This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/b0c38f03-3ced-484e-aa5b-7b06f125ad74.roa File: b0c38f03-3ced-484e-aa5b-7b06f125ad74.roa (raw, json) Hash identifier: ZPaEiaIkqGArvOAxR9VbcVb1eSAYufI7NDFB9bKQ8bk= Subject key identifier: 03:74:2A:D3:1D:85:B9:DC:6F:56:3A:F4:84:3E:EB:5B:46:77:35:D2 Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Certificate serial: 10834D738050DA8832E786836E12A8C1978769DE Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/b0c38f03-3ced-484e-aa5b-7b06f125ad74.roa Signing time: Sat 07 Feb 2026 00:00:37 +0000 ROA not before: Sat 07 Feb 2026 00:00:37 +0000 ROA not after: Fri 08 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 43.224.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Feb 2026 00:02:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:83:4d:73:80:50:da:88:32:e7:86:83:6e:12:a8:c1:97:87:69:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD28A0000, serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883 Validity Not Before: Feb 7 00:00:37 2026 GMT Not After : May 8 23:59:59 2026 GMT Subject: serialNumber=8eaab62a59d205a909cc18554e87e3baa7ffb0ecd862318fe66549f268f1537f, CN=4257e925-715f-47a2-893e-0e3f97ec7e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d8:3d:4f:76:5f:1c:f0:34:b6:f6:26:57:ff: 52:19:22:8c:6a:b3:1d:4a:77:72:0f:76:9a:6a:ad: a6:c3:00:54:cb:df:1c:44:63:db:66:82:31:4b:cd: 37:a6:31:e2:60:76:72:51:05:f2:f0:32:e8:64:29: 5c:2c:a0:d1:a5:4e:84:51:a2:e1:59:3b:2c:48:bf: 39:44:6b:55:2a:bf:77:4e:82:2c:49:f5:eb:41:ab: 1c:5b:f0:10:db:75:f5:89:e8:67:8c:8e:39:2d:da: e8:a4:94:9a:f6:8b:9b:f6:a7:4c:df:0a:d6:1c:5f: ee:4f:c1:27:86:d8:2c:42:cd:37:3d:14:6c:e0:1f: 8a:49:03:0d:e7:d8:68:77:70:7c:df:3c:d7:18:35: ea:c2:e0:ce:67:8f:7b:b4:64:42:9e:cf:0d:30:2b: 68:08:3e:04:a7:59:05:85:a2:76:93:d4:9e:69:35: 37:64:35:c7:2d:c2:24:1c:d0:c9:30:41:3a:e7:95: 07:9c:6b:fb:33:a7:c3:9b:8e:66:70:64:52:22:b8: 84:8f:1d:32:fd:7f:9a:eb:4f:12:e9:6c:6a:8a:0b: 88:e6:22:35:d9:82:e5:ec:61:fe:fa:c0:b4:a5:a9: 3f:a6:09:7e:4b:d2:cf:5b:22:7e:53:1a:35:92:45: c2:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:74:2A:D3:1D:85:B9:DC:6F:56:3A:F4:84:3E:EB:5B:46:77:35:D2 X509v3 Authority Key Identifier: keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/b0c38f03-3ced-484e-aa5b-7b06f125ad74.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.224.144.0/22 Signature Algorithm: sha256WithRSAEncryption 1c:ba:45:f0:03:78:d1:b7:10:ef:1b:26:38:f9:15:65:15:13: ee:29:ca:d0:fb:ec:11:79:31:01:73:d9:dd:e8:2a:96:11:c5: 42:9d:c0:24:fa:cf:ea:f9:41:19:97:72:7e:56:bd:f6:67:da: a6:73:0f:cb:c7:bd:90:e3:c3:99:9c:8e:b7:59:7c:12:92:78: 2b:12:1f:3a:cf:7a:7b:96:3d:c0:bf:7d:2a:67:a0:fe:e4:48: d4:b6:82:b5:74:da:59:6d:0f:35:13:7e:b5:8c:86:0a:a4:5a: 66:3f:73:1c:0e:89:3c:22:19:d2:eb:a7:07:8a:e7:07:2d:89: 42:10:b1:46:58:f8:b0:4a:3f:b5:0e:98:80:46:e4:4d:42:59: 9f:d6:1f:dd:55:fb:c8:e8:bc:d0:56:95:ee:00:4b:c9:f9:ba: 5e:50:32:95:8b:a9:fa:19:fc:a6:3d:5a:fd:c1:5a:39:cb:da: 2e:d2:6f:3c:77:c3:9f:97:98:e1:05:52:59:29:1e:ec:12:ee: 19:af:e6:02:88:0b:13:f7:96:b7:64:d2:fd:65:50:be:f2:75: 27:b0:78:3e:c2:00:d7:32:3a:4f:f0:af:84:08:3b:b5:74:e6: bc:eb:3e:b6:39:a4:1f:9d:1f:60:3f:68:8f:ec:bf:94:e8:e8: cc:b2:c9:f6 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUEINNc4BQ2ogy54aDbhKowZeHad4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI2MDIwNzAwMDAzN1oX DTI2MDUwODIzNTk1OVowejFJMEcGA1UEBRNAOGVhYWI2MmE1OWQyMDVhOTA5Y2Mx ODU1NGU4N2UzYmFhN2ZmYjBlY2Q4NjIzMThmZTY2NTQ5ZjI2OGYxNTM3ZjEtMCsG A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAztg9T3ZfHPA0tvYmV/9SGSKMarMd SndyD3aaaq2mwwBUy98cRGPbZoIxS803pjHiYHZyUQXy8DLoZClcLKDRpU6EUaLh WTssSL85RGtVKr93ToIsSfXrQascW/AQ23X1iehnjI45LdropJSa9oub9qdM3wrW HF/uT8EnhtgsQs03PRRs4B+KSQMN59hod3B83zzXGDXqwuDOZ497tGRCns8NMCto CD4Ep1kFhaJ2k9SeaTU3ZDXHLcIkHNDJMEE655UHnGv7M6fDm45mcGRSIriEjx0y /X+a608S6WxqiguI5iI12YLl7GH++sC0pak/pgl+S9LPWyJ+Uxo1kkXC+wIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFAN0KtMdhbncb1Y69IQ+61tGdzXSMB8GA1UdIwQY MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2 L2IwYzM4ZjAzLTNjZWQtNDg0ZS1hYTViLTdiMDZmMTI1YWQ3NC5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK+CQMA0GCSqGSIb3DQEBCwUAA4IBAQAcukXwA3jRtxDvGyY4+RVl FRPuKcrQ++wReTEBc9nd6CqWEcVCncAk+s/q+UEZl3J+Vr32Z9qmcw/Lx72Q48OZ nI63WXwSkngrEh86z3p7lj3Av30qZ6D+5EjUtoK1dNpZbQ81E361jIYKpFpmP3Mc Dok8IhnS66cHiucHLYlCELFGWPiwSj+1DpiARuRNQlmf1h/dVfvI6LzQVpXuAEvJ +bpeUDKVi6n6GfymPVr9wVo5y9ou0m88d8Ofl5jhBVJZKR7sEu4Zr+YCiAsT95a3 ZNL9ZVC+8nUnsHg+wgDXMjpP8K+ECDu1dOa86z62OaQfnR9gP2iP7L+U6OjMssn2 -----END CERTIFICATE-----Generated at Fri Feb 13 16:42:37 2026 by rpki-client