This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2e34b6f6-970c-422b-a50a-c63cbe392aab.roa File: 2e34b6f6-970c-422b-a50a-c63cbe392aab.roa (raw, json) Hash identifier: 85dvuDpfGzU2pU8gRGViiWtMjHPr7bO8f2Y3dNzYxrg= Subject key identifier: 94:8C:E2:AE:A3:AD:6E:BE:26:34:A1:19:12:D4:B8:CE:1B:F2:FE:10 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 76BB2B69EC34FECFF75F4CC77BD7A1875AA14C92 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2e34b6f6-970c-422b-a50a-c63cbe392aab.roa Signing time: Wed 03 Dec 2025 00:20:42 +0000 ROA not before: Wed 03 Dec 2025 00:20:42 +0000 ROA not after: Tue 03 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 71.152.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:bb:2b:69:ec:34:fe:cf:f7:5f:4c:c7:7b:d7:a1:87:5a:a1:4c:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 3 00:20:42 2025 GMT Not After : Mar 3 23:59:59 2026 GMT Subject: serialNumber=c108e6aa15608098d77bb675302ddcf9425f2354592d06387a163b2dca27f54f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:7c:28:9a:7a:77:58:06:60:b6:35:54:4d:f8: 5e:ff:1b:98:c4:e6:47:48:42:a6:76:52:67:b3:4a: d0:ab:f5:83:b9:79:4d:e9:b0:e9:51:e3:53:cf:6f: 63:7e:93:4a:c0:75:31:e5:d2:8d:bc:fe:21:6e:aa: e6:ab:01:1d:8f:cb:53:9f:14:3a:50:32:eb:7a:5a: 92:43:7b:18:1f:88:54:bf:6d:c6:b9:2d:8e:cb:6b: 9d:a5:2a:15:d7:26:c9:40:db:78:ca:55:ae:bf:44: 01:f6:a9:9e:4b:37:72:81:b6:25:8c:28:d8:91:c1: 62:ff:23:df:62:d2:71:cd:32:fe:f5:17:35:25:72: 8c:76:cd:83:88:71:0d:73:11:13:9f:a7:d6:72:5a: 63:2a:3c:b4:31:fb:b2:e1:60:51:45:3f:ce:37:a4: e3:fd:52:1f:04:21:71:6e:05:f0:31:d4:c4:83:af: e5:fd:e2:6c:10:90:66:df:b7:47:a9:a0:5a:9c:70: 74:8e:6b:1c:f5:39:c2:d7:44:c4:3c:c4:cc:a6:66: 2b:09:e7:c0:e5:38:0c:47:4b:ce:92:63:50:b5:e4: a6:93:27:07:d0:99:45:6c:77:17:ac:b8:ba:80:50: b2:b5:93:dc:30:31:7f:3f:28:ff:38:56:44:0a:45: f7:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:8C:E2:AE:A3:AD:6E:BE:26:34:A1:19:12:D4:B8:CE:1B:F2:FE:10 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2e34b6f6-970c-422b-a50a-c63cbe392aab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.152.85.0/24 Signature Algorithm: sha256WithRSAEncryption 01:74:7b:a9:80:5c:15:0e:e1:2e:75:3e:9f:b0:86:bc:ae:a3: db:77:22:90:6b:0c:c8:08:90:b9:19:90:43:00:59:bc:4f:85: 59:d6:6b:da:08:17:94:01:9e:9e:ce:82:5f:c1:b0:6c:df:9d: c3:76:ff:40:73:e8:c8:75:4d:91:e5:d8:7c:ee:a4:2d:c3:36: 62:ce:39:3e:8a:2e:1f:37:90:7a:7a:5e:cf:ff:78:69:b3:da: 8e:26:df:c1:7b:ec:16:df:c7:12:dc:89:e3:39:25:de:b0:fb: 6c:03:0a:f1:de:34:83:54:4a:64:1e:b7:6d:18:bf:e0:81:90: bb:b6:2e:a1:37:0b:3f:ab:9e:37:f9:a2:e5:c4:42:16:f5:10: ce:f2:77:55:d1:84:ec:d9:0f:f3:2f:10:a6:67:b4:a9:ad:c7: 8b:92:86:c3:03:5f:1d:9e:d6:77:36:d3:f9:94:74:5f:76:44: 1e:9a:75:03:fe:6f:74:fd:94:d0:4d:ba:08:e2:2c:ea:3e:7e: 62:c0:c5:f3:1c:d9:51:56:93:36:37:a9:ac:c3:dc:c9:a2:59: fd:a5:a5:14:57:48:95:c2:39:86:33:f4:3a:d4:5d:a3:bf:c5: 48:8b:51:92:dc:75:67:b7:a8:a6:cf:61:f9:a9:ea:98:44:50: c5:ab:4d:e5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdrsraew0/s/3X0zHe9ehh1qhTJIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjAzMDAyMDQyWhcNMjYwMzAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMTA4ZTZhYTE1NjA4MDk4ZDc3YmI2NzUzMDJkZGNmOTQy NWYyMzU0NTkyZDA2Mzg3YTE2M2IyZGNhMjdmNTRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCDfCiaendYBmC2NVRN+F7/G5jE5kdIQqZ2UmezStCr9YO5 eU3psOlR41PPb2N+k0rAdTHl0o28/iFuquarAR2Py1OfFDpQMut6WpJDexgfiFS/ bca5LY7La52lKhXXJslA23jKVa6/RAH2qZ5LN3KBtiWMKNiRwWL/I99i0nHNMv71 FzUlcox2zYOIcQ1zEROfp9ZyWmMqPLQx+7LhYFFFP843pOP9Uh8EIXFuBfAx1MSD r+X94mwQkGbft0epoFqccHSOaxz1OcLXRMQ8xMymZisJ58DlOAxHS86SY1C15KaT JwfQmUVsdxesuLqAULK1k9wwMX8/KP84VkQKRffzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlIzirqOtbr4mNKEZEtS4zhvy/hAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJlMzRiNmY2LTk3MGMtNDIyYi1hNTBhLWM2M2NiZTM5MmFhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABHmFUwDQYJKoZIhvcNAQELBQADggEBAAF0e6mAXBUO4S51Pp+whryuo9t3 IpBrDMgIkLkZkEMAWbxPhVnWa9oIF5QBnp7Ogl/BsGzfncN2/0Bz6Mh1TZHl2Hzu pC3DNmLOOT6KLh83kHp6Xs//eGmz2o4m38F77BbfxxLcieM5Jd6w+2wDCvHeNINU SmQet20Yv+CBkLu2LqE3Cz+rnjf5ouXEQhb1EM7yd1XRhOzZD/MvEKZntKmtx4uS hsMDXx2e1nc20/mUdF92RB6adQP+b3T9lNBNugjiLOo+fmLAxfMc2VFWkzY3qazD 3MmiWf2lpRRXSJXCOYYz9DrUXaO/xUiLUZLcdWe3qKbPYfmp6phEUMWrTeU= -----END CERTIFICATE-----Generated at Sat Dec 6 12:55:13 2025 by rpki-client