This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10963cb0-949a-4d70-92e8-7ffe7d080a89.roa File: 10963cb0-949a-4d70-92e8-7ffe7d080a89.roa (raw, json) Hash identifier: xnza4QbqxTjVOCdpUTLEorBY2BKR7TpLAI0LnFCwGoE= Subject key identifier: F4:E1:8C:66:38:4D:4C:AF:81:4F:FC:DF:C6:CE:96:97:5C:C8:01:6E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 35B6BB57731A43F05E5EE024E3A4ED65AEDF6F85 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10963cb0-949a-4d70-92e8-7ffe7d080a89.roa Signing time: Wed 26 Nov 2025 00:10:35 +0000 ROA not before: Wed 26 Nov 2025 00:10:35 +0000 ROA not after: Tue 24 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.15.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:b6:bb:57:73:1a:43:f0:5e:5e:e0:24:e3:a4:ed:65:ae:df:6f:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 26 00:10:35 2025 GMT Not After : Feb 24 23:59:59 2026 GMT Subject: serialNumber=56c11f7b09ad2c3355b25fc58e6859f7293079cbb2d8478351e580feb7472d2d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:cb:15:82:17:aa:90:65:db:4f:96:05:24:7f: 22:8d:7e:9f:a7:47:8c:2f:69:f0:da:56:7f:17:3e: 82:94:8c:e1:ed:a7:03:9c:ab:e4:c3:a3:9d:6a:b5: 40:f1:bd:bd:49:51:d5:f7:b2:5c:0d:7a:fa:36:41: 82:51:73:f5:45:3e:d0:1b:d0:c2:b2:a1:5d:ee:59: 84:ab:29:fd:0e:44:a5:de:de:56:6a:94:82:42:5d: 06:c2:d3:47:e4:88:8c:68:3e:97:0a:43:bb:93:e9: 64:e0:ff:87:94:a3:80:ae:7f:a1:e7:57:7b:23:15: 2c:9b:c3:c7:59:82:38:58:62:e4:88:7a:c7:4a:8c: 12:d4:6d:25:5c:99:7b:03:08:26:3c:c4:4d:0d:18: 5c:13:f0:c6:44:04:ae:78:76:bb:e0:47:6d:9a:85: 8e:e4:ed:1c:24:0c:d0:2a:85:8b:c8:96:a1:4f:d1: 78:68:cf:e6:58:47:32:f1:68:ab:64:9b:cd:49:12: 54:c0:f1:ff:08:fa:6e:f3:9d:79:58:c7:64:95:90: 91:01:05:9c:80:89:0e:5d:22:42:b0:f7:87:6b:b8: ee:71:38:02:bc:66:c1:3b:b6:ee:bf:35:c0:09:4e: 29:d3:76:06:1a:b7:a7:fd:4e:4e:07:39:3e:87:1c: a6:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:E1:8C:66:38:4D:4C:AF:81:4F:FC:DF:C6:CE:96:97:5C:C8:01:6E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10963cb0-949a-4d70-92e8-7ffe7d080a89.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.15.192.0/18 Signature Algorithm: sha256WithRSAEncryption 8b:91:c4:ca:7d:72:4e:24:34:14:d6:56:70:07:55:67:f2:9d: c0:85:74:17:d1:d4:d6:41:56:2e:d2:c5:aa:89:23:02:b0:ab: e2:ec:8b:ce:17:fa:24:8d:d3:97:82:29:e0:20:7d:5f:b2:5a: 76:bc:7e:3b:5b:30:21:d6:6d:34:f6:ed:88:bd:6a:5b:cf:6c: 9f:a3:48:9f:be:92:3a:c5:c5:46:aa:35:48:43:64:6d:6b:c8: cf:a6:f0:ce:5e:89:7c:d9:3f:9a:b7:6e:be:65:06:c2:2f:51: 2e:85:ae:4b:a3:fa:15:e2:db:dd:41:78:a9:6a:dd:45:17:6d: 2e:7f:b0:38:02:c3:d3:2f:2e:d6:f5:68:4e:2a:26:78:95:bd: 48:88:63:52:3d:6f:50:be:0c:70:fb:c0:52:cc:9b:81:11:16: 51:b3:ba:21:b9:5d:2f:d3:48:3d:87:76:c6:14:15:b0:c8:5e: 64:79:58:96:6b:9d:37:39:31:16:2e:24:5a:1e:f9:ac:23:e0: d4:7e:ca:68:c8:0e:bb:91:81:0a:8c:aa:b7:cd:f8:6a:61:48: 5a:40:59:14:c7:de:3f:1e:89:c5:cd:91:c6:f7:63:90:bb:6a: 6a:c5:ff:81:bb:21:ee:0d:64:31:57:40:73:8b:77:6b:36:33: 42:d9:a1:08 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNba7V3MaQ/BeXuAk46TtZa7fb4UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI2MDAxMDM1WhcNMjYwMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NmMxMWY3YjA5YWQyYzMzNTViMjVmYzU4ZTY4NTlmNzI5 MzA3OWNiYjJkODQ3ODM1MWU1ODBmZWI3NDcyZDJkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxyxWCF6qQZdtPlgUkfyKNfp+nR4wvafDaVn8XPoKUjOHt pwOcq+TDo51qtUDxvb1JUdX3slwNevo2QYJRc/VFPtAb0MKyoV3uWYSrKf0ORKXe 3lZqlIJCXQbC00fkiIxoPpcKQ7uT6WTg/4eUo4Cuf6HnV3sjFSybw8dZgjhYYuSI esdKjBLUbSVcmXsDCCY8xE0NGFwT8MZEBK54drvgR22ahY7k7RwkDNAqhYvIlqFP 0Xhoz+ZYRzLxaKtkm81JElTA8f8I+m7znXlYx2SVkJEBBZyAiQ5dIkKw94druO5x OAK8ZsE7tu6/NcAJTinTdgYat6f9Tk4HOT6HHKahAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9OGMZjhNTK+BT/zfxs6Wl1zIAW4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEwOTYzY2IwLTk0OWEtNGQ3MC05MmU4LTdmZmU3ZDA4MGE4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYQD8AwDQYJKoZIhvcNAQELBQADggEBAIuRxMp9ck4kNBTWVnAHVWfyncCF dBfR1NZBVi7SxaqJIwKwq+Lsi84X+iSN05eCKeAgfV+yWna8fjtbMCHWbTT27Yi9 alvPbJ+jSJ++kjrFxUaqNUhDZG1ryM+m8M5eiXzZP5q3br5lBsIvUS6Frkuj+hXi 291BeKlq3UUXbS5/sDgCw9MvLtb1aE4qJniVvUiIY1I9b1C+DHD7wFLMm4ERFlGz uiG5XS/TSD2HdsYUFbDIXmR5WJZrnTc5MRYuJFoe+awj4NR+ymjIDruRgQqMqrfN +GphSFpAWRTH3j8eicXNkcb3Y5C7amrF/4G7Ie4NZDFXQHOLd2s2M0LZoQg= -----END CERTIFICATE-----Generated at Sat Dec 6 16:43:59 2025 by rpki-client