This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2cf0f28-ba6b-45fd-a861-271ae6d7e982.roa File: c2cf0f28-ba6b-45fd-a861-271ae6d7e982.roa (raw, json) Hash identifier: TDFU0+bvoC69lcwMfx/YPG1UZepKQDapRtPzzYD8t64= Subject key identifier: 91:5D:05:72:FC:81:BE:8E:4D:DE:12:D3:64:FD:EE:11:37:8C:01:C0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4C8499813CCF44671ABE14E495FA123B401FCBAC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2cf0f28-ba6b-45fd-a861-271ae6d7e982.roa Signing time: Thu 20 Nov 2025 00:41:52 +0000 ROA not before: Thu 20 Nov 2025 00:41:52 +0000 ROA not after: Wed 18 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 70.236.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:84:99:81:3c:cf:44:67:1a:be:14:e4:95:fa:12:3b:40:1f:cb:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 20 00:41:52 2025 GMT Not After : Feb 18 23:59:59 2026 GMT Subject: serialNumber=0cd71b84d348003636f2172a3ac8ef261dd9667b114a2487409fb234b3a17aba, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:1c:94:4d:1d:8e:9a:04:29:7d:d5:b5:05:4b: 49:3e:a4:04:b5:64:67:68:b5:49:f3:dc:31:e4:c7: 42:99:36:22:0f:b6:59:9e:4e:fb:50:9c:0f:d3:25: 73:54:71:02:40:12:6d:dd:46:3f:2b:84:83:5c:a6: f0:3e:53:36:54:b5:68:b6:fd:3e:2b:cd:dd:fb:43: 18:f7:1c:80:96:50:50:3b:e3:f4:4d:bf:7a:a5:19: 02:4a:84:1d:d7:d8:35:76:4f:dc:54:ae:3a:47:5a: e6:25:ba:19:00:c0:62:8c:0e:97:17:cd:a9:1b:2e: 6f:ef:73:27:4e:5a:60:f1:a9:ff:de:bf:c6:cb:81: 6e:41:25:d5:df:2a:b5:9c:a4:39:5f:65:30:3a:23: 37:8d:0c:ec:ce:50:74:b2:9b:0b:bb:9b:e0:dc:3a: 91:c7:4f:64:04:ab:52:20:d4:db:35:93:b9:5b:3f: 6d:03:c4:8c:6a:82:7c:1a:80:5c:f5:8c:c9:47:ca: a5:3a:b3:af:e0:60:69:c7:aa:ab:af:6c:e7:f4:3e: 61:05:d8:b6:e6:2a:6e:07:58:a2:ee:ef:07:8d:bb: af:8f:09:d7:97:c2:7a:fe:01:01:f5:8a:98:50:eb: 46:51:77:d2:c0:dd:df:0e:5c:2d:9a:a6:c0:19:24: 60:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:5D:05:72:FC:81:BE:8E:4D:DE:12:D3:64:FD:EE:11:37:8C:01:C0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2cf0f28-ba6b-45fd-a861-271ae6d7e982.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.236.0.0/18 Signature Algorithm: sha256WithRSAEncryption 3e:84:e7:6c:4f:2d:e7:d7:98:d9:5c:a1:62:83:2d:93:69:d5: 02:16:04:61:7f:8b:6c:77:d6:9f:b7:6d:2a:56:85:cc:a3:ac: 99:86:c4:84:9b:24:3b:45:47:14:20:c0:27:0b:7f:f7:4e:7d: 31:7e:cc:14:29:d8:80:af:7e:9a:c7:70:1d:c3:e4:c4:a3:02: 52:98:1c:33:43:03:8b:ec:2b:94:cc:59:66:cd:82:25:bd:f5: 3f:55:b8:b9:5d:d7:7e:52:e3:74:77:1b:9f:5f:01:21:58:ce: e1:34:fa:22:02:d1:18:b1:12:83:07:7e:dd:dc:be:a1:82:cd: 71:f1:6c:da:4c:59:2a:10:e4:2c:64:be:11:f0:09:72:56:c0: 00:22:df:8f:8e:0d:fd:b9:94:0d:03:f7:a8:58:2c:12:98:92: b3:8e:3f:36:8a:2a:4a:56:1a:97:65:e3:b4:74:a7:fc:cb:f3: ce:7d:da:93:a0:39:ea:6a:ef:37:4f:62:b0:20:a5:b2:8f:7c: a6:fd:56:27:88:5d:ce:da:7e:62:c6:25:2e:49:d9:d0:c2:89: a6:22:2c:ae:04:23:0f:e2:16:94:a8:57:b8:ba:bd:f5:37:ca: 6d:60:27:02:b2:58:75:5c:61:91:b2:d9:a6:91:fa:d2:48:37: 07:78:fb:14 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTISZgTzPRGcavhTklfoSO0Afy6wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTIwMDA0MTUyWhcNMjYwMjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwY2Q3MWI4NGQzNDgwMDM2MzZmMjE3MmEzYWM4ZWYyNjFk ZDk2NjdiMTE0YTI0ODc0MDlmYjIzNGIzYTE3YWJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCMHJRNHY6aBCl91bUFS0k+pAS1ZGdotUnz3DHkx0KZNiIP tlmeTvtQnA/TJXNUcQJAEm3dRj8rhINcpvA+UzZUtWi2/T4rzd37Qxj3HICWUFA7 4/RNv3qlGQJKhB3X2DV2T9xUrjpHWuYluhkAwGKMDpcXzakbLm/vcydOWmDxqf/e v8bLgW5BJdXfKrWcpDlfZTA6IzeNDOzOUHSymwu7m+DcOpHHT2QEq1Ig1Ns1k7lb P20DxIxqgnwagFz1jMlHyqU6s6/gYGnHqquvbOf0PmEF2LbmKm4HWKLu7weNu6+P CdeXwnr+AQH1iphQ60ZRd9LA3d8OXC2apsAZJGAdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkV0FcvyBvo5N3hLTZP3uETeMAcAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyY2YwZjI4LWJhNmItNDVmZC1hODYxLTI3MWFlNmQ3ZTk4Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZG7AAwDQYJKoZIhvcNAQELBQADggEBAD6E52xPLefXmNlcoWKDLZNp1QIW BGF/i2x31p+3bSpWhcyjrJmGxISbJDtFRxQgwCcLf/dOfTF+zBQp2ICvfprHcB3D 5MSjAlKYHDNDA4vsK5TMWWbNgiW99T9VuLld135S43R3G59fASFYzuE0+iIC0Rix EoMHft3cvqGCzXHxbNpMWSoQ5CxkvhHwCXJWwAAi34+ODf25lA0D96hYLBKYkrOO PzaKKkpWGpdl47R0p/zL88592pOgOepq7zdPYrAgpbKPfKb9VieIXc7afmLGJS5J 2dDCiaYiLK4EIw/iFpSoV7i6vfU3ym1gJwKyWHVcYZGy2aaR+tJINwd4+xQ= -----END CERTIFICATE-----Generated at Sat Dec 6 12:15:48 2025 by rpki-client