This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1233a82-d306-4782-9e84-409e483c4522.roa File: b1233a82-d306-4782-9e84-409e483c4522.roa (raw, json) Hash identifier: L3CEtH1N0xVC+IP9eG3rlSXdTLtrhds7nuJV6hu7pwI= Subject key identifier: 70:C9:C0:76:F8:9A:4B:1C:44:93:E4:73:42:FD:1D:55:D1:CB:6F:09 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1D5CB5D0DC7A1125758BA1245890B506101A29A8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1233a82-d306-4782-9e84-409e483c4522.roa Signing time: Wed 26 Nov 2025 00:52:05 +0000 ROA not before: Wed 26 Nov 2025 00:52:05 +0000 ROA not after: Tue 24 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 184.72.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:5c:b5:d0:dc:7a:11:25:75:8b:a1:24:58:90:b5:06:10:1a:29:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 26 00:52:05 2025 GMT Not After : Feb 24 23:59:59 2026 GMT Subject: serialNumber=a7340f3d6baf8413a9a1d09265299118d8e96f1c77ba73c3ede35f3c09410da2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4a:4a:23:bc:57:98:d8:94:23:77:e0:b4:e6: 8a:6c:59:44:95:ef:c4:ad:fa:05:f8:63:55:ab:90: d1:b0:6d:6b:e0:cd:79:65:e7:ee:ac:11:9c:0e:17: b5:34:bd:37:87:41:d5:90:f8:3c:cf:6d:cc:0c:d1: c8:00:ee:fc:5b:74:4e:e0:fc:ab:51:8c:80:90:76: 87:fa:7f:4b:53:75:43:9a:31:59:6d:fa:d1:d4:1b: 4b:d9:46:e6:23:3c:86:52:be:a1:2b:f5:3d:91:c6: 19:5d:6e:07:65:ec:b4:67:6b:a2:19:3f:4d:17:2e: 22:a0:93:4b:07:64:e7:5b:a3:26:1d:35:73:02:3a: 88:8c:08:ba:ed:d5:96:85:69:bb:b0:ad:f6:f0:8c: 6e:1e:79:ae:a4:5e:d3:9a:13:5f:40:ed:5e:8e:04: 03:ae:f2:7c:7e:2d:df:84:46:83:45:93:82:b6:8c: 80:3e:b0:00:7b:eb:ee:af:16:06:61:0b:11:71:a4: 99:54:7c:cd:67:1e:cd:1a:34:68:06:16:9b:d3:ed: 6f:14:8b:cd:10:1a:c2:e4:5a:01:39:54:1f:a0:90: 77:05:1a:45:e0:c3:7b:93:7f:63:0c:00:23:4e:2a: 49:65:f9:f5:78:53:80:fe:e8:b9:6c:6a:90:bd:67: cc:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:C9:C0:76:F8:9A:4B:1C:44:93:E4:73:42:FD:1D:55:D1:CB:6F:09 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1233a82-d306-4782-9e84-409e483c4522.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.72.128.0/18 Signature Algorithm: sha256WithRSAEncryption 61:ac:9f:c9:fe:c2:ed:d1:bc:0a:77:f0:5c:60:60:eb:cd:31: a4:9c:35:b5:07:3e:20:a1:5f:4c:2a:13:07:a7:c1:dc:8d:ee: db:24:66:e0:32:73:ce:19:9c:4c:4b:08:09:21:ea:cf:34:e8: 7b:91:1a:72:26:7d:d8:03:8b:a5:a1:a4:8a:a0:1f:15:a7:9d: 85:ff:78:ac:1c:75:f8:19:12:12:f6:d6:d4:d7:c7:25:85:e3: 38:5d:04:ea:cf:2e:99:6b:a6:87:79:c4:0e:4c:2d:6a:b8:04: eb:85:61:a5:94:a5:fc:09:e6:34:fa:67:e6:95:d0:df:7f:e3: 94:84:fa:1a:e7:37:2d:b2:ef:03:bd:dc:d3:06:d5:d5:29:9b: df:84:c5:c6:2e:98:60:34:38:c2:cf:c6:21:e1:ec:b7:4a:b0: 43:2b:49:07:bf:1b:1a:65:b6:f1:0a:73:c2:12:a4:35:b6:25: e3:68:96:bd:e2:f3:4b:c0:dd:46:c7:0a:07:11:52:5a:cb:4c: 9d:e4:23:90:04:a6:a5:f9:e9:22:53:98:d5:17:51:09:8c:59: d1:63:af:5b:2d:d4:4d:b4:a4:56:af:cd:15:ba:fa:c5:7b:11: 9a:2d:eb:7d:3e:f1:bb:e1:b2:dd:a9:4c:08:23:6a:67:a1:02: f4:b3:91:cf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHVy10Nx6ESV1i6EkWJC1BhAaKagwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI2MDA1MjA1WhcNMjYwMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNzM0MGYzZDZiYWY4NDEzYTlhMWQwOTI2NTI5OTExOGQ4 ZTk2ZjFjNzdiYTczYzNlZGUzNWYzYzA5NDEwZGEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxSkojvFeY2JQjd+C05opsWUSV78St+gX4Y1WrkNGwbWvg zXll5+6sEZwOF7U0vTeHQdWQ+DzPbcwM0cgA7vxbdE7g/KtRjICQdof6f0tTdUOa MVlt+tHUG0vZRuYjPIZSvqEr9T2Rxhldbgdl7LRna6IZP00XLiKgk0sHZOdboyYd NXMCOoiMCLrt1ZaFabuwrfbwjG4eea6kXtOaE19A7V6OBAOu8nx+Ld+ERoNFk4K2 jIA+sAB76+6vFgZhCxFxpJlUfM1nHs0aNGgGFpvT7W8Ui80QGsLkWgE5VB+gkHcF GkXgw3uTf2MMACNOKkll+fV4U4D+6LlsapC9Z8yNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcMnAdviaSxxEk+RzQv0dVdHLbwkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IxMjMzYTgyLWQzMDYtNDc4Mi05ZTg0LTQwOWU0ODNjNDUyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAa4SIAwDQYJKoZIhvcNAQELBQADggEBAGGsn8n+wu3RvAp38FxgYOvNMaSc NbUHPiChX0wqEwenwdyN7tskZuAyc84ZnExLCAkh6s806HuRGnImfdgDi6WhpIqg HxWnnYX/eKwcdfgZEhL21tTXxyWF4zhdBOrPLplrpod5xA5MLWq4BOuFYaWUpfwJ 5jT6Z+aV0N9/45SE+hrnNy2y7wO93NMG1dUpm9+ExcYumGA0OMLPxiHh7LdKsEMr SQe/GxpltvEKc8ISpDW2JeNolr3i80vA3UbHCgcRUlrLTJ3kI5AEpqX56SJTmNUX UQmMWdFjr1st1E20pFavzRW6+sV7EZot630+8bvhst2pTAgjamehAvSzkc8= -----END CERTIFICATE-----Generated at Sat Dec 6 16:27:59 2025 by rpki-client