This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28d33436-53d2-4ebd-bddc-4f8b317802ba.roa File: 28d33436-53d2-4ebd-bddc-4f8b317802ba.roa (raw, json) Hash identifier: +FjIQ8gPggi8NE8WgvI0ygMRyl99jbT8+yuK9kplsmE= Subject key identifier: 8B:98:DF:50:42:4C:17:91:6F:81:4A:3D:1D:76:95:69:44:99:71:D5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3EBFCFFAB83079E483F056850F6E2CEAD02D8A36 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28d33436-53d2-4ebd-bddc-4f8b317802ba.roa Signing time: Sat 29 Nov 2025 00:20:43 +0000 ROA not before: Sat 29 Nov 2025 00:20:43 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 69.22.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:bf:cf:fa:b8:30:79:e4:83:f0:56:85:0f:6e:2c:ea:d0:2d:8a:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 29 00:20:43 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=9ebbc8927fef52701dcdb9b251e9902c30be2dfe4a635e597049e25159672c77, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:37:43:09:e2:3c:e9:0b:cd:c0:27:b6:9e:68: 18:63:00:41:55:77:72:dd:d1:34:d7:d5:78:2a:04: fc:dc:2d:c2:12:e6:fa:e7:84:62:35:9e:fa:46:44: 15:99:54:29:ab:8e:fa:c5:42:5a:ea:e1:ed:8d:a3: 96:61:d5:50:e7:7b:0a:bb:a6:92:26:95:09:8a:78: a5:fd:ab:b9:b7:5b:17:ca:bf:ba:18:53:dd:ba:2b: c9:ed:0f:58:fe:f7:21:1d:05:a4:95:90:50:8d:11: e8:07:5f:0f:d2:ad:02:79:43:67:f2:3f:58:21:70: 72:62:07:77:fa:9c:c4:4a:8a:ef:23:1c:77:6d:7d: ce:04:1e:b9:87:dc:17:d5:ab:31:f8:bd:87:d6:8a: 2d:29:77:3d:64:c7:42:1c:4b:0d:a9:bc:12:ab:e4: 4f:ee:2a:ea:5a:91:11:5d:93:39:fa:d9:e6:1c:b3: b7:53:a9:37:99:94:35:c4:f7:b5:1d:52:2f:41:1f: 35:1e:03:af:d9:46:71:7b:f0:33:1d:92:97:a0:2a: 0b:22:41:e6:eb:05:1c:97:db:6c:b8:44:dd:7b:ad: 7b:4d:da:84:3e:33:6c:c7:ec:2a:04:1c:fa:c3:14: 46:d6:db:19:8b:c1:77:c5:75:30:87:c7:43:72:2d: 79:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:98:DF:50:42:4C:17:91:6F:81:4A:3D:1D:76:95:69:44:99:71:D5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28d33436-53d2-4ebd-bddc-4f8b317802ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.22.0.0/17 Signature Algorithm: sha256WithRSAEncryption d9:66:c8:43:dc:d5:1c:fb:56:05:c1:ab:19:85:f2:bc:09:06: 5b:fa:f4:8f:b1:e2:91:2a:e0:34:47:17:12:cc:03:be:6f:d5: 02:42:0e:f0:52:76:e1:df:ca:48:13:ed:5d:19:5b:9b:c1:20: 72:b1:b9:6d:48:62:96:b6:ff:ce:01:10:83:15:1d:75:59:ba: e6:70:9c:4b:24:5d:50:4d:70:49:5e:52:cf:fa:61:3f:5a:f7: 14:ba:97:d0:66:08:22:37:9d:62:25:43:a3:cf:aa:bc:97:8b: d0:6e:5b:54:75:4f:b1:7e:50:e1:96:5a:bb:c4:96:f9:f7:d1: 2b:f7:b9:69:61:3a:f5:81:ac:d1:ec:94:df:51:c6:ce:e9:76: 65:d7:8c:ae:10:8e:98:9e:3c:f9:d5:46:2c:2e:e1:30:d5:f1: 4a:4c:ea:49:c0:36:9c:6d:fa:51:6e:ba:28:26:5f:ed:a2:3c: 80:22:a6:84:f5:bf:c9:f8:ee:fe:6c:22:b1:50:09:e4:b8:a1: ca:10:33:30:f6:93:0d:1f:0f:a8:c7:9f:f2:f2:b3:95:0d:03: 89:3b:29:0a:11:6f:38:cc:fe:c1:28:25:cf:c7:3e:97:c9:f2: 0d:6b:63:0d:93:80:04:57:df:05:87:d3:29:1f:7d:01:fa:f1: 3b:c1:74:fb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPr/P+rgweeSD8FaFD24s6tAtijYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI5MDAyMDQzWhcNMjYwMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZWJiYzg5MjdmZWY1MjcwMWRjZGI5YjI1MWU5OTAyYzMw YmUyZGZlNGE2MzVlNTk3MDQ5ZTI1MTU5NjcyYzc3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuN0MJ4jzpC83AJ7aeaBhjAEFVd3Ld0TTX1XgqBPzcLcIS 5vrnhGI1nvpGRBWZVCmrjvrFQlrq4e2No5Zh1VDnewq7ppImlQmKeKX9q7m3WxfK v7oYU926K8ntD1j+9yEdBaSVkFCNEegHXw/SrQJ5Q2fyP1ghcHJiB3f6nMRKiu8j HHdtfc4EHrmH3BfVqzH4vYfWii0pdz1kx0IcSw2pvBKr5E/uKupakRFdkzn62eYc s7dTqTeZlDXE97UdUi9BHzUeA6/ZRnF78DMdkpegKgsiQebrBRyX22y4RN17rXtN 2oQ+M2zH7CoEHPrDFEbW2xmLwXfFdTCHx0NyLXn/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUi5jfUEJMF5FvgUo9HXaVaUSZcdUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI4ZDMzNDM2LTUzZDItNGViZC1iZGRjLTRmOGIzMTc4MDJiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdFFgAwDQYJKoZIhvcNAQELBQADggEBANlmyEPc1Rz7VgXBqxmF8rwJBlv6 9I+x4pEq4DRHFxLMA75v1QJCDvBSduHfykgT7V0ZW5vBIHKxuW1IYpa2/84BEIMV HXVZuuZwnEskXVBNcEleUs/6YT9a9xS6l9BmCCI3nWIlQ6PPqryXi9BuW1R1T7F+ UOGWWrvElvn30Sv3uWlhOvWBrNHslN9Rxs7pdmXXjK4QjpiePPnVRiwu4TDV8UpM 6knANpxt+lFuuigmX+2iPIAipoT1v8n47v5sIrFQCeS4ocoQMzD2kw0fD6jHn/Ly s5UNA4k7KQoRbzjM/sEoJc/HPpfJ8g1rYw2TgARX3wWH0ykffQH68TvBdPs= -----END CERTIFICATE-----Generated at Sat Dec 6 14:25:11 2025 by rpki-client