This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb654978-2e8a-4702-9a67-129733976175.roa File: cb654978-2e8a-4702-9a67-129733976175.roa (raw, json) Hash identifier: 7ZgYDEi0jxtKRCTHewfULZstCcYk2Mc5VysBnEobdYg= Subject key identifier: F5:8E:4D:29:22:87:25:00:A1:63:6B:D4:E6:19:89:79:3E:26:B1:50 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6E77B5C095F3200B0448F947204E80DF479A8840 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb654978-2e8a-4702-9a67-129733976175.roa Signing time: Tue 25 Nov 2025 00:00:06 +0000 ROA not before: Tue 25 Nov 2025 00:00:06 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 50.18.40.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:77:b5:c0:95:f3:20:0b:04:48:f9:47:20:4e:80:df:47:9a:88:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 25 00:00:06 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=122114c7d186575e4197308084b48e608593963d8d64ef8d223cff4e3ef1ea52, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b1:26:25:be:5b:32:ca:a6:ce:f0:5d:bb:ec: 18:44:88:f2:e7:4b:d4:c1:3f:0d:2f:52:21:de:19: 4d:e7:5c:7d:14:2e:b8:eb:a5:ca:9b:4c:04:57:bc: ed:90:3d:2e:44:ac:92:3d:ff:93:d1:bd:f0:e6:b6: 2c:c3:dd:f4:2b:49:bc:41:bb:75:6a:2a:34:ed:32: c8:1b:ba:d7:ac:00:22:46:40:0a:fa:84:a4:d3:3c: 54:d5:e3:3f:de:8d:e2:c5:ed:e5:3a:ba:79:3b:32: 17:d6:5a:12:14:b5:ec:60:dc:a3:63:0c:97:8d:f8: ff:a4:7e:40:7b:c2:05:c4:4e:6f:af:7c:6f:b6:66: 45:93:c0:26:b7:01:f3:98:59:28:37:c5:75:9c:7b: 7f:2d:4b:e8:36:04:96:10:4f:a6:7c:6d:b2:ff:b5: 9f:48:21:06:2b:44:c3:23:3f:f1:e0:4c:31:1c:8b: ce:16:c2:e7:b0:93:7b:b3:1e:8f:8d:87:9f:41:3e: c8:66:63:07:36:b9:4d:97:0f:f7:ec:49:8a:a9:04: 3f:7d:cf:2b:1d:4b:f6:09:45:79:38:35:07:75:c2: 46:c1:43:92:48:ea:69:c9:7e:d9:60:52:55:93:09: e0:e8:34:32:c3:ae:fe:9e:fb:01:de:3d:87:2f:d5: d4:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:8E:4D:29:22:87:25:00:A1:63:6B:D4:E6:19:89:79:3E:26:B1:50 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb654978-2e8a-4702-9a67-129733976175.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.18.40.0/22 Signature Algorithm: sha256WithRSAEncryption 8c:16:23:99:ee:d9:2d:42:ef:c9:4c:2c:ba:13:89:c4:1d:53: 50:88:cd:99:b4:fe:70:4a:f9:21:2c:06:8f:a9:38:5c:e8:13: d9:36:bd:f7:0a:e9:6e:e7:29:4a:f0:07:b0:33:fd:7e:31:2f: 1f:3a:a8:bd:62:f3:c5:52:63:e2:80:40:27:a4:ca:61:cf:76: aa:fe:3b:2e:84:ec:be:d6:fc:7c:5c:11:15:cc:a7:ab:53:d0: a1:6f:33:6e:5d:71:07:f0:e4:24:5b:5d:fc:26:29:ef:d2:56: 9e:0b:e3:14:8c:76:2b:88:0a:e8:48:bb:09:9f:5d:ca:cc:0c: 8a:b5:2f:16:ac:3a:77:0a:0f:e1:3c:25:4b:a9:d5:8e:a9:a7: 33:c5:e6:41:1b:73:e6:aa:7b:57:ab:67:6e:9d:3d:08:72:6c: ae:d5:d6:d0:1a:cc:4b:6c:83:ac:d1:c3:9f:11:e5:8f:ef:75: 56:df:05:38:6e:55:2e:24:15:9f:0a:d9:02:d8:ba:0d:8c:5d: b8:6b:01:a1:17:54:68:eb:b9:71:2a:41:c2:75:0e:1c:ce:08: 5b:50:11:ad:8a:3d:29:fb:37:bb:13:74:c0:9b:86:6c:bf:7f: bd:8a:a3:98:3a:68:34:51:10:c5:e9:c4:22:b1:32:ff:2f:3a: 64:c1:9a:22 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbne1wJXzIAsESPlHIE6A30eaiEAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI1MDAwMDA2WhcNMjYwMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMjIxMTRjN2QxODY1NzVlNDE5NzMwODA4NGI0OGU2MDg1 OTM5NjNkOGQ2NGVmOGQyMjNjZmY0ZTNlZjFlYTUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7sSYlvlsyyqbO8F277BhEiPLnS9TBPw0vUiHeGU3nXH0U LrjrpcqbTARXvO2QPS5ErJI9/5PRvfDmtizD3fQrSbxBu3VqKjTtMsgbutesACJG QAr6hKTTPFTV4z/ejeLF7eU6unk7MhfWWhIUtexg3KNjDJeN+P+kfkB7wgXETm+v fG+2ZkWTwCa3AfOYWSg3xXWce38tS+g2BJYQT6Z8bbL/tZ9IIQYrRMMjP/HgTDEc i84Wwuewk3uzHo+Nh59BPshmYwc2uU2XD/fsSYqpBD99zysdS/YJRXk4NQd1wkbB Q5JI6mnJftlgUlWTCeDoNDLDrv6e+wHePYcv1dQtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9Y5NKSKHJQChY2vU5hmJeT4msVAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NiNjU0OTc4LTJlOGEtNDcwMi05YTY3LTEyOTczMzk3NjE3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIyEigwDQYJKoZIhvcNAQELBQADggEBAIwWI5nu2S1C78lMLLoTicQdU1CI zZm0/nBK+SEsBo+pOFzoE9k2vfcK6W7nKUrwB7Az/X4xLx86qL1i88VSY+KAQCek ymHPdqr+Oy6E7L7W/HxcERXMp6tT0KFvM25dcQfw5CRbXfwmKe/SVp4L4xSMdiuI CuhIuwmfXcrMDIq1LxasOncKD+E8JUup1Y6ppzPF5kEbc+aqe1erZ26dPQhybK7V 1tAazEtsg6zRw58R5Y/vdVbfBThuVS4kFZ8K2QLYug2MXbhrAaEXVGjruXEqQcJ1 DhzOCFtQEa2KPSn7N7sTdMCbhmy/f72Ko5g6aDRREMXpxCKxMv8vOmTBmiI= -----END CERTIFICATE-----Generated at Sat Dec 6 20:03:47 2025 by rpki-client