This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aebec422-5453-4842-a3d0-552a331eb4af.roa File: aebec422-5453-4842-a3d0-552a331eb4af.roa (raw, json) Hash identifier: H7McTTao7ezGxHWPMhhKoIbLLtrgZ+fhgAoNwWt9UcM= Subject key identifier: F6:A5:1B:A1:26:65:33:E5:F9:18:61:DF:7F:1E:E1:C9:15:97:7A:D5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0F9FEDE30CD2C87224A117C1E1DDF866FEBF437D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aebec422-5453-4842-a3d0-552a331eb4af.roa Signing time: Wed 26 Nov 2025 00:10:32 +0000 ROA not before: Wed 26 Nov 2025 00:10:32 +0000 ROA not after: Tue 24 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:9f:ed:e3:0c:d2:c8:72:24:a1:17:c1:e1:dd:f8:66:fe:bf:43:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 26 00:10:32 2025 GMT Not After : Feb 24 23:59:59 2026 GMT Subject: serialNumber=71950f0dc27648df74cb9f7630bbb3bbbba960f21a37b9d3039bcec172392360, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:5b:cb:37:a4:f4:56:eb:45:e3:07:bc:59:27: 99:ff:d3:7d:64:c1:de:73:58:17:b5:a2:a2:2b:ac: 2c:e0:d9:72:a4:70:be:3a:69:b6:16:b3:6a:67:6a: 56:5e:f2:f8:30:9c:fa:ca:fb:99:0a:5b:7d:17:3c: 1e:30:67:20:bd:bb:b4:f0:1a:7e:69:fb:50:84:7d: 58:9d:81:5a:11:d4:6d:5b:2e:29:1c:ca:f4:9d:a4: ba:c5:2f:3d:f0:e7:be:08:ec:9e:6d:41:da:5e:ce: e3:1f:99:4d:3b:65:5e:f9:a2:88:bb:8a:fd:f7:9b: 4c:57:cc:0a:ef:0c:e2:0e:b7:5e:8e:fb:a2:eb:52: 5b:f4:a0:cf:da:a1:1b:2f:ac:04:36:79:01:2a:68: 9a:a5:58:90:b6:bd:30:5e:54:2f:0a:d2:21:44:70: 21:4c:e2:51:d7:c9:3a:76:16:0b:ca:c7:81:3c:8a: 68:83:7b:87:f0:cf:c4:3b:de:cf:97:df:23:25:f7: 9f:09:ca:b0:6b:0b:8e:b8:02:e8:c2:3f:d6:10:ec: 6b:b6:14:32:9e:4d:7e:c9:a3:8d:1c:03:c0:2c:91: a4:28:e4:8f:ba:16:b9:a1:9b:f7:dd:fc:07:da:bb: 17:a0:9c:82:a9:99:97:20:bd:1d:5b:7a:76:0f:03: 5b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:A5:1B:A1:26:65:33:E5:F9:18:61:DF:7F:1E:E1:C9:15:97:7A:D5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aebec422-5453-4842-a3d0-552a331eb4af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.128.0/17 Signature Algorithm: sha256WithRSAEncryption 63:41:04:da:f3:7f:6d:c9:f7:00:f7:41:00:34:68:41:24:03: ea:43:75:6b:de:49:f1:d9:24:65:e4:66:11:e7:24:45:ff:07: a6:e4:fa:2b:c4:e4:8e:06:eb:39:9d:01:98:d1:a7:e8:be:e3: cf:ea:31:10:81:16:1b:bd:96:1f:b1:e0:c8:d2:18:45:1f:b0: af:c7:7c:44:f8:64:bb:8f:23:79:ea:31:ba:90:4d:b3:92:08: e1:90:8a:fe:0f:48:81:c9:5b:a9:81:c1:b4:0d:c5:24:c9:ed: 57:87:9e:2a:ea:fc:dd:9e:75:8e:b7:66:03:ec:7e:7a:f2:ef: b5:b0:c7:d4:91:0f:ad:82:1a:4f:e0:cb:a2:ba:80:95:eb:fb: 71:ad:fc:a5:72:d3:b3:3f:f4:0d:7c:2d:e9:30:5d:31:0f:03: e1:89:c3:45:9d:1a:bb:a5:7d:cd:42:87:8d:bd:24:a2:cb:78: 47:b6:03:3e:33:e4:66:d2:ff:17:78:36:4c:ca:62:d7:4f:fc: be:5f:13:dc:05:64:3c:bc:eb:64:84:cb:e3:0a:5d:77:bb:03: 12:27:ab:78:37:2c:9e:61:90:8d:ec:59:43:93:eb:98:d9:70: 7e:1d:b8:e0:4b:01:51:4e:71:fb:c4:6f:0e:09:21:09:4c:45: 58:a1:cd:c8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD5/t4wzSyHIkoRfB4d34Zv6/Q30wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI2MDAxMDMyWhcNMjYwMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MTk1MGYwZGMyNzY0OGRmNzRjYjlmNzYzMGJiYjNiYmJi YTk2MGYyMWEzN2I5ZDMwMzliY2VjMTcyMzkyMzYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMW8s3pPRW60XjB7xZJ5n/031kwd5zWBe1oqIrrCzg2XKk cL46abYWs2pnalZe8vgwnPrK+5kKW30XPB4wZyC9u7TwGn5p+1CEfVidgVoR1G1b LikcyvSdpLrFLz3w574I7J5tQdpezuMfmU07ZV75ooi7iv33m0xXzArvDOIOt16O +6LrUlv0oM/aoRsvrAQ2eQEqaJqlWJC2vTBeVC8K0iFEcCFM4lHXyTp2FgvKx4E8 imiDe4fwz8Q73s+X3yMl958JyrBrC464AujCP9YQ7Gu2FDKeTX7Jo40cA8AskaQo 5I+6Frmhm/fd/AfauxegnIKpmZcgvR1benYPA1sZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9qUboSZlM+X5GGHffx7hyRWXetUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlYmVjNDIyLTU0NTMtNDg0Mi1hM2QwLTU1MmEzMzFlYjRhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAeIEoAwDQYJKoZIhvcNAQELBQADggEBAGNBBNrzf23J9wD3QQA0aEEkA+pD dWveSfHZJGXkZhHnJEX/B6bk+ivE5I4G6zmdAZjRp+i+48/qMRCBFhu9lh+x4MjS GEUfsK/HfET4ZLuPI3nqMbqQTbOSCOGQiv4PSIHJW6mBwbQNxSTJ7VeHnirq/N2e dY63ZgPsfnry77Wwx9SRD62CGk/gy6K6gJXr+3Gt/KVy07M/9A18LekwXTEPA+GJ w0WdGrulfc1Ch429JKLLeEe2Az4z5GbS/xd4NkzKYtdP/L5fE9wFZDy862SEy+MK XXe7AxInq3g3LJ5hkI3sWUOT65jZcH4duOBLAVFOcfvEbw4JIQlMRVihzcg= -----END CERTIFICATE-----Generated at Sat Dec 6 23:00:16 2025 by rpki-client