This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5b89ddc1-d111-41bb-9344-342f1446c197.roa File: 5b89ddc1-d111-41bb-9344-342f1446c197.roa (raw, json) Hash identifier: 6GVpuCeLJ0V5DceLLOXAqghYeFZHWFfwLqMdXah/NvU= Subject key identifier: B4:96:D4:83:84:CC:27:43:15:8B:2A:50:8B:DB:33:FE:E5:12:59:30 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3B2FEE094935E75037C6B345508831B59130ECF9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5b89ddc1-d111-41bb-9344-342f1446c197.roa Signing time: Tue 02 Dec 2025 00:40:10 +0000 ROA not before: Tue 02 Dec 2025 00:40:10 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.91.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:2f:ee:09:49:35:e7:50:37:c6:b3:45:50:88:31:b5:91:30:ec:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 2 00:40:10 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=08b2ee8e5fc42c8ce8df41658efed30af60e57a994af9bc9ee45db59bc362a63, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:1a:72:ed:b0:4c:1a:50:1f:a7:b0:fe:62:1c: dc:cf:99:73:b8:bd:ca:12:fe:2b:6b:73:7c:54:1c: 3d:f3:45:bb:43:76:ad:4c:fd:91:57:d5:95:28:75: 2e:21:58:86:3d:96:85:63:58:5c:e3:6c:0b:f4:17: 02:dc:b8:b0:d9:fb:aa:d9:77:22:44:ab:8a:66:5b: 78:cb:52:14:63:34:c6:3c:16:eb:a1:46:7f:e4:4f: 9c:68:83:56:bd:fb:80:00:b6:7a:8a:06:6c:e1:13: 5d:54:5f:a4:1c:7f:39:ff:32:23:dd:a6:ea:7e:9c: 6a:43:39:37:20:66:0a:8a:db:2c:f3:08:97:42:23: e1:08:54:25:b6:31:9c:89:5f:a3:35:62:9e:0c:e2: fb:93:23:11:8c:24:65:c0:89:75:12:ae:b9:59:d6: b8:60:c5:5f:55:93:02:6f:7c:13:bc:c0:85:a8:ea: 58:8c:01:e5:84:f3:50:99:cd:d6:e2:2c:2f:03:ce: 25:11:2b:4d:16:39:3a:b2:98:69:52:74:fd:b2:a7: ff:81:27:1a:1f:c9:94:a0:26:43:bd:ea:71:52:ae: 42:76:d3:eb:a0:3c:43:79:3f:45:b6:e7:ce:45:15: a8:a4:14:a9:08:52:c1:97:7f:22:da:12:0a:03:85: fd:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:96:D4:83:84:CC:27:43:15:8B:2A:50:8B:DB:33:FE:E5:12:59:30 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5b89ddc1-d111-41bb-9344-342f1446c197.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.91.14.0/24 Signature Algorithm: sha256WithRSAEncryption 69:bd:6a:dd:25:59:e1:0d:6f:cd:41:32:4b:c3:8d:c3:bc:1a: a7:9b:ee:f1:47:05:4f:05:12:56:4b:ed:a6:c7:d5:5a:27:48: bb:4d:e7:d2:48:7c:a5:03:f9:e0:ae:b9:1c:41:c4:bb:fa:c7: 33:1d:21:c2:be:8b:b5:40:39:53:93:67:52:ce:e6:99:1c:65: 84:29:aa:2e:51:e0:2a:26:4f:07:96:69:50:e6:86:94:67:ae: 75:d9:fd:0c:25:71:9e:a5:56:25:62:5d:d6:5c:a2:59:ff:35: de:58:e2:02:40:ff:02:23:f7:29:58:8a:4e:30:72:40:ac:ad: e9:47:7b:93:3a:9f:d4:98:ee:df:61:61:95:2b:32:ae:b3:12: 45:d9:f2:9c:e6:4e:3d:af:1b:9c:1f:df:1a:03:fd:50:ca:87: bf:cf:d9:19:ec:bf:6f:7e:83:e7:15:ff:27:ae:6e:28:46:56: cc:16:45:fc:66:7a:c0:ee:4b:bd:c3:68:34:37:9a:b5:eb:ca: 5f:26:de:a3:1c:06:6f:b5:51:ea:ae:49:d2:6b:9b:57:4f:c7: 4c:e3:8d:af:3b:f2:25:00:89:11:27:76:b8:46:f2:fa:60:f0: 47:d3:31:6a:2e:7b:b9:1b:e9:91:6c:97:31:26:c6:8c:16:b3: 17:6b:50:c5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOy/uCUk151A3xrNFUIgxtZEw7PkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjAyMDA0MDEwWhcNMjYwMzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwOGIyZWU4ZTVmYzQyYzhjZThkZjQxNjU4ZWZlZDMwYWY2 MGU1N2E5OTRhZjliYzllZTQ1ZGI1OWJjMzYyYTYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD6GnLtsEwaUB+nsP5iHNzPmXO4vcoS/itrc3xUHD3zRbtD dq1M/ZFX1ZUodS4hWIY9loVjWFzjbAv0FwLcuLDZ+6rZdyJEq4pmW3jLUhRjNMY8 FuuhRn/kT5xog1a9+4AAtnqKBmzhE11UX6Qcfzn/MiPdpup+nGpDOTcgZgqK2yzz CJdCI+EIVCW2MZyJX6M1Yp4M4vuTIxGMJGXAiXUSrrlZ1rhgxV9VkwJvfBO8wIWo 6liMAeWE81CZzdbiLC8DziURK00WOTqymGlSdP2yp/+BJxofyZSgJkO96nFSrkJ2 0+ugPEN5P0W2585FFaikFKkIUsGXfyLaEgoDhf3jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtJbUg4TMJ0MViypQi9sz/uUSWTAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzViODlkZGMxLWQxMTEtNDFiYi05MzQ0LTM0MmYxNDQ2YzE5Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAXWw4wDQYJKoZIhvcNAQELBQADggEBAGm9at0lWeENb81BMkvDjcO8Gqeb 7vFHBU8FElZL7abH1VonSLtN59JIfKUD+eCuuRxBxLv6xzMdIcK+i7VAOVOTZ1LO 5pkcZYQpqi5R4ComTweWaVDmhpRnrnXZ/QwlcZ6lViViXdZcoln/Nd5Y4gJA/wIj 9ylYik4wckCsrelHe5M6n9SY7t9hYZUrMq6zEkXZ8pzmTj2vG5wf3xoD/VDKh7/P 2Rnsv29+g+cV/yeubihGVswWRfxmesDuS73DaDQ3mrXryl8m3qMcBm+1UequSdJr m1dPx0zjja878iUAiREndrhG8vpg8EfTMWoue7kb6ZFslzEmxowWsxdrUMU= -----END CERTIFICATE-----Generated at Sat Dec 6 17:29:44 2025 by rpki-client