This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f289340-82bf-42dd-8b4e-a118719df322.roa File: 8f289340-82bf-42dd-8b4e-a118719df322.roa (raw, json) Hash identifier: lCpDJ38Fqc/zzpbxQIM/0yMIcjBOPuYjJTbWPQ9hswM= Subject key identifier: A9:83:12:94:48:A9:C7:DC:7C:D0:D6:E4:06:CB:CC:40:F5:DA:7F:64 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 06A37695C5C312240A94E29A2957BF714CD5B851 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f289340-82bf-42dd-8b4e-a118719df322.roa Signing time: Thu 27 Nov 2025 00:40:08 +0000 ROA not before: Thu 27 Nov 2025 00:40:08 +0000 ROA not after: Wed 25 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:a3:76:95:c5:c3:12:24:0a:94:e2:9a:29:57:bf:71:4c:d5:b8:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 27 00:40:08 2025 GMT Not After : Feb 25 23:59:59 2026 GMT Subject: serialNumber=d5643efc621ae1200823fde55c1eb2fa750b705a05c90400dfb10185bcf58ad5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d9:4b:e7:6f:27:0e:09:61:fe:9d:54:51:a2: a9:9f:d7:a8:bd:b6:16:99:f8:74:60:c3:23:ff:c9: aa:ed:63:a2:25:21:91:0b:48:33:05:17:39:15:74: b6:d1:a3:0d:3f:e1:17:fa:f2:41:fa:ec:e9:77:76: 7f:d9:84:f3:8a:7b:97:0a:21:d0:1a:69:71:d2:b3: d1:39:f4:52:eb:1e:d7:d6:68:c5:4f:8d:ea:f7:b9: 89:df:1e:63:6c:1f:5b:eb:50:01:cc:b8:6e:0c:48: 33:4e:96:66:35:ba:c7:35:43:03:36:a7:77:91:d2: 20:16:15:6f:dc:b1:a8:8a:77:fc:af:18:f6:ff:56: 56:a8:07:7c:b4:92:58:b8:28:18:e4:2c:96:c6:ad: f8:b0:ad:a4:5e:41:cc:aa:dd:12:02:49:2c:3a:70: 54:7a:5d:a6:27:37:54:91:7c:b6:ba:26:71:c8:4c: 99:3b:c5:27:ae:bf:03:43:b2:b0:ce:e8:57:40:78: 0b:34:ab:36:fa:39:0a:75:7d:a4:4d:b3:a3:50:d7: d4:40:8d:38:ba:f1:69:60:58:70:cd:25:1b:33:e7: 02:b9:c5:ae:b6:56:b4:90:13:83:f9:5c:5e:70:d4: 94:68:c1:11:d9:18:4b:9f:ee:95:0c:3c:b5:cf:e5: 35:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:83:12:94:48:A9:C7:DC:7C:D0:D6:E4:06:CB:CC:40:F5:DA:7F:64 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f289340-82bf-42dd-8b4e-a118719df322.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.72.0/21 Signature Algorithm: sha256WithRSAEncryption 9c:e9:28:66:19:f8:e1:04:7a:80:b6:7a:4c:a6:29:3f:f2:28: f7:c9:d5:b4:a3:cd:b6:5e:2c:76:78:f0:fb:a0:a6:2c:be:00: a2:4c:91:e0:30:c2:56:80:2d:8b:9c:75:14:90:af:b1:fe:ca: 02:16:e0:1e:34:d5:d0:87:a2:15:f2:f7:97:78:2c:3e:33:dc: 7c:d1:7f:13:39:9e:41:96:37:e2:c6:ea:14:f5:23:57:5b:1b: c8:8e:cc:97:cb:39:7a:71:bc:fa:78:03:b4:49:50:4a:1f:0a: 6a:64:99:8c:66:f3:bc:19:53:36:4f:d0:13:c7:a1:fe:74:f9: ca:0d:1f:8d:94:a1:1a:15:32:3c:c2:e8:49:97:b5:b7:d2:0e: 62:c1:b5:4f:79:ca:37:09:5e:b9:74:b7:be:c5:81:e3:2c:4f: 06:11:b2:fd:64:55:f4:4b:84:56:d0:4f:9a:da:40:4c:2c:c5: 0a:4b:c0:e7:20:43:6f:0f:b1:56:e6:6c:bf:3c:64:29:86:58: 2a:67:55:0a:64:bd:72:32:b0:f9:1a:ad:aa:85:df:22:3e:44: 63:0a:55:1a:e7:5b:0e:a8:27:e5:c7:4c:6e:8e:7c:e5:0b:a6: 0e:99:94:a8:b9:98:d7:0d:bc:7a:d5:85:fe:a8:a8:1a:a5:aa: 8a:fb:eb:56 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBqN2lcXDEiQKlOKaKVe/cUzVuFEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI3MDA0MDA4WhcNMjYwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNTY0M2VmYzYyMWFlMTIwMDgyM2ZkZTU1YzFlYjJmYTc1 MGI3MDVhMDVjOTA0MDBkZmIxMDE4NWJjZjU4YWQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDa2UvnbycOCWH+nVRRoqmf16i9thaZ+HRgwyP/yartY6Il IZELSDMFFzkVdLbRow0/4Rf68kH67Ol3dn/ZhPOKe5cKIdAaaXHSs9E59FLrHtfW aMVPjer3uYnfHmNsH1vrUAHMuG4MSDNOlmY1usc1QwM2p3eR0iAWFW/csaiKd/yv GPb/VlaoB3y0kli4KBjkLJbGrfiwraReQcyq3RICSSw6cFR6XaYnN1SRfLa6JnHI TJk7xSeuvwNDsrDO6FdAeAs0qzb6OQp1faRNs6NQ19RAjTi68WlgWHDNJRsz5wK5 xa62VrSQE4P5XF5w1JRowRHZGEuf7pUMPLXP5TVbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqYMSlEipx9x80NbkBsvMQPXaf2QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhmMjg5MzQwLTgyYmYtNDJkZC04YjRlLWExMTg3MTlkZjMyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjl0gwDQYJKoZIhvcNAQELBQADggEBAJzpKGYZ+OEEeoC2ekymKT/yKPfJ 1bSjzbZeLHZ48Pugpiy+AKJMkeAwwlaALYucdRSQr7H+ygIW4B401dCHohXy95d4 LD4z3HzRfxM5nkGWN+LG6hT1I1dbG8iOzJfLOXpxvPp4A7RJUEofCmpkmYxm87wZ UzZP0BPHof50+coNH42UoRoVMjzC6EmXtbfSDmLBtU95yjcJXrl0t77FgeMsTwYR sv1kVfRLhFbQT5raQEwsxQpLwOcgQ28PsVbmbL88ZCmGWCpnVQpkvXIysPkaraqF 3yI+RGMKVRrnWw6oJ+XHTG6OfOULpg6ZlKi5mNcNvHrVhf6oqBqlqor761Y= -----END CERTIFICATE-----Generated at Sat Dec 6 13:49:07 2025 by rpki-client