This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/566fa31f-a900-45ea-bf4f-117836ffe61b.roa File: 566fa31f-a900-45ea-bf4f-117836ffe61b.roa (raw, json) Hash identifier: ePsmn3m2m8B4pRBuIIPyulwM3jN3bvNae3e/UViCsgo= Subject key identifier: 22:AA:2B:FE:CB:BB:20:55:D6:8C:55:41:D7:E7:AA:33:35:C4:12:D5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 646EFC28D768C40A1F494BEC85824AE9392DD599 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/566fa31f-a900-45ea-bf4f-117836ffe61b.roa Signing time: Sat 22 Nov 2025 00:00:45 +0000 ROA not before: Sat 22 Nov 2025 00:00:45 +0000 ROA not after: Fri 20 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.136.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:6e:fc:28:d7:68:c4:0a:1f:49:4b:ec:85:82:4a:e9:39:2d:d5:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 22 00:00:45 2025 GMT Not After : Feb 20 23:59:59 2026 GMT Subject: serialNumber=9435698a7699850d6a65c94ef0878c4bd142b6e4c9ad92bc01dda33a6579979c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5a:b2:01:b5:a4:7b:49:6d:c8:af:86:e3:dd: 64:4f:0c:8b:52:1f:54:35:dd:80:11:fb:a2:38:ab: 00:ea:c4:14:7d:21:e5:5d:b9:0a:84:a9:7d:2e:e4: fd:4b:f6:7f:ce:9a:82:d7:53:5c:d8:38:40:a9:63: 65:a9:45:46:1e:62:6b:af:99:5e:8f:35:64:de:ef: d7:b6:c2:df:b3:62:9d:8b:b6:f1:89:3e:23:2b:ed: be:59:4e:2e:49:1c:a6:d6:2e:34:4d:1f:76:fc:ff: 4e:e2:59:0b:de:51:55:67:c4:36:2f:53:e0:73:30: d8:75:06:12:3e:d1:db:f4:2b:b7:1c:b9:cc:c6:16: 64:a8:e9:9d:a8:45:aa:3c:71:be:27:c2:6f:34:85: e4:9b:fb:ea:03:81:01:bc:aa:f6:85:98:43:25:6f: 34:ed:2a:fd:d7:bb:33:a0:e0:47:24:dd:68:56:4d: 99:a3:9b:16:f3:3b:77:1b:02:17:80:8e:88:20:43: 8b:91:1c:3c:73:ee:59:87:d5:06:a0:be:76:ca:b2: 77:81:1b:f6:33:d9:67:ba:37:58:ef:a0:df:a8:98: 52:1f:1c:5b:f1:7e:02:a1:0a:6d:53:9b:39:1e:99: c7:ef:e2:8d:11:60:62:b1:45:3f:d2:ae:45:c1:4a: 02:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:AA:2B:FE:CB:BB:20:55:D6:8C:55:41:D7:E7:AA:33:35:C4:12:D5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/566fa31f-a900-45ea-bf4f-117836ffe61b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.136.0/21 Signature Algorithm: sha256WithRSAEncryption ae:25:c5:ec:83:6c:7f:db:11:1d:3d:96:23:1b:0a:07:b3:f0: 9b:96:c1:60:9c:33:a0:c6:41:27:fa:da:6e:55:72:85:22:4c: c2:e2:69:4f:ef:a5:46:71:99:67:0a:17:5b:c6:ba:0e:b9:83: 39:c4:2a:f2:9e:2b:a9:5c:38:66:04:37:de:1d:b7:e3:50:19: 43:27:31:85:69:b7:b8:8b:8c:1f:f6:0b:64:37:64:48:00:9f: 1d:ce:d8:f8:3b:e0:ad:73:84:25:ab:0f:45:1d:c0:e4:ca:cf: fa:2e:75:a1:2a:e7:0b:eb:88:66:2c:06:75:7a:5b:26:2c:92: 5c:7d:df:04:03:84:61:ca:ce:26:89:80:1a:1c:90:7e:b6:d3: 19:be:1a:79:16:77:f2:01:a7:e2:a7:ee:00:ac:91:dc:df:25: 2c:21:c6:8f:90:b9:c3:cc:e5:93:91:07:0b:aa:c0:d4:3a:3d: 33:e8:3b:90:7c:a1:ed:f6:48:de:b2:e7:56:7a:8b:96:53:29: d5:2f:e1:28:00:fc:42:c4:41:61:d0:e0:1b:af:4f:88:29:bb: 21:6e:ed:c0:12:dd:cd:21:a0:73:58:e4:e5:9a:a9:02:26:7a: 5c:68:fb:74:e9:be:78:d8:9b:7c:19:1b:d5:50:30:4c:4a:57: aa:fd:76:89 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZG78KNdoxAofSUvshYJK6Tkt1ZkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTIyMDAwMDQ1WhcNMjYwMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NDM1Njk4YTc2OTk4NTBkNmE2NWM5NGVmMDg3OGM0YmQx NDJiNmU0YzlhZDkyYmMwMWRkYTMzYTY1Nzk5NzljMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGWrIBtaR7SW3Ir4bj3WRPDItSH1Q13YAR+6I4qwDqxBR9 IeVduQqEqX0u5P1L9n/OmoLXU1zYOECpY2WpRUYeYmuvmV6PNWTe79e2wt+zYp2L tvGJPiMr7b5ZTi5JHKbWLjRNH3b8/07iWQveUVVnxDYvU+BzMNh1BhI+0dv0K7cc uczGFmSo6Z2oRao8cb4nwm80heSb++oDgQG8qvaFmEMlbzTtKv3XuzOg4Eck3WhW TZmjmxbzO3cbAheAjoggQ4uRHDxz7lmH1QagvnbKsneBG/Yz2We6N1jvoN+omFIf HFvxfgKhCm1Tmzkemcfv4o0RYGKxRT/SrkXBSgKHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIqor/su7IFXWjFVB1+eqMzXEEtUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU2NmZhMzFmLWE5MDAtNDVlYS1iZjRmLTExNzgzNmZmZTYxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANM34gwDQYJKoZIhvcNAQELBQADggEBAK4lxeyDbH/bER09liMbCgez8JuW wWCcM6DGQSf62m5VcoUiTMLiaU/vpUZxmWcKF1vGug65gznEKvKeK6lcOGYEN94d t+NQGUMnMYVpt7iLjB/2C2Q3ZEgAnx3O2Pg74K1zhCWrD0UdwOTKz/oudaEq5wvr iGYsBnV6WyYsklx93wQDhGHKziaJgBockH620xm+GnkWd/IBp+Kn7gCskdzfJSwh xo+QucPM5ZORBwuqwNQ6PTPoO5B8oe32SN6y51Z6i5ZTKdUv4SgA/ELEQWHQ4Buv T4gpuyFu7cAS3c0hoHNY5OWaqQImelxo+3TpvnjYm3wZG9VQMExKV6r9dok= -----END CERTIFICATE-----Generated at Sat Dec 6 10:21:32 2025 by rpki-client