This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d387ff7-fed8-4308-a990-1ea058fcb160.roa File: 3d387ff7-fed8-4308-a990-1ea058fcb160.roa (raw, json) Hash identifier: ru1JpCkTESX3JTVVS7hZB1gmlmjlJoORj73oLVe/kmk= Subject key identifier: B1:29:C6:81:9D:6C:39:DB:E2:8D:55:7C:29:7F:8F:81:C3:85:E6:70 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 25708CA6C37DED676A4E9DCB38438AF89517127F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d387ff7-fed8-4308-a990-1ea058fcb160.roa Signing time: Thu 27 Nov 2025 00:10:05 +0000 ROA not before: Thu 27 Nov 2025 00:10:05 +0000 ROA not after: Wed 25 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:70:8c:a6:c3:7d:ed:67:6a:4e:9d:cb:38:43:8a:f8:95:17:12:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 27 00:10:05 2025 GMT Not After : Feb 25 23:59:59 2026 GMT Subject: serialNumber=342cc442cacc09d84249bdfe4584a75c5bf0f5dfdae9bf1a6bc35aaa50c52a56, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9b:3a:53:75:b9:bb:84:f4:01:54:af:c0:f1: ae:c8:7c:15:33:26:f9:b5:0f:32:80:2d:4a:21:f5: ba:bb:d2:9a:ca:46:ba:e9:f6:76:2f:d0:cb:21:ee: df:f8:fc:70:f0:0a:61:a9:66:f4:ce:0c:16:21:44: b2:46:6b:89:5a:f4:d1:3b:ef:5d:cc:e7:f6:66:63: 32:da:9c:57:ba:df:59:3a:84:58:52:9a:1f:b3:d8: 13:66:86:d0:6e:bc:c3:d9:1e:7d:e4:74:38:07:80: a9:f8:e0:41:92:9b:f1:53:e4:f3:0c:dd:37:54:38: d6:bc:15:fc:e8:a6:41:fd:3c:2a:37:86:a9:76:68: f0:97:39:16:14:15:19:80:4f:cc:16:a7:e3:95:54: 0d:43:21:ca:c6:30:ca:cb:5b:13:f7:01:52:c5:44: b0:83:fa:9c:07:5a:f7:31:13:09:b8:7e:d1:be:f0: bd:ed:da:33:3c:5a:51:35:be:54:53:5c:b3:3e:60: 6c:a9:66:01:fe:0f:4c:c3:6d:d5:2b:1d:ba:0f:f4: 62:89:04:62:86:b0:e8:0a:49:aa:0e:7c:35:0b:8d: a7:81:de:16:bb:d7:a8:65:b7:30:e9:4f:47:f2:55: 25:ca:2c:ea:ee:9d:f1:8f:92:1c:ce:cc:55:7f:70: 58:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:29:C6:81:9D:6C:39:DB:E2:8D:55:7C:29:7F:8F:81:C3:85:E6:70 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d387ff7-fed8-4308-a990-1ea058fcb160.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.82.0/24 Signature Algorithm: sha256WithRSAEncryption 97:dc:ef:d2:a1:42:75:58:66:cf:eb:89:98:5a:ef:70:9b:e7: 93:7b:79:ef:e6:4b:05:97:e3:b5:3d:88:e2:38:14:a6:8f:30: 4e:8c:57:3b:1c:2d:60:43:0b:fa:dd:1a:fb:9c:88:96:87:a0: ff:0c:38:cf:b5:40:17:10:00:b7:3c:b9:42:58:4f:01:cf:df: 6f:b0:72:04:cf:3d:3e:75:53:61:a8:aa:b3:4a:19:68:f8:3b: c2:e8:c2:e6:2d:cc:a6:6e:aa:f7:b8:d4:bb:9a:c8:8f:13:a0: 45:04:94:6a:43:24:fd:53:f8:a5:da:72:99:46:37:4d:cb:0b: 58:1a:c4:f1:5b:3d:9e:b5:63:83:ea:9c:e5:fe:fb:72:c1:dd: 5f:df:d8:a0:fc:37:9e:c4:3e:95:aa:e5:27:22:98:c7:52:14: ad:4f:c3:10:d1:b9:4f:80:f7:74:41:d9:a9:9e:7f:35:cf:35: 1d:4e:d6:01:0d:f8:92:d8:d2:22:ec:ad:93:30:b0:f6:8f:c0: 24:f2:a4:b0:17:4a:ba:e5:80:52:36:7c:d0:9f:9f:58:b3:35: 5e:c5:f3:09:49:a0:f4:f8:eb:5b:6f:60:4b:9b:f9:46:fa:63: 59:c5:ae:7e:89:80:da:f5:76:bb:4b:27:1a:13:86:33:9f:ef: d9:eb:f6:70 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJXCMpsN97WdqTp3LOEOK+JUXEn8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI3MDAxMDA1WhcNMjYwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNDJjYzQ0MmNhY2MwOWQ4NDI0OWJkZmU0NTg0YTc1YzVi ZjBmNWRmZGFlOWJmMWE2YmMzNWFhYTUwYzUyYTU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2mzpTdbm7hPQBVK/A8a7IfBUzJvm1DzKALUoh9bq70prK Rrrp9nYv0Msh7t/4/HDwCmGpZvTODBYhRLJGa4la9NE7713M5/ZmYzLanFe631k6 hFhSmh+z2BNmhtBuvMPZHn3kdDgHgKn44EGSm/FT5PMM3TdUONa8FfzopkH9PCo3 hql2aPCXORYUFRmAT8wWp+OVVA1DIcrGMMrLWxP3AVLFRLCD+pwHWvcxEwm4ftG+ 8L3t2jM8WlE1vlRTXLM+YGypZgH+D0zDbdUrHboP9GKJBGKGsOgKSaoOfDULjaeB 3ha716hltzDpT0fyVSXKLOrunfGPkhzOzFV/cFgrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsSnGgZ1sOdvijVV8KX+PgcOF5nAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkMzg3ZmY3LWZlZDgtNDMwOC1hOTkwLTFlYTA1OGZjYjE2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjl1IwDQYJKoZIhvcNAQELBQADggEBAJfc79KhQnVYZs/riZha73Cb55N7 ee/mSwWX47U9iOI4FKaPME6MVzscLWBDC/rdGvuciJaHoP8MOM+1QBcQALc8uUJY TwHP32+wcgTPPT51U2GoqrNKGWj4O8LowuYtzKZuqve41LuayI8ToEUElGpDJP1T +KXacplGN03LC1gaxPFbPZ61Y4PqnOX++3LB3V/f2KD8N57EPpWq5ScimMdSFK1P wxDRuU+A93RB2amefzXPNR1O1gEN+JLY0iLsrZMwsPaPwCTypLAXSrrlgFI2fNCf n1izNV7F8wlJoPT461tvYEub+Ub6Y1nFrn6JgNr1drtLJxoThjOf79nr9nA= -----END CERTIFICATE-----Generated at Sat Dec 6 10:15:48 2025 by rpki-client