This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25b41a4c-7a8b-41e6-8d0c-2dc7cee8afd0.roa File: 25b41a4c-7a8b-41e6-8d0c-2dc7cee8afd0.roa (raw, json) Hash identifier: mUPz8olqwrbjD/osYLO4KeG9eOVoxzGgu7opLuF6cO8= Subject key identifier: CC:D3:7D:46:0B:53:81:99:37:5D:DF:7A:4D:0D:45:12:FF:52:BC:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5F978C03EC8DCCEB29216EF1428FD3222B7EB66A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25b41a4c-7a8b-41e6-8d0c-2dc7cee8afd0.roa Signing time: Wed 03 Dec 2025 00:50:42 +0000 ROA not before: Wed 03 Dec 2025 00:50:42 +0000 ROA not after: Tue 03 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 78.12.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:97:8c:03:ec:8d:cc:eb:29:21:6e:f1:42:8f:d3:22:2b:7e:b6:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 3 00:50:42 2025 GMT Not After : Mar 3 23:59:59 2026 GMT Subject: serialNumber=f73ffa11a9e358a4315639cd7ca1bc7920e477bd289c35847deacb44853969f8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:3e:5f:32:91:66:38:07:81:a6:04:87:94:30: 99:a6:e1:37:ae:10:52:48:92:6b:d1:27:71:a5:66: f6:a7:79:bd:b5:f9:e1:c2:9f:43:ec:1b:b7:d7:a7: 31:e4:b5:12:07:3c:a2:2e:be:af:2a:63:53:dc:b7: 58:a5:7c:78:ff:5d:6c:62:90:21:50:94:4d:42:c1: e9:50:45:9d:f2:98:ea:41:86:39:ca:43:8c:15:f1: 82:cf:a5:a7:f6:fa:e1:96:ce:6a:29:41:db:9e:be: a0:0e:b6:3e:51:9b:b1:53:24:55:2f:e5:e6:dd:80: be:52:ee:d4:3b:df:f9:02:b5:d6:c2:c8:b8:26:f7: eb:f5:54:7d:36:07:2f:9b:1a:89:12:a5:9e:be:42: 2a:df:79:62:50:1d:39:b5:39:9c:b2:fd:b4:d7:2c: 48:d9:b7:79:0c:5d:5d:64:d2:b4:0a:9f:02:dd:14: 0c:3d:e2:90:7e:82:61:41:e6:1e:39:02:ec:29:65: 90:4b:f0:29:4f:00:ee:69:00:1d:f1:82:05:e8:a8: d3:d1:fa:ff:bf:76:02:f3:58:70:08:c9:d8:fc:b9: d3:90:c0:de:5c:ab:9e:33:63:05:dd:09:57:7a:de: ad:42:2a:5a:16:68:be:c4:97:a9:52:32:1d:8c:6d: 93:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:D3:7D:46:0B:53:81:99:37:5D:DF:7A:4D:0D:45:12:FF:52:BC:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25b41a4c-7a8b-41e6-8d0c-2dc7cee8afd0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.12.0.0/15 Signature Algorithm: sha256WithRSAEncryption 32:ac:6d:ea:ce:18:dd:aa:ca:07:14:fe:cc:0a:0c:d9:88:47: 32:91:0e:b7:68:b8:d0:4c:dc:58:48:1b:ce:2e:a3:c7:1e:30: 4a:ab:bf:68:c0:e5:fa:f6:28:ca:cb:b0:22:6e:66:dd:f1:73: f4:57:e0:c3:de:97:fe:96:03:9d:f8:e3:25:88:65:a2:78:2d: e5:45:35:07:da:3b:9e:1c:f3:86:a1:f7:27:83:ad:74:10:cd: 1c:6f:ef:5f:8d:e0:38:b1:8d:b4:b2:7b:90:fe:5e:6f:2a:da: 65:83:48:78:0f:f9:dc:c7:da:09:e4:d7:fd:6f:4b:20:d5:ca: e8:4a:7a:51:4e:fb:85:c1:f7:3b:e5:cf:9c:a4:9d:3a:2c:0d: c2:29:5e:d9:e1:d4:30:5f:db:c6:54:79:3c:22:e3:16:7f:8a: e7:50:30:93:75:b3:ba:bc:b7:f0:61:47:39:7d:f8:53:b0:52: 86:55:0a:03:70:2b:18:bf:20:6a:2e:58:c0:c5:3a:ae:7b:07: 83:24:d8:7c:47:e4:04:bb:2c:9f:98:dc:03:3c:36:0c:ed:5c: 0d:bc:03:f4:4d:77:43:e7:82:67:52:45:3d:9e:30:5e:02:f2: ca:b8:75:47:47:49:a0:0a:8c:d0:9f:9c:c5:c8:cf:98:c0:30: d4:e7:53:01 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUX5eMA+yNzOspIW7xQo/TIit+tmowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjAzMDA1MDQyWhcNMjYwMzAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNzNmZmExMWE5ZTM1OGE0MzE1NjM5Y2Q3Y2ExYmM3OTIw ZTQ3N2JkMjg5YzM1ODQ3ZGVhY2I0NDg1Mzk2OWY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdPl8ykWY4B4GmBIeUMJmm4TeuEFJIkmvRJ3GlZvaneb21 +eHCn0PsG7fXpzHktRIHPKIuvq8qY1Pct1ilfHj/XWxikCFQlE1CwelQRZ3ymOpB hjnKQ4wV8YLPpaf2+uGWzmopQduevqAOtj5Rm7FTJFUv5ebdgL5S7tQ73/kCtdbC yLgm9+v1VH02By+bGokSpZ6+QirfeWJQHTm1OZyy/bTXLEjZt3kMXV1k0rQKnwLd FAw94pB+gmFB5h45AuwpZZBL8ClPAO5pAB3xggXoqNPR+v+/dgLzWHAIydj8udOQ wN5cq54zYwXdCVd63q1CKloWaL7El6lSMh2MbZNNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUzNN9RgtTgZk3Xd96TQ1FEv9SvJYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI1YjQxYTRjLTdhOGItNDFlNi04ZDBjLTJkYzdjZWU4YWZkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFODDANBgkqhkiG9w0BAQsFAAOCAQEAMqxt6s4Y3arKBxT+zAoM2YhHMpEO t2i40EzcWEgbzi6jxx4wSqu/aMDl+vYoysuwIm5m3fFz9Ffgw96X/pYDnfjjJYhl ongt5UU1B9o7nhzzhqH3J4OtdBDNHG/vX43gOLGNtLJ7kP5ebyraZYNIeA/53Mfa CeTX/W9LINXK6Ep6UU77hcH3O+XPnKSdOiwNwile2eHUMF/bxlR5PCLjFn+K51Aw k3Wzury38GFHOX34U7BShlUKA3ArGL8gai5YwMU6rnsHgyTYfEfkBLssn5jcAzw2 DO1cDbwD9E13Q+eCZ1JFPZ4wXgLyyrh1R0dJoAqM0J+cxcjPmMAw1OdTAQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:50:15 2025 by rpki-client