This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d9d7bd3-1ddb-48f0-b445-7c3d44fa09af.roa File: 2d9d7bd3-1ddb-48f0-b445-7c3d44fa09af.roa (raw, json) Hash identifier: 3+yKWeWky/5jNZyt+QbSwKPE5cb3tEE7sc/XG0qKWoM= Subject key identifier: D0:77:49:D5:5C:2C:54:91:2A:0E:B7:1E:C5:8C:0D:77:16:E7:EB:F2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 46B7B98C8591D3B955D2732A704DDA03F7A6B304 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d9d7bd3-1ddb-48f0-b445-7c3d44fa09af.roa Signing time: Thu 27 Nov 2025 00:30:13 +0000 ROA not before: Thu 27 Nov 2025 00:30:13 +0000 ROA not after: Wed 25 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 64.113.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:b7:b9:8c:85:91:d3:b9:55:d2:73:2a:70:4d:da:03:f7:a6:b3:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 27 00:30:13 2025 GMT Not After : Feb 25 23:59:59 2026 GMT Subject: serialNumber=b8895d5300bef3c34fe53ca656ba5cbe431657d9be97daa630205d47d4522026, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9d:f3:6c:ce:c8:d3:fb:78:29:66:51:61:a6: ff:b2:a5:c0:e8:d2:11:3b:09:a0:59:3e:16:b1:b1: 6a:68:4d:74:25:b1:62:99:7b:f3:63:76:8c:fd:95: d0:8f:16:45:0a:04:f7:a1:5e:46:06:e7:ad:10:f7: 81:91:e6:36:8b:cc:a3:e2:a6:67:77:4b:2f:e1:95: a3:3b:b9:58:93:15:f7:b4:2f:f7:cf:9a:06:c4:a9: fe:2c:0e:78:5e:e2:a2:98:26:8a:f1:6a:2e:0f:54: 17:1d:8c:e4:e8:e1:6a:90:6e:22:77:92:f9:90:a4: 63:dd:9f:c3:a1:f5:69:28:9a:ab:47:18:06:92:28: f1:b2:23:58:04:ef:64:b7:72:9c:fe:17:6d:68:78: 5b:14:a0:ec:b5:9f:db:d1:8d:bf:c1:c4:b8:f9:69: b2:2a:0a:47:de:e9:ac:0e:36:5d:dd:a1:95:73:fa: 12:59:e9:cb:62:a3:d8:a6:02:75:30:39:9c:af:68: b5:03:e2:dd:d7:8e:d3:f8:49:83:4d:ad:bf:ad:ae: 67:dc:8d:bc:9b:a0:7c:b3:3b:f6:04:a0:2c:41:9a: d7:89:1f:96:07:68:f5:9d:da:4b:d5:54:8d:bb:0d: 5e:fb:2a:c0:59:23:cf:01:a2:da:6a:ec:96:a5:6d: d1:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:77:49:D5:5C:2C:54:91:2A:0E:B7:1E:C5:8C:0D:77:16:E7:EB:F2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d9d7bd3-1ddb-48f0-b445-7c3d44fa09af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.113.192.0/19 Signature Algorithm: sha256WithRSAEncryption a9:63:63:62:3d:5d:61:9a:ca:c5:0b:7a:f0:6c:d6:79:6c:1c: d3:63:17:0c:d7:14:79:62:a9:ca:10:0f:22:3d:7e:51:0d:e1: 2c:ca:5c:29:e9:91:ea:ca:ea:1b:8f:9e:5a:46:36:5e:ba:59: 17:52:b4:e3:68:fd:eb:d5:09:ee:c8:f8:ed:50:5c:c6:f1:4f: b7:97:33:cd:23:b1:a6:14:c2:a2:18:59:d4:2d:f1:d6:68:b4: f3:30:2d:db:6d:de:1a:06:03:d2:c4:e6:2f:a7:a6:be:d1:02: 17:f5:84:33:5f:8d:17:38:39:11:52:8a:2f:f3:cc:c1:39:a9: 50:4b:60:4d:f4:d2:9a:f6:87:96:c8:33:42:ef:97:e2:c2:38: f7:c2:98:b6:8f:16:de:3b:81:44:69:77:78:8e:9c:f5:79:3f: 70:59:81:30:a8:ed:ff:46:d0:67:82:2a:22:98:cc:63:71:d7: 8f:1d:8c:4d:7d:0f:bb:bb:7e:9a:b1:7a:23:c2:14:33:60:62: f8:cf:69:22:c7:91:69:dd:92:14:24:20:16:58:0c:e1:f6:0e: b3:6c:8a:10:15:7b:94:ed:a7:46:36:1c:f7:e0:5a:58:97:38: 4a:a4:a0:6c:0a:5c:cb:2c:ff:4b:0b:2c:67:35:0d:43:2c:4c: 15:89:e8:20 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURre5jIWR07lV0nMqcE3aA/emswQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI3MDAzMDEzWhcNMjYwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiODg5NWQ1MzAwYmVmM2MzNGZlNTNjYTY1NmJhNWNiZTQz MTY1N2Q5YmU5N2RhYTYzMDIwNWQ0N2Q0NTIyMDI2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsnfNszsjT+3gpZlFhpv+ypcDo0hE7CaBZPhaxsWpoTXQl sWKZe/Njdoz9ldCPFkUKBPehXkYG560Q94GR5jaLzKPipmd3Sy/hlaM7uViTFfe0 L/fPmgbEqf4sDnhe4qKYJorxai4PVBcdjOTo4WqQbiJ3kvmQpGPdn8Oh9WkomqtH GAaSKPGyI1gE72S3cpz+F21oeFsUoOy1n9vRjb/BxLj5abIqCkfe6awONl3doZVz +hJZ6ctio9imAnUwOZyvaLUD4t3XjtP4SYNNrb+trmfcjbyboHyzO/YEoCxBmteJ H5YHaPWd2kvVVI27DV77KsBZI88Botpq7JalbdFbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0HdJ1VwsVJEqDrcexYwNdxbn6/IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJkOWQ3YmQzLTFkZGItNDhmMC1iNDQ1LTdjM2Q0NGZhMDlhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVAccAwDQYJKoZIhvcNAQELBQADggEBAKljY2I9XWGaysULevBs1nlsHNNj FwzXFHliqcoQDyI9flEN4SzKXCnpkerK6huPnlpGNl66WRdStONo/evVCe7I+O1Q XMbxT7eXM80jsaYUwqIYWdQt8dZotPMwLdtt3hoGA9LE5i+npr7RAhf1hDNfjRc4 ORFSii/zzME5qVBLYE300pr2h5bIM0Lvl+LCOPfCmLaPFt47gURpd3iOnPV5P3BZ gTCo7f9G0GeCKiKYzGNx148djE19D7u7fpqxeiPCFDNgYvjPaSLHkWndkhQkIBZY DOH2DrNsihAVe5Ttp0Y2HPfgWliXOEqkoGwKXMss/0sLLGc1DUMsTBWJ6CA= -----END CERTIFICATE-----Generated at Sat Dec 6 10:10:27 2025 by rpki-client