This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c9025971-4f0f-4ad4-9ab8-6448dc5b46bd.roa File: c9025971-4f0f-4ad4-9ab8-6448dc5b46bd.roa (raw, json) Hash identifier: CNAcH3C+gWXlBO1HxdfpwEpGgZ8Pf27HtBAjoXFSCmE= Subject key identifier: A1:6C:1B:16:BF:61:D1:09:99:A8:E8:8A:28:56:19:30:41:34:EA:6C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5CA1EAFE707500D8BC57F8292E8F4548964D9A6C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c9025971-4f0f-4ad4-9ab8-6448dc5b46bd.roa Signing time: Sat 22 Nov 2025 00:20:34 +0000 ROA not before: Sat 22 Nov 2025 00:20:34 +0000 ROA not after: Fri 20 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 216.64.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:a1:ea:fe:70:75:00:d8:bc:57:f8:29:2e:8f:45:48:96:4d:9a:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 22 00:20:34 2025 GMT Not After : Feb 20 23:59:59 2026 GMT Subject: serialNumber=6dd25fc4418dba7e6962295470274e1ea9a34b5540b46473248314c777b1f8cd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ce:c4:93:7c:1b:26:72:27:9c:0f:44:7d:e2: c2:a2:41:23:9f:0d:4e:58:90:59:96:15:b0:2c:d5: 01:56:e1:96:2b:24:35:c8:61:1a:73:16:a7:25:ff: 5e:47:9a:e4:26:42:18:7f:41:4c:8b:96:c4:77:d9: d2:c9:ca:8a:6e:d2:5a:27:26:d3:93:0e:03:ed:65: 5e:a0:9c:76:8b:54:cb:07:f3:0b:be:76:b0:b8:27: eb:6b:fb:16:5e:42:5c:7e:c9:74:bc:a9:d9:55:b5: 1d:d0:5f:f7:d5:95:0e:ab:67:ef:78:75:fb:fe:0c: a7:e6:11:cb:2f:2c:3b:b6:ce:6c:89:c4:54:b9:5d: 67:c1:09:c4:e9:a5:db:70:58:c4:e8:22:78:5e:83: 2f:87:be:d9:9f:bd:8b:b8:ca:67:1d:27:e2:d0:1f: 76:60:ec:39:b0:ff:1c:0a:d8:ab:6c:a2:bf:9e:2c: 82:58:b0:1a:32:3f:cc:3d:8f:55:fe:c1:34:94:bd: 4a:72:3c:39:44:47:8b:77:01:37:1b:69:79:7d:d0: e5:15:89:2c:30:75:81:5f:95:16:6d:22:ef:af:b6: f9:64:14:7e:ee:70:25:51:a2:6b:75:f8:07:14:e1: 29:1f:b3:1e:6b:b6:9f:41:88:82:6e:42:dd:6c:3a: 3d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:6C:1B:16:BF:61:D1:09:99:A8:E8:8A:28:56:19:30:41:34:EA:6C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c9025971-4f0f-4ad4-9ab8-6448dc5b46bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.64.0.0/17 Signature Algorithm: sha256WithRSAEncryption 25:79:19:fe:c1:fe:0d:ef:5f:18:96:9a:26:06:be:80:6b:14: e1:86:94:07:bd:ac:e9:cc:f1:44:51:4b:a8:cf:fd:fc:96:32: ea:b4:1d:f0:df:78:fa:7c:55:6c:ab:7f:3f:99:15:52:eb:ca: cc:a1:c7:2b:45:2b:40:39:69:47:e7:b7:12:1c:1e:90:19:13: 5e:ca:47:e1:72:50:5b:21:b7:1a:55:42:25:84:66:ac:05:69: c8:3e:f0:10:58:c3:b5:15:5d:95:92:26:ef:be:be:6f:ec:76: bb:15:f9:4c:6f:2e:b0:aa:26:55:e7:1e:bd:7b:99:b5:77:6b: fe:5e:15:41:7b:a0:00:6b:a2:d6:37:9b:d6:2b:19:b4:6b:0e: 51:66:8c:76:e0:1d:5a:e0:83:2c:c8:f3:c4:ab:c3:29:75:6b: b0:ca:51:af:8c:72:3c:56:ca:f9:a8:29:bf:4d:96:0e:64:05: 89:22:18:19:91:e1:92:55:d5:d0:2d:6d:62:cf:95:08:88:b7: 2e:42:35:83:89:3e:14:98:41:56:d6:66:fd:75:4f:5f:ee:b0: 37:c7:a3:5c:a9:9d:bd:54:b1:e1:a3:2c:60:29:6a:f8:19:0c: c7:7c:34:4a:d5:c4:1c:96:9e:5a:7d:ff:64:6b:11:30:b7:6c: 31:0c:a2:f0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXKHq/nB1ANi8V/gpLo9FSJZNmmwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTIyMDAyMDM0WhcNMjYwMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZGQyNWZjNDQxOGRiYTdlNjk2MjI5NTQ3MDI3NGUxZWE5 YTM0YjU1NDBiNDY0NzMyNDgzMTRjNzc3YjFmOGNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWzsSTfBsmciecD0R94sKiQSOfDU5YkFmWFbAs1QFW4ZYr JDXIYRpzFqcl/15HmuQmQhh/QUyLlsR32dLJyopu0lonJtOTDgPtZV6gnHaLVMsH 8wu+drC4J+tr+xZeQlx+yXS8qdlVtR3QX/fVlQ6rZ+94dfv+DKfmEcsvLDu2zmyJ xFS5XWfBCcTppdtwWMToInhegy+HvtmfvYu4ymcdJ+LQH3Zg7Dmw/xwK2Ktsor+e LIJYsBoyP8w9j1X+wTSUvUpyPDlER4t3ATcbaXl90OUViSwwdYFflRZtIu+vtvlk FH7ucCVRomt1+AcU4Skfsx5rtp9BiIJuQt1sOj3lAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoWwbFr9h0QmZqOiKKFYZMEE06mwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M5MDI1OTcxLTRmMGYtNGFkNC05YWI4LTY0NDhkYzViNDZiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfYQAAwDQYJKoZIhvcNAQELBQADggEBACV5Gf7B/g3vXxiWmiYGvoBrFOGG lAe9rOnM8URRS6jP/fyWMuq0HfDfePp8VWyrfz+ZFVLrysyhxytFK0A5aUfntxIc HpAZE17KR+FyUFshtxpVQiWEZqwFacg+8BBYw7UVXZWSJu++vm/sdrsV+UxvLrCq JlXnHr17mbV3a/5eFUF7oABrotY3m9YrGbRrDlFmjHbgHVrggyzI88Srwyl1a7DK Ua+McjxWyvmoKb9Nlg5kBYkiGBmR4ZJV1dAtbWLPlQiIty5CNYOJPhSYQVbWZv11 T1/usDfHo1ypnb1UseGjLGApavgZDMd8NErVxByWnlp9/2RrETC3bDEMovA= -----END CERTIFICATE-----Generated at Sat Dec 6 11:19:04 2025 by rpki-client