This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28c2684b-c1bd-4785-a1c4-390897be3c8d.roa File: 28c2684b-c1bd-4785-a1c4-390897be3c8d.roa (raw, json) Hash identifier: GVKPNlJXJSdM3VjQmBesEkl+s2WaDfbnXM154qzL9Jw= Subject key identifier: 0C:BC:CF:BA:F2:DD:7E:DA:F6:CF:AE:79:71:0A:CC:33:73:1E:28:98 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 38DA2CD66A441CF178743EE921A7D7A158CC3825 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28c2684b-c1bd-4785-a1c4-390897be3c8d.roa Signing time: Tue 25 Nov 2025 01:20:53 +0000 ROA not before: Tue 25 Nov 2025 01:20:53 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 50.18.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:da:2c:d6:6a:44:1c:f1:78:74:3e:e9:21:a7:d7:a1:58:cc:38:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 25 01:20:53 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=f1db7738f153bd88f62c30c71ab46c48c4c479228905c9714ee3465d5b80a401, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:08:72:f4:b4:c2:78:ac:5f:a1:be:ea:98:41: c0:c8:0c:0b:f1:2f:51:4d:2a:ff:06:7f:19:c4:40: 83:50:14:db:b5:b2:74:30:90:32:77:eb:7a:96:29: 80:b6:f0:54:66:a2:98:85:05:53:dc:2e:1d:b8:bd: 5c:d4:4a:f6:31:7b:45:7f:cb:d0:ee:b2:a5:66:64: b3:63:ae:97:da:d7:fc:a3:fc:d8:49:6a:ea:ed:ce: 6b:a8:87:dc:0d:b8:63:da:c8:15:3c:a0:4b:45:e0: 61:c4:f7:c9:89:52:bf:49:40:26:62:27:ab:5d:da: 64:1b:15:26:59:60:d3:62:7e:93:63:4e:10:20:06: 34:aa:9f:e9:4b:e9:fa:61:20:7b:3c:37:de:33:15: a1:24:c1:8b:33:8b:dd:7c:e6:93:ca:bb:ea:a0:4c: c1:9e:62:c1:a9:ab:fa:d0:e5:97:e1:a2:ec:1f:2a: 77:ab:1b:a2:de:30:0e:a3:50:8c:4c:78:e8:40:1a: 28:b2:d4:4b:7f:49:9e:1a:57:cf:09:75:d4:a1:c5: e0:8c:4c:75:96:11:65:36:31:71:aa:04:39:c1:b0: 66:43:f1:7d:de:18:93:0d:78:0b:80:ab:3d:69:cf: 1e:76:c2:c8:4b:bc:40:d0:24:c3:7a:92:cd:f9:3a: f3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:BC:CF:BA:F2:DD:7E:DA:F6:CF:AE:79:71:0A:CC:33:73:1E:28:98 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28c2684b-c1bd-4785-a1c4-390897be3c8d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.18.208.0/20 Signature Algorithm: sha256WithRSAEncryption 04:19:c3:85:4c:03:2c:5c:97:d8:47:9f:4b:ae:a3:87:81:f9: 02:a0:c3:44:68:e2:e9:2a:6e:59:56:47:75:69:79:9e:6c:3c: e6:84:5e:12:d1:d7:ff:92:e4:32:50:a0:ca:dd:a7:cb:8c:b7: 45:55:51:62:1b:f6:86:f5:14:27:91:7a:83:e5:9a:d5:9f:ea: 39:b9:d0:c2:31:a1:84:d1:b9:51:15:72:cf:31:76:e5:f7:76: d0:63:c4:c0:ce:56:06:bc:fe:3e:c9:fe:95:6b:c3:6b:15:38: 4f:d7:35:c9:16:60:2f:f9:dd:54:5e:fe:06:b9:2c:3a:e5:fb: ab:e5:3b:47:c0:b7:15:61:0e:b8:5a:a9:b8:cd:dd:ca:3d:ff: 68:b1:a9:65:74:64:19:ed:de:3e:9a:47:9f:4e:d1:89:91:ac: 08:7e:c2:95:55:06:b1:c3:e2:66:3a:48:af:f6:05:fe:89:46: 9b:fd:7f:c5:b9:38:4f:eb:f0:b7:5a:8d:93:bd:c9:c9:e7:85: 6f:11:95:f7:7a:26:d5:d7:78:72:ad:6a:53:d7:a9:70:41:59: d9:14:66:78:30:4c:4f:9b:f8:01:3d:5b:31:d6:7f:4b:1d:fa: 49:6e:16:0e:9c:91:e3:72:a2:04:68:6a:f4:51:a3:28:f1:e1: d1:67:d4:57 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUONos1mpEHPF4dD7pIafXoVjMOCUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI1MDEyMDUzWhcNMjYwMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMWRiNzczOGYxNTNiZDg4ZjYyYzMwYzcxYWI0NmM0OGM0 YzQ3OTIyODkwNWM5NzE0ZWUzNDY1ZDViODBhNDAxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgCHL0tMJ4rF+hvuqYQcDIDAvxL1FNKv8GfxnEQINQFNu1 snQwkDJ363qWKYC28FRmopiFBVPcLh24vVzUSvYxe0V/y9DusqVmZLNjrpfa1/yj /NhJaurtzmuoh9wNuGPayBU8oEtF4GHE98mJUr9JQCZiJ6td2mQbFSZZYNNifpNj ThAgBjSqn+lL6fphIHs8N94zFaEkwYszi9185pPKu+qgTMGeYsGpq/rQ5Zfhouwf KnerG6LeMA6jUIxMeOhAGiiy1Et/SZ4aV88JddShxeCMTHWWEWU2MXGqBDnBsGZD 8X3eGJMNeAuAqz1pzx52wshLvEDQJMN6ks35OvNdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDLzPuvLdftr2z655cQrMM3MeKJgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI4YzI2ODRiLWMxYmQtNDc4NS1hMWM0LTM5MDg5N2JlM2M4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQyEtAwDQYJKoZIhvcNAQELBQADggEBAAQZw4VMAyxcl9hHn0uuo4eB+QKg w0Ro4ukqbllWR3VpeZ5sPOaEXhLR1/+S5DJQoMrdp8uMt0VVUWIb9ob1FCeReoPl mtWf6jm50MIxoYTRuVEVcs8xduX3dtBjxMDOVga8/j7J/pVrw2sVOE/XNckWYC/5 3VRe/ga5LDrl+6vlO0fAtxVhDrhaqbjN3co9/2ixqWV0ZBnt3j6aR59O0YmRrAh+ wpVVBrHD4mY6SK/2Bf6JRpv9f8W5OE/r8LdajZO9ycnnhW8Rlfd6JtXXeHKtalPX qXBBWdkUZngwTE+b+AE9WzHWf0sd+kluFg6ckeNyogRoavRRoyjx4dFn1Fc= -----END CERTIFICATE-----Generated at Sat Dec 6 15:33:19 2025 by rpki-client