This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cbc6787-d399-4def-9a56-fbcef999e554.roa File: 3cbc6787-d399-4def-9a56-fbcef999e554.roa (raw, json) Hash identifier: +Z4HftPeX5eXUvJF+KjErzJ+Rqip+TdvbVgDKuH9TM8= Subject key identifier: AC:7C:E7:2E:F6:48:11:D6:5B:86:EE:F2:BF:F5:4D:8A:4B:2C:14:DB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 77B0DE6E88539D715242BAC6DFB1369DA790ED9B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cbc6787-d399-4def-9a56-fbcef999e554.roa Signing time: Sat 22 Nov 2025 00:20:31 +0000 ROA not before: Sat 22 Nov 2025 00:20:31 +0000 ROA not after: Fri 20 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 72.242.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:b0:de:6e:88:53:9d:71:52:42:ba:c6:df:b1:36:9d:a7:90:ed:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 22 00:20:31 2025 GMT Not After : Feb 20 23:59:59 2026 GMT Subject: serialNumber=faef984a0ddaa5db8417e27bec072b58b4a8afaabd32022008e1a4097d697689, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:27:37:99:d9:7e:9c:85:81:30:fe:2c:ea:5b: 67:6d:e9:ee:74:e0:be:ec:91:cd:9f:22:03:84:d6: 01:0c:f2:68:7c:33:a4:61:f5:43:51:cc:20:f3:f8: fa:68:4d:17:94:a3:14:73:cc:7b:66:a9:73:cc:8b: 5e:a9:01:90:04:08:45:74:fa:57:27:e1:99:bb:ff: 80:92:0f:ab:69:13:67:bc:f1:88:f8:70:e7:e2:5f: 50:76:bc:0e:19:41:b3:54:bb:a0:88:75:2c:88:85: 37:de:89:ae:49:7b:d0:87:de:ea:b1:85:1f:92:b7: 28:1b:01:45:84:ba:4a:53:6a:79:8b:51:c4:27:7d: 8a:1d:7b:2e:95:8f:fa:ed:ab:c4:30:98:b0:24:2d: 7e:cc:cc:d7:49:1b:4b:86:87:a4:cd:cc:0a:ce:6a: f1:bf:41:d7:9a:4e:22:32:87:ad:a9:2a:87:df:cf: 05:c8:a3:4c:ee:31:96:3a:50:a3:eb:54:84:0c:78: bb:ce:93:a2:64:12:30:2c:32:85:af:08:63:0b:31: 18:27:4f:23:e9:18:e3:3a:31:98:aa:3d:a8:b4:07: 3d:04:58:5a:71:cc:31:07:8a:53:45:b4:bd:ba:59: 15:9c:5e:04:81:e5:fa:df:62:d9:64:68:a0:c2:15: 10:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:7C:E7:2E:F6:48:11:D6:5B:86:EE:F2:BF:F5:4D:8A:4B:2C:14:DB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cbc6787-d399-4def-9a56-fbcef999e554.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.242.0.0/15 Signature Algorithm: sha256WithRSAEncryption 80:e4:03:04:bb:13:d9:8a:bd:6e:fc:fe:de:67:b9:6d:a0:23: 54:98:c8:d1:83:cf:31:d6:70:11:81:c7:1f:18:a3:9a:0d:06: 09:6f:50:d4:b1:e2:27:18:b6:05:32:32:15:bf:7b:9d:7c:fa: 93:7d:0c:3f:df:45:1e:a7:ed:df:d0:a8:f8:39:6e:cb:bc:6d: 8c:ad:78:ee:16:32:cc:45:04:7f:ae:17:e4:51:dd:ad:1e:bb: a2:ca:c6:17:87:64:98:f6:ab:a4:ca:94:0e:6c:8f:70:98:aa: 5e:ca:12:8b:4b:b2:bf:b1:dc:5d:38:f3:3c:96:05:66:2d:bf: 03:cd:85:00:9b:25:f8:ba:11:2a:97:64:69:a6:9e:88:3c:c1: ee:86:59:20:a1:c9:7a:5a:44:7d:43:c0:11:4d:fd:c7:9f:07: 81:c4:f8:94:5e:bb:d0:e6:84:07:73:74:b9:57:27:4a:90:20: 10:fb:57:16:de:be:fd:7f:b5:d6:62:34:e6:07:c9:e3:5d:da: 4f:d6:43:04:07:a0:76:3c:5e:20:b9:9f:a0:49:e8:ba:2f:18: 2c:69:24:6c:35:0e:5e:52:c6:41:0c:96:08:33:ab:83:77:aa: 4a:d3:96:4c:4d:fa:d4:43:05:22:72:04:04:00:ef:44:e3:c8: 44:c7:00:d3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUd7DebohTnXFSQrrG37E2naeQ7ZswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTIyMDAyMDMxWhcNMjYwMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYWVmOTg0YTBkZGFhNWRiODQxN2UyN2JlYzA3MmI1OGI0 YThhZmFhYmQzMjAyMjAwOGUxYTQwOTdkNjk3Njg5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLJzeZ2X6chYEw/izqW2dt6e504L7skc2fIgOE1gEM8mh8 M6Rh9UNRzCDz+PpoTReUoxRzzHtmqXPMi16pAZAECEV0+lcn4Zm7/4CSD6tpE2e8 8Yj4cOfiX1B2vA4ZQbNUu6CIdSyIhTfeia5Je9CH3uqxhR+StygbAUWEukpTanmL UcQnfYodey6Vj/rtq8QwmLAkLX7MzNdJG0uGh6TNzArOavG/QdeaTiIyh62pKoff zwXIo0zuMZY6UKPrVIQMeLvOk6JkEjAsMoWvCGMLMRgnTyPpGOM6MZiqPai0Bz0E WFpxzDEHilNFtL26WRWcXgSB5frfYtlkaKDCFRAJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUrHznLvZIEdZbhu7yv/VNikssFNswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjYmM2Nzg3LWQzOTktNGRlZi05YTU2LWZiY2VmOTk5ZTU1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFI8jANBgkqhkiG9w0BAQsFAAOCAQEAgOQDBLsT2Yq9bvz+3me5baAjVJjI 0YPPMdZwEYHHHxijmg0GCW9Q1LHiJxi2BTIyFb97nXz6k30MP99FHqft39Co+Dlu y7xtjK147hYyzEUEf64X5FHdrR67osrGF4dkmParpMqUDmyPcJiqXsoSi0uyv7Hc XTjzPJYFZi2/A82FAJsl+LoRKpdkaaaeiDzB7oZZIKHJelpEfUPAEU39x58HgcT4 lF670OaEB3N0uVcnSpAgEPtXFt6+/X+11mI05gfJ413aT9ZDBAegdjxeILmfoEno ui8YLGkkbDUOXlLGQQyWCDOrg3eqStOWTE361EMFInIEBADvROPIRMcA0w== -----END CERTIFICATE-----Generated at Sat Dec 6 13:32:55 2025 by rpki-client