This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14093ced-0677-41a7-9db0-a2497340d51e.roa File: 14093ced-0677-41a7-9db0-a2497340d51e.roa (raw, json) Hash identifier: Yho1vYsa3gJS3vYrogmaSY2K4f8Bwyshg8t0cOAQLdY= Subject key identifier: 73:74:41:57:49:0D:7D:2B:BA:A0:56:82:8D:EF:3F:77:4B:82:82:82 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 50BB9706FA3575AFF68DAA80F169C483C222122D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14093ced-0677-41a7-9db0-a2497340d51e.roa Signing time: Tue 02 Dec 2025 00:40:08 +0000 ROA not before: Tue 02 Dec 2025 00:40:08 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.91.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:bb:97:06:fa:35:75:af:f6:8d:aa:80:f1:69:c4:83:c2:22:12:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 2 00:40:08 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=3fc5fadf028248bb3e67d07227b16fa54c6eafc3ee1d11c8c9970ebc1d9fb740, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:da:d5:11:7a:4a:a9:e9:24:1b:a2:b9:08:93: c9:9e:fd:e7:ef:2c:54:11:6e:17:51:51:21:05:bd: 23:6e:b1:4b:33:8d:f9:01:c5:f3:80:11:ce:2b:28: 33:fb:6e:db:8b:d6:10:87:38:5d:a2:45:d4:dd:6b: 66:1d:f3:78:1d:1b:c7:bd:b3:87:1d:89:57:5e:60: e8:ea:d1:e4:25:45:c5:c3:82:58:ab:1d:a0:9c:20: b2:86:47:71:d6:36:ca:47:33:c3:9d:94:1f:da:e3: db:ea:2f:0c:87:41:72:b7:76:1b:34:60:90:05:a2: fa:20:9b:a1:5f:92:fb:79:3e:d5:1c:75:bb:c8:14: f1:ce:ec:7e:49:5a:33:19:19:f7:0c:85:64:6e:f7: c3:c9:a3:c9:01:b1:36:67:e4:57:6c:41:f3:e4:ea: 9a:d8:7d:dc:1a:dd:0a:57:c7:7a:f9:6f:3f:40:2a: e2:a8:97:46:62:35:53:ce:50:bf:fd:81:0e:9a:df: 21:c2:c6:23:4b:e4:c5:3e:39:c9:49:0a:01:f7:03: ad:8a:56:86:70:3b:d8:e5:67:fe:0c:e4:8d:08:b9: 63:c6:16:03:3d:e0:61:ff:f0:01:94:bc:b3:4d:a2: d8:6a:38:49:43:18:a2:0f:69:e1:ae:5f:e4:7e:21: cd:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:74:41:57:49:0D:7D:2B:BA:A0:56:82:8D:EF:3F:77:4B:82:82:82 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14093ced-0677-41a7-9db0-a2497340d51e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.91.18.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:bd:96:e0:fa:cb:10:34:f4:b7:27:f1:9f:35:eb:73:92:75: 7f:44:1d:c0:05:82:a2:19:b9:10:2f:fc:e0:67:35:ec:4c:2e: 1b:34:59:11:4a:5e:ea:51:30:44:2d:25:05:f0:19:45:55:04: e9:6f:40:04:34:5b:f5:87:15:7b:3d:8e:ac:8c:53:7f:a8:ac: 55:76:10:b3:36:65:78:da:45:45:cc:b6:e5:18:b5:e5:5e:b6: 7b:b1:af:c3:15:8c:2c:59:0d:15:ec:c4:e2:ad:0d:9f:06:73: 39:d9:db:b6:cb:14:cb:a0:84:f0:bd:87:2c:81:91:f8:d1:46: a5:ce:9b:46:23:9e:a5:dd:a0:48:0a:bc:2d:a6:4a:d3:89:91: 66:43:c5:40:ff:0a:82:00:58:91:ed:4f:38:e4:cc:7a:ab:7d: 8e:c9:7f:a1:e9:17:54:28:f2:d7:bd:2d:d0:dc:6d:ef:41:31: e2:9a:d0:df:b6:fa:e4:69:93:f3:15:75:b5:bc:ab:df:56:90: 5e:5e:51:9d:e8:1a:0b:96:95:31:d6:f1:cf:b9:d1:e9:5a:d2: 24:88:82:de:a1:2d:2d:ed:de:62:45:c0:64:f1:bf:a2:05:28: 8d:51:2d:f9:1d:a5:3b:af:da:5c:ec:23:ce:8c:7c:5b:a5:de: 4c:a6:46:63 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUULuXBvo1da/2jaqA8WnEg8IiEi0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjAyMDA0MDA4WhcNMjYwMzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZmM1ZmFkZjAyODI0OGJiM2U2N2QwNzIyN2IxNmZhNTRj NmVhZmMzZWUxZDExYzhjOTk3MGViYzFkOWZiNzQwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDd2tURekqp6SQborkIk8me/efvLFQRbhdRUSEFvSNusUsz jfkBxfOAEc4rKDP7btuL1hCHOF2iRdTda2Yd83gdG8e9s4cdiVdeYOjq0eQlRcXD glirHaCcILKGR3HWNspHM8OdlB/a49vqLwyHQXK3dhs0YJAFovogm6Ffkvt5PtUc dbvIFPHO7H5JWjMZGfcMhWRu98PJo8kBsTZn5FdsQfPk6prYfdwa3QpXx3r5bz9A KuKol0ZiNVPOUL/9gQ6a3yHCxiNL5MU+OclJCgH3A62KVoZwO9jlZ/4M5I0IuWPG FgM94GH/8AGUvLNNothqOElDGKIPaeGuX+R+Ic0fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUc3RBV0kNfSu6oFaCje8/d0uCgoIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE0MDkzY2VkLTA2NzctNDFhNy05ZGIwLWEyNDk3MzQwZDUxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAXWxIwDQYJKoZIhvcNAQELBQADggEBAH69luD6yxA09Lcn8Z8163OSdX9E HcAFgqIZuRAv/OBnNexMLhs0WRFKXupRMEQtJQXwGUVVBOlvQAQ0W/WHFXs9jqyM U3+orFV2ELM2ZXjaRUXMtuUYteVetnuxr8MVjCxZDRXsxOKtDZ8GcznZ27bLFMug hPC9hyyBkfjRRqXOm0YjnqXdoEgKvC2mStOJkWZDxUD/CoIAWJHtTzjkzHqrfY7J f6HpF1Qo8te9LdDcbe9BMeKa0N+2+uRpk/MVdbW8q99WkF5eUZ3oGguWlTHW8c+5 0ela0iSIgt6hLS3t3mJFwGTxv6IFKI1RLfkdpTuv2lzsI86MfFul3kymRmM= -----END CERTIFICATE-----Generated at Sat Dec 6 10:04:37 2025 by rpki-client