This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/822ca9d4-d7a0-4823-8390-dc0e56fd7686.roa File: 822ca9d4-d7a0-4823-8390-dc0e56fd7686.roa (raw, json) Hash identifier: 0olYJRPYkp23r0C+adW+Rnvjv4bOu3RjWuGKOVDCHiY= Subject key identifier: A9:0F:55:87:64:3B:E5:F3:68:C2:D4:FB:E6:BF:A9:03:03:5B:88:F8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 791887EEF9970B41ACEB083A41BB2884DCDC2AAA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/822ca9d4-d7a0-4823-8390-dc0e56fd7686.roa Signing time: Tue 25 Nov 2025 00:31:44 +0000 ROA not before: Tue 25 Nov 2025 00:31:44 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:18:87:ee:f9:97:0b:41:ac:eb:08:3a:41:bb:28:84:dc:dc:2a:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 25 00:31:44 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=2c56bd8161edf7327a3cbbce079044d3858653775f0f02a76df21518c5b68bc3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:88:4b:2f:ff:35:c2:10:63:70:76:b1:6d:f5: cd:e0:fd:bc:08:a6:02:aa:91:e4:94:a3:cb:0a:8e: b8:4d:ff:ae:f8:28:5d:ce:08:9f:cf:15:0c:0a:49: 01:f3:8a:5f:4b:ba:8a:09:7e:8a:a3:a1:04:cd:66: 85:07:2f:bd:f6:83:d3:1f:3f:b8:e3:fa:4b:b7:2b: 8a:a4:b8:17:55:5e:2e:a1:bd:b2:9d:80:bd:b4:88: e0:6d:59:7d:bf:54:57:de:90:79:0e:39:01:fb:46: 6d:72:c0:b2:cb:03:50:b5:7b:57:8c:9d:80:96:c0: f0:88:a3:21:15:2d:b7:09:f4:e0:66:7e:b3:7a:d8: 1d:bf:b7:cd:9e:98:8c:62:74:90:21:80:14:fb:81: 59:8d:7d:26:4f:e8:e8:05:1a:b9:0a:f4:a6:14:7b: 84:79:24:d1:fa:c1:03:b9:b7:cc:84:85:e0:2c:98: 94:8b:e8:f0:31:a7:ba:88:81:c1:0e:3e:85:70:fe: e6:ae:e4:8f:78:9d:be:31:3b:50:ee:60:6a:d0:c8: 8b:71:60:38:3d:eb:31:a3:be:ae:98:05:2c:1c:8f: d2:10:c0:af:bd:bd:f6:04:13:8c:30:62:68:fe:40: cb:36:fd:40:9b:2a:4e:67:5d:ae:01:54:25:a8:9a: 1c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:0F:55:87:64:3B:E5:F3:68:C2:D4:FB:E6:BF:A9:03:03:5B:88:F8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/822ca9d4-d7a0-4823-8390-dc0e56fd7686.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.96.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:ac:4d:97:36:c7:7e:c2:11:81:86:f6:a1:c6:e8:3d:b0:ec: 7d:c7:d3:36:18:4a:d8:3d:27:30:88:55:11:66:28:a9:6f:4b: 84:35:bd:6d:05:de:f6:0e:41:3f:4f:1d:8e:b4:d9:42:87:94: fb:19:1c:e4:69:dd:65:fb:4d:1d:38:cd:a6:8b:32:c4:09:c7: c8:ec:24:51:10:44:49:fe:6c:9c:72:ac:95:32:c2:b8:72:fb: 8d:e0:c9:16:d4:0d:35:01:18:b4:75:69:1b:fc:60:0f:96:85: 94:07:de:b9:8c:06:1c:3f:b0:17:f4:f1:8e:b2:48:e4:a4:19: 19:36:e2:c1:3e:57:45:9d:ec:96:48:e0:b9:be:3d:cd:ca:31: 6f:7a:54:3f:cb:9b:db:dc:89:cf:07:8f:78:38:b2:fe:c1:5c: b8:2c:0d:cc:51:3e:76:b1:7b:94:5b:c2:ec:5a:6f:aa:f4:84: 46:07:af:6a:dd:df:38:d8:11:b8:17:ec:dd:63:eb:25:14:eb: 1b:2c:8d:3a:80:40:2a:d7:59:93:f9:cc:8b:d5:fb:ff:96:ec: 23:71:2d:db:98:ef:58:2d:2c:af:bc:0a:f9:42:25:ec:1f:85: a5:be:5d:1e:48:19:7a:81:6b:a0:30:11:bf:a9:ed:49:da:c5: 84:09:f4:92 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeRiH7vmXC0Gs6wg6QbsohNzcKqowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI1MDAzMTQ0WhcNMjYwMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzU2YmQ4MTYxZWRmNzMyN2EzY2JiY2UwNzkwNDRkMzg1 ODY1Mzc3NWYwZjAyYTc2ZGYyMTUxOGM1YjY4YmMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOiEsv/zXCEGNwdrFt9c3g/bwIpgKqkeSUo8sKjrhN/674 KF3OCJ/PFQwKSQHzil9LuooJfoqjoQTNZoUHL732g9MfP7jj+ku3K4qkuBdVXi6h vbKdgL20iOBtWX2/VFfekHkOOQH7Rm1ywLLLA1C1e1eMnYCWwPCIoyEVLbcJ9OBm frN62B2/t82emIxidJAhgBT7gVmNfSZP6OgFGrkK9KYUe4R5JNH6wQO5t8yEheAs mJSL6PAxp7qIgcEOPoVw/uau5I94nb4xO1DuYGrQyItxYDg96zGjvq6YBSwcj9IQ wK+9vfYEE4wwYmj+QMs2/UCbKk5nXa4BVCWomhwNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqQ9Vh2Q75fNowtT75r+pAwNbiPgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgyMmNhOWQ0LWQ3YTAtNDgyMy04MzkwLWRjMGU1NmZkNzY4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM32AwDQYJKoZIhvcNAQELBQADggEBAG2sTZc2x37CEYGG9qHG6D2w7H3H 0zYYStg9JzCIVRFmKKlvS4Q1vW0F3vYOQT9PHY602UKHlPsZHORp3WX7TR04zaaL MsQJx8jsJFEQREn+bJxyrJUywrhy+43gyRbUDTUBGLR1aRv8YA+WhZQH3rmMBhw/ sBf08Y6ySOSkGRk24sE+V0Wd7JZI4Lm+Pc3KMW96VD/Lm9vcic8Hj3g4sv7BXLgs DcxRPnaxe5Rbwuxab6r0hEYHr2rd3zjYEbgX7N1j6yUU6xssjTqAQCrXWZP5zIvV +/+W7CNxLduY71gtLK+8CvlCJewfhaW+XR5IGXqBa6AwEb+p7UnaxYQJ9JI= -----END CERTIFICATE-----Generated at Sat Dec 6 17:18:40 2025 by rpki-client