This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5e54a86-ed38-4b92-882c-c19087637bc3.roa File: b5e54a86-ed38-4b92-882c-c19087637bc3.roa (raw, json) Hash identifier: ouzl9teCMGW0OLGfpTH3Dqcf+u4FSlqkm8dHpiG8G2U= Subject key identifier: 02:28:E6:ED:14:0E:27:10:6F:53:7B:20:CE:9E:0D:5C:D3:16:C2:C8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 606032F408B1B3B5993B71FF53D936E44CD5346C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5e54a86-ed38-4b92-882c-c19087637bc3.roa Signing time: Tue 18 Nov 2025 00:11:36 +0000 ROA not before: Tue 18 Nov 2025 00:11:36 +0000 ROA not after: Mon 16 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 104.153.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:60:32:f4:08:b1:b3:b5:99:3b:71:ff:53:d9:36:e4:4c:d5:34:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 18 00:11:36 2025 GMT Not After : Feb 16 23:59:59 2026 GMT Subject: serialNumber=ae39d408dc27fd26fe886e309ccb5398544cd02a4b7582fa4a853775c4ed4d2c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4f:56:71:ff:4c:c1:a8:48:3b:92:cb:ca:49: d0:e6:b6:6a:bc:a1:3a:94:ca:b8:01:9e:d5:8d:b6: 5c:b7:64:31:19:c3:35:db:40:97:91:6a:3b:9a:5f: 99:8c:6b:d9:70:d7:07:b0:61:c7:53:13:f6:5f:dc: af:4e:4b:a0:89:b1:f6:c0:79:21:d5:15:f9:27:4f: 1e:db:bc:23:90:51:e1:bf:2c:97:be:b8:b0:81:52: 61:0f:8f:06:86:f0:5b:39:d2:ef:e9:e0:06:2f:8d: 67:ec:2f:b5:97:82:84:67:f8:64:b0:df:cb:dd:aa: d9:0e:05:55:66:8a:cd:9a:4c:13:a1:80:e5:1f:d4: 82:0b:a9:3c:44:d7:25:dd:fc:e0:cd:b7:3d:01:6d: 5d:15:1f:99:92:51:da:ad:5e:b5:5f:39:dd:31:18: 07:ed:b6:89:59:a4:40:f6:bd:bb:50:3d:f6:8b:f7: 62:67:db:17:89:d1:e6:40:ac:19:5a:bf:a6:a2:6f: 54:e9:08:af:4b:a8:98:8a:2b:b4:99:33:41:d3:de: ea:55:13:b0:a6:4c:fd:a9:d7:4c:2e:18:8d:f0:41: 94:1e:96:fc:08:7a:77:89:d6:87:5b:ab:66:c0:96: 84:9a:a0:45:b0:4c:f4:85:c2:41:d6:8f:77:eb:08: 42:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:28:E6:ED:14:0E:27:10:6F:53:7B:20:CE:9E:0D:5C:D3:16:C2:C8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5e54a86-ed38-4b92-882c-c19087637bc3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.112.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:0e:bd:66:ba:73:f2:d3:41:43:eb:83:e9:70:21:aa:5e:0c: be:db:25:35:b7:3d:75:28:26:de:aa:5d:8d:bc:93:41:af:5e: f3:f6:6b:18:a1:12:2f:e7:1b:17:0c:dc:8e:a1:48:c3:82:9d: 70:65:02:00:aa:7a:0a:a1:9b:e2:88:9d:41:b5:89:ae:0b:7b: 4e:d8:e0:81:e2:c7:be:56:f9:45:b2:52:03:eb:ad:5c:bb:1e: a5:58:40:88:4b:fe:3c:4d:4d:c1:e6:77:da:65:34:12:43:94: 8c:79:c9:b8:e6:14:06:ad:70:c3:12:9a:43:cf:46:3e:73:a1: 77:ea:08:a8:48:4f:14:57:db:9c:96:61:1c:4e:d7:a8:9b:71: 59:e6:de:c8:1a:82:00:14:25:d0:b8:b1:88:46:b4:48:e8:fd: 8e:c7:b4:29:21:62:12:75:5d:49:3f:f9:67:49:79:b3:fc:cd: 46:19:74:ab:23:18:c9:80:6b:cc:7f:b2:42:47:d1:f1:f9:27: a3:7f:34:4a:aa:04:c7:bf:e4:f0:5d:83:90:8c:10:a6:5b:58: f8:dd:e1:5f:6a:32:33:b0:58:63:a4:e6:05:fe:b9:01:38:31: 5e:b8:07:ab:37:a2:04:e3:a2:f4:51:99:6e:69:16:55:ec:ed: 88:87:b9:2f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYGAy9Aixs7WZO3H/U9k25EzVNGwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTE4MDAxMTM2WhcNMjYwMjE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZTM5ZDQwOGRjMjdmZDI2ZmU4ODZlMzA5Y2NiNTM5ODU0 NGNkMDJhNGI3NTgyZmE0YTg1Mzc3NWM0ZWQ0ZDJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4T1Zx/0zBqEg7ksvKSdDmtmq8oTqUyrgBntWNtly3ZDEZ wzXbQJeRajuaX5mMa9lw1wewYcdTE/Zf3K9OS6CJsfbAeSHVFfknTx7bvCOQUeG/ LJe+uLCBUmEPjwaG8Fs50u/p4AYvjWfsL7WXgoRn+GSw38vdqtkOBVVmis2aTBOh gOUf1IILqTxE1yXd/ODNtz0BbV0VH5mSUdqtXrVfOd0xGAfttolZpED2vbtQPfaL 92Jn2xeJ0eZArBlav6aib1TpCK9LqJiKK7SZM0HT3upVE7CmTP2p10wuGI3wQZQe lvwIeneJ1odbq2bAloSaoEWwTPSFwkHWj3frCEKfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAijm7RQOJxBvU3sgzp4NXNMWwsgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I1ZTU0YTg2LWVkMzgtNGI5Mi04ODJjLWMxOTA4NzYzN2JjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABomXAwDQYJKoZIhvcNAQELBQADggEBAHwOvWa6c/LTQUPrg+lwIapeDL7b JTW3PXUoJt6qXY28k0GvXvP2axihEi/nGxcM3I6hSMOCnXBlAgCqegqhm+KInUG1 ia4Le07Y4IHix75W+UWyUgPrrVy7HqVYQIhL/jxNTcHmd9plNBJDlIx5ybjmFAat cMMSmkPPRj5zoXfqCKhITxRX25yWYRxO16ibcVnm3sgaggAUJdC4sYhGtEjo/Y7H tCkhYhJ1XUk/+WdJebP8zUYZdKsjGMmAa8x/skJH0fH5J6N/NEqqBMe/5PBdg5CM EKZbWPjd4V9qMjOwWGOk5gX+uQE4MV64B6s3ogTjovRRmW5pFlXs7YiHuS8= -----END CERTIFICATE-----Generated at Sat Dec 6 16:59:55 2025 by rpki-client