This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42bd5c98-ff16-4ff2-90fe-626a186a604c.roa File: 42bd5c98-ff16-4ff2-90fe-626a186a604c.roa (raw, json) Hash identifier: Z/ObZevH/8/t+PKEJK0UiuUbtZWgwqDuvIZbcO3G0HI= Subject key identifier: BF:49:A8:AC:BA:8E:ED:B5:C6:CC:59:AE:DE:41:F1:04:93:E0:87:55 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 59AD49E78523D8BFB6B614627C2F6D32E4EACC6A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42bd5c98-ff16-4ff2-90fe-626a186a604c.roa Signing time: Wed 19 Nov 2025 00:10:10 +0000 ROA not before: Wed 19 Nov 2025 00:10:10 +0000 ROA not after: Tue 17 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.188.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:ad:49:e7:85:23:d8:bf:b6:b6:14:62:7c:2f:6d:32:e4:ea:cc:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 19 00:10:10 2025 GMT Not After : Feb 17 23:59:59 2026 GMT Subject: serialNumber=427231e2a65c767e311794ab8ac7d45f98a059384d7ca915e83a00bcae41ae13, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bb:6e:e8:83:c7:00:fb:86:6d:15:c3:41:50: 73:b7:7d:e9:b2:ae:dd:63:05:48:6a:2d:54:54:ff: cc:57:73:fa:bf:3f:d0:2d:85:84:ad:fb:a8:ff:a3: f9:2b:ec:6c:e0:29:32:e1:f8:6d:4c:b8:4f:40:ae: 70:0c:7c:90:01:db:33:ac:a7:83:86:73:ff:c7:dc: 67:42:31:17:66:db:9d:46:62:7c:f3:e3:15:8b:38: aa:05:05:6e:de:f0:95:f0:5f:bc:1a:7e:2d:44:3a: 5b:38:2c:8f:06:26:c2:03:13:68:64:73:eb:2c:c3: ee:68:dc:8f:6c:fe:1e:57:30:01:58:10:87:96:69: a9:40:06:20:5e:6b:11:86:27:fe:12:ca:92:aa:68: cd:c2:3e:ec:3d:66:1a:f8:84:72:fe:79:d8:0f:c4: 40:9f:3f:56:a2:38:7d:18:35:c1:f3:88:ac:d1:42: b8:67:a8:29:fe:d4:ae:e8:42:e7:d1:91:b0:23:39: be:ad:10:85:cb:44:15:09:18:f2:e3:0b:23:8f:91: d6:bc:7a:19:58:0f:82:52:16:6a:e3:a1:55:f7:5e: c3:44:bb:51:eb:68:7b:b8:37:a2:d7:b0:d5:35:a7: 71:8c:89:3d:59:62:8b:ef:44:27:cc:e6:e0:e9:74: 86:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:49:A8:AC:BA:8E:ED:B5:C6:CC:59:AE:DE:41:F1:04:93:E0:87:55 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42bd5c98-ff16-4ff2-90fe-626a186a604c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.188.0.0/16 Signature Algorithm: sha256WithRSAEncryption 86:17:6d:c6:6a:bd:fb:4e:66:d6:46:d0:32:ab:17:01:9b:28: fc:2f:f6:24:19:7d:9e:b7:a8:15:b5:8b:93:1d:d1:7a:a1:ac: a1:f3:4e:50:88:50:c5:94:f6:07:16:93:bc:7f:91:96:c8:da: fb:97:8a:54:ea:dc:b2:2a:d3:e8:f5:08:36:bd:f0:ee:69:51: c1:38:4b:68:dc:a9:67:5e:74:e5:e6:ea:93:79:3e:f9:f0:ec: 30:59:76:e4:cb:c5:30:c2:c4:9a:7a:ee:e8:65:ba:48:63:16: 1b:f9:8a:3c:e5:ba:7f:5d:bf:78:32:c1:75:a0:1a:9f:9f:28: 5b:c2:aa:4d:9f:52:96:21:05:b1:d2:b7:40:a6:0f:5e:ec:63: d9:c3:37:80:ae:d4:95:8c:53:4d:a6:c3:47:55:a9:6f:8a:dc: d0:19:06:a3:66:47:e0:b2:71:cb:ee:44:02:92:a0:55:0a:73: f7:6e:37:19:2e:a6:a8:65:92:2a:10:5f:78:b2:30:52:b6:d2: 3f:55:bd:ca:38:52:62:4d:52:35:b0:c9:a0:d5:55:39:27:cc: e2:34:5d:92:26:69:3a:1d:58:02:0c:59:4e:95:bc:c7:e5:16: 0f:21:4e:2d:7c:f1:08:17:c8:7e:f0:a5:cf:9f:0e:e6:29:9b: 8a:6c:82:4d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWa1J54Uj2L+2thRifC9tMuTqzGowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTE5MDAxMDEwWhcNMjYwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MjcyMzFlMmE2NWM3NjdlMzExNzk0YWI4YWM3ZDQ1Zjk4 YTA1OTM4NGQ3Y2E5MTVlODNhMDBiY2FlNDFhZTEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHu27og8cA+4ZtFcNBUHO3femyrt1jBUhqLVRU/8xXc/q/ P9AthYSt+6j/o/kr7GzgKTLh+G1MuE9ArnAMfJAB2zOsp4OGc//H3GdCMRdm251G Ynzz4xWLOKoFBW7e8JXwX7wafi1EOls4LI8GJsIDE2hkc+ssw+5o3I9s/h5XMAFY EIeWaalABiBeaxGGJ/4SypKqaM3CPuw9Zhr4hHL+edgPxECfP1aiOH0YNcHziKzR QrhnqCn+1K7oQufRkbAjOb6tEIXLRBUJGPLjCyOPkda8ehlYD4JSFmrjoVX3XsNE u1HraHu4N6LXsNU1p3GMiT1ZYovvRCfM5uDpdIaHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUv0morLqO7bXGzFmu3kHxBJPgh1UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyYmQ1Yzk4LWZmMTYtNGZmMi05MGZlLTYyNmExODZhNjA0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQvDANBgkqhkiG9w0BAQsFAAOCAQEAhhdtxmq9+05m1kbQMqsXAZso/C/2 JBl9nreoFbWLkx3ReqGsofNOUIhQxZT2BxaTvH+Rlsja+5eKVOrcsirT6PUINr3w 7mlRwThLaNypZ1505ebqk3k++fDsMFl25MvFMMLEmnru6GW6SGMWG/mKPOW6f12/ eDLBdaAan58oW8KqTZ9SliEFsdK3QKYPXuxj2cM3gK7UlYxTTabDR1Wpb4rc0BkG o2ZH4LJxy+5EApKgVQpz9243GS6mqGWSKhBfeLIwUrbSP1W9yjhSYk1SNbDJoNVV OSfM4jRdkiZpOh1YAgxZTpW8x+UWDyFOLXzxCBfIfvClz58O5imbimyCTQ== -----END CERTIFICATE-----Generated at Sat Dec 6 12:34:57 2025 by rpki-client