This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1500b9fd-4529-4cd4-8362-2f8b99b9d9aa.roa File: 1500b9fd-4529-4cd4-8362-2f8b99b9d9aa.roa (raw, json) Hash identifier: MmHQyriO2CI3BZ9t5idVqaHv4VVegTEnupr2JdYQV7Y= Subject key identifier: 12:57:1C:05:98:8A:7F:5F:C9:88:12:4F:8C:8C:21:04:58:37:B0:A8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6900E45797F036434AF4628ABE8169A28B3327FE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1500b9fd-4529-4cd4-8362-2f8b99b9d9aa.roa Signing time: Thu 20 Nov 2025 00:50:11 +0000 ROA not before: Thu 20 Nov 2025 00:50:11 +0000 ROA not after: Wed 18 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 143.191.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:00:e4:57:97:f0:36:43:4a:f4:62:8a:be:81:69:a2:8b:33:27:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 20 00:50:11 2025 GMT Not After : Feb 18 23:59:59 2026 GMT Subject: serialNumber=f9d30238d89af1fa1d24c7fb87d43dabe492049e07822f9917c3ca91ac5fb581, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d3:6c:de:6f:be:44:15:9f:9b:44:4b:1c:bd: 61:2b:81:c8:4a:3b:98:d1:ec:0d:86:c1:40:27:5a: 66:9a:a4:11:39:44:b6:87:6d:82:ec:28:46:ad:d2: 49:db:b2:24:07:03:04:76:2a:56:5a:6e:63:2f:9e: b2:a3:1f:b1:05:c4:92:0e:3e:a1:72:24:3a:8f:54: 6f:06:f9:fd:06:5a:03:ad:64:c8:0c:fd:20:0c:66: 34:fc:b0:0e:80:00:42:4d:74:bf:19:64:54:9d:3e: 39:98:bd:a3:2f:4a:07:4a:ab:3a:04:25:af:83:67: 06:94:01:b4:75:6e:ae:c1:56:6c:30:fb:6b:1b:68: 38:1c:e9:7e:e7:36:f0:b0:9d:87:ca:e3:e8:19:f2: 66:50:ae:8a:a4:98:3c:cf:59:c1:cd:fa:d7:ac:50: 91:cd:13:73:7d:61:20:01:d8:45:eb:64:50:ef:1c: d3:40:8a:dd:29:b2:ca:5f:1c:c3:0c:fe:80:54:b7: 77:47:b1:ba:96:eb:69:28:44:e3:26:82:f4:c2:7d: d0:65:39:4d:b5:0a:bc:09:16:16:eb:f5:a4:a4:75: 9d:19:ce:ae:ca:2b:da:13:6b:cf:a7:5b:12:1d:1d: 8d:86:ce:11:a1:92:d1:5b:3c:b7:5f:00:a7:02:5c: 7b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:57:1C:05:98:8A:7F:5F:C9:88:12:4F:8C:8C:21:04:58:37:B0:A8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1500b9fd-4529-4cd4-8362-2f8b99b9d9aa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.191.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9f:18:e3:4a:a0:e3:16:e3:a9:d2:bf:3d:e0:5b:85:7f:51:fd: 48:56:c6:b5:8a:9a:e8:bd:66:5b:6a:9e:e8:d0:e3:1e:90:56: da:24:20:7a:fa:71:f4:8d:ae:71:8d:48:4b:9f:7e:0b:38:4f: ae:d7:b1:fc:a4:e5:17:3a:8b:07:ff:71:0a:ff:a1:1a:ba:c1: aa:09:f0:f0:76:bb:6b:3e:f0:ff:07:f3:e4:77:f3:c1:c8:fc: 73:17:e9:22:42:37:bf:f8:7f:5e:07:53:2e:6b:6f:a3:51:5e: ed:dc:a0:da:59:6d:67:88:41:45:2a:28:28:37:d7:4d:ae:9e: 62:c8:f4:42:b2:54:50:97:d4:96:51:20:4a:6c:15:e6:f9:f2: c8:cf:ea:bf:80:f1:a2:7f:2d:46:15:94:1e:40:00:41:10:b7: 50:9c:df:ff:5c:72:dd:8f:bc:20:71:a7:a3:b3:33:0b:be:32: 9a:ad:db:aa:ff:89:a7:26:01:14:c2:6c:08:0a:97:e3:d6:83: 7f:26:b2:35:c2:45:2e:ea:0b:58:5e:06:40:3d:f6:82:14:d7: 98:b2:ed:8d:ec:46:88:5a:b4:07:c7:67:09:74:a2:72:d5:bb: d0:70:c0:3b:a6:1d:ba:bd:1a:cf:bb:23:7a:b3:bf:e4:b9:d3: 30:ce:fa:ff -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaQDkV5fwNkNK9GKKvoFpooszJ/4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTIwMDA1MDExWhcNMjYwMjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmOWQzMDIzOGQ4OWFmMWZhMWQyNGM3ZmI4N2Q0M2RhYmU0 OTIwNDllMDc4MjJmOTkxN2MzY2E5MWFjNWZiNTgxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC902zeb75EFZ+bREscvWErgchKO5jR7A2GwUAnWmaapBE5 RLaHbYLsKEat0knbsiQHAwR2KlZabmMvnrKjH7EFxJIOPqFyJDqPVG8G+f0GWgOt ZMgM/SAMZjT8sA6AAEJNdL8ZZFSdPjmYvaMvSgdKqzoEJa+DZwaUAbR1bq7BVmww +2sbaDgc6X7nNvCwnYfK4+gZ8mZQroqkmDzPWcHN+tesUJHNE3N9YSAB2EXrZFDv HNNAit0psspfHMMM/oBUt3dHsbqW62koROMmgvTCfdBlOU21CrwJFhbr9aSkdZ0Z zq7KK9oTa8+nWxIdHY2GzhGhktFbPLdfAKcCXHsfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUElccBZiKf1/JiBJPjIwhBFg3sKgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE1MDBiOWZkLTQ1MjktNGNkNC04MzYyLTJmOGI5OWI5ZDlhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCPvzANBgkqhkiG9w0BAQsFAAOCAQEAnxjjSqDjFuOp0r894FuFf1H9SFbG tYqa6L1mW2qe6NDjHpBW2iQgevpx9I2ucY1IS59+CzhPrtex/KTlFzqLB/9xCv+h GrrBqgnw8Ha7az7w/wfz5Hfzwcj8cxfpIkI3v/h/XgdTLmtvo1Fe7dyg2lltZ4hB RSooKDfXTa6eYsj0QrJUUJfUllEgSmwV5vnyyM/qv4Dxon8tRhWUHkAAQRC3UJzf /1xy3Y+8IHGno7MzC74ymq3bqv+JpyYBFMJsCAqX49aDfyayNcJFLuoLWF4GQD32 ghTXmLLtjexGiFq0B8dnCXSictW70HDAO6Ydur0az7sjerO/5LnTMM76/w== -----END CERTIFICATE-----Generated at Sat Dec 6 23:00:41 2025 by rpki-client