This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0fa348c-ce14-4ba7-824c-5d7e8e1dec52.roa File: c0fa348c-ce14-4ba7-824c-5d7e8e1dec52.roa (raw, json) Hash identifier: F1XgIvxNlRPZOS1AEAx5cun1StmexzCeDS3tTNY52sY= Subject key identifier: AF:DE:2D:D3:4D:7B:3A:91:D1:9F:38:6E:1F:B8:4A:9B:76:2C:83:A4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2283FF11554486F24A821F31C4FAF420B4518D38 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0fa348c-ce14-4ba7-824c-5d7e8e1dec52.roa Signing time: Tue 25 Nov 2025 00:10:42 +0000 ROA not before: Tue 25 Nov 2025 00:10:42 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 44.210.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:83:ff:11:55:44:86:f2:4a:82:1f:31:c4:fa:f4:20:b4:51:8d:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 25 00:10:42 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=3036058c05e7dcb90d3f0aefa39099b8894589d48919a5fed1595ae5250da6c1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:cc:77:ff:f8:98:26:e3:f6:32:b3:36:b3:f4: 86:6e:72:71:91:47:39:5d:e4:49:7e:18:40:d0:41: 31:92:fc:d5:6d:d0:8e:1d:71:48:bf:e0:08:2a:64: ec:39:7b:2b:f5:58:0a:bd:dc:7e:48:20:fd:7a:32: 21:01:32:28:a1:6d:a4:25:34:6e:7a:d0:f8:1a:2c: d4:06:a1:6a:af:fa:0a:16:be:e2:16:b7:92:36:da: 1b:e2:71:85:7f:33:6a:8f:07:17:25:3d:d2:02:02: ab:f1:e9:53:d8:2a:9c:da:55:fc:50:50:4f:77:90: 9c:2f:63:d2:84:0d:ce:63:a8:90:1d:36:67:2a:6a: eb:58:45:21:99:1b:6c:92:4d:e9:df:c6:5d:ca:43: 14:11:6f:cc:78:0f:64:17:a3:ef:a4:fc:16:3e:0d: d0:24:b2:0e:2a:b1:36:54:9a:a2:e3:01:bb:f7:cb: 68:0c:3c:f1:83:14:6e:f1:68:fc:13:57:d3:13:2f: 42:8a:66:8f:af:ca:fe:8b:d3:1f:70:f3:fe:1d:4e: 48:5a:c0:d0:93:51:cb:20:f9:a3:6d:40:84:74:16: 16:0b:66:54:6b:97:22:f2:01:a5:bf:69:0c:92:1a: e2:11:cc:ed:ac:fc:ba:3c:a2:2a:e1:4f:59:22:d6: fd:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:DE:2D:D3:4D:7B:3A:91:D1:9F:38:6E:1F:B8:4A:9B:76:2C:83:A4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0fa348c-ce14-4ba7-824c-5d7e8e1dec52.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.210.201.0/24 Signature Algorithm: sha256WithRSAEncryption 86:58:a5:24:dc:62:26:8c:38:58:b9:b3:33:69:80:d1:b6:76: 79:90:bc:51:87:f7:cd:6f:c7:f5:81:ec:eb:fd:a4:0b:11:30: 95:ab:6d:53:19:aa:9e:2c:67:85:5e:6e:d4:8c:2f:27:75:b9: 65:63:68:9d:56:8c:a3:4e:4f:c2:93:2b:62:13:ca:67:d9:72: 7e:6f:9f:1c:1c:56:80:63:c5:5f:08:27:51:28:44:86:68:fe: 83:a4:63:10:7a:a0:5d:fa:be:07:e2:9a:cc:73:3f:94:e1:f3: 39:ca:77:03:69:26:78:fc:8a:19:9e:4c:91:55:e2:7e:9c:31: c8:b7:c0:70:ad:d8:c8:eb:a4:ec:1d:8a:56:8e:44:31:13:52: 68:c3:32:1a:19:cd:1b:69:1b:f0:c6:8b:2c:3a:e9:b9:79:88: cd:1c:df:f0:7f:ab:2e:ec:a4:bc:fb:ba:e0:07:31:05:02:95: f7:f7:04:cc:a2:37:5a:85:59:5d:63:a4:2b:68:b4:92:f4:08: 72:2c:cd:e0:ff:9b:fc:e7:81:ae:f6:d1:a4:b0:71:c7:a2:ae: 98:f5:18:99:2d:7a:23:d7:2b:5a:7e:b7:2d:72:00:88:6d:fd: 20:68:d9:56:66:9b:04:e2:a5:e2:5b:86:f1:4c:b1:b7:48:a8: 1d:da:4b:f2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIoP/EVVEhvJKgh8xxPr0ILRRjTgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI1MDAxMDQyWhcNMjYwMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMDM2MDU4YzA1ZTdkY2I5MGQzZjBhZWZhMzkwOTliODg5 NDU4OWQ0ODkxOWE1ZmVkMTU5NWFlNTI1MGRhNmMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCezHf/+Jgm4/Yyszaz9IZucnGRRzld5El+GEDQQTGS/NVt 0I4dcUi/4AgqZOw5eyv1WAq93H5IIP16MiEBMiihbaQlNG560PgaLNQGoWqv+goW vuIWt5I22hvicYV/M2qPBxclPdICAqvx6VPYKpzaVfxQUE93kJwvY9KEDc5jqJAd NmcqautYRSGZG2ySTenfxl3KQxQRb8x4D2QXo++k/BY+DdAksg4qsTZUmqLjAbv3 y2gMPPGDFG7xaPwTV9MTL0KKZo+vyv6L0x9w8/4dTkhawNCTUcsg+aNtQIR0FhYL ZlRrlyLyAaW/aQySGuIRzO2s/Lo8oirhT1ki1v0VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUr94t0017OpHRnzhuH7hKm3Ysg6QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MwZmEzNDhjLWNlMTQtNGJhNy04MjRjLTVkN2U4ZTFkZWM1Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAs0skwDQYJKoZIhvcNAQELBQADggEBAIZYpSTcYiaMOFi5szNpgNG2dnmQ vFGH981vx/WB7Ov9pAsRMJWrbVMZqp4sZ4VebtSMLyd1uWVjaJ1WjKNOT8KTK2IT ymfZcn5vnxwcVoBjxV8IJ1EoRIZo/oOkYxB6oF36vgfimsxzP5Th8znKdwNpJnj8 ihmeTJFV4n6cMci3wHCt2MjrpOwdilaORDETUmjDMhoZzRtpG/DGiyw66bl5iM0c 3/B/qy7spLz7uuAHMQUClff3BMyiN1qFWV1jpCtotJL0CHIszeD/m/znga720aSw cceirpj1GJkteiPXK1p+ty1yAIht/SBo2VZmmwTipeJbhvFMsbdIqB3aS/I= -----END CERTIFICATE-----Generated at Sat Dec 6 19:53:33 2025 by rpki-client