This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba2a4a20-1ad8-49ab-96c4-ec41278a0393.roa File: ba2a4a20-1ad8-49ab-96c4-ec41278a0393.roa (raw, json) Hash identifier: 29uhJh7FxXXl6DLBher2B6mHfI4RR7py0puN4BcpYY4= Subject key identifier: 2C:75:45:EC:7D:03:51:6E:ED:37:DC:F1:82:28:84:81:45:FF:3F:34 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7B55A8B30CA26671498B847A577F2DB789952CDC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba2a4a20-1ad8-49ab-96c4-ec41278a0393.roa Signing time: Wed 19 Nov 2025 00:30:56 +0000 ROA not before: Wed 19 Nov 2025 00:30:56 +0000 ROA not after: Tue 17 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 130.186.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:55:a8:b3:0c:a2:66:71:49:8b:84:7a:57:7f:2d:b7:89:95:2c:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 19 00:30:56 2025 GMT Not After : Feb 17 23:59:59 2026 GMT Subject: serialNumber=75c777b055308dfe4f92d6cd61fd5d41f87b8d4fa1fcd2971f9997f3383d7824, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:82:88:2e:a2:7f:b4:c2:00:35:40:13:4e:03: 48:85:bd:88:29:88:27:e4:e5:76:ea:01:d4:51:4c: 12:93:d8:64:c0:05:28:4b:de:59:7f:1d:a4:8e:ab: 23:9b:ad:1c:e3:7d:c7:08:08:93:6a:20:a4:7c:d7: bf:9a:6d:a6:25:6e:29:7c:4a:1f:e2:3f:7e:83:08: ce:e7:e9:1b:01:33:c0:ae:fc:7f:c3:38:93:39:b9: d5:d1:3b:d1:7c:6a:b0:1e:81:9b:ba:77:3b:14:e1: ec:92:5b:a3:86:99:6b:ac:3e:e8:ca:e7:90:47:c3: 62:f9:ba:b4:24:a3:51:e8:e6:55:c5:3d:96:a3:e8: 5e:53:e2:58:a3:cb:99:fb:6f:84:da:0b:91:bf:a0: 82:1d:41:5b:32:f3:e2:46:3b:2a:43:96:e5:68:5e: cf:13:02:ba:90:34:27:fe:33:7c:87:b0:78:b1:12: 86:d8:10:a3:ff:6f:38:83:19:0f:77:e0:53:42:d5: 14:1a:7c:36:2d:2f:0e:2f:bd:d7:62:79:95:1e:fd: 68:69:06:5d:a3:ac:bf:05:3e:3e:82:cf:5d:72:7e: c8:5c:98:84:19:f5:0b:7b:c4:b6:bb:f8:ca:a7:63: 24:2f:c8:7f:ab:6e:91:86:23:6e:b1:76:fa:e2:5e: a9:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:75:45:EC:7D:03:51:6E:ED:37:DC:F1:82:28:84:81:45:FF:3F:34 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba2a4a20-1ad8-49ab-96c4-ec41278a0393.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.186.32.0/19 Signature Algorithm: sha256WithRSAEncryption 06:81:74:e3:be:f4:f0:79:8f:22:01:9c:c9:87:92:b5:1a:dd: 1a:23:6f:06:bb:39:68:72:64:65:a7:94:7a:ba:91:1b:a6:7d: dc:0b:4f:72:3e:1d:4f:66:b1:f8:e6:25:00:e3:d8:61:15:46: 74:c2:dd:6b:43:40:13:2c:de:8e:d9:26:e0:89:26:e3:c4:98: ff:af:81:f8:86:7c:46:7a:f1:ad:7f:af:18:98:fd:e2:f3:f5: ef:18:23:9f:9f:81:19:56:0e:22:56:21:2e:6d:52:4d:d2:5d: 0d:77:9f:43:4d:be:9c:4a:19:b4:db:7c:e8:e5:55:3e:1b:1b: a3:88:56:e3:63:61:20:d1:6f:c9:64:6c:d1:24:d4:ac:e8:44: 38:99:e2:64:2f:0e:f3:11:84:b4:4b:72:63:2c:e1:cb:82:47: aa:86:1c:68:22:8a:d9:00:7c:f0:2b:05:75:f0:1e:0e:8f:ed: 76:b4:ba:c1:1b:cc:e5:79:1c:d9:3a:32:96:cb:e2:f2:47:89: 3f:d6:c8:39:94:16:4c:fb:46:c2:5c:f3:a5:75:68:03:54:78: 1d:82:96:a1:c6:74:8e:99:da:38:7d:60:74:0e:d1:19:84:86: 70:db:5d:a6:2b:71:a4:b2:76:85:1f:07:9e:44:bb:45:f1:f3: 0f:7e:0b:96 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUe1WoswyiZnFJi4R6V38tt4mVLNwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTE5MDAzMDU2WhcNMjYwMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NWM3NzdiMDU1MzA4ZGZlNGY5MmQ2Y2Q2MWZkNWQ0MWY4 N2I4ZDRmYTFmY2QyOTcxZjk5OTdmMzM4M2Q3ODI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAgoguon+0wgA1QBNOA0iFvYgpiCfk5XbqAdRRTBKT2GTA BShL3ll/HaSOqyObrRzjfccICJNqIKR817+abaYlbil8Sh/iP36DCM7n6RsBM8Cu /H/DOJM5udXRO9F8arAegZu6dzsU4eySW6OGmWusPujK55BHw2L5urQko1Ho5lXF PZaj6F5T4lijy5n7b4TaC5G/oIIdQVsy8+JGOypDluVoXs8TArqQNCf+M3yHsHix EobYEKP/bziDGQ934FNC1RQafDYtLw4vvddieZUe/WhpBl2jrL8FPj6Cz11yfshc mIQZ9Qt7xLa7+MqnYyQvyH+rbpGGI26xdvriXqmzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULHVF7H0DUW7tN9zxgiiEgUX/PzQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhMmE0YTIwLTFhZDgtNDlhYi05NmM0LWVjNDEyNzhhMDM5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWCuiAwDQYJKoZIhvcNAQELBQADggEBAAaBdOO+9PB5jyIBnMmHkrUa3Roj bwa7OWhyZGWnlHq6kRumfdwLT3I+HU9msfjmJQDj2GEVRnTC3WtDQBMs3o7ZJuCJ JuPEmP+vgfiGfEZ68a1/rxiY/eLz9e8YI5+fgRlWDiJWIS5tUk3SXQ13n0NNvpxK GbTbfOjlVT4bG6OIVuNjYSDRb8lkbNEk1KzoRDiZ4mQvDvMRhLRLcmMs4cuCR6qG HGgiitkAfPArBXXwHg6P7Xa0usEbzOV5HNk6MpbL4vJHiT/WyDmUFkz7RsJc86V1 aANUeB2ClqHGdI6Z2jh9YHQO0RmEhnDbXaYrcaSydoUfB55Eu0Xx8w9+C5Y= -----END CERTIFICATE-----Generated at Sat Dec 6 10:32:03 2025 by rpki-client