This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/cc671c79-21f0-4fff-b898-595966ecd1a9.roa File: cc671c79-21f0-4fff-b898-595966ecd1a9.roa (raw, json) Hash identifier: yfUIFh+TomPlrcVQIlX9VNrU1he+sH0NOx9nr1TTQok= Subject key identifier: B1:FA:24:48:2E:F6:A1:4A:7B:12:68:BD:2E:BD:D9:FB:BC:CA:A2:12 Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Certificate serial: 2183B9C188CA116F1D862737DBB89D21797D2B3C Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/cc671c79-21f0-4fff-b898-595966ecd1a9.roa Signing time: Fri 06 Feb 2026 00:00:05 +0000 ROA not before: Fri 06 Feb 2026 00:00:05 +0000 ROA not after: Thu 07 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2400:6700:ff00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/manifest.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Feb 2026 00:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:83:b9:c1:88:ca:11:6f:1d:86:27:37:db:b8:9d:21:79:7d:2b:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509EC0000, serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC Validity Not Before: Feb 6 00:00:05 2026 GMT Not After : May 7 23:59:59 2026 GMT Subject: serialNumber=2d9b0d0af88f8957e208b7ba8615b633318ce38513770391cb3113ff2ec9071f, CN=58810403-9ba0-403a-809b-c78252ab7f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e4:0c:16:d4:06:92:73:4a:8f:e5:4a:d5:50: e4:e5:09:35:b4:f0:11:9b:45:11:63:19:f6:6f:06: 23:93:b3:22:fb:30:a4:b4:4a:f5:6f:d2:9e:1e:ba: 0a:57:b6:3a:b1:b1:33:fa:2d:6a:c2:e2:4b:bd:ef: c4:94:22:00:49:68:e3:53:1f:09:12:08:fd:e5:99: e1:ca:82:b1:44:70:9b:9e:86:3a:8f:8d:08:cc:0a: cc:49:5f:48:45:b6:c7:ce:7b:d6:56:ec:e8:3b:26: 1b:98:5f:26:ed:b9:ba:49:d9:f0:81:96:8d:af:b6: af:89:69:d2:18:7a:e8:bb:0b:71:95:b1:5f:7d:62: 58:4a:81:78:af:62:53:57:8c:37:aa:6e:4e:e8:c9: ab:71:d8:8d:87:51:98:d6:5e:75:81:49:e1:35:78: 3a:4f:c5:13:66:99:a1:fc:a2:69:78:ca:23:6f:4f: 6a:e6:c1:12:ee:bd:48:eb:31:cf:51:a2:c1:15:51: 66:7e:1f:ee:6a:0a:42:a9:6b:ff:37:29:35:fb:10: c7:dc:a2:7d:bf:61:15:30:ad:1e:af:bc:41:ce:36: e6:fd:2a:47:56:50:3a:90:54:23:e0:57:b1:3f:30: e7:17:a9:da:a7:26:c6:2d:9a:2e:da:3e:06:63:e3: 51:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:FA:24:48:2E:F6:A1:4A:7B:12:68:BD:2E:BD:D9:FB:BC:CA:A2:12 X509v3 Authority Key Identifier: keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/cc671c79-21f0-4fff-b898-595966ecd1a9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6700:ff00::/48 Signature Algorithm: sha256WithRSAEncryption ad:cc:23:b5:a1:c9:d5:37:9b:15:8e:9d:04:9f:b5:6f:2e:29: f4:c2:56:92:6b:dc:2e:92:59:c8:9c:5f:f6:4f:2b:cb:45:55: 4f:ea:ea:78:62:d0:d1:1f:2b:8b:28:c0:b4:98:07:8d:a9:e4: d3:c6:a9:41:03:cb:4f:3f:bf:fa:bb:24:dd:44:3c:d0:61:f7: f0:3d:67:ff:13:94:b8:19:67:da:95:29:32:cd:aa:7f:70:14: 9a:b1:98:c6:5e:40:0c:28:40:4c:99:90:b0:5e:4d:06:1d:e8: da:00:f4:52:d1:a0:c0:83:88:02:2b:cd:2c:7e:ae:38:e8:b3: 45:66:04:55:a1:0c:26:17:86:a0:ef:96:c9:fa:e7:81:4d:84: 66:38:5f:51:ee:5d:1a:27:be:39:2d:ad:5c:f1:7c:d2:78:04: 2e:3a:68:da:b1:d1:5b:cc:53:ec:a4:48:7d:91:fc:a1:37:41: 23:5a:32:a1:ee:0f:6e:95:32:51:8e:d7:9d:63:8e:3e:95:20: c8:8d:4f:b8:14:9c:15:d1:64:8c:38:89:39:a8:5e:99:4f:13: 9b:6f:d0:3b:4c:d4:47:07:16:e2:55:b3:a1:6e:a9:a2:c1:70: d7:dd:56:3d:3d:2e:8a:a4:72:65:96:df:5e:24:ac:37:9c:86: 17:49:43:d5 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUIYO5wYjKEW8dhic327idIXl9KzwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI2MDIwNjAwMDAwNVoX DTI2MDUwNzIzNTk1OVowejFJMEcGA1UEBRNAMmQ5YjBkMGFmODhmODk1N2UyMDhi N2JhODYxNWI2MzMzMThjZTM4NTEzNzcwMzkxY2IzMTEzZmYyZWM5MDcxZjEtMCsG A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAreQMFtQGknNKj+VK1VDk5Qk1tPAR m0URYxn2bwYjk7Mi+zCktEr1b9KeHroKV7Y6sbEz+i1qwuJLve/ElCIASWjjUx8J Egj95ZnhyoKxRHCbnoY6j40IzArMSV9IRbbHznvWVuzoOyYbmF8m7bm6SdnwgZaN r7aviWnSGHrouwtxlbFffWJYSoF4r2JTV4w3qm5O6MmrcdiNh1GY1l51gUnhNXg6 T8UTZpmh/KJpeMojb09q5sES7r1I6zHPUaLBFVFmfh/uagpCqWv/Nyk1+xDH3KJ9 v2EVMK0er7xBzjbm/SpHVlA6kFQj4FexPzDnF6napybGLZou2j4GY+NR5wIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFLH6JEgu9qFKexJovS692fu8yqISMB8GA1UdIwQY MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5 L2NjNjcxYzc5LTIxZjAtNGZmZi1iODk4LTU5NTk2NmVjZDFhOS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4 ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJABnAP8AMA0GCSqGSIb3DQEBCwUAA4IBAQCtzCO1ocnVN5sVjp0E n7VvLin0wlaSa9wuklnInF/2TyvLRVVP6up4YtDRHyuLKMC0mAeNqeTTxqlBA8tP P7/6uyTdRDzQYffwPWf/E5S4GWfalSkyzap/cBSasZjGXkAMKEBMmZCwXk0GHeja APRS0aDAg4gCK80sfq446LNFZgRVoQwmF4ag75bJ+ueBTYRmOF9R7l0aJ745La1c 8XzSeAQuOmjasdFbzFPspEh9kfyhN0EjWjKh7g9ulTJRjtedY44+lSDIjU+4FJwV 0WSMOIk5qF6ZTxObb9A7TNRHBxbiVbOhbqmiwXDX3VY9PS6KpHJllt9eJKw3nIYX SUPV -----END CERTIFICATE-----Generated at Sun Feb 8 12:59:45 2026 by rpki-client