE09tYeEMWljpLG6Of8QA6DX4Zj+tmikIW3YK58Mv vuYVMlKIudXgZJ/mg13WPzk0AEvQuOdhKByYlYBA4aajTY/3z+kgRqe3eVKXBPUS vw9vRHbBD5xbapbskufQVAIRoN0j53Lkw4K4R50Fmw0Hwrmy0+PYDWrlhgyveJzo CLgYcXnfuENLGpUuFSZzUsdoAoF8CX1YoIQUINIgTE7KRIUrT/HgFgAB2wIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFFZro2Gad8GHOguA/CEUTz57gKoAMB8GA1UdIwQY MBaAFLzpuhEpL4R1EsCoQS5R5uO6DZkdMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi92T202RVNr dmhIVVN3S2hCTGxIbTQ3b05tUjAuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYmQ0OGExZmEtMzQ3MS00YWIyLTg1MDgtYWQzNmI5NjgxM2U0 L2UzMmM5Y2JkLWEyNDEtNGRmNi05OWJiLWU3ZDE1YWJlNGIzYi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9iZDQ4YTFmYS0zNDcxLTRhYjItODUwOC1hZDM2 Yjk2ODEzZTQvMjIwY2VlMGMtNjAwMi00MDlhLTgxOTQtMzhlMjE2YzAwOTZjLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDevjoMA0GCSqGSIb3DQEBCwUAA4IBAQAAlVDdnFk4RxQQfHLCKdC2 M4HBnRqgeD4yRAtBSvJ+N+anS5oTIIDbXcYKbJgnA6ejTBUN73n4gqVD4S2YCFYC 7un2jpHLUlqgzSFCked2XcJgBl8PK2OIhOLRMAM6gEiuzOYileRyfYOKDGr2/7LK PLRb9h2nXI8s0OlXzd8Qqbqc4LRI4Ne+qaB1ijwWQdYfRgO8u+upfC7DXs8T6wkK vcrdDWAqNgCIW24K9xdJ6zv5zRAm2917tQ1YO4mEoabUutuK6k+m5g30CSvf9fYq Au8gtZuX7DWNJCNsZt6fDONfYoqYUxhaQxfeISen+/AJuz0DeYQ+KjEwgVpPKJVy -----END CERTIFICATE-----Generated at Wed Dec 3 01:16:19 2025 by rpki-client