This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7dc69a83-4a96-485c-9489-1b574db4510f.roa File: 7dc69a83-4a96-485c-9489-1b574db4510f.roa (raw, json) Hash identifier: Lklb+HG5MzwSBBbvlTVOxd5dhHClP7DabE7KDWN7JU0= Subject key identifier: 8A:83:CF:3D:E6:12:88:C3:D6:53:1A:9B:09:80:09:4A:53:00:AB:92 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0620A38492591B8142C34CE792C6FCCFD64514A0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7dc69a83-4a96-485c-9489-1b574db4510f.roa Signing time: Wed 26 Nov 2025 01:00:07 +0000 ROA not before: Wed 26 Nov 2025 01:00:07 +0000 ROA not after: Tue 24 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.90.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:20:a3:84:92:59:1b:81:42:c3:4c:e7:92:c6:fc:cf:d6:45:14:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 26 01:00:07 2025 GMT Not After : Feb 24 23:59:59 2026 GMT Subject: serialNumber=f25e1e8f5ed6357804351973cade62e15e6520a75d2efd70bddce836c7c53164, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:a5:95:64:c4:43:9c:a3:d3:37:06:18:48:d6: 3f:ac:61:bd:d0:0a:50:d4:97:e6:25:ef:af:8e:ba: 9c:3b:a8:e4:f2:61:c0:19:60:b4:4e:72:71:b4:d3: 9a:b9:90:f9:f9:b0:3b:d9:6f:fa:1a:94:da:99:f0: 2a:d7:ba:93:b6:5c:6c:69:9a:3b:11:f9:0e:6d:34: a5:f3:e0:40:5c:6d:22:06:dd:a8:b9:29:01:64:91: 21:45:ac:09:e2:5c:78:03:02:39:ec:95:8a:66:79: 4d:38:ab:98:dc:64:9f:f8:ea:83:cb:35:c7:c2:85: 99:a7:2d:80:67:e6:f0:38:80:25:6c:02:2d:87:59: b4:12:0a:4f:3c:e8:f2:c3:e5:d0:63:ce:1c:2b:e2: f8:90:d3:1a:b5:40:58:26:29:99:40:05:7f:1e:ef: 65:55:8f:6a:41:32:60:ec:dc:95:e4:d2:62:e2:e8: 29:0b:a3:05:f2:04:d4:6f:f9:93:9f:67:ed:aa:13: 46:46:d6:15:c4:42:69:17:48:d1:1f:4c:98:ee:75: 21:c5:06:23:14:67:5c:4e:e6:8b:b6:fa:16:12:fe: 1a:8d:ba:1f:96:4d:ce:95:67:1b:3d:07:98:a0:c6: f1:3c:c4:04:d1:4a:e9:58:eb:33:50:6b:72:bd:e1: 9a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:83:CF:3D:E6:12:88:C3:D6:53:1A:9B:09:80:09:4A:53:00:AB:92 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7dc69a83-4a96-485c-9489-1b574db4510f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.90.0.0/16 Signature Algorithm: sha256WithRSAEncryption 38:c4:0e:49:45:35:79:47:58:37:eb:d0:7a:72:43:9e:b0:5f: d2:93:5f:9d:66:a1:a4:3d:43:90:58:21:5a:53:00:19:bf:63: ca:db:6c:8e:03:c6:4a:a5:74:ff:08:7b:cb:cd:53:1d:66:da: 33:e8:36:c0:28:54:f2:89:d6:19:be:d1:85:e1:de:97:3d:ab: f7:73:8a:04:89:83:48:f9:b6:9a:04:8f:67:be:e3:9b:2e:49: 7a:8b:2c:1f:50:01:52:3e:37:3f:d5:63:69:25:f4:99:39:61: 6c:33:b2:98:de:5f:5e:a3:4e:a2:12:2a:78:38:dc:98:78:be: fb:84:af:36:29:c6:1b:27:ad:e7:9a:80:b2:c1:e4:bb:52:e5: e6:2a:12:9b:84:22:5f:75:d3:03:1b:f9:63:46:4e:57:ad:5d: a4:b5:21:b4:3c:3f:b3:a2:9b:e3:1b:16:47:e5:11:35:78:b8: 1e:eb:9d:fd:8f:00:57:84:cf:3f:30:b2:ea:a7:5a:ad:10:dc: db:78:7b:49:6b:2a:c8:00:23:6f:e9:2d:97:5d:60:e9:12:7b: 1f:35:63:0d:3e:7c:9e:0e:20:a0:94:95:7e:a6:29:d8:fa:e0: ea:74:c5:a6:4f:57:d4:6f:0a:fd:43:9f:79:c2:43:d5:4c:23: 85:54:ce:63 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBiCjhJJZG4FCw0znksb8z9ZFFKAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI2MDEwMDA3WhcNMjYwMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMjVlMWU4ZjVlZDYzNTc4MDQzNTE5NzNjYWRlNjJlMTVl NjUyMGE3NWQyZWZkNzBiZGRjZTgzNmM3YzUzMTY0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWpZVkxEOco9M3BhhI1j+sYb3QClDUl+Yl76+Oupw7qOTy YcAZYLROcnG005q5kPn5sDvZb/oalNqZ8CrXupO2XGxpmjsR+Q5tNKXz4EBcbSIG 3ai5KQFkkSFFrAniXHgDAjnslYpmeU04q5jcZJ/46oPLNcfChZmnLYBn5vA4gCVs Ai2HWbQSCk886PLD5dBjzhwr4viQ0xq1QFgmKZlABX8e72VVj2pBMmDs3JXk0mLi 6CkLowXyBNRv+ZOfZ+2qE0ZG1hXEQmkXSNEfTJjudSHFBiMUZ1xO5ou2+hYS/hqN uh+WTc6VZxs9B5igxvE8xATRSulY6zNQa3K94ZqDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUioPPPeYSiMPWUxqbCYAJSlMAq5IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdkYzY5YTgzLTRhOTYtNDg1Yy05NDg5LTFiNTc0ZGI0NTEwZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4WjANBgkqhkiG9w0BAQsFAAOCAQEAOMQOSUU1eUdYN+vQenJDnrBf0pNf nWahpD1DkFghWlMAGb9jyttsjgPGSqV0/wh7y81THWbaM+g2wChU8onWGb7RheHe lz2r93OKBImDSPm2mgSPZ77jmy5JeossH1ABUj43P9VjaSX0mTlhbDOymN5fXqNO ohIqeDjcmHi++4SvNinGGyet55qAssHku1Ll5ioSm4QiX3XTAxv5Y0ZOV61dpLUh tDw/s6Kb4xsWR+URNXi4Huud/Y8AV4TPPzCy6qdarRDc23h7SWsqyAAjb+ktl11g 6RJ7HzVjDT58ng4goJSVfqYp2Prg6nTFpk9X1G8K/UOfecJD1UwjhVTOYw== -----END CERTIFICATE-----Generated at Sat Dec 6 15:55:57 2025 by rpki-client