This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af50d7cf-175b-474d-8569-08aefa93a10a.roa File: af50d7cf-175b-474d-8569-08aefa93a10a.roa (raw, json) Hash identifier: Be0sWzcqnM8dvJTzI4OzmAk4cm4tkfYRqhcyggM5Bsw= Subject key identifier: F0:17:91:C6:9F:FC:CD:80:D7:E7:4C:9B:12:52:E9:D6:85:26:5D:3F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 688EB7201351F30D74DF94318834D1C3C7FE2142 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af50d7cf-175b-474d-8569-08aefa93a10a.roa Signing time: Wed 19 Nov 2025 00:31:31 +0000 ROA not before: Wed 19 Nov 2025 00:31:31 +0000 ROA not after: Tue 17 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:8e:b7:20:13:51:f3:0d:74:df:94:31:88:34:d1:c3:c7:fe:21:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 19 00:31:31 2025 GMT Not After : Feb 17 23:59:59 2026 GMT Subject: serialNumber=525d23b7afe38e7b0565ac5a10738c46d2245be64b47fd54827ebeed5d271682, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:fe:42:41:0d:06:2b:a5:e7:74:8a:4e:7e:75: d5:37:6d:2f:f2:56:a2:70:4d:a2:b3:b1:ee:c9:dd: 51:2f:c5:9f:06:a7:84:6b:4d:e4:e9:ce:66:ad:5b: f6:45:75:0c:dd:98:bc:1e:4f:93:6d:6c:fc:68:57: a4:9c:7b:73:f8:64:70:e7:45:a4:5b:9d:49:a7:49: 0f:c2:bc:0a:d8:72:e3:f9:30:dc:77:94:d5:b2:54: 17:c4:f0:67:50:60:1f:06:21:ee:c1:b3:bb:75:6c: d7:62:66:1f:7c:7c:11:78:72:b7:b5:7c:ad:6c:08: af:d2:a8:a9:64:20:ec:e9:47:18:c6:92:37:54:ec: 4f:14:de:c9:48:e3:5f:98:48:f1:a7:bc:2a:ee:33: 4a:68:b6:d1:60:86:c5:1d:f7:1c:ac:82:77:df:5d: 01:a2:e0:44:22:f0:06:d1:16:cd:c3:56:23:ef:7d: eb:67:ad:8c:5d:e5:2d:36:6b:38:c1:c7:8f:4e:0b: 80:8a:88:30:06:2a:dd:67:cd:51:d2:0d:85:2e:e3: 83:ea:c5:d5:30:03:0f:c8:81:5e:fc:08:75:c3:aa: c0:cf:1a:09:9b:f2:a5:6a:62:63:5b:cd:ca:a8:f0: b8:6c:20:47:59:da:e9:89:9b:d0:a1:4e:33:43:6d: 4b:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:17:91:C6:9F:FC:CD:80:D7:E7:4C:9B:12:52:E9:D6:85:26:5D:3F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af50d7cf-175b-474d-8569-08aefa93a10a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.56.0/21 Signature Algorithm: sha256WithRSAEncryption 5f:bb:9a:76:90:2b:af:ed:e3:16:2c:82:be:fa:7a:09:bc:1d: d8:af:d7:87:6d:d7:94:43:bb:0d:e5:e2:2c:ab:4a:1b:ac:82: 7c:4d:26:8c:22:c0:a3:7e:87:fa:02:4f:ef:49:14:b3:d4:10: d8:20:83:d4:da:29:66:68:d3:69:c1:a1:e9:ec:0d:af:c1:44: 56:c3:dc:13:04:31:69:22:3e:2f:b5:79:ee:c6:c7:f3:f3:70: 8d:d5:c6:31:ed:a7:ef:f8:29:03:e6:67:c3:28:ec:a8:a5:a4: ca:aa:fe:dd:37:ef:d2:f6:4e:b7:2d:bf:af:2c:b3:84:bc:79: f9:7e:58:11:98:3c:c2:f8:6f:ed:98:fa:23:e2:2f:90:e4:cd: 10:21:bf:92:93:ce:8f:03:a0:64:d4:41:d1:67:bf:62:ad:99: 18:38:66:c6:ab:6a:79:0a:25:23:05:62:3d:e9:61:c6:45:c3: e6:a0:3a:b6:1a:f8:e9:5f:85:ae:56:87:d8:6b:79:bd:0c:8c: 4e:69:bf:74:88:d6:b4:28:b6:76:92:73:d1:9d:ed:6a:27:62: ad:8c:9f:72:d6:01:de:43:03:ce:4f:a0:18:9a:da:b0:39:94: 33:9b:e0:d6:70:e3:79:b1:66:81:27:87:96:05:6c:cc:44:3b: c9:4a:da:83 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaI63IBNR8w1035QxiDTRw8f+IUIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTE5MDAzMTMxWhcNMjYwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MjVkMjNiN2FmZTM4ZTdiMDU2NWFjNWExMDczOGM0NmQy MjQ1YmU2NGI0N2ZkNTQ4MjdlYmVlZDVkMjcxNjgyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCc/kJBDQYrped0ik5+ddU3bS/yVqJwTaKzse7J3VEvxZ8G p4RrTeTpzmatW/ZFdQzdmLweT5NtbPxoV6Sce3P4ZHDnRaRbnUmnSQ/CvArYcuP5 MNx3lNWyVBfE8GdQYB8GIe7Bs7t1bNdiZh98fBF4cre1fK1sCK/SqKlkIOzpRxjG kjdU7E8U3slI41+YSPGnvCruM0pottFghsUd9xysgnffXQGi4EQi8AbRFs3DViPv fetnrYxd5S02azjBx49OC4CKiDAGKt1nzVHSDYUu44PqxdUwAw/IgV78CHXDqsDP Ggmb8qVqYmNbzcqo8LhsIEdZ2umJm9ChTjNDbUtbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8BeRxp/8zYDX50ybElLp1oUmXT8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FmNTBkN2NmLTE3NWItNDc0ZC04NTY5LTA4YWVmYTkzYTEwYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOIEjgwDQYJKoZIhvcNAQELBQADggEBAF+7mnaQK6/t4xYsgr76egm8Hdiv 14dt15RDuw3l4iyrShusgnxNJowiwKN+h/oCT+9JFLPUENggg9TaKWZo02nBoens Da/BRFbD3BMEMWkiPi+1ee7Gx/PzcI3VxjHtp+/4KQPmZ8Mo7KilpMqq/t0379L2 Trctv68ss4S8efl+WBGYPML4b+2Y+iPiL5DkzRAhv5KTzo8DoGTUQdFnv2KtmRg4 ZsarankKJSMFYj3pYcZFw+agOrYa+Olfha5Wh9hreb0MjE5pv3SI1rQotnaSc9Gd 7WonYq2Mn3LWAd5DA85PoBia2rA5lDOb4NZw43mxZoEnh5YFbMxEO8lK2oM= -----END CERTIFICATE-----Generated at Sat Dec 6 15:27:28 2025 by rpki-client