This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2cdcaed0-3e01-4f69-b123-f0800e512baf.roa File: 2cdcaed0-3e01-4f69-b123-f0800e512baf.roa (raw, json) Hash identifier: WQmqoNFZqYVzH6by5pNshNHRKYGf3iEOenwT0CjUBnw= Subject key identifier: 18:8C:A8:F2:82:82:F1:31:22:3E:EC:D2:A6:64:BA:94:C4:CD:D8:38 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 44C78BC0752FF95826D80928DC2000A1DCA4560E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2cdcaed0-3e01-4f69-b123-f0800e512baf.roa Signing time: Wed 26 Nov 2025 00:41:02 +0000 ROA not before: Wed 26 Nov 2025 00:41:02 +0000 ROA not after: Tue 24 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fff:2c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:c7:8b:c0:75:2f:f9:58:26:d8:09:28:dc:20:00:a1:dc:a4:56:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 26 00:41:02 2025 GMT Not After : Feb 24 23:59:59 2026 GMT Subject: serialNumber=f7443b757944e45237ee83e7e2bda18ed6edd54fbbd6e4d795ac5cc9e55a5cf7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c7:d0:0b:1a:fd:65:f9:ec:cd:6e:ae:43:d9: 9d:81:24:52:ad:c1:a6:15:8b:42:0a:ac:ae:68:29: 2d:42:df:e7:6d:00:69:ab:41:23:2e:77:57:da:18: 64:fc:df:89:44:9d:ef:0a:99:0e:51:16:20:8a:b8: 30:16:99:cb:28:c1:9b:02:32:ba:6e:4f:36:9d:a7: f2:9a:16:5d:5b:e6:82:15:2b:a6:e5:dd:d1:99:74: 74:ca:81:24:f7:9e:20:85:83:d8:40:45:08:a4:ad: 6d:da:29:f0:87:af:19:73:95:a4:32:1d:18:2a:54: 64:84:c8:e4:8c:c7:06:7c:eb:32:a0:69:60:1c:84: e8:01:6c:52:e5:aa:ec:f3:4b:7d:9b:20:9c:b3:28: 1d:28:c2:0b:ce:4a:ed:c8:59:41:4f:c5:9b:83:f6: 40:9d:0d:51:b7:8e:78:68:f8:2d:99:c1:8b:dd:b2: 9c:f2:4b:17:cc:d6:68:45:09:67:e2:a2:75:c0:91: 2f:1c:89:b5:b6:a9:9f:c6:fb:c5:69:20:c7:03:f9: a0:91:7e:b2:63:f0:f4:8d:d8:e4:17:c7:c5:3f:50: 1c:5b:40:1c:41:b4:40:2b:0b:49:ee:cd:47:b3:7c: 95:48:c7:54:4c:93:a2:cd:c6:23:69:39:f3:01:b6: 09:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:8C:A8:F2:82:82:F1:31:22:3E:EC:D2:A6:64:BA:94:C4:CD:D8:38 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2cdcaed0-3e01-4f69-b123-f0800e512baf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:2c80::/48 Signature Algorithm: sha256WithRSAEncryption 42:4d:a4:a3:76:55:39:a5:e9:0d:a2:87:ad:d5:42:28:48:b8: e2:cc:59:2c:cd:10:d4:cc:3b:ff:d8:e6:81:49:ad:91:7a:95: de:3d:11:ea:f1:98:fc:2e:89:33:cd:93:f2:b3:5f:f3:90:10: 57:9e:bf:13:d0:7b:45:ef:bb:60:cc:87:2d:33:e2:c2:0f:00: 75:71:b8:51:b9:99:c3:17:05:1b:5a:77:55:fa:4c:8f:dc:f9: 91:f4:f4:66:5a:8f:47:3a:1b:b2:57:35:6a:74:35:61:8f:09: 39:73:d6:f4:47:e8:ba:d4:d7:a6:71:54:4f:b0:c7:0a:fc:50: 70:6e:17:6c:e9:8d:23:bf:eb:16:57:dd:16:c9:b4:e0:95:9e: 7d:2f:28:c0:0c:7b:17:b5:fb:a2:65:fe:b6:ef:ba:44:2f:b9: 48:16:3b:4b:01:57:ce:30:0c:fc:16:7b:b6:fb:e1:4a:bd:0e: de:fd:a1:0e:11:90:6b:c2:25:43:1f:4b:92:b1:de:5b:71:78: bf:d3:51:60:51:a5:89:5d:22:1a:46:4e:57:9f:85:b6:b0:78: 4e:4d:b4:ce:9b:19:1b:bc:a3:85:7c:b6:f0:20:e5:0e:0f:2d: 65:81:66:0b:67:1e:6e:94:9d:da:e7:99:d8:19:84:72:97:17: 5f:40:2d:9d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURMeLwHUv+Vgm2Ako3CAAodykVg4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI2MDA0MTAyWhcNMjYwMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNzQ0M2I3NTc5NDRlNDUyMzdlZTgzZTdlMmJkYTE4ZWQ2 ZWRkNTRmYmJkNmU0ZDc5NWFjNWNjOWU1NWE1Y2Y3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0x9ALGv1l+ezNbq5D2Z2BJFKtwaYVi0IKrK5oKS1C3+dt AGmrQSMud1faGGT834lEne8KmQ5RFiCKuDAWmcsowZsCMrpuTzadp/KaFl1b5oIV K6bl3dGZdHTKgST3niCFg9hARQikrW3aKfCHrxlzlaQyHRgqVGSEyOSMxwZ86zKg aWAchOgBbFLlquzzS32bIJyzKB0owgvOSu3IWUFPxZuD9kCdDVG3jnho+C2ZwYvd spzySxfM1mhFCWfionXAkS8cibW2qZ/G+8VpIMcD+aCRfrJj8PSN2OQXx8U/UBxb QBxBtEArC0nuzUezfJVIx1RMk6LNxiNpOfMBtgm7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGIyo8oKC8TEiPuzSpmS6lMTN2DgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJjZGNhZWQwLTNlMDEtNGY2OS1iMTIzLWYwODAwZTUxMmJhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//LIAwDQYJKoZIhvcNAQELBQADggEBAEJNpKN2VTml6Q2ih63VQihI uOLMWSzNENTMO//Y5oFJrZF6ld49EerxmPwuiTPNk/KzX/OQEFeevxPQe0Xvu2DM hy0z4sIPAHVxuFG5mcMXBRtad1X6TI/c+ZH09GZaj0c6G7JXNWp0NWGPCTlz1vRH 6LrU16ZxVE+wxwr8UHBuF2zpjSO/6xZX3RbJtOCVnn0vKMAMexe1+6Jl/rbvukQv uUgWO0sBV84wDPwWe7b74Uq9Dt79oQ4RkGvCJUMfS5Kx3ltxeL/TUWBRpYldIhpG TlefhbaweE5NtM6bGRu8o4V8tvAg5Q4PLWWBZgtnHm6UndrnmdgZhHKXF19ALZ0= -----END CERTIFICATE-----Generated at Sat Dec 6 13:01:10 2025 by rpki-client