This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957ea7c6-3090-4382-9ef5-24bfb9390cf9.roa File: 957ea7c6-3090-4382-9ef5-24bfb9390cf9.roa (raw, json) Hash identifier: 28OjpDs184ezPwKxxm/4K34CssfS1Oe/BtQkxeuUzdI= Subject key identifier: 8B:0E:56:B6:98:1B:36:8E:84:87:7E:D9:92:1A:C6:34:AE:9D:45:1D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 550E06B06CA1DD7B0402427840B74AD9D05FDE54 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957ea7c6-3090-4382-9ef5-24bfb9390cf9.roa Signing time: Thu 20 Nov 2025 00:00:10 +0000 ROA not before: Thu 20 Nov 2025 00:00:10 +0000 ROA not after: Wed 18 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 209.164.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:0e:06:b0:6c:a1:dd:7b:04:02:42:78:40:b7:4a:d9:d0:5f:de:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 20 00:00:10 2025 GMT Not After : Feb 18 23:59:59 2026 GMT Subject: serialNumber=f3764cc1ca2f58842249684f75b769ad86f4372f5b74d525d2bb1a373bb9fe93, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:82:55:da:35:69:13:67:c2:24:83:15:f0:70: 03:28:02:3f:06:61:d4:45:2d:39:3a:1f:a8:d7:15: 98:25:5d:2c:4c:81:4d:1d:57:97:72:94:bb:8a:24: ec:ea:df:15:58:e9:9e:a1:df:a5:69:a7:e7:6b:37: 8a:e0:64:0a:07:85:2e:92:c6:5a:37:8f:38:8d:79: d1:33:4c:1b:30:34:0a:53:56:92:86:1a:08:1a:78: ce:b3:af:d3:93:cd:29:ba:44:a6:1d:24:86:57:1e: 23:83:5f:55:80:3b:76:2b:3e:06:2a:2d:12:d4:34: b0:31:30:ac:f2:0c:38:5e:d5:47:b1:d5:ce:d4:cb: ab:3d:17:d9:5f:96:69:32:9c:1d:e0:6b:59:46:98: d8:03:5c:e4:86:74:5c:cc:d6:57:71:c5:14:87:48: 6d:ae:61:e2:e6:61:78:fb:b3:19:92:31:24:5d:ed: bc:2a:8b:8c:31:28:2a:c9:40:ec:98:51:22:81:89: 81:db:6e:3a:d3:a9:0d:84:f9:a3:d1:c1:cf:cb:a0: 9e:bb:cd:45:20:40:41:2f:a7:75:fd:98:87:2c:a8: 66:cc:9e:8d:84:64:83:a2:bc:56:85:22:51:cf:b7: 49:e3:8a:4d:b7:ec:81:7e:5f:53:87:e0:67:7e:e6: fe:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:0E:56:B6:98:1B:36:8E:84:87:7E:D9:92:1A:C6:34:AE:9D:45:1D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957ea7c6-3090-4382-9ef5-24bfb9390cf9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.164.64.0/18 Signature Algorithm: sha256WithRSAEncryption 2e:dc:d2:b7:bf:7d:98:97:cb:bc:67:82:8a:ce:53:0f:27:a3: bb:d3:64:e5:f5:5f:f9:97:e1:53:5f:92:06:ca:c1:71:d5:fe: 2a:e1:fe:79:1a:6f:10:a3:69:5f:cf:b3:fd:8f:ea:6b:35:77: e1:7a:f4:64:5f:69:9e:55:08:c5:f4:30:20:2e:e0:9f:b5:e0: df:40:19:99:37:e8:51:ec:38:4a:2d:45:3b:b3:8a:60:83:e8: 20:66:5a:1b:97:66:6a:bf:6f:80:fb:b4:a4:72:9b:a4:1d:a6: 52:a9:c9:ad:1d:16:b4:2a:11:46:d2:00:aa:09:11:fc:c8:7d: 16:e5:57:ea:cf:61:7a:e3:a8:d7:00:8f:7b:84:f6:f3:5c:a2: 16:8c:cc:35:6b:a4:f8:d6:dd:2a:43:b8:f2:e4:39:9d:1c:38: 02:54:82:31:0c:0a:a5:8a:a1:82:75:54:42:27:07:0e:e8:8d: 68:6b:f5:86:0f:2d:5d:8d:4a:f8:a5:1c:a8:d5:5c:8f:f7:0b: 5b:aa:d1:59:85:8c:e2:b1:9c:23:82:50:45:4e:49:2a:46:4b: 05:74:8c:11:f5:34:ea:02:ec:e8:62:90:ee:95:3b:87:f3:3c: 28:0d:bf:c7:a4:b4:b2:f8:42:3e:87:06:bc:c2:e4:6f:18:47: 8e:aa:3e:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVQ4GsGyh3XsEAkJ4QLdK2dBf3lQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTIwMDAwMDEwWhcNMjYwMjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMzc2NGNjMWNhMmY1ODg0MjI0OTY4NGY3NWI3NjlhZDg2 ZjQzNzJmNWI3NGQ1MjVkMmJiMWEzNzNiYjlmZTkzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvglXaNWkTZ8IkgxXwcAMoAj8GYdRFLTk6H6jXFZglXSxM gU0dV5dylLuKJOzq3xVY6Z6h36Vpp+drN4rgZAoHhS6Sxlo3jziNedEzTBswNApT VpKGGggaeM6zr9OTzSm6RKYdJIZXHiODX1WAO3YrPgYqLRLUNLAxMKzyDDhe1Uex 1c7Uy6s9F9lflmkynB3ga1lGmNgDXOSGdFzM1ldxxRSHSG2uYeLmYXj7sxmSMSRd 7bwqi4wxKCrJQOyYUSKBiYHbbjrTqQ2E+aPRwc/LoJ67zUUgQEEvp3X9mIcsqGbM no2EZIOivFaFIlHPt0njik237IF+X1OH4Gd+5v4rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiw5WtpgbNo6Eh37ZkhrGNK6dRR0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk1N2VhN2M2LTMwOTAtNDM4Mi05ZWY1LTI0YmZiOTM5MGNmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbRpEAwDQYJKoZIhvcNAQELBQADggEBAC7c0re/fZiXy7xngorOUw8no7vT ZOX1X/mX4VNfkgbKwXHV/irh/nkabxCjaV/Ps/2P6ms1d+F69GRfaZ5VCMX0MCAu 4J+14N9AGZk36FHsOEotRTuzimCD6CBmWhuXZmq/b4D7tKRym6QdplKpya0dFrQq EUbSAKoJEfzIfRblV+rPYXrjqNcAj3uE9vNcohaMzDVrpPjW3SpDuPLkOZ0cOAJU gjEMCqWKoYJ1VEInBw7ojWhr9YYPLV2NSvilHKjVXI/3C1uq0VmFjOKxnCOCUEVO SSpGSwV0jBH1NOoC7OhikO6VO4fzPCgNv8ektLL4Qj6HBrzC5G8YR46qPqU= -----END CERTIFICATE-----Generated at Sat Dec 6 13:51:41 2025 by rpki-client