This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/436af8e8-480b-485b-a232-f1503410322c.roa File: 436af8e8-480b-485b-a232-f1503410322c.roa (raw, json) Hash identifier: g5URzwugccPODc388HqC3B7T1DWkERQ4+1Fk+fe4zhU= Subject key identifier: 37:0D:7B:75:56:F1:76:2A:F6:3F:1D:50:F8:38:C1:FE:1E:16:6B:C4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2B58C4C45AA5E8972263DDA5B3D50A67208FD695 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/436af8e8-480b-485b-a232-f1503410322c.roa Signing time: Sat 06 Dec 2025 01:11:14 +0000 ROA not before: Sat 06 Dec 2025 01:11:14 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 107.20.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:58:c4:c4:5a:a5:e8:97:22:63:dd:a5:b3:d5:0a:67:20:8f:d6:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 6 01:11:14 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=6e788f2a44cc9655c51b2f115f828e004d0080be1f361486b58e4ce31ff2790c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:19:95:d1:f8:6a:81:40:9b:b6:55:2f:ee:da: fc:0a:ba:5e:d9:67:1a:d3:16:7a:fd:7a:d0:75:ea: d1:1f:6e:19:b1:de:0c:2e:71:f9:4c:80:b0:8d:0f: 64:26:78:6f:6e:f6:f6:bd:e9:99:48:5f:d6:de:34: fc:64:b1:f7:83:ef:5e:c1:cd:2b:d2:ab:a0:f5:58: b3:5e:2c:a4:59:1e:f5:a6:a6:a2:20:e6:f5:6c:a3: f0:5f:57:b5:98:c3:57:b9:e9:9a:9c:7a:bf:bb:a7: 22:ca:d4:5b:6c:d9:7f:84:2f:17:da:ba:e5:64:e8: 87:8d:ff:4b:46:13:c1:4f:e0:69:8b:c1:52:79:13: 5a:86:33:89:cb:f8:0e:61:4b:16:8c:b5:5e:f6:e0: 54:be:d8:ae:7c:b7:a9:da:41:f5:72:76:64:cc:5c: 89:9a:ce:e8:e3:26:6d:e2:80:6a:4a:ac:bc:d8:ce: aa:88:c0:16:aa:00:5d:dd:d3:17:3d:40:2f:e7:1d: 7d:c0:bc:c5:ec:93:50:26:7e:7f:e6:d6:64:8f:d3: b2:93:19:26:f2:be:4c:b8:12:a6:29:e6:a1:7d:33: 37:bb:76:c7:39:9d:ff:88:18:17:4b:7a:14:e5:4f: 2f:d6:40:d2:e0:c4:0c:ca:69:0d:e8:64:8b:dc:f6: e2:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:0D:7B:75:56:F1:76:2A:F6:3F:1D:50:F8:38:C1:FE:1E:16:6B:C4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/436af8e8-480b-485b-a232-f1503410322c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.128.0/22 Signature Algorithm: sha256WithRSAEncryption cc:61:df:ee:81:99:8b:56:10:c3:e8:f2:c8:39:80:e2:ba:b7: d3:a2:37:7f:eb:0b:ad:34:86:a0:d4:ca:77:0a:b4:48:94:b1: fd:67:82:5b:17:4f:0d:dd:61:56:f0:38:f2:ba:86:6f:fb:2f: 2a:bb:3c:11:9d:2b:a8:78:62:ec:b7:cc:3f:2b:ee:01:9c:4d: 19:1e:8a:89:bd:e8:b3:f4:7e:49:0d:27:6b:13:d3:15:40:e6: 18:c8:5b:18:0c:fb:98:93:10:08:44:f7:70:c6:0d:31:47:02: 74:8c:4d:d3:9f:af:8b:a7:77:5e:8c:64:98:c6:f6:e4:9f:c5: c0:dd:79:a9:e6:52:78:51:08:25:f7:73:aa:73:5f:b3:40:33: 8c:74:95:83:5d:94:79:8d:80:a4:0c:27:7e:2f:6f:39:88:ce: e8:53:5e:79:d3:9a:9f:42:e6:cb:7f:9e:66:1c:e6:db:8e:a9: 2d:49:34:63:96:43:d7:ca:e2:d8:31:b1:2d:c5:e2:74:39:14: 81:ab:ba:62:ad:4f:36:9c:47:c9:b7:5f:b2:e4:b1:ad:4d:a2: 65:5f:59:d5:c7:fd:eb:b1:58:65:3c:d6:08:56:97:42:80:ab: e1:97:33:ce:03:a2:f4:1b:87:56:7e:a6:71:0a:ee:f4:41:fa: 1d:ba:d4:9b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK1jExFql6JciY92ls9UKZyCP1pUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA2MDExMTE0WhcNMjYwMzA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTc4OGYyYTQ0Y2M5NjU1YzUxYjJmMTE1ZjgyOGUwMDRk MDA4MGJlMWYzNjE0ODZiNThlNGNlMzFmZjI3OTBjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdGZXR+GqBQJu2VS/u2vwKul7ZZxrTFnr9etB16tEfbhmx 3gwucflMgLCND2QmeG9u9va96ZlIX9beNPxksfeD717BzSvSq6D1WLNeLKRZHvWm pqIg5vVso/BfV7WYw1e56Zqcer+7pyLK1Fts2X+ELxfauuVk6IeN/0tGE8FP4GmL wVJ5E1qGM4nL+A5hSxaMtV724FS+2K58t6naQfVydmTMXImazujjJm3igGpKrLzY zqqIwBaqAF3d0xc9QC/nHX3AvMXsk1Amfn/m1mSP07KTGSbyvky4EqYp5qF9Mze7 dsc5nf+IGBdLehTlTy/WQNLgxAzKaQ3oZIvc9uIRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNw17dVbxdir2Px1Q+DjB/h4Wa8QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzNmFmOGU4LTQ4MGItNDg1Yi1hMjMyLWYxNTAzNDEwMzIyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJrFIAwDQYJKoZIhvcNAQELBQADggEBAMxh3+6BmYtWEMPo8sg5gOK6t9Oi N3/rC600hqDUyncKtEiUsf1nglsXTw3dYVbwOPK6hm/7Lyq7PBGdK6h4Yuy3zD8r 7gGcTRkeiom96LP0fkkNJ2sT0xVA5hjIWxgM+5iTEAhE93DGDTFHAnSMTdOfr4un d16MZJjG9uSfxcDdeanmUnhRCCX3c6pzX7NAM4x0lYNdlHmNgKQMJ34vbzmIzuhT XnnTmp9C5st/nmYc5tuOqS1JNGOWQ9fK4tgxsS3F4nQ5FIGrumKtTzacR8m3X7Lk sa1NomVfWdXH/euxWGU81ghWl0KAq+GXM84DovQbh1Z+pnEK7vRB+h261Js= -----END CERTIFICATE-----Generated at Sat Dec 6 13:55:08 2025 by rpki-client