This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c8703a1-34ff-445a-83d6-9423df90d41e.roa File: 2c8703a1-34ff-445a-83d6-9423df90d41e.roa (raw, json) Hash identifier: CAfSGSJiQ4Fr2R561JTZ7MJ4kQt8d6p6sdeGG2CARf8= Subject key identifier: 08:5E:98:66:75:36:24:3F:71:6C:20:02:77:2D:AF:F2:97:06:57:51 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 32994C31820ACD9AC8729207110F0B340DA56D19 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c8703a1-34ff-445a-83d6-9423df90d41e.roa Signing time: Thu 27 Nov 2025 00:00:18 +0000 ROA not before: Thu 27 Nov 2025 00:00:18 +0000 ROA not after: Wed 25 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:99:4c:31:82:0a:cd:9a:c8:72:92:07:11:0f:0b:34:0d:a5:6d:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 27 00:00:18 2025 GMT Not After : Feb 25 23:59:59 2026 GMT Subject: serialNumber=df74e268b9f0ecca71047ebf89f7802c348ffdc79511f1677b8ac10a9848063f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:89:b5:f5:3e:dd:58:29:ce:82:c0:5d:cc:0e: 3c:27:e5:56:9e:b4:f3:f3:b9:a8:9d:d7:e2:0d:6e: 63:1b:b6:f8:28:5c:f1:56:a1:6f:10:f2:f1:4d:02: 86:fd:0e:cf:8d:a1:d9:e4:7a:e5:d4:60:1a:3c:69: 4b:d0:54:8d:f5:88:39:0e:1d:e4:a7:cf:47:3d:18: 8e:4d:e8:9f:66:7f:06:18:74:40:c2:34:c8:7b:de: 2d:cb:db:1d:45:ba:c1:d1:d8:74:94:3f:ce:22:c3: 11:6b:d0:f8:81:14:48:42:87:2c:72:65:06:29:20: 14:11:11:9f:3d:aa:92:8b:f0:53:b4:d8:fa:70:2c: b2:eb:c5:67:db:92:24:16:e3:47:a5:8b:19:d0:8f: a8:3b:72:b3:fb:41:82:a3:28:17:e6:06:c8:0e:25: d8:60:3c:eb:4d:8c:0b:02:73:f7:0a:3b:9d:16:a9: 22:e9:ca:6e:90:47:78:20:8d:d8:cd:9e:87:0a:67: c0:b1:a7:25:35:0e:65:7b:96:7a:db:8a:8d:b9:5a: 58:9d:aa:3f:9f:a3:47:67:bf:e8:81:76:9e:3d:82: 7a:db:d4:88:ac:46:ba:ca:de:9c:a0:e9:16:b1:64: 23:74:e8:16:20:34:db:84:64:eb:70:6b:6b:a4:d6: fd:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:5E:98:66:75:36:24:3F:71:6C:20:02:77:2D:AF:F2:97:06:57:51 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c8703a1-34ff-445a-83d6-9423df90d41e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.0.0/22 Signature Algorithm: sha256WithRSAEncryption 92:ac:65:8b:d4:0a:66:f7:78:40:30:61:67:98:34:c8:84:72: 3e:80:b1:59:1a:5f:20:e8:98:b1:a4:48:c4:60:24:6b:ec:99: 55:af:2b:47:2e:37:cf:e5:5e:14:14:3e:0b:7d:e7:6f:bd:de: 8f:64:bd:ba:d9:be:b5:60:6d:8b:b8:40:0e:db:ad:bc:68:d6: d6:07:e3:68:92:24:6a:4d:f0:9f:61:ff:f4:98:9b:a4:ba:34: ac:93:c8:4a:b3:05:81:9a:d4:86:4f:71:41:d8:77:1a:01:7b: f9:08:d8:45:e7:3f:24:6e:ae:5b:2c:cb:a8:61:42:12:3b:d7: 3f:19:d4:a7:61:e9:2c:f4:9a:c8:b6:2c:c2:f3:5c:76:81:4f: 6c:20:0e:6e:eb:10:b6:01:fc:29:a0:ab:9c:b2:4d:38:25:ea: bb:43:ad:be:84:3a:14:bf:a5:53:dc:23:b8:bf:11:46:54:f2: 73:d4:a5:61:6e:ea:d0:5a:7f:d2:54:d1:2b:cd:a1:18:3f:af: 42:36:77:75:e5:6a:f9:66:bc:20:5d:1a:3a:19:7f:bc:60:8f: 8a:d4:87:40:8f:56:ff:cd:6d:aa:bc:73:10:46:0e:4b:c4:f8: 5a:8f:8d:06:4f:21:a8:b9:51:fd:36:10:59:27:88:b0:25:9c: 6d:d0:13:ed -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMplMMYIKzZrIcpIHEQ8LNA2lbRkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI3MDAwMDE4WhcNMjYwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZjc0ZTI2OGI5ZjBlY2NhNzEwNDdlYmY4OWY3ODAyYzM0 OGZmZGM3OTUxMWYxNjc3YjhhYzEwYTk4NDgwNjNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnibX1Pt1YKc6CwF3MDjwn5VaetPPzuaid1+INbmMbtvgo XPFWoW8Q8vFNAob9Ds+NodnkeuXUYBo8aUvQVI31iDkOHeSnz0c9GI5N6J9mfwYY dEDCNMh73i3L2x1FusHR2HSUP84iwxFr0PiBFEhChyxyZQYpIBQREZ89qpKL8FO0 2PpwLLLrxWfbkiQW40elixnQj6g7crP7QYKjKBfmBsgOJdhgPOtNjAsCc/cKO50W qSLpym6QR3ggjdjNnocKZ8CxpyU1DmV7lnrbio25Wlidqj+fo0dnv+iBdp49gnrb 1IisRrrK3pyg6RaxZCN06BYgNNuEZOtwa2uk1v0XAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCF6YZnU2JD9xbCACdy2v8pcGV1EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJjODcwM2ExLTM0ZmYtNDQ1YS04M2Q2LTk0MjNkZjkwZDQxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJjlgAwDQYJKoZIhvcNAQELBQADggEBAJKsZYvUCmb3eEAwYWeYNMiEcj6A sVkaXyDomLGkSMRgJGvsmVWvK0cuN8/lXhQUPgt952+93o9kvbrZvrVgbYu4QA7b rbxo1tYH42iSJGpN8J9h//SYm6S6NKyTyEqzBYGa1IZPcUHYdxoBe/kI2EXnPyRu rlssy6hhQhI71z8Z1Kdh6Sz0msi2LMLzXHaBT2wgDm7rELYB/Cmgq5yyTTgl6rtD rb6EOhS/pVPcI7i/EUZU8nPUpWFu6tBaf9JU0SvNoRg/r0I2d3XlavlmvCBdGjoZ f7xgj4rUh0CPVv/Nbaq8cxBGDkvE+FqPjQZPIai5Uf02EFkniLAlnG3QE+0= -----END CERTIFICATE-----Generated at Sat Dec 6 14:48:26 2025 by rpki-client