This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30a99871-ae35-4d50-8e6a-d2849f20a0bd.roa File: 30a99871-ae35-4d50-8e6a-d2849f20a0bd.roa (raw, json) Hash identifier: YijfvCdvl+N3COka3VgSDe7SClZ5y/EnS4w4X1HKaTk= Subject key identifier: D8:5D:A2:6D:CC:CE:6B:52:EB:6A:43:40:4E:6E:35:71:27:F6:BF:B1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4B1E5CC26A1FE174963FD077A76ED9856922E2C8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30a99871-ae35-4d50-8e6a-d2849f20a0bd.roa Signing time: Thu 27 Nov 2025 00:41:50 +0000 ROA not before: Thu 27 Nov 2025 00:41:50 +0000 ROA not after: Wed 25 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 68.67.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:1e:5c:c2:6a:1f:e1:74:96:3f:d0:77:a7:6e:d9:85:69:22:e2:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 27 00:41:50 2025 GMT Not After : Feb 25 23:59:59 2026 GMT Subject: serialNumber=07951e70e0e7b1d7f39144e476cf19cf43e9c8c7f31ff778154ed8dc5354e999, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:8d:8f:5f:b5:30:53:19:3d:d2:0f:92:49:cf: 4c:f9:71:df:2a:4f:22:be:38:b9:dd:93:e2:d9:ba: aa:d4:3f:3c:e3:1d:98:cb:83:8f:d9:ca:d7:ad:d9: 4d:2b:db:3e:54:3d:ed:9c:e5:10:ef:d9:d3:5c:4b: 76:f1:6d:cc:07:49:01:51:71:4b:7b:d7:c8:35:f0: cc:4f:b7:4c:6f:94:c9:de:71:80:72:52:15:cd:88: e0:91:69:ef:b9:c2:ae:ad:79:0f:48:2f:b6:b7:7a: e8:38:4a:ca:45:bb:32:e7:e4:92:a6:25:15:a4:78: 4c:73:e4:7b:08:fd:0a:d2:96:c1:45:d8:6e:cd:a0: 43:a3:67:8a:84:63:f3:06:90:23:f0:3f:b2:af:bf: cf:01:1e:c2:5c:26:b1:98:c1:d9:1f:ad:bf:a4:47: d3:2d:79:3b:23:e3:03:50:a5:ed:f9:63:da:7f:30: f4:50:fc:ca:06:07:e3:f7:52:bf:3b:ea:00:3f:7f: de:7a:03:bb:8c:f1:4a:9f:fa:96:ac:79:5d:09:22: d4:b4:ca:4d:1b:ae:3a:bb:f1:22:21:ee:c8:89:43: 6e:e3:48:7b:59:75:57:c7:d5:cd:ec:b0:4b:75:6a: 30:2f:76:88:af:10:e0:b9:17:cf:e8:af:b4:fb:cb: bc:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:5D:A2:6D:CC:CE:6B:52:EB:6A:43:40:4E:6E:35:71:27:F6:BF:B1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30a99871-ae35-4d50-8e6a-d2849f20a0bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 68.67.224.0/20 Signature Algorithm: sha256WithRSAEncryption 2f:f5:63:2e:3d:72:8a:65:c8:8b:da:f3:f8:3c:c2:21:6c:17: 8a:77:38:1d:43:01:07:8b:5a:7f:61:e1:89:13:da:f9:2a:90: 19:7c:f6:e6:7f:88:c4:ef:06:3b:19:0e:5e:80:27:78:1c:36: 9d:42:e2:18:c9:84:4a:e8:1d:51:28:6f:5f:83:2a:14:e7:04: e0:24:e9:ac:22:35:e8:c3:03:69:46:e7:f7:45:4e:5e:f0:c6: de:07:02:40:2a:08:16:7b:f1:36:aa:98:fc:60:86:34:16:e2: d3:83:61:ab:e5:99:d3:91:a1:60:0f:2e:eb:1b:30:9c:06:1f: 2d:d3:de:31:30:ad:5d:c4:ae:7c:fa:70:00:1b:0a:cc:12:f5: 2e:32:7e:6e:b9:9f:45:23:56:71:e4:88:f6:2b:a0:08:73:21: 6d:9c:2a:8e:06:d5:6f:ca:72:d2:fa:18:a2:56:af:e8:cc:35: 19:e4:79:e5:96:7c:7f:6e:f1:69:b3:0f:03:0c:94:d8:42:ec: 6f:6e:b4:b2:a4:c8:2f:e0:c7:81:d9:f1:73:90:80:48:ef:87: 85:f6:67:11:dd:ae:84:8d:34:45:07:1e:5d:76:ac:e2:ba:98: d7:b0:bc:da:60:69:1e:ce:45:e5:e8:b1:98:06:05:6b:4b:9c: 80:28:de:2b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSx5cwmof4XSWP9B3p27ZhWki4sgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI3MDA0MTUwWhcNMjYwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNzk1MWU3MGUwZTdiMWQ3ZjM5MTQ0ZTQ3NmNmMTljZjQz ZTljOGM3ZjMxZmY3NzgxNTRlZDhkYzUzNTRlOTk5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCejY9ftTBTGT3SD5JJz0z5cd8qTyK+OLndk+LZuqrUPzzj HZjLg4/Zytet2U0r2z5UPe2c5RDv2dNcS3bxbcwHSQFRcUt718g18MxPt0xvlMne cYByUhXNiOCRae+5wq6teQ9IL7a3eug4SspFuzLn5JKmJRWkeExz5HsI/QrSlsFF 2G7NoEOjZ4qEY/MGkCPwP7Kvv88BHsJcJrGYwdkfrb+kR9MteTsj4wNQpe35Y9p/ MPRQ/MoGB+P3Ur876gA/f956A7uM8Uqf+paseV0JItS0yk0brjq78SIh7siJQ27j SHtZdVfH1c3ssEt1ajAvdoivEOC5F8/or7T7y7xbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2F2ibczOa1LrakNATm41cSf2v7EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMwYTk5ODcxLWFlMzUtNGQ1MC04ZTZhLWQyODQ5ZjIwYTBiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAREQ+AwDQYJKoZIhvcNAQELBQADggEBAC/1Yy49coplyIva8/g8wiFsF4p3 OB1DAQeLWn9h4YkT2vkqkBl89uZ/iMTvBjsZDl6AJ3gcNp1C4hjJhEroHVEob1+D KhTnBOAk6awiNejDA2lG5/dFTl7wxt4HAkAqCBZ78TaqmPxghjQW4tODYavlmdOR oWAPLusbMJwGHy3T3jEwrV3Ernz6cAAbCswS9S4yfm65n0UjVnHkiPYroAhzIW2c Ko4G1W/KctL6GKJWr+jMNRnkeeWWfH9u8WmzDwMMlNhC7G9utLKkyC/gx4HZ8XOQ gEjvh4X2ZxHdroSNNEUHHl12rOK6mNewvNpgaR7OReXosZgGBWtLnIAo3is= -----END CERTIFICATE-----Generated at Sat Dec 6 15:55:01 2025 by rpki-client