This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c024a47-7c98-464a-8556-eaf88725802b.roa File: 3c024a47-7c98-464a-8556-eaf88725802b.roa (raw, json) Hash identifier: qZpzrfzopWw5rMbBMFcebm2Cd8IE8geb0pOknSAgfAc= Subject key identifier: 38:47:A9:C4:71:54:6F:B2:8D:1C:46:1D:3D:5E:A0:D9:EC:EC:93:BB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 083F0B10B08A11B25234B85961BF68DEDA7B0225 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c024a47-7c98-464a-8556-eaf88725802b.roa Signing time: Sat 06 Dec 2025 02:01:51 +0000 ROA not before: Sat 06 Dec 2025 02:01:51 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 107.22.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:3f:0b:10:b0:8a:11:b2:52:34:b8:59:61:bf:68:de:da:7b:02:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 6 02:01:51 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=291b6bf8ef982cf065d33e28a792318aa4ab99b93471d29b76d8d1f6f3cbaf2b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e6:99:f9:ee:96:30:7d:47:03:44:19:f1:88: af:c5:f3:19:b3:a0:30:c9:d1:d3:c4:4e:af:99:1a: 4c:75:7a:0d:d3:95:98:7d:6c:c8:8d:cb:a6:a2:38: 93:e9:94:47:d9:f9:43:2b:49:c4:55:7b:a9:83:87: c4:4a:0a:57:db:fe:b8:75:67:f1:c6:c3:f1:27:ef: 6a:fb:f7:38:a9:91:2a:f8:41:c6:86:0f:dd:11:ff: 34:08:c4:23:0d:1c:f0:f0:0f:9d:f3:d1:b5:71:f5: 4c:2f:49:64:56:6f:0d:74:fa:b7:70:bc:6d:68:cd: df:8a:92:e2:58:46:e4:05:89:9b:48:b3:b5:6b:67: 88:1e:08:b1:ea:4e:c8:34:80:77:8e:d8:f5:d3:a0: 2f:75:04:2f:36:fc:22:26:fe:23:b0:83:c3:f0:3b: 15:e2:49:fc:1e:8b:bd:0a:50:18:eb:51:30:30:2f: f9:d0:ad:68:ab:83:be:90:53:40:75:f1:fc:8d:2b: d7:b2:08:96:ea:ad:68:21:f5:14:9e:f9:f5:ab:00: 2f:c0:83:c9:3c:2c:6f:7d:32:49:97:75:b7:c8:53: 75:51:29:fb:4b:c1:1f:ea:3d:68:d0:72:07:8a:5f: 8a:de:86:ad:7c:e2:0f:07:82:9c:32:ab:05:5d:75: ce:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:47:A9:C4:71:54:6F:B2:8D:1C:46:1D:3D:5E:A0:D9:EC:EC:93:BB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c024a47-7c98-464a-8556-eaf88725802b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.22.158.0/24 Signature Algorithm: sha256WithRSAEncryption c0:b4:23:a6:58:7d:e1:08:6d:d0:ad:e3:00:8d:74:a7:28:2e: b6:18:71:01:da:2f:3e:28:cb:eb:a5:13:a9:d3:10:7f:62:3f: 1c:a3:c1:07:51:20:b0:a1:48:a7:07:3c:4e:fc:ac:4e:85:dd: 4b:c9:e4:31:81:a1:7f:2a:61:fa:71:13:99:06:2c:a4:7f:b5: e0:26:e0:36:36:0c:63:2c:04:66:2c:a6:d0:72:14:07:5c:e7: 3b:4c:4b:68:39:65:e6:4e:ae:b7:ec:1e:f1:36:3c:68:a1:31: 18:4a:a2:bd:62:6d:cd:40:96:58:e6:a8:9b:58:6b:18:84:55: e0:5f:51:75:df:eb:2f:23:53:de:ae:83:ba:db:bd:de:be:64: 45:e8:2e:4d:c0:cc:b6:39:1b:bb:ce:c2:63:ff:1e:2b:63:36: 88:01:ca:34:7f:ad:cf:58:fe:85:2c:63:60:f5:70:c6:2f:de: d3:fa:3a:31:18:88:02:74:2a:8b:1a:3d:17:45:7d:36:cf:78: 89:ad:6b:37:e6:71:a5:1a:69:0d:09:ec:01:c8:16:73:ad:5f: 2e:9e:5b:88:00:05:5f:96:db:d5:57:9e:4c:83:0a:7a:6b:a5: 98:46:5e:2e:64:77:7b:67:bc:85:7a:5f:b3:6a:b0:23:03:10: b6:fd:70:94 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCD8LELCKEbJSNLhZYb9o3tp7AiUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA2MDIwMTUxWhcNMjYwMzA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOTFiNmJmOGVmOTgyY2YwNjVkMzNlMjhhNzkyMzE4YWE0 YWI5OWI5MzQ3MWQyOWI3NmQ4ZDFmNmYzY2JhZjJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC85pn57pYwfUcDRBnxiK/F8xmzoDDJ0dPETq+ZGkx1eg3T lZh9bMiNy6aiOJPplEfZ+UMrScRVe6mDh8RKClfb/rh1Z/HGw/En72r79zipkSr4 QcaGD90R/zQIxCMNHPDwD53z0bVx9UwvSWRWbw10+rdwvG1ozd+KkuJYRuQFiZtI s7VrZ4geCLHqTsg0gHeO2PXToC91BC82/CIm/iOwg8PwOxXiSfwei70KUBjrUTAw L/nQrWirg76QU0B18fyNK9eyCJbqrWgh9RSe+fWrAC/Ag8k8LG99MkmXdbfIU3VR KftLwR/qPWjQcgeKX4rehq184g8HgpwyqwVddc6HAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOEepxHFUb7KNHEYdPV6g2ezsk7swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjMDI0YTQ3LTdjOTgtNDY0YS04NTU2LWVhZjg4NzI1ODAyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABrFp4wDQYJKoZIhvcNAQELBQADggEBAMC0I6ZYfeEIbdCt4wCNdKcoLrYY cQHaLz4oy+ulE6nTEH9iPxyjwQdRILChSKcHPE78rE6F3UvJ5DGBoX8qYfpxE5kG LKR/teAm4DY2DGMsBGYsptByFAdc5ztMS2g5ZeZOrrfsHvE2PGihMRhKor1ibc1A lljmqJtYaxiEVeBfUXXf6y8jU96ug7rbvd6+ZEXoLk3AzLY5G7vOwmP/HitjNogB yjR/rc9Y/oUsY2D1cMYv3tP6OjEYiAJ0KosaPRdFfTbPeImtazfmcaUaaQ0J7AHI FnOtXy6eW4gABV+W29VXnkyDCnprpZhGXi5kd3tnvIV6X7NqsCMDELb9cJQ= -----END CERTIFICATE-----Generated at Sat Dec 6 22:05:48 2025 by rpki-client