This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e111cab-b373-424b-a3a9-8c8fc7f71e17.roa File: 3e111cab-b373-424b-a3a9-8c8fc7f71e17.roa (raw, json) Hash identifier: /6aOH4IuF1fMx+jwgW1x4AjNmJ/R7Gp7qx3GxinsgVo= Subject key identifier: 41:FC:DC:87:27:5B:A4:8D:F0:91:99:C7:63:AC:E2:76:A8:BC:91:0B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2A666EF4E101439457B70133400314623BB8DFAE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e111cab-b373-424b-a3a9-8c8fc7f71e17.roa Signing time: Tue 25 Nov 2025 00:10:10 +0000 ROA not before: Tue 25 Nov 2025 00:10:10 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 37.203.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:66:6e:f4:e1:01:43:94:57:b7:01:33:40:03:14:62:3b:b8:df:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 25 00:10:10 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=c76dd08e4c1353069377048d0f4358551f6c280006c6457806659c7cde3b9e50, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:13:42:90:10:a1:46:33:7d:28:90:72:55:d6: 86:23:aa:6a:ef:31:19:25:b2:96:65:ea:7d:50:3f: 25:5a:aa:86:68:8e:dc:ea:92:60:e8:57:c6:67:4e: 93:00:6c:03:a4:3f:21:d0:8e:8b:36:7e:43:ad:91: 61:d2:e6:06:ad:2f:8c:f1:f8:23:f8:a7:d6:5e:e9: d1:89:85:2a:36:51:6d:85:2b:6a:4c:95:f1:e4:bd: 55:bd:7f:af:4d:05:a7:2b:ec:0f:dd:68:b0:32:f1: e8:88:92:be:ac:1e:fa:9e:0f:a2:07:ed:fa:8b:eb: 25:8d:f5:10:48:c9:4c:65:c9:ba:20:7f:ed:de:3d: 57:c7:6b:25:df:5b:7b:e6:7e:04:19:df:72:be:67: db:24:fb:ae:d8:9c:7f:20:df:52:a5:1e:84:72:21: b0:9f:0e:b7:61:5a:bc:44:63:3d:b6:51:78:0e:28: 69:58:24:b2:8b:c6:ab:75:92:be:80:89:73:84:0a: 31:ee:bf:20:0f:ee:be:35:9e:24:65:ed:56:14:e9: 96:19:e0:df:61:24:be:1f:d1:7c:fd:94:39:11:a1: c7:96:49:4c:75:04:c5:18:37:6c:e5:91:ce:ed:8f: 27:45:d5:2f:07:62:43:74:c7:30:66:07:0b:67:9f: 41:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:FC:DC:87:27:5B:A4:8D:F0:91:99:C7:63:AC:E2:76:A8:BC:91:0B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e111cab-b373-424b-a3a9-8c8fc7f71e17.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.203.157.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:07:77:88:c1:77:04:2d:97:ae:12:70:4e:d5:8d:78:dd:27: 6a:09:a8:e0:30:b5:1c:aa:20:f1:75:25:30:38:64:9a:6f:f7: f2:47:af:b5:c9:ba:96:dd:82:04:49:e4:7a:b9:6d:4a:60:f9: 48:65:12:8d:72:60:25:b5:49:4e:1a:7d:2c:3e:98:51:b8:30: 10:75:86:8b:eb:aa:6d:f6:ea:9d:70:f0:c1:e2:53:a2:87:a8: a9:f0:7e:00:86:2c:d0:90:45:21:a4:29:5d:20:2b:25:8f:a0: 8e:d0:e1:9a:70:5a:a0:8f:10:63:f1:5e:ac:91:9f:fa:2b:e2: a5:6d:df:c0:50:ec:f6:8d:03:cc:b8:cf:47:50:15:5e:64:ae: 24:c6:d5:fa:e2:91:da:85:01:03:45:ef:91:77:63:8a:1d:77: fe:ba:de:8e:7e:06:7a:47:8a:d0:fd:d6:61:d1:54:5e:d5:b0: 0e:33:df:b3:fd:36:07:ff:6d:21:43:0c:80:14:8f:e7:3d:51: 25:77:e0:e7:09:7b:a9:a9:c6:f1:4b:4a:77:32:0e:79:82:c2: 66:d7:5f:42:c8:a5:4e:8d:e8:85:8f:98:39:1b:8b:11:6f:31: 8c:bb:3a:7b:50:17:09:84:d2:98:07:ec:e5:21:8d:e7:5a:f0: b1:10:96:7c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKmZu9OEBQ5RXtwEzQAMUYju4364wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI1MDAxMDEwWhcNMjYwMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNzZkZDA4ZTRjMTM1MzA2OTM3NzA0OGQwZjQzNTg1NTFm NmMyODAwMDZjNjQ1NzgwNjY1OWM3Y2RlM2I5ZTUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxE0KQEKFGM30okHJV1oYjqmrvMRklspZl6n1QPyVaqoZo jtzqkmDoV8ZnTpMAbAOkPyHQjos2fkOtkWHS5gatL4zx+CP4p9Ze6dGJhSo2UW2F K2pMlfHkvVW9f69NBacr7A/daLAy8eiIkr6sHvqeD6IH7fqL6yWN9RBIyUxlybog f+3ePVfHayXfW3vmfgQZ33K+Z9sk+67YnH8g31KlHoRyIbCfDrdhWrxEYz22UXgO KGlYJLKLxqt1kr6AiXOECjHuvyAP7r41niRl7VYU6ZYZ4N9hJL4f0Xz9lDkRoceW SUx1BMUYN2zlkc7tjydF1S8HYkN0xzBmBwtnn0HjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQfzchydbpI3wkZnHY6zidqi8kQswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNlMTExY2FiLWIzNzMtNDI0Yi1hM2E5LThjOGZjN2Y3MWUxNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAly50wDQYJKoZIhvcNAQELBQADggEBAC4Hd4jBdwQtl64ScE7VjXjdJ2oJ qOAwtRyqIPF1JTA4ZJpv9/JHr7XJupbdggRJ5Hq5bUpg+UhlEo1yYCW1SU4afSw+ mFG4MBB1hovrqm326p1w8MHiU6KHqKnwfgCGLNCQRSGkKV0gKyWPoI7Q4ZpwWqCP EGPxXqyRn/or4qVt38BQ7PaNA8y4z0dQFV5kriTG1frikdqFAQNF75F3Y4odd/66 3o5+BnpHitD91mHRVF7VsA4z37P9Ngf/bSFDDIAUj+c9USV34OcJe6mpxvFLSncy DnmCwmbXX0LIpU6N6IWPmDkbixFvMYy7OntQFwmE0pgH7OUhjeda8LEQlnw= -----END CERTIFICATE-----Generated at Sat Dec 6 23:57:07 2025 by rpki-client