This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/396fb735-ddd1-4676-8f03-961ccd29c7fb.roa File: 396fb735-ddd1-4676-8f03-961ccd29c7fb.roa (raw, json) Hash identifier: 6eF5YdXiBe/cEiurcgzShGlNzrukmQed7S5kzrPRehs= Subject key identifier: 08:CE:16:DD:CE:C2:96:D1:CD:7D:43:63:11:61:90:93:F3:CC:61:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3C86A52F634DF6500FD991FDC0E9B507081EE51A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/396fb735-ddd1-4676-8f03-961ccd29c7fb.roa Signing time: Thu 27 Nov 2025 00:31:31 +0000 ROA not before: Thu 27 Nov 2025 00:31:31 +0000 ROA not after: Wed 25 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:86:a5:2f:63:4d:f6:50:0f:d9:91:fd:c0:e9:b5:07:08:1e:e5:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 27 00:31:31 2025 GMT Not After : Feb 25 23:59:59 2026 GMT Subject: serialNumber=5af7449ed9faeeb842c5df7ca3c8bd5e1dbeed0bd31e9f327ae5ed0897144b80, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:96:6e:1c:38:c3:46:69:8e:f1:c8:04:d9:17: 3b:0d:99:17:3f:0f:63:76:a8:35:44:2c:98:51:e4: 03:a7:e2:70:d6:ee:d8:65:10:e7:6e:0d:91:4d:77: 0a:70:6c:fe:69:83:0d:b3:bf:83:e1:b1:86:bd:7e: 1e:68:99:d3:a1:7c:c0:57:e3:87:35:81:e9:df:9e: e4:ca:d7:30:c3:8c:3d:b9:8f:c2:ad:51:79:02:bb: ca:ed:0c:8f:e3:59:9d:80:5e:69:cd:22:ac:d3:bb: cf:68:fc:29:c6:20:21:a6:4d:7f:e9:c6:71:c7:27: 24:ff:82:de:d8:2b:de:d0:62:63:2e:9c:86:d7:3b: e1:f8:7f:8b:15:69:21:b8:f2:46:c9:10:9a:a6:6c: 40:67:38:42:57:25:e9:b0:ff:1b:82:63:eb:a9:7a: 3b:5c:69:48:53:e0:b1:6c:45:49:e2:67:a7:93:3e: 53:b9:91:3c:e0:5c:85:aa:2f:85:31:2f:66:58:be: cf:6f:f4:55:bd:0f:b0:13:ce:cf:1a:b5:d5:80:d2: 54:e7:ae:ab:79:ba:52:ac:98:81:1d:21:ad:a1:5f: 36:6d:aa:6d:61:49:ab:16:19:94:a5:6f:d1:12:b7: f4:31:fb:c8:c6:34:ad:77:ea:78:44:dd:b4:86:04: 8d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:CE:16:DD:CE:C2:96:D1:CD:7D:43:63:11:61:90:93:F3:CC:61:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/396fb735-ddd1-4676-8f03-961ccd29c7fb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.162.0/24 Signature Algorithm: sha256WithRSAEncryption 41:09:d2:76:10:26:85:e1:73:30:cd:51:b1:c1:b8:44:89:c0: fd:22:cc:82:50:6b:96:74:c5:b8:b8:fe:c8:5a:47:08:d0:72: bb:4a:f0:0e:47:75:1d:6a:ee:c7:b0:0d:67:a9:b9:42:e5:db: c4:18:fe:43:5d:91:ce:4e:fc:91:af:f7:5a:bc:e2:6c:51:21: 86:a9:48:10:c0:85:a5:4e:0d:6e:28:e2:26:02:43:7b:ba:66: b0:5b:10:08:26:4d:ac:2a:7e:24:42:5b:d7:49:b0:ac:6e:ab: 31:b6:59:fd:75:d9:89:b1:0b:b2:65:5b:56:dd:b1:0f:59:18: ad:10:69:25:d0:dd:e0:50:25:92:b5:51:75:97:c1:8a:07:8d: e3:55:68:e8:bd:0f:8d:0b:cd:22:54:3e:03:3f:5c:e8:77:22: c0:56:5b:bc:24:5d:9e:88:85:96:b9:c1:e1:8f:0d:f7:7f:aa: 72:4b:87:a8:2b:47:3f:75:cc:f2:b7:44:82:cb:8f:ae:08:d8: cd:48:08:4e:e9:6c:a4:b9:b7:e3:db:8c:b8:9e:d1:78:c9:28: ea:d1:37:c9:2b:62:5e:9a:a1:53:de:1c:98:02:e7:d9:79:64: bf:17:b2:11:a7:fe:b6:05:83:53:c0:29:67:cc:6e:0d:bd:3a: 5c:7f:f9:3d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPIalL2NN9lAP2ZH9wOm1Bwge5RowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI3MDAzMTMxWhcNMjYwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YWY3NDQ5ZWQ5ZmFlZWI4NDJjNWRmN2NhM2M4YmQ1ZTFk YmVlZDBiZDMxZTlmMzI3YWU1ZWQwODk3MTQ0YjgwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxlm4cOMNGaY7xyATZFzsNmRc/D2N2qDVELJhR5AOn4nDW 7thlEOduDZFNdwpwbP5pgw2zv4PhsYa9fh5omdOhfMBX44c1genfnuTK1zDDjD25 j8KtUXkCu8rtDI/jWZ2AXmnNIqzTu89o/CnGICGmTX/pxnHHJyT/gt7YK97QYmMu nIbXO+H4f4sVaSG48kbJEJqmbEBnOEJXJemw/xuCY+upejtcaUhT4LFsRUniZ6eT PlO5kTzgXIWqL4UxL2ZYvs9v9FW9D7ATzs8atdWA0lTnrqt5ulKsmIEdIa2hXzZt qm1hSasWGZSlb9ESt/Qx+8jGNK136nhE3bSGBI2fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCM4W3c7CltHNfUNjEWGQk/PMYRYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM5NmZiNzM1LWRkZDEtNDY3Ni04ZjAzLTk2MWNjZDI5YzdmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjl6IwDQYJKoZIhvcNAQELBQADggEBAEEJ0nYQJoXhczDNUbHBuESJwP0i zIJQa5Z0xbi4/shaRwjQcrtK8A5HdR1q7sewDWepuULl28QY/kNdkc5O/JGv91q8 4mxRIYapSBDAhaVODW4o4iYCQ3u6ZrBbEAgmTawqfiRCW9dJsKxuqzG2Wf112Ymx C7JlW1bdsQ9ZGK0QaSXQ3eBQJZK1UXWXwYoHjeNVaOi9D40LzSJUPgM/XOh3IsBW W7wkXZ6IhZa5weGPDfd/qnJLh6grRz91zPK3RILLj64I2M1ICE7pbKS5t+PbjLie 0XjJKOrRN8krYl6aoVPeHJgC59l5ZL8XshGn/rYFg1PAKWfMbg29Olx/+T0= -----END CERTIFICATE-----Generated at Sun Dec 7 00:55:24 2025 by rpki-client