This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/9b8e963e-7fa2-4ba1-a78a-4d1fd7989b32.roa File: 9b8e963e-7fa2-4ba1-a78a-4d1fd7989b32.roa (raw, json) Hash identifier: zdOl15xiPO/2p9k0fkfFESjOUUAzls9mUEj1rb9KzuY= Subject key identifier: 0C:55:96:01:F6:4D:21:07:0C:9A:63:51:B3:6A:5B:F6:D7:0B:96:AC Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 0748AEB0AE9BF88C8E2B007D7A10512F1C4CDD46 Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/9b8e963e-7fa2-4ba1-a78a-4d1fd7989b32.roa Signing time: Fri 06 Feb 2026 00:00:04 +0000 ROA not before: Fri 06 Feb 2026 00:00:04 +0000 ROA not after: Thu 07 May 2026 23:59:59 +0000 asID: 7224 IP address blocks: 43.250.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Feb 2026 00:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:48:ae:b0:ae:9b:f8:8c:8e:2b:00:7d:7a:10:51:2f:1c:4c:dd:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Feb 6 00:00:04 2026 GMT Not After : May 7 23:59:59 2026 GMT Subject: serialNumber=09d3e1ec2fea224b83757ee4c4c4f9453bdc6062abaa610832eda85443c7db7a, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2c:23:c0:ac:c3:0e:85:74:15:5d:f6:0f:4d: e2:f9:1f:2d:c4:28:3b:50:a0:74:14:b5:35:bb:7a: 75:f7:96:fd:14:b7:0a:72:cb:e9:83:21:dd:22:84: cc:7d:db:29:a2:66:9a:23:5f:96:69:2b:3b:42:8a: 68:f0:68:29:25:11:27:a6:b0:f3:62:8f:ca:88:63: 80:06:98:32:4d:90:b2:21:9e:42:b7:67:1a:c9:5b: a2:d6:43:2d:5a:20:fe:79:99:52:8f:21:31:3f:d8: 6a:3d:01:0f:8c:63:b3:11:66:2c:24:21:3a:cb:e1: 2c:48:bc:7f:08:50:dc:74:3f:13:c0:d8:1e:ae:1c: 77:3b:e9:93:53:38:6c:d6:c8:cb:d8:e9:dc:4e:89: d1:71:17:38:d0:e3:6a:d7:1b:57:89:18:9c:a1:01: eb:a7:44:d8:72:d5:34:04:d5:b1:9b:91:4f:81:d2: 88:b2:5a:91:f1:d4:7f:bb:ee:b8:cb:c5:b2:d8:dc: 26:23:24:b4:66:1a:b2:6f:34:1a:1a:5b:2b:ac:13: b7:70:4b:76:d0:35:5a:0a:7b:e5:ba:15:87:ad:71: 68:bf:a5:f9:6a:25:70:a9:d4:8d:07:ae:72:47:83: dc:95:39:44:c8:23:15:42:8a:1a:4c:c8:69:c9:d1: 20:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:55:96:01:F6:4D:21:07:0C:9A:63:51:B3:6A:5B:F6:D7:0B:96:AC X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/9b8e963e-7fa2-4ba1-a78a-4d1fd7989b32.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.250.196.0/22 Signature Algorithm: sha256WithRSAEncryption ae:e9:1e:ed:39:3f:7b:50:a1:f1:c4:53:e3:f6:bb:ae:70:3d: ff:2a:1c:4e:2f:10:5e:8d:4c:de:7e:92:b6:61:9e:a3:c1:27: ca:2d:ee:23:9a:56:ae:aa:04:ca:06:14:6e:63:bd:a3:ae:06: 92:5d:92:c0:2a:60:e0:ff:d8:64:22:f3:9f:84:fe:e0:13:0d: da:13:b8:99:9c:67:d6:c9:88:44:c5:4f:fe:fb:b4:dc:6b:9f: bf:90:60:ea:9c:e9:ab:07:bf:b0:87:eb:20:98:c1:05:c0:e9: d6:6a:cb:0d:89:b9:48:39:2d:55:43:09:34:9a:e2:41:84:49: d5:37:2b:39:4f:2c:df:cd:36:ac:50:bb:36:1f:70:c2:8b:7a: ca:5a:0d:12:03:93:49:70:fc:65:34:94:d2:27:b5:21:b5:0d: d5:9d:7c:a4:a9:14:1f:df:9b:7b:a5:b6:a1:c9:f1:63:a8:51: 96:cd:6c:15:97:aa:89:40:9e:30:dd:1d:85:1a:80:c1:49:9c: 33:42:99:14:0f:3a:a0:23:c6:40:da:c5:62:1b:a4:15:9a:07: 34:fc:92:59:04:a5:27:3c:9c:24:31:89:b9:dd:78:56:51:c8: af:f3:52:4b:ee:03:85:fc:59:41:3e:9f:ba:2c:34:91:5d:8e: fc:81:99:fa -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgIUB0iusK6b+IyOKwB9ehBRLxxM3UYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDIwNjAwMDAwNFoX DTI2MDUwNzIzNTk1OVowejFJMEcGA1UEBRNAMDlkM2UxZWMyZmVhMjI0YjgzNzU3 ZWU0YzRjNGY5NDUzYmRjNjA2MmFiYWE2MTA4MzJlZGE4NTQ0M2M3ZGI3YTEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsywjwKzDDoV0FV32D03i+R8txCg7 UKB0FLU1u3p195b9FLcKcsvpgyHdIoTMfdspomaaI1+WaSs7Qopo8GgpJREnprDz Yo/KiGOABpgyTZCyIZ5Ct2cayVui1kMtWiD+eZlSjyExP9hqPQEPjGOzEWYsJCE6 y+EsSLx/CFDcdD8TwNgerhx3O+mTUzhs1sjL2OncTonRcRc40ONq1xtXiRicoQHr p0TYctU0BNWxm5FPgdKIslqR8dR/u+64y8Wy2NwmIyS0ZhqybzQaGlsrrBO3cEt2 0DVaCnvluhWHrXFov6X5aiVwqdSNB65yR4PclTlEyCMVQooaTMhpydEglQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFAxVlgH2TSEHDJpjUbNqW/bXC5asMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 LzliOGU5NjNlLTdmYTItNGJhMS1hNzhhLTRkMWZkNzk4OWIzMi5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCK/rEMA0GCSqGSIb3DQEBCwUAA4IBAQCu6R7tOT97UKHxxFPj9ruu cD3/KhxOLxBejUzefpK2YZ6jwSfKLe4jmlauqgTKBhRuY72jrgaSXZLAKmDg/9hk IvOfhP7gEw3aE7iZnGfWyYhExU/++7Tca5+/kGDqnOmrB7+wh+sgmMEFwOnWassN iblIOS1VQwk0muJBhEnVNys5TyzfzTasULs2H3DCi3rKWg0SA5NJcPxlNJTSJ7Uh tQ3VnXykqRQf35t7pbahyfFjqFGWzWwVl6qJQJ4w3R2FGoDBSZwzQpkUDzqgI8ZA 2sViG6QVmgc0/JJZBKUnPJwkMYm53XhWUciv81JL7gOF/FlBPp+6LDSRXY78gZn6 -----END CERTIFICATE-----Generated at Sun Feb 8 16:15:06 2026 by rpki-client