This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/39987a4f-c632-4bdd-8f12-5e92d4db3be2.roa File: 39987a4f-c632-4bdd-8f12-5e92d4db3be2.roa (raw, json) Hash identifier: l2cecTR5wDrPWhFgyByYW8naKLuDbICbR+JIUHxQuw4= Subject key identifier: 79:31:4D:30:C0:79:75:00:08:63:04:BE:D0:05:C1:6D:92:98:DD:6D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4305238ABFFF198966D80C29FDBF755E8D9352E8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/39987a4f-c632-4bdd-8f12-5e92d4db3be2.roa Signing time: Sat 06 Dec 2025 00:30:59 +0000 ROA not before: Sat 06 Dec 2025 00:30:59 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 107.21.200.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:05:23:8a:bf:ff:19:89:66:d8:0c:29:fd:bf:75:5e:8d:93:52:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 6 00:30:59 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=d52b8d97ff19d4859f4763143d67edf59ad3d89d6adff8068e034ae7032d461a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:45:2f:b4:42:f0:f4:ef:cd:82:5f:99:e8:6a: 53:5d:8e:35:1a:19:fa:4c:e4:d4:99:87:4d:40:4c: 8c:a7:06:00:02:71:c9:7d:c8:c8:b8:3b:ba:b7:ff: bc:ce:15:f5:10:58:33:b5:71:70:29:53:f5:27:12: 12:7d:9d:86:38:8a:72:05:7e:7d:b1:f5:78:3c:31: 56:bf:9b:4a:fb:f2:a0:0e:8b:d8:30:80:31:7b:72: 32:eb:83:b3:f4:87:a2:fb:ef:8b:3a:a3:01:92:c4: 8e:49:83:b2:6d:e7:42:41:de:5c:43:a2:a2:8b:da: 32:00:e1:be:80:5d:2d:f9:84:08:5a:81:5e:d5:9f: 6f:91:d5:ab:f3:92:53:35:05:e8:88:9d:b7:9c:6a: 37:c1:22:23:24:25:e8:b0:1b:a7:61:28:59:66:e6: 3f:2f:1a:2b:52:08:9e:51:84:24:31:25:77:a2:c1: 77:6c:6c:a8:3d:b9:7c:e6:33:a4:8b:61:3c:58:d6: 6e:ba:79:e8:c3:86:98:35:aa:c5:70:ee:55:ef:f2: 03:a3:1f:7f:e5:0c:93:37:d2:62:bb:15:f4:a8:a5: 40:f6:ed:c9:39:9a:a0:5a:fc:e3:05:43:20:2b:6d: e0:12:0a:93:3f:69:a6:c0:73:b6:df:10:9f:d1:b2: 3d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:31:4D:30:C0:79:75:00:08:63:04:BE:D0:05:C1:6D:92:98:DD:6D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/39987a4f-c632-4bdd-8f12-5e92d4db3be2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.21.200.0/21 Signature Algorithm: sha256WithRSAEncryption 4a:07:f3:e9:56:a1:3b:a5:51:25:ba:81:f2:9f:d2:2a:db:ff: 87:41:72:a4:35:46:93:7d:4d:7d:a5:a0:e2:e1:3e:9c:10:e1: 5d:8f:f8:67:2e:a0:e6:cd:ea:27:f1:83:ce:2a:9a:b4:a4:33: 49:09:a7:c3:e3:0a:a7:e7:ce:3b:5d:4f:48:f6:a0:b2:11:70: bf:c8:25:a4:94:85:31:59:67:3d:be:63:c4:fc:7d:32:db:1e: 07:1d:01:a9:dc:b4:82:a5:10:0b:3c:66:05:ab:09:d2:0f:b3: 00:e5:fd:23:e4:0d:d5:2e:81:f5:a0:33:58:b9:aa:8e:90:aa: f3:02:75:83:43:48:6d:7d:be:a3:02:ee:f1:c0:06:47:c9:5e: 16:4d:d8:9a:fb:0c:aa:df:0d:03:b2:79:e1:f1:5d:b0:7e:03: b1:d8:c4:43:9a:b2:86:e3:95:09:5b:0e:d0:d8:c2:c7:40:d0: cc:8e:21:16:e2:8c:9d:f5:33:df:94:fe:bd:3d:9e:c4:d3:de: 90:e7:1e:d7:77:b3:fc:ce:be:a6:b1:25:36:b2:c3:28:a9:54: 97:e1:9a:df:8f:03:91:7d:ea:05:70:d2:bc:9b:15:22:f3:0a: c0:47:3e:4b:55:8a:fe:7b:17:8a:86:85:75:d1:5c:ea:89:01: 46:6c:98:2d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQwUjir//GYlm2Awp/b91Xo2TUugwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA2MDAzMDU5WhcNMjYwMzA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNTJiOGQ5N2ZmMTlkNDg1OWY0NzYzMTQzZDY3ZWRmNTlh ZDNkODlkNmFkZmY4MDY4ZTAzNGFlNzAzMmQ0NjFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVRS+0QvD0782CX5noalNdjjUaGfpM5NSZh01ATIynBgAC ccl9yMi4O7q3/7zOFfUQWDO1cXApU/UnEhJ9nYY4inIFfn2x9Xg8MVa/m0r78qAO i9gwgDF7cjLrg7P0h6L774s6owGSxI5Jg7Jt50JB3lxDoqKL2jIA4b6AXS35hAha gV7Vn2+R1avzklM1BeiInbecajfBIiMkJeiwG6dhKFlm5j8vGitSCJ5RhCQxJXei wXdsbKg9uXzmM6SLYTxY1m66eejDhpg1qsVw7lXv8gOjH3/lDJM30mK7FfSopUD2 7ck5mqBa/OMFQyArbeASCpM/aabAc7bfEJ/Rsj2JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeTFNMMB5dQAIYwS+0AXBbZKY3W0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM5OTg3YTRmLWM2MzItNGJkZC04ZjEyLTVlOTJkNGRiM2JlMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANrFcgwDQYJKoZIhvcNAQELBQADggEBAEoH8+lWoTulUSW6gfKf0irb/4dB cqQ1RpN9TX2loOLhPpwQ4V2P+GcuoObN6ifxg84qmrSkM0kJp8PjCqfnzjtdT0j2 oLIRcL/IJaSUhTFZZz2+Y8T8fTLbHgcdAanctIKlEAs8ZgWrCdIPswDl/SPkDdUu gfWgM1i5qo6QqvMCdYNDSG19vqMC7vHABkfJXhZN2Jr7DKrfDQOyeeHxXbB+A7HY xEOasobjlQlbDtDYwsdA0MyOIRbijJ31M9+U/r09nsTT3pDnHtd3s/zOvqaxJTay wyipVJfhmt+PA5F96gVw0rybFSLzCsBHPktViv57F4qGhXXRXOqJAUZsmC0= -----END CERTIFICATE-----Generated at Sat Dec 6 12:57:22 2025 by rpki-client