This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c60dda9-8882-487b-951b-14baa9359e8e.roa File: 3c60dda9-8882-487b-951b-14baa9359e8e.roa (raw, json) Hash identifier: DFbUO2K1CqSV9gNevsdyCh1faDiyLAVIPHKQcNpNTPg= Subject key identifier: 24:91:2B:FB:E7:2C:BE:FF:CB:74:16:1E:5C:2E:90:C1:6F:0E:F5:D6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 66943B0DDCD21B8F2E5388B65E63EA9A6C9E6A24 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c60dda9-8882-487b-951b-14baa9359e8e.roa Signing time: Sun 30 Nov 2025 00:10:08 +0000 ROA not before: Sun 30 Nov 2025 00:10:08 +0000 ROA not after: Sat 28 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 125.253.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:94:3b:0d:dc:d2:1b:8f:2e:53:88:b6:5e:63:ea:9a:6c:9e:6a:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 30 00:10:08 2025 GMT Not After : Feb 28 23:59:59 2026 GMT Subject: serialNumber=e74c1faf6c0c572efeda3697bb1524c367fe68e8d30c07e14e4e653de19da8ee, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:cc:d7:5b:5e:d6:ab:c7:07:90:91:8c:36:84: 20:c3:6d:2b:82:70:70:55:cb:89:84:c1:5c:1b:19: 8f:54:8e:24:0f:4d:22:f9:ab:6c:9a:92:0f:28:6e: dd:e5:53:a4:54:15:32:8c:ea:81:59:56:6e:93:a3: 9b:8f:c8:bb:2d:22:9f:c5:e6:36:80:2e:8f:8f:fc: 3b:88:95:07:13:dc:85:2b:3e:43:fd:db:66:17:3b: 27:fa:3c:a8:bb:1b:e5:04:44:0c:b2:18:ae:27:da: 04:3b:1d:87:33:92:25:e0:ed:0a:33:16:16:9b:26: 39:27:b8:1b:3e:fa:d7:e0:eb:be:8a:79:1b:69:1a: a4:cf:76:72:3d:af:da:cc:a7:3d:51:94:1d:d3:8e: 38:51:18:12:b8:bb:c1:2e:5c:1f:bd:2e:68:ee:d1: 08:7d:4f:14:eb:f9:17:26:ea:4b:ba:89:a6:78:44: 6c:08:b3:b5:0c:61:44:b2:1f:9e:37:88:28:53:17: 01:12:5d:a6:32:4d:85:c7:4c:56:0b:77:c4:51:c1: 21:99:f4:26:f3:3b:62:45:ee:f0:5f:7d:29:d0:7d: e7:0f:67:7d:a5:b2:4a:71:32:55:1b:91:12:0d:6e: 66:a4:8a:91:dd:c7:c2:bc:83:d0:85:37:51:e8:07: 0c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:91:2B:FB:E7:2C:BE:FF:CB:74:16:1E:5C:2E:90:C1:6F:0E:F5:D6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c60dda9-8882-487b-951b-14baa9359e8e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 125.253.160.0/19 Signature Algorithm: sha256WithRSAEncryption cd:c9:da:ad:ed:25:de:fc:98:25:83:04:c8:92:8d:32:55:e9: 22:5a:1e:c5:1d:07:e7:15:39:66:4a:1c:6c:65:e3:6d:32:b5: de:e5:64:53:67:4f:75:8f:9a:73:ce:8b:9e:a1:8d:62:50:36: 54:1c:c7:8b:81:3b:ef:67:21:36:b2:ae:70:c2:08:98:e9:6b: 43:c7:e1:1d:b9:5c:6d:e2:2c:8d:61:2d:b9:3e:d3:2d:82:ae: ab:ec:d4:1e:4b:33:63:06:c2:65:1a:e3:22:d6:cc:6d:a0:12: ba:a3:61:bd:25:b4:3b:96:a4:b8:2f:78:62:04:78:29:fd:9c: c5:b5:63:db:92:c7:d0:74:a4:5a:ed:86:bb:2d:e7:b5:d9:cf: e7:99:32:d3:c6:36:60:45:16:6a:ea:c5:2d:68:a9:44:64:9f: 09:28:24:d9:ec:d2:9c:b4:78:d3:71:f9:ba:de:6a:fc:58:7d: e5:16:1a:a5:53:c0:3d:5a:2f:81:47:b9:af:5b:7a:39:a1:1f: 7d:86:8f:3d:e3:25:61:25:4e:47:d3:48:5c:9f:91:e1:c1:18: 15:d0:a6:e9:f7:4a:d9:43:72:7a:b4:0f:3d:58:c6:dc:2f:a6: 1f:23:c5:60:c3:f7:73:ad:89:11:b3:bb:5f:10:94:ad:48:77: 06:cf:26:a7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZpQ7DdzSG48uU4i2XmPqmmyeaiQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTMwMDAxMDA4WhcNMjYwMjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzRjMWZhZjZjMGM1NzJlZmVkYTM2OTdiYjE1MjRjMzY3 ZmU2OGU4ZDMwYzA3ZTE0ZTRlNjUzZGUxOWRhOGVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAzNdbXtarxweQkYw2hCDDbSuCcHBVy4mEwVwbGY9UjiQP TSL5q2yakg8obt3lU6RUFTKM6oFZVm6To5uPyLstIp/F5jaALo+P/DuIlQcT3IUr PkP922YXOyf6PKi7G+UERAyyGK4n2gQ7HYczkiXg7QozFhabJjknuBs++tfg676K eRtpGqTPdnI9r9rMpz1RlB3TjjhRGBK4u8EuXB+9Lmju0Qh9TxTr+Rcm6ku6iaZ4 RGwIs7UMYUSyH543iChTFwESXaYyTYXHTFYLd8RRwSGZ9CbzO2JF7vBffSnQfecP Z32lskpxMlUbkRINbmakipHdx8K8g9CFN1HoBwzjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJJEr++csvv/LdBYeXC6QwW8O9dYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjNjBkZGE5LTg4ODItNDg3Yi05NTFiLTE0YmFhOTM1OWU4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAV9/aAwDQYJKoZIhvcNAQELBQADggEBAM3J2q3tJd78mCWDBMiSjTJV6SJa HsUdB+cVOWZKHGxl420ytd7lZFNnT3WPmnPOi56hjWJQNlQcx4uBO+9nITayrnDC CJjpa0PH4R25XG3iLI1hLbk+0y2Crqvs1B5LM2MGwmUa4yLWzG2gErqjYb0ltDuW pLgveGIEeCn9nMW1Y9uSx9B0pFrthrst57XZz+eZMtPGNmBFFmrqxS1oqURknwko JNns0py0eNNx+breavxYfeUWGqVTwD1aL4FHua9bejmhH32Gjz3jJWElTkfTSFyf keHBGBXQpun3StlDcnq0Dz1Yxtwvph8jxWDD93OtiRGzu18QlK1IdwbPJqc= -----END CERTIFICATE-----Generated at Sat Dec 6 13:26:47 2025 by rpki-client