This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c416f57a-9b38-4d7e-8240-20535a4882a8.roa File: c416f57a-9b38-4d7e-8240-20535a4882a8.roa (raw, json) Hash identifier: 8hFGDeJ9FUPWpPDajZ2fSRdBtXLbtuLd67ytA5L6kJM= Subject key identifier: D2:41:D8:CD:54:64:60:E3:52:B8:A1:CE:94:87:3B:F8:92:90:21:D9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3D43CA4778D0AAB1A6FCC15D9B9F81B9B3564FB4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c416f57a-9b38-4d7e-8240-20535a4882a8.roa Signing time: Thu 27 Nov 2025 00:31:33 +0000 ROA not before: Thu 27 Nov 2025 00:31:33 +0000 ROA not after: Wed 25 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 104.223.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:43:ca:47:78:d0:aa:b1:a6:fc:c1:5d:9b:9f:81:b9:b3:56:4f:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 27 00:31:33 2025 GMT Not After : Feb 25 23:59:59 2026 GMT Subject: serialNumber=463c0579a5c704e1b19fecaa26788bc73cc1d98c15ba7b577aeca54dcb494cd1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:75:e9:ee:3c:c7:71:62:cc:70:22:12:7a:35: 5d:39:e6:c8:21:c3:6e:71:93:63:dc:30:3b:97:4e: 53:1a:ba:71:17:35:82:98:31:a4:f7:48:5e:dc:83: f9:c6:32:f1:66:39:e8:86:03:24:9a:83:0e:0e:ed: 2d:79:3a:e8:4d:d9:c0:e7:b5:3c:b5:a1:52:ca:2f: 99:bc:80:4c:93:1c:46:1b:be:8c:1c:b0:44:f1:50: fc:cb:ea:5c:e9:25:59:d7:12:63:b9:f1:13:cb:7a: 62:ea:56:16:0d:f8:cf:77:d3:62:78:bd:33:d2:4c: a6:8e:ce:01:31:14:c0:66:01:20:bb:75:fc:81:b5: 03:36:04:cc:54:52:59:56:8d:52:c3:b7:e9:2a:c2: a4:ec:5c:64:77:48:ea:13:00:f7:09:07:46:1e:7d: fc:d8:79:5b:c0:ce:ec:34:e1:39:0a:68:f9:23:50: 2d:be:3b:72:5a:a9:8c:00:f1:c4:8d:3b:b3:e6:54: 0d:b4:1a:e1:fb:35:31:19:22:7c:04:49:21:23:1e: 43:39:2e:3e:87:cc:dd:c0:6c:b9:ef:91:e4:c2:5b: 70:1d:db:d0:51:b6:eb:19:27:7d:b2:d7:e7:66:6a: 98:0c:67:86:c6:cc:46:23:15:39:ae:1c:c9:3c:0b: 52:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:41:D8:CD:54:64:60:E3:52:B8:A1:CE:94:87:3B:F8:92:90:21:D9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c416f57a-9b38-4d7e-8240-20535a4882a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.223.128.0/17 Signature Algorithm: sha256WithRSAEncryption 92:14:62:35:7a:7d:d5:c5:33:ad:34:27:b8:80:bf:3a:72:6c: 15:e5:78:76:83:fb:03:06:7c:12:34:9f:06:e1:0b:c5:e8:3b: 02:65:56:78:83:8b:bd:28:3c:6c:f7:e0:cc:82:7a:2d:9a:59: 06:9b:79:1f:3d:86:19:e6:b5:8d:5e:f4:e9:fd:09:af:2c:03: 9f:9c:bb:0d:e5:87:fc:24:ea:4d:4d:9e:dd:b1:ad:1e:ed:b3: f7:40:a5:9f:12:11:89:9f:c2:56:44:e0:c2:80:67:b5:2a:f8: f3:8f:74:68:7c:57:e0:f0:ba:02:f0:95:fd:57:83:6b:00:42: 61:5b:78:d3:67:53:a4:63:2b:62:a6:cf:66:67:1d:7c:a4:66: 53:12:2a:df:0a:56:d2:71:f5:eb:64:77:13:b4:2b:35:d5:6e: 1c:63:9b:d9:15:1f:46:cf:91:83:44:8a:1b:03:70:22:b3:fd: 28:78:fb:29:d2:d1:ba:b6:0d:74:73:3e:48:71:89:7f:f5:90: 6c:47:b5:33:0a:31:11:21:71:24:a3:ce:f8:3d:d2:8a:51:f7: b1:73:bd:e1:18:c8:48:46:5a:56:56:2d:52:29:7c:71:23:81: 0d:04:f7:a7:55:47:3c:05:a3:e6:fc:29:23:99:76:28:dc:1d: 0f:6d:2b:da -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPUPKR3jQqrGm/MFdm5+BubNWT7QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI3MDAzMTMzWhcNMjYwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NjNjMDU3OWE1YzcwNGUxYjE5ZmVjYWEyNjc4OGJjNzNj YzFkOThjMTViYTdiNTc3YWVjYTU0ZGNiNDk0Y2QxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChdenuPMdxYsxwIhJ6NV055sghw25xk2PcMDuXTlMaunEX NYKYMaT3SF7cg/nGMvFmOeiGAySagw4O7S15OuhN2cDntTy1oVLKL5m8gEyTHEYb vowcsETxUPzL6lzpJVnXEmO58RPLemLqVhYN+M9302J4vTPSTKaOzgExFMBmASC7 dfyBtQM2BMxUUllWjVLDt+kqwqTsXGR3SOoTAPcJB0YeffzYeVvAzuw04TkKaPkj UC2+O3JaqYwA8cSNO7PmVA20GuH7NTEZInwESSEjHkM5Lj6HzN3AbLnvkeTCW3Ad 29BRtusZJ32y1+dmapgMZ4bGzEYjFTmuHMk8C1LHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0kHYzVRkYONSuKHOlIc7+JKQIdkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M0MTZmNTdhLTliMzgtNGQ3ZS04MjQwLTIwNTM1YTQ4ODJhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdo34AwDQYJKoZIhvcNAQELBQADggEBAJIUYjV6fdXFM600J7iAvzpybBXl eHaD+wMGfBI0nwbhC8XoOwJlVniDi70oPGz34MyCei2aWQabeR89hhnmtY1e9On9 Ca8sA5+cuw3lh/wk6k1Nnt2xrR7ts/dApZ8SEYmfwlZE4MKAZ7Uq+POPdGh8V+Dw ugLwlf1Xg2sAQmFbeNNnU6RjK2Kmz2ZnHXykZlMSKt8KVtJx9etkdxO0KzXVbhxj m9kVH0bPkYNEihsDcCKz/Sh4+ynS0bq2DXRzPkhxiX/1kGxHtTMKMREhcSSjzvg9 0opR97FzveEYyEhGWlZWLVIpfHEjgQ0E96dVRzwFo+b8KSOZdijcHQ9tK9o= -----END CERTIFICATE-----Generated at Sun Dec 7 00:54:58 2025 by rpki-client