This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c09595d-2c4a-4f31-90cf-6b40884bf660.roa File: 8c09595d-2c4a-4f31-90cf-6b40884bf660.roa (raw, json) Hash identifier: ZhoWy8Xq/zCZrsHsgam2hyOgI8dlPHsPNdEm1BqkG2g= Subject key identifier: FB:83:D5:C4:1D:14:03:D5:51:11:B9:B5:25:68:25:89:4A:4D:66:CB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 52E68FD282392C765D4C4859D107F3DEFC13E028 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c09595d-2c4a-4f31-90cf-6b40884bf660.roa Signing time: Tue 25 Nov 2025 00:00:41 +0000 ROA not before: Tue 25 Nov 2025 00:00:41 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 13.128.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:e6:8f:d2:82:39:2c:76:5d:4c:48:59:d1:07:f3:de:fc:13:e0:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 25 00:00:41 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=514f6b4439f819406931de1920ad80d1192419720a5fcadf93c3927968827970, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:aa:f2:4a:e6:ff:b7:4f:cb:10:fc:99:99:b2: e9:43:e5:da:fc:74:6f:8a:e6:2e:81:9d:e3:af:a3: a4:bb:7c:39:46:5d:f0:5b:57:95:ad:f3:45:3a:fd: 30:4f:e4:b9:e1:8f:d3:3d:14:82:7c:79:95:0e:59: 83:18:c2:e8:21:6f:f0:4d:7d:77:36:4b:2f:35:e6: d7:fe:41:e7:6c:30:92:41:49:23:a7:00:7c:65:58: a0:6b:29:86:6b:2d:72:4b:12:83:9d:57:3e:b6:53: 3c:53:13:cd:8d:f7:7e:52:67:cc:82:84:de:c6:32: 65:37:b1:64:76:dc:6f:ee:88:33:1e:8f:03:f7:a0: 88:6d:b4:b3:63:ee:07:75:78:e4:c9:05:fc:0d:d0: 00:d6:ab:e6:59:e2:00:90:a0:93:3a:c8:05:f7:23: e2:7e:91:3e:96:90:fc:14:44:70:6a:c3:c5:49:62: 5b:34:d8:c4:a5:48:39:5a:78:d3:cb:46:0e:38:98: 4a:dd:13:a2:5d:74:2e:f0:c5:1e:56:fb:07:9a:e1: c4:3c:07:66:51:f6:5f:69:d5:4a:15:d0:07:89:77: 8d:50:d4:50:e5:e2:7e:b2:51:59:8e:a4:54:42:e8: 6b:1d:fb:8b:9e:2e:50:6c:2f:95:1d:08:43:4f:40: 6c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:83:D5:C4:1D:14:03:D5:51:11:B9:B5:25:68:25:89:4A:4D:66:CB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c09595d-2c4a-4f31-90cf-6b40884bf660.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.32.0/20 Signature Algorithm: sha256WithRSAEncryption a0:54:dc:4d:98:e7:83:7f:f0:75:ba:4b:34:ab:fd:58:dd:70: 4a:95:bb:5a:6c:ad:a3:d9:63:ce:5f:45:b1:04:1e:27:5a:2d: 51:f8:05:e0:58:33:df:ab:d3:1b:95:6f:85:57:df:94:06:33: bc:cb:83:19:93:f1:f4:30:3a:45:7a:51:e4:98:75:6f:4c:12: e0:2a:ac:b5:c8:82:a8:b3:83:c7:82:82:ec:79:97:b7:55:b8: 0b:48:49:b0:32:54:5b:07:c7:44:b5:43:cd:47:6e:56:da:cb: 4e:02:01:82:e2:95:a6:a9:d7:32:23:87:7f:5a:53:0a:17:12: 16:ff:db:5a:c7:34:e4:d6:f0:eb:51:d9:b1:08:2a:9b:62:ce: 12:1e:e5:dc:29:37:e0:2a:f5:49:62:d0:ae:45:1b:a6:29:b5: b1:1b:df:a7:a8:f6:6e:fd:49:82:bd:e0:dc:5f:d1:2d:16:06: 46:7c:c4:78:a6:e1:2b:18:f0:da:3c:b0:2c:09:56:a3:cd:38: 96:ab:59:67:cb:fa:c7:e3:2c:39:99:4c:04:f9:9c:4b:45:80: ae:3a:55:d8:8a:9d:d9:9b:7c:78:09:a6:79:26:bb:cb:a8:d0: c7:bb:1e:85:4c:5a:8a:50:28:72:93:4a:9c:f6:af:3c:66:be: ac:31:20:db -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUuaP0oI5LHZdTEhZ0Qfz3vwT4CgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI1MDAwMDQxWhcNMjYwMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MTRmNmI0NDM5ZjgxOTQwNjkzMWRlMTkyMGFkODBkMTE5 MjQxOTcyMGE1ZmNhZGY5M2MzOTI3OTY4ODI3OTcwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgqvJK5v+3T8sQ/JmZsulD5dr8dG+K5i6BneOvo6S7fDlG XfBbV5Wt80U6/TBP5Lnhj9M9FIJ8eZUOWYMYwughb/BNfXc2Sy815tf+QedsMJJB SSOnAHxlWKBrKYZrLXJLEoOdVz62UzxTE82N935SZ8yChN7GMmU3sWR23G/uiDMe jwP3oIhttLNj7gd1eOTJBfwN0ADWq+ZZ4gCQoJM6yAX3I+J+kT6WkPwURHBqw8VJ Yls02MSlSDlaeNPLRg44mErdE6JddC7wxR5W+wea4cQ8B2ZR9l9p1UoV0AeJd41Q 1FDl4n6yUVmOpFRC6Gsd+4ueLlBsL5UdCENPQGzZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+4PVxB0UA9VREbm1JWgliUpNZsswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhjMDk1OTVkLTJjNGEtNGYzMS05MGNmLTZiNDA4ODRiZjY2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNgCAwDQYJKoZIhvcNAQELBQADggEBAKBU3E2Y54N/8HW6SzSr/VjdcEqV u1psraPZY85fRbEEHidaLVH4BeBYM9+r0xuVb4VX35QGM7zLgxmT8fQwOkV6UeSY dW9MEuAqrLXIgqizg8eCgux5l7dVuAtISbAyVFsHx0S1Q81Hblbay04CAYLilaap 1zIjh39aUwoXEhb/21rHNOTW8OtR2bEIKptizhIe5dwpN+Aq9Uli0K5FG6YptbEb 36eo9m79SYK94Nxf0S0WBkZ8xHim4SsY8No8sCwJVqPNOJarWWfL+sfjLDmZTAT5 nEtFgK46VdiKndmbfHgJpnkmu8uo0Me7HoVMWopQKHKTSpz2rzxmvqwxINs= -----END CERTIFICATE-----Generated at Sat Dec 6 18:51:36 2025 by rpki-client