This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b686aa2-54bd-4401-b362-571c7282451f.roa File: 4b686aa2-54bd-4401-b362-571c7282451f.roa (raw, json) Hash identifier: 3Q+uXlW/Z2aizwrOT8tCyVoPdgHGDZubLhnyavp8Tys= Subject key identifier: 2F:71:77:13:68:57:67:2B:FB:F4:B5:AB:C1:DD:52:3E:5E:A4:92:EC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 258876F1E41B388B93984ED181EB477FD6E3C953 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b686aa2-54bd-4401-b362-571c7282451f.roa Signing time: Sat 22 Nov 2025 00:00:10 +0000 ROA not before: Sat 22 Nov 2025 00:00:10 +0000 ROA not after: Fri 20 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.78.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:88:76:f1:e4:1b:38:8b:93:98:4e:d1:81:eb:47:7f:d6:e3:c9:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 22 00:00:10 2025 GMT Not After : Feb 20 23:59:59 2026 GMT Subject: serialNumber=bce1261bb2041d4c2fbec8c0581fa0d4f3e1430b781ba835607308c66c7f1216, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:42:01:67:bf:e8:3e:5f:77:1d:19:32:2a:d4: 02:aa:74:b9:d7:63:59:40:a2:9f:e1:6b:5b:c7:11: db:56:50:fc:68:90:63:08:da:0b:de:13:83:95:e2: 10:3d:60:54:d8:a6:d5:27:5a:33:64:d0:03:5f:5c: 3f:d0:ca:04:57:a6:d9:e3:81:50:ec:21:de:35:2f: ef:52:b7:e6:79:11:38:54:6f:e0:9a:20:90:8b:21: e6:41:be:d8:97:05:5c:f8:ed:47:f3:2a:51:38:cf: 1b:d6:05:5c:8e:ff:5b:52:61:35:7e:9f:4b:a0:1b: 92:b5:85:71:e2:a0:de:21:02:b6:45:2a:7f:3c:15: e5:5f:69:4e:8d:72:9a:31:8d:0d:04:a6:71:82:3e: 58:91:76:bc:f0:a9:c2:75:49:c8:bc:80:4b:83:e8: 92:54:30:10:22:e8:dc:bf:be:90:e6:37:00:c8:96: be:1e:c9:84:90:84:23:46:d5:fc:79:82:c9:0d:d1: d8:80:49:2d:9b:83:3d:b3:c0:33:7f:8e:8c:73:d8: 72:2f:ea:ba:9f:54:ae:7a:51:8b:e6:41:c0:aa:1f: 5b:5e:36:a1:ff:c1:9e:93:6b:df:41:75:35:9a:18: a5:08:9e:e2:db:bf:ab:81:59:23:83:21:70:7e:7a: 7a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:71:77:13:68:57:67:2B:FB:F4:B5:AB:C1:DD:52:3E:5E:A4:92:EC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b686aa2-54bd-4401-b362-571c7282451f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.78.192.0/22 Signature Algorithm: sha256WithRSAEncryption 28:02:1e:d2:3f:59:5b:4b:0f:8c:c3:d7:bd:2e:c2:0b:3c:81: c6:f4:f1:63:a8:fb:48:b0:de:38:03:87:1f:87:57:d5:40:3a: 41:96:98:cc:4d:b6:bd:1d:be:b2:8a:c0:5e:d4:1b:6b:9a:f6: 1b:ff:a9:8f:2a:66:00:c0:2b:17:9b:ca:2d:b7:7b:36:ec:9f: 7e:7a:05:56:82:b9:df:1d:df:dd:db:d4:27:bb:77:f3:bb:5f: 11:77:6f:00:5c:6b:5d:45:8b:96:20:8e:9b:5a:6a:9b:7f:f9: a4:ce:d6:ac:37:8d:bc:a9:67:a4:03:80:90:fb:8b:ab:18:b0: 74:72:29:94:fe:a5:84:55:c4:89:28:ab:36:d9:5f:27:35:d1: 77:21:8a:f0:4e:54:fc:3f:52:e6:58:ab:c6:99:2d:43:9d:a9: e0:e5:40:d5:a2:b2:3a:fd:44:fe:79:03:34:ab:0e:e6:6f:a9: 2a:1d:da:c3:b1:4a:28:00:a2:65:23:85:39:17:0c:94:af:b4: 0d:6f:07:08:c7:30:e0:ca:e2:1f:68:91:da:88:c4:6e:1d:5c: ee:55:9e:4e:33:c8:66:c8:9e:bf:e8:2d:c6:c1:ba:f7:82:29: ff:a2:98:94:87:78:cb:71:d9:b0:da:72:f1:25:1b:85:34:5d: 0f:fc:79:ef -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJYh28eQbOIuTmE7RgetHf9bjyVMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTIyMDAwMDEwWhcNMjYwMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiY2UxMjYxYmIyMDQxZDRjMmZiZWM4YzA1ODFmYTBkNGYz ZTE0MzBiNzgxYmE4MzU2MDczMDhjNjZjN2YxMjE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDoQgFnv+g+X3cdGTIq1AKqdLnXY1lAop/ha1vHEdtWUPxo kGMI2gveE4OV4hA9YFTYptUnWjNk0ANfXD/QygRXptnjgVDsId41L+9St+Z5EThU b+CaIJCLIeZBvtiXBVz47UfzKlE4zxvWBVyO/1tSYTV+n0ugG5K1hXHioN4hArZF Kn88FeVfaU6NcpoxjQ0EpnGCPliRdrzwqcJ1Sci8gEuD6JJUMBAi6Ny/vpDmNwDI lr4eyYSQhCNG1fx5gskN0diASS2bgz2zwDN/joxz2HIv6rqfVK56UYvmQcCqH1te NqH/wZ6Ta99BdTWaGKUInuLbv6uBWSODIXB+enqTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUL3F3E2hXZyv79LWrwd1SPl6kkuwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRiNjg2YWEyLTU0YmQtNDQwMS1iMzYyLTU3MWM3MjgyNDUxZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJjTsAwDQYJKoZIhvcNAQELBQADggEBACgCHtI/WVtLD4zD170uwgs8gcb0 8WOo+0iw3jgDhx+HV9VAOkGWmMxNtr0dvrKKwF7UG2ua9hv/qY8qZgDAKxebyi23 ezbsn356BVaCud8d393b1Ce7d/O7XxF3bwBca11Fi5Ygjptaapt/+aTO1qw3jbyp Z6QDgJD7i6sYsHRyKZT+pYRVxIkoqzbZXyc10XchivBOVPw/UuZYq8aZLUOdqeDl QNWisjr9RP55AzSrDuZvqSod2sOxSigAomUjhTkXDJSvtA1vBwjHMODK4h9okdqI xG4dXO5Vnk4zyGbInr/oLcbBuveCKf+imJSHeMtx2bDacvElG4U0XQ/8ee8= -----END CERTIFICATE-----Generated at Sat Dec 6 22:27:00 2025 by rpki-client