This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd1f1c8a-4c90-4331-a39c-570f7b79ad54.roa File: bd1f1c8a-4c90-4331-a39c-570f7b79ad54.roa (raw, json) Hash identifier: kSIqzkh1nNSONPQUUyUXnqNFPO1ah/P+D9RbI2iRJik= Subject key identifier: 55:51:AE:33:BB:A7:39:C5:2A:03:0E:E8:97:C3:21:FD:95:64:30:02 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 05F1D0BB6A222D9294EEF0F01E014627B6543550 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd1f1c8a-4c90-4331-a39c-570f7b79ad54.roa Signing time: Tue 25 Nov 2025 00:10:07 +0000 ROA not before: Tue 25 Nov 2025 00:10:07 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 143.171.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:f1:d0:bb:6a:22:2d:92:94:ee:f0:f0:1e:01:46:27:b6:54:35:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 25 00:10:07 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=eeaf891e24ccf517cc65ba4fbcd0592060a85a52ea3ad9ce5083ec9f04e26998, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:49:84:42:c2:7c:21:c5:f3:b4:ab:4c:ee:97: 41:4f:f6:3b:79:c7:0d:2c:e5:63:a5:a7:9f:68:0e: 1d:ad:e4:ab:4a:54:e5:9d:f0:a6:50:f3:50:60:4e: 65:64:6b:07:79:06:be:2d:17:17:d2:ab:e2:98:60: 38:c7:cc:e6:ad:d5:a1:f6:4c:8e:29:d3:e2:ed:83: 75:bd:b9:52:a0:93:fd:aa:e0:68:7c:0d:19:f3:2d: 13:98:ac:07:f2:e7:11:e1:91:63:18:8b:99:6e:06: 31:84:52:10:73:72:23:89:30:a1:44:54:c0:2e:6a: 78:96:d1:33:ba:ff:53:22:59:09:7e:e5:b6:b2:f1: ce:c4:a2:99:8d:c0:24:11:a5:9a:27:1e:fc:02:c6: cc:bd:4a:7b:9c:b5:69:04:87:38:24:92:65:a5:2b: fb:b8:fc:b2:ce:96:40:34:2d:5e:91:35:7b:ae:cb: cf:3c:1f:1a:3a:99:f5:a8:de:3c:00:25:bf:e5:d3: 9a:4f:03:d5:69:70:8b:a3:72:38:94:91:87:0f:f9: 41:d7:1d:d0:de:59:9c:2c:b2:41:81:1f:be:15:2b: 92:33:3f:b5:7d:fe:20:cd:65:7b:bc:74:06:2a:f0: e9:38:80:99:c7:cd:40:62:43:a5:d3:b4:85:40:15: 36:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:51:AE:33:BB:A7:39:C5:2A:03:0E:E8:97:C3:21:FD:95:64:30:02 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd1f1c8a-4c90-4331-a39c-570f7b79ad54.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.171.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6d:bb:4b:bd:05:b1:52:29:25:69:5c:12:03:83:bd:bf:6f:2a: 32:b8:f6:65:f8:5d:0c:d7:53:5b:6c:46:52:8a:85:0c:40:f7: 7f:2e:dd:31:7c:56:49:4d:75:24:59:45:2a:ce:c6:18:ad:50: ba:bb:45:d2:58:09:f5:88:8e:11:7b:31:bf:3d:e8:78:07:a6: 5a:77:1e:f4:04:7c:99:19:16:da:00:e1:56:13:28:de:54:be: 14:fd:fd:e9:5f:f8:55:b3:5d:05:a2:ad:b0:c8:53:76:8d:80: 6d:97:af:50:86:b9:bb:e8:fe:b8:ea:6b:f2:47:8c:d7:d9:64: ce:22:32:38:a7:67:ba:f3:eb:fb:18:84:c7:4f:b0:f0:ac:2e: 53:84:70:ff:ac:9f:81:80:6e:c7:b9:52:ad:96:d3:c0:f0:3c: d9:ca:b3:59:9e:88:2f:f7:65:7f:52:15:87:59:46:ca:85:43: 43:b7:20:97:9d:86:28:ba:b7:f8:10:ca:12:1f:1e:e5:e2:f6: 73:8b:ee:98:d5:b3:aa:19:fe:4d:57:0b:47:b2:c7:12:6a:37: 45:99:99:6d:d2:73:4d:d1:28:07:d0:c8:4c:3d:47:af:9c:66: 29:61:4a:ff:47:9c:b3:6e:9e:4b:03:dd:25:5d:5a:03:ba:36: 3e:ff:81:9f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBfHQu2oiLZKU7vDwHgFGJ7ZUNVAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI1MDAxMDA3WhcNMjYwMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZWFmODkxZTI0Y2NmNTE3Y2M2NWJhNGZiY2QwNTkyMDYw YTg1YTUyZWEzYWQ5Y2U1MDgzZWM5ZjA0ZTI2OTk4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKSYRCwnwhxfO0q0zul0FP9jt5xw0s5WOlp59oDh2t5KtK VOWd8KZQ81BgTmVkawd5Br4tFxfSq+KYYDjHzOat1aH2TI4p0+Ltg3W9uVKgk/2q 4Gh8DRnzLROYrAfy5xHhkWMYi5luBjGEUhBzciOJMKFEVMAuaniW0TO6/1MiWQl+ 5bay8c7EopmNwCQRpZonHvwCxsy9SnuctWkEhzgkkmWlK/u4/LLOlkA0LV6RNXuu y888Hxo6mfWo3jwAJb/l05pPA9VpcIujcjiUkYcP+UHXHdDeWZwsskGBH74VK5Iz P7V9/iDNZXu8dAYq8Ok4gJnHzUBiQ6XTtIVAFTalAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUVVGuM7unOcUqAw7ol8Mh/ZVkMAIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JkMWYxYzhhLTRjOTAtNDMzMS1hMzljLTU3MGY3Yjc5YWQ1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCPqzANBgkqhkiG9w0BAQsFAAOCAQEAbbtLvQWxUiklaVwSA4O9v28qMrj2 ZfhdDNdTW2xGUoqFDED3fy7dMXxWSU11JFlFKs7GGK1QurtF0lgJ9YiOEXsxvz3o eAemWnce9AR8mRkW2gDhVhMo3lS+FP396V/4VbNdBaKtsMhTdo2AbZevUIa5u+j+ uOpr8keM19lkziIyOKdnuvPr+xiEx0+w8KwuU4Rw/6yfgYBux7lSrZbTwPA82cqz WZ6IL/dlf1IVh1lGyoVDQ7cgl52GKLq3+BDKEh8e5eL2c4vumNWzqhn+TVcLR7LH Emo3RZmZbdJzTdEoB9DITD1Hr5xmKWFK/0ecs26eSwPdJV1aA7o2Pv+Bnw== -----END CERTIFICATE-----Generated at Sat Dec 6 11:11:21 2025 by rpki-client