This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d95bd62-e681-4cef-a026-fbb2d2eb1ef1.roa File: 2d95bd62-e681-4cef-a026-fbb2d2eb1ef1.roa (raw, json) Hash identifier: 27WI9vO5L46wNjSr4R6uDJi2DorjLrPsikf7o4Kk+CI= Subject key identifier: A4:8C:E8:E7:C4:34:DB:00:DD:85:AB:67:E3:53:F8:EF:79:96:43:08 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 21FB4D64125D92719BF8CF0F1152157EFB0ED986 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d95bd62-e681-4cef-a026-fbb2d2eb1ef1.roa Signing time: Sat 22 Nov 2025 00:11:02 +0000 ROA not before: Sat 22 Nov 2025 00:11:02 +0000 ROA not after: Fri 20 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.87.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:fb:4d:64:12:5d:92:71:9b:f8:cf:0f:11:52:15:7e:fb:0e:d9:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 22 00:11:02 2025 GMT Not After : Feb 20 23:59:59 2026 GMT Subject: serialNumber=5655c13e914a11816ee7922ceaa42fbc567a10ae6fd568450942bb57cc3dc515, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:cf:25:1a:ba:71:42:a1:35:3c:7f:a8:e3:fd: a0:26:e8:2b:d9:04:d6:2b:3a:f6:aa:bb:76:9f:eb: 52:44:18:38:8d:45:ef:ec:0e:d6:9d:d8:a7:5d:38: 27:fd:57:2f:83:b3:87:77:9e:4d:66:83:47:97:64: 86:04:50:49:bb:58:cf:43:12:36:3f:08:2b:29:95: 12:d0:50:c7:6f:17:37:df:30:9d:56:f1:c2:d0:75: 82:50:89:ab:c4:74:a8:49:f3:80:81:13:67:1c:0c: 4f:2c:15:aa:1c:e9:c0:c0:a3:4e:5b:23:72:4d:6f: 48:d2:d1:e2:47:2f:3c:ca:23:67:5c:38:5e:21:40: 54:de:5a:e8:47:39:1a:8f:3b:33:00:85:b7:f2:d7: c3:4d:f9:ba:14:72:0a:43:ea:e4:57:5a:c4:95:60: 4f:7c:d5:38:dd:25:39:c5:74:76:dc:67:67:d4:35: 26:54:f7:a6:e8:14:b3:db:45:53:a4:32:75:e0:64: 9c:20:e9:a3:33:b5:3f:b7:ca:93:7c:55:64:77:2e: a9:ae:9c:27:cb:80:ea:13:b7:f6:bd:70:54:a1:f2: a0:17:63:e8:42:f5:43:62:df:15:3e:cd:07:5e:b5: bb:38:bb:7b:f6:c8:e1:ba:d5:60:74:c6:bf:85:bc: f3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:8C:E8:E7:C4:34:DB:00:DD:85:AB:67:E3:53:F8:EF:79:96:43:08 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d95bd62-e681-4cef-a026-fbb2d2eb1ef1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.87.128.0/18 Signature Algorithm: sha256WithRSAEncryption c0:c1:c5:df:49:3e:0c:ae:63:3b:07:35:bd:fd:eb:ae:67:f1: ee:5f:31:22:5e:90:a3:0d:36:48:08:3b:95:88:78:ce:f1:40: 9f:f5:aa:5a:ef:1e:96:39:1b:73:52:be:17:83:53:e8:35:01: 41:62:69:95:b6:90:55:5d:99:79:df:f2:15:7f:50:9d:8b:47: cf:fa:1e:7b:2a:29:ca:36:2d:80:bc:58:7e:fc:dc:d2:29:39: bc:dc:0b:89:11:08:35:ca:79:d6:a6:6f:f3:fc:f8:7e:03:21: 86:3d:fa:fa:e4:94:c5:cd:0e:ae:d8:e3:b5:df:71:b4:ae:49: 4f:7b:e8:d9:4c:d6:e1:e5:9c:ba:d5:5f:90:00:22:dc:dd:d2: 0c:bc:c1:a0:85:59:40:2e:0d:5e:a6:25:10:4e:eb:45:59:3c: f6:d7:a0:30:6a:ef:25:a1:b4:34:de:eb:a0:6f:9f:0c:24:d9: 61:26:87:47:69:7d:e1:e7:b0:3a:22:42:61:34:9f:53:b4:95: c0:a1:42:58:c3:86:00:e9:ec:ba:80:77:49:3d:08:fc:67:e0: 89:9b:40:81:8e:9c:1e:8f:7a:09:75:99:fd:34:3a:d9:c3:77: 56:55:4c:8c:e9:60:3e:82:5a:14:7a:cb:98:e7:b5:fe:fa:63: 67:3b:6a:c1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIftNZBJdknGb+M8PEVIVfvsO2YYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTIyMDAxMTAyWhcNMjYwMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NjU1YzEzZTkxNGExMTgxNmVlNzkyMmNlYWE0MmZiYzU2 N2ExMGFlNmZkNTY4NDUwOTQyYmI1N2NjM2RjNTE1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTzyUaunFCoTU8f6jj/aAm6CvZBNYrOvaqu3af61JEGDiN Re/sDtad2KddOCf9Vy+Ds4d3nk1mg0eXZIYEUEm7WM9DEjY/CCsplRLQUMdvFzff MJ1W8cLQdYJQiavEdKhJ84CBE2ccDE8sFaoc6cDAo05bI3JNb0jS0eJHLzzKI2dc OF4hQFTeWuhHORqPOzMAhbfy18NN+boUcgpD6uRXWsSVYE981TjdJTnFdHbcZ2fU NSZU96boFLPbRVOkMnXgZJwg6aMztT+3ypN8VWR3LqmunCfLgOoTt/a9cFSh8qAX Y+hC9UNi3xU+zQdetbs4u3v2yOG61WB0xr+FvPNpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpIzo58Q02wDdhatn41P473mWQwgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJkOTViZDYyLWU2ODEtNGNlZi1hMDI2LWZiYjJkMmViMWVmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjV4AwDQYJKoZIhvcNAQELBQADggEBAMDBxd9JPgyuYzsHNb39665n8e5f MSJekKMNNkgIO5WIeM7xQJ/1qlrvHpY5G3NSvheDU+g1AUFiaZW2kFVdmXnf8hV/ UJ2LR8/6HnsqKco2LYC8WH783NIpObzcC4kRCDXKedamb/P8+H4DIYY9+vrklMXN Dq7Y47XfcbSuSU976NlM1uHlnLrVX5AAItzd0gy8waCFWUAuDV6mJRBO60VZPPbX oDBq7yWhtDTe66Bvnwwk2WEmh0dpfeHnsDoiQmE0n1O0lcChQljDhgDp7LqAd0k9 CPxn4ImbQIGOnB6Pegl1mf00OtnDd1ZVTIzpYD6CWhR6y5jntf76Y2c7asE= -----END CERTIFICATE-----Generated at Sat Dec 6 11:15:38 2025 by rpki-client