This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b624d9cc-a7a2-4009-8cac-c0856276648d.roa File: b624d9cc-a7a2-4009-8cac-c0856276648d.roa (raw, json) Hash identifier: T3/kTmobWYCpOmNozUJvs4fOvCkKC9AximYqQLj01G0= Subject key identifier: 9E:AD:E4:CB:7A:0A:BF:69:66:6D:25:EB:75:AA:8E:D1:E4:A9:25:35 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 144220228B2D632E8131BFE052CDE16E603B2CD8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b624d9cc-a7a2-4009-8cac-c0856276648d.roa Signing time: Wed 26 Nov 2025 00:51:29 +0000 ROA not before: Wed 26 Nov 2025 00:51:29 +0000 ROA not after: Tue 24 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 209.114.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:42:20:22:8b:2d:63:2e:81:31:bf:e0:52:cd:e1:6e:60:3b:2c:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 26 00:51:29 2025 GMT Not After : Feb 24 23:59:59 2026 GMT Subject: serialNumber=796acce2f88bd2e5a9f90d2480760e5a10af9c650814d62f3da472fa9f6971e0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:b3:58:df:c1:32:31:cd:85:cf:02:9a:4d:49: 8c:06:bb:65:0a:7d:7c:eb:d9:1f:7f:7f:a1:df:5e: fb:aa:b6:80:63:48:e7:d8:ca:b9:23:2b:94:2a:0f: 36:45:ea:b8:c0:8e:93:c3:78:ef:35:84:05:c1:74: b3:23:ce:81:bd:a1:cb:84:1c:69:71:c6:3d:7a:0c: 0b:3b:d7:d9:d4:72:31:17:23:45:84:36:3c:fc:35: 23:61:3f:d7:60:d4:81:d3:8c:5a:85:91:9b:cb:31: 5e:df:07:c5:ae:9c:1e:db:ff:6a:df:4c:58:46:f7: ca:dc:dc:13:33:56:18:7c:93:2c:02:30:78:d1:cf: a7:32:f0:02:a5:08:c9:5e:7d:3a:25:f8:09:7f:54: 59:9f:0a:17:22:08:4b:be:c9:77:64:e7:42:29:aa: c6:93:7e:6d:91:44:27:94:7d:fc:17:89:cf:38:cc: 32:4c:b9:c2:06:a3:82:20:11:2e:48:f3:ea:a3:45: e3:80:5c:62:98:b5:d3:12:b3:10:0f:32:e0:15:82: ef:a6:46:a7:56:82:5e:61:92:3f:bf:95:d4:4c:dc: bb:c1:d3:08:ba:ad:37:f7:17:cb:ab:f1:6e:3f:7c: 33:96:95:de:10:97:c9:d7:60:3d:22:ed:4a:83:bb: e9:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:AD:E4:CB:7A:0A:BF:69:66:6D:25:EB:75:AA:8E:D1:E4:A9:25:35 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b624d9cc-a7a2-4009-8cac-c0856276648d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.114.224.0/19 Signature Algorithm: sha256WithRSAEncryption 18:5c:e6:f0:4d:9b:1a:bb:b6:12:d3:d6:da:57:07:cf:95:4d: fa:b3:8a:f5:9d:16:45:8b:dd:8e:af:da:25:34:88:96:6f:b3: 14:a4:c7:8d:ba:a2:c3:7d:ac:7e:b4:97:c7:ab:c9:1f:48:1b: 1f:79:83:e2:ac:26:b6:35:5f:e2:cc:a1:5a:8c:d0:56:bb:05: db:d7:84:9b:ee:75:01:d0:18:f3:9c:fc:62:97:a6:2c:87:4c: 06:ec:2e:1d:75:9f:c8:bc:0f:8a:84:48:ac:d4:35:82:83:b6: ea:53:85:81:1f:f1:9d:4d:81:9d:73:1a:8c:b8:d5:9a:a7:9a: 39:f4:33:66:15:eb:15:01:eb:1c:f5:c0:25:c5:ca:22:51:ab: b6:f7:a5:f8:9a:c4:99:2d:d9:46:cb:0d:03:15:0b:63:20:34: 91:7e:0f:f6:b0:4d:6e:4f:47:4c:34:62:0c:bc:68:8e:49:41: 15:78:b8:5d:f1:5f:e5:fa:8f:4f:eb:15:2e:15:fd:13:ae:75: 8f:18:75:60:6d:be:aa:50:f7:53:3f:5d:31:7b:bf:a8:27:23: 77:05:2f:c1:9a:f4:b6:91:3a:62:5e:ab:4a:24:d4:2f:b2:c3: 9d:07:d6:14:4f:76:97:5d:55:3b:b0:e5:5d:80:8d:b7:a8:b2: d7:8c:ff:0e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFEIgIostYy6BMb/gUs3hbmA7LNgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI2MDA1MTI5WhcNMjYwMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OTZhY2NlMmY4OGJkMmU1YTlmOTBkMjQ4MDc2MGU1YTEw YWY5YzY1MDgxNGQ2MmYzZGE0NzJmYTlmNjk3MWUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTs1jfwTIxzYXPAppNSYwGu2UKfXzr2R9/f6HfXvuqtoBj SOfYyrkjK5QqDzZF6rjAjpPDeO81hAXBdLMjzoG9ocuEHGlxxj16DAs719nUcjEX I0WENjz8NSNhP9dg1IHTjFqFkZvLMV7fB8WunB7b/2rfTFhG98rc3BMzVhh8kywC MHjRz6cy8AKlCMlefTol+Al/VFmfChciCEu+yXdk50IpqsaTfm2RRCeUffwXic84 zDJMucIGo4IgES5I8+qjReOAXGKYtdMSsxAPMuAVgu+mRqdWgl5hkj+/ldRM3LvB 0wi6rTf3F8ur8W4/fDOWld4Ql8nXYD0i7UqDu+kJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnq3ky3oKv2lmbSXrdaqO0eSpJTUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I2MjRkOWNjLWE3YTItNDAwOS04Y2FjLWMwODU2Mjc2NjQ4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXRcuAwDQYJKoZIhvcNAQELBQADggEBABhc5vBNmxq7thLT1tpXB8+VTfqz ivWdFkWL3Y6v2iU0iJZvsxSkx426osN9rH60l8eryR9IGx95g+KsJrY1X+LMoVqM 0Fa7BdvXhJvudQHQGPOc/GKXpiyHTAbsLh11n8i8D4qESKzUNYKDtupThYEf8Z1N gZ1zGoy41Zqnmjn0M2YV6xUB6xz1wCXFyiJRq7b3pfiaxJkt2UbLDQMVC2MgNJF+ D/awTW5PR0w0Ygy8aI5JQRV4uF3xX+X6j0/rFS4V/ROudY8YdWBtvqpQ91M/XTF7 v6gnI3cFL8Ga9LaROmJeq0ok1C+yw50H1hRPdpddVTuw5V2AjbeosteM/w4= -----END CERTIFICATE-----Generated at Sat Dec 6 11:18:53 2025 by rpki-client