This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dc5c33f-c479-49ed-8d91-5f2b6a296eb1.roa File: 3dc5c33f-c479-49ed-8d91-5f2b6a296eb1.roa (raw, json) Hash identifier: cYSmCFDnJyEubWsGIiT1E3kgxq/WI2VA/XRtqBdt0MY= Subject key identifier: DE:C5:EC:83:15:9F:EC:F9:7F:F1:5A:CA:78:F6:DF:FD:A1:E9:57:68 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B7AF015BA0786229F199AC2C9D5B480B733481B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dc5c33f-c479-49ed-8d91-5f2b6a296eb1.roa Signing time: Thu 27 Nov 2025 00:10:05 +0000 ROA not before: Thu 27 Nov 2025 00:10:05 +0000 ROA not after: Wed 25 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.168.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:7a:f0:15:ba:07:86:22:9f:19:9a:c2:c9:d5:b4:80:b7:33:48:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 27 00:10:05 2025 GMT Not After : Feb 25 23:59:59 2026 GMT Subject: serialNumber=fc7d36cb36580157fe03e99a54233f27c6e7bbfe5f8c3cdaa13b40c515a6a750, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d3:db:a9:69:f3:c6:a0:7a:33:b1:d2:7b:1d: 4b:7f:ce:3b:92:f9:f7:12:4b:bc:3d:2b:19:80:4c: ae:43:cc:05:8e:fa:20:de:8b:05:fa:b2:52:90:24: e6:39:80:2a:e4:ad:c2:13:15:ed:d0:be:f1:69:4b: 2e:36:6b:e1:dc:6a:86:41:95:3d:b0:19:5d:d5:85: 13:b4:79:f8:2a:d8:38:e8:90:dc:a1:97:0b:68:18: 88:10:2c:5c:0a:77:6e:5f:7f:81:6c:73:0d:f9:bb: 3d:39:19:ab:a4:5c:41:d1:86:2f:7b:f8:e5:67:38: c1:a7:77:96:67:f0:3c:09:2d:9a:5e:16:7b:6a:71: a0:49:f9:48:be:7d:b2:9e:a5:8b:73:ca:0e:78:e8: 14:f4:67:e5:bd:83:4a:b0:64:ea:34:ec:ed:e7:97: e3:56:62:71:7d:f8:61:38:dc:1d:a0:5c:b2:9e:4a: 2e:49:61:2a:91:bd:9b:3b:38:ee:7c:51:cf:e1:c8: 39:0f:2d:df:e8:80:a3:ea:de:5f:1c:2d:21:79:ce: a0:c0:7d:fa:1a:50:42:ad:df:93:3f:2a:89:82:0d: 9d:d8:b9:b8:da:a4:ff:83:33:10:c1:0c:35:fe:e8: 53:ec:8a:5f:df:38:a4:aa:43:93:c3:84:77:f8:38: 88:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:C5:EC:83:15:9F:EC:F9:7F:F1:5A:CA:78:F6:DF:FD:A1:E9:57:68 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dc5c33f-c479-49ed-8d91-5f2b6a296eb1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.168.0/22 Signature Algorithm: sha256WithRSAEncryption 26:13:6a:2c:16:63:28:a6:b3:25:cd:af:cd:36:06:32:7a:25: 0d:22:d9:df:b3:57:72:41:d5:13:89:73:0c:2c:cb:30:06:98: 2e:5f:fe:8c:f4:70:58:35:55:41:b0:fd:16:c8:b1:77:59:a1: ea:59:df:d7:f9:20:06:a1:fd:71:6f:18:d0:e3:7c:91:ef:23: 0e:1c:da:18:15:73:ac:45:d6:72:59:65:e2:e0:f8:d5:c7:90: 8f:9b:c5:28:f4:39:f8:9b:d0:30:60:5b:13:6f:f6:5e:52:97: 73:34:ad:f7:80:bf:39:f5:08:7f:c5:b0:0e:6a:a0:0d:23:d8: 74:62:fa:98:94:a7:e5:80:83:91:05:8a:6f:7c:d2:9c:c8:9e: 84:b6:0d:a5:0d:bc:81:07:cd:fe:92:22:69:f9:5f:fd:43:60: 84:51:e5:fe:ba:44:ae:41:63:a9:25:20:0a:99:f2:a8:07:2e: b0:77:90:d1:c2:13:84:08:78:04:ce:36:e3:f9:46:01:5c:22: 8f:de:ea:23:0b:dc:7c:f0:7d:f9:ad:c7:66:79:44:79:62:eb: b5:bb:2b:35:47:d1:e1:03:cc:c4:f0:e2:d3:51:dc:3f:36:47: 53:95:43:e6:33:02:45:e2:db:27:19:84:d0:16:40:78:6a:b4: bc:10:70:f1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUG3rwFboHhiKfGZrCydW0gLczSBswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI3MDAxMDA1WhcNMjYwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYzdkMzZjYjM2NTgwMTU3ZmUwM2U5OWE1NDIzM2YyN2M2 ZTdiYmZlNWY4YzNjZGFhMTNiNDBjNTE1YTZhNzUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDP09upafPGoHozsdJ7HUt/zjuS+fcSS7w9KxmATK5DzAWO +iDeiwX6slKQJOY5gCrkrcITFe3QvvFpSy42a+HcaoZBlT2wGV3VhRO0efgq2Djo kNyhlwtoGIgQLFwKd25ff4Fscw35uz05GaukXEHRhi97+OVnOMGnd5Zn8DwJLZpe FntqcaBJ+Ui+fbKepYtzyg546BT0Z+W9g0qwZOo07O3nl+NWYnF9+GE43B2gXLKe Si5JYSqRvZs7OO58Uc/hyDkPLd/ogKPq3l8cLSF5zqDAffoaUEKt35M/KomCDZ3Y ubjapP+DMxDBDDX+6FPsil/fOKSqQ5PDhHf4OIgVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3sXsgxWf7Pl/8VrKePbf/aHpV2gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkYzVjMzNmLWM0NzktNDllZC04ZDkxLTVmMmI2YTI5NmViMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJjl6gwDQYJKoZIhvcNAQELBQADggEBACYTaiwWYyimsyXNr802BjJ6JQ0i 2d+zV3JB1ROJcwwsyzAGmC5f/oz0cFg1VUGw/RbIsXdZoepZ39f5IAah/XFvGNDj fJHvIw4c2hgVc6xF1nJZZeLg+NXHkI+bxSj0Ofib0DBgWxNv9l5Sl3M0rfeAvzn1 CH/FsA5qoA0j2HRi+piUp+WAg5EFim980pzInoS2DaUNvIEHzf6SImn5X/1DYIRR 5f66RK5BY6klIAqZ8qgHLrB3kNHCE4QIeATONuP5RgFcIo/e6iML3Hzwffmtx2Z5 RHli67W7KzVH0eEDzMTw4tNR3D82R1OVQ+YzAkXi2ycZhNAWQHhqtLwQcPE= -----END CERTIFICATE-----Generated at Sat Dec 6 12:37:47 2025 by rpki-client