This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4fc45e7-8bde-4b2c-ad82-302a6c0ccbfd.roa File: b4fc45e7-8bde-4b2c-ad82-302a6c0ccbfd.roa (raw, json) Hash identifier: Ee7LsgBXDlimB3WLFxFrVV9mAfkBPzs1DRAAv43y8VU= Subject key identifier: 66:82:66:2B:5A:E0:10:CC:50:20:64:89:1A:53:E2:ED:60:D1:B4:81 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 04A2BEBBF3B6105CCADFC9384B91245B880A3054 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4fc45e7-8bde-4b2c-ad82-302a6c0ccbfd.roa Signing time: Sun 30 Nov 2025 00:20:31 +0000 ROA not before: Sun 30 Nov 2025 00:20:31 +0000 ROA not after: Sat 28 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 167.147.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:a2:be:bb:f3:b6:10:5c:ca:df:c9:38:4b:91:24:5b:88:0a:30:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 30 00:20:31 2025 GMT Not After : Feb 28 23:59:59 2026 GMT Subject: serialNumber=6b779ec28d6a7470358208a0e6abe852cdddc0f4673c8a33459e0a89daec714e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:83:52:88:26:4e:84:f4:9c:11:bd:b5:77:bd: cc:01:92:77:c0:bb:ae:a7:df:c7:38:2e:63:eb:ba: 43:dc:0e:78:ea:a4:85:da:94:3c:6a:d3:83:fa:83: ce:49:6a:7d:f7:00:c9:78:7c:0a:82:4d:81:47:48: 74:8f:85:b4:2e:a2:be:fb:49:c2:7a:04:7d:6d:cc: a0:bb:10:d9:e8:56:6c:6c:71:a4:cd:72:dd:15:09: d4:8c:d9:e7:b2:a0:7b:75:3c:86:38:26:ef:3d:83: c9:be:7e:7e:d3:26:45:62:4b:db:11:9a:1d:f6:3c: 12:95:ae:35:60:80:4a:fc:6d:e2:f1:9f:0d:28:d4: 10:cb:71:01:eb:b5:6e:23:ff:40:46:46:dc:1a:e1: a5:45:46:e4:50:8c:69:d8:de:68:73:2f:e8:08:b6: c5:16:0d:cc:54:1e:32:b8:59:30:11:d5:57:d1:c7: 68:c8:e9:66:96:39:2d:e4:ac:96:95:b3:2a:05:d7: 1e:f9:05:75:95:31:de:c1:c3:97:50:bd:39:6e:5b: 3e:46:d5:3b:70:56:b0:3f:1e:32:4e:b9:28:39:0d: da:c3:ed:fd:20:20:6e:f5:ff:cc:bd:1b:c0:f2:77: 9b:16:ae:aa:37:10:82:e8:e5:9b:6c:b5:07:95:e8: 9a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:82:66:2B:5A:E0:10:CC:50:20:64:89:1A:53:E2:ED:60:D1:B4:81 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4fc45e7-8bde-4b2c-ad82-302a6c0ccbfd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 167.147.0.0/16 Signature Algorithm: sha256WithRSAEncryption a0:27:9c:13:35:d1:0e:c9:e5:28:a3:38:a6:b1:b6:94:86:82: 16:9c:10:01:5b:5c:57:4a:3b:c2:8d:c7:2c:0e:00:21:c8:ca: d2:ae:0b:f9:49:84:c3:57:61:49:82:d1:fc:cc:52:7d:31:24: fa:61:b5:bd:6c:d9:1e:eb:90:43:14:2f:e6:a7:4e:70:c3:a2: 2e:90:5c:d0:fd:78:32:0d:65:c4:87:45:f6:2b:62:23:e1:22: 01:d6:63:11:8e:c7:fe:73:6d:70:24:8e:27:c6:63:e2:9f:36: 1f:b6:60:be:1b:45:c9:e9:9c:b5:2e:d1:22:89:ed:21:ac:7f: 04:9d:cc:81:0c:f6:3c:bc:9a:13:f7:a1:8d:d8:55:01:b8:6d: b9:b2:42:b9:4f:56:a3:eb:8d:c3:2b:a1:e2:bc:1b:55:53:8b: 5b:5e:65:90:9f:2e:d7:b0:53:84:92:cd:cc:d3:c7:b9:58:52: a5:c7:99:e5:e9:39:46:6c:fc:aa:43:60:ee:b3:c5:2a:c1:f1: 3a:b4:c4:01:3f:94:db:6c:0c:eb:3b:79:97:2a:4b:c4:85:a7: a1:00:a6:f9:a0:43:4e:94:30:64:67:99:71:4c:19:61:cc:7a: a3:02:e3:af:2f:06:a1:50:3d:d6:9b:8c:03:96:f4:a3:76:b3: e2:5f:2d:e3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBKK+u/O2EFzK38k4S5EkW4gKMFQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTMwMDAyMDMxWhcNMjYwMjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2Yjc3OWVjMjhkNmE3NDcwMzU4MjA4YTBlNmFiZTg1MmNk ZGRjMGY0NjczYzhhMzM0NTllMGE4OWRhZWM3MTRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfg1KIJk6E9JwRvbV3vcwBknfAu66n38c4LmPrukPcDnjq pIXalDxq04P6g85Jan33AMl4fAqCTYFHSHSPhbQuor77ScJ6BH1tzKC7ENnoVmxs caTNct0VCdSM2eeyoHt1PIY4Ju89g8m+fn7TJkViS9sRmh32PBKVrjVggEr8beLx nw0o1BDLcQHrtW4j/0BGRtwa4aVFRuRQjGnY3mhzL+gItsUWDcxUHjK4WTAR1VfR x2jI6WaWOS3krJaVsyoF1x75BXWVMd7Bw5dQvTluWz5G1TtwVrA/HjJOuSg5DdrD 7f0gIG71/8y9G8Dyd5sWrqo3EILo5ZtstQeV6JoHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUZoJmK1rgEMxQIGSJGlPi7WDRtIEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I0ZmM0NWU3LThiZGUtNGIyYy1hZDgyLTMwMmE2YzBjY2JmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCnkzANBgkqhkiG9w0BAQsFAAOCAQEAoCecEzXRDsnlKKM4prG2lIaCFpwQ AVtcV0o7wo3HLA4AIcjK0q4L+UmEw1dhSYLR/MxSfTEk+mG1vWzZHuuQQxQv5qdO cMOiLpBc0P14Mg1lxIdF9itiI+EiAdZjEY7H/nNtcCSOJ8Zj4p82H7ZgvhtFyemc tS7RIontIax/BJ3MgQz2PLyaE/ehjdhVAbhtubJCuU9Wo+uNwyuh4rwbVVOLW15l kJ8u17BThJLNzNPHuVhSpceZ5ek5Rmz8qkNg7rPFKsHxOrTEAT+U22wM6zt5lypL xIWnoQCm+aBDTpQwZGeZcUwZYcx6owLjry8GoVA91puMA5b0o3az4l8t4w== -----END CERTIFICATE-----Generated at Sat Dec 6 22:57:04 2025 by rpki-client