This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cde0b60f-013f-4194-82b6-b09974b3149a.roa File: cde0b60f-013f-4194-82b6-b09974b3149a.roa (raw, json) Hash identifier: p1wT889RqISUhz1elARIDtTRvGBD5jugnnuCFsHGeE0= Subject key identifier: 1B:51:AD:01:9F:FA:36:8B:B9:ED:A4:B3:33:C1:27:BB:6F:5E:E9:92 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2BF8942E591486ED10F76BC3DDA738710525E245 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cde0b60f-013f-4194-82b6-b09974b3149a.roa Signing time: Thu 20 Nov 2025 00:50:12 +0000 ROA not before: Thu 20 Nov 2025 00:50:12 +0000 ROA not after: Wed 18 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 65.37.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:f8:94:2e:59:14:86:ed:10:f7:6b:c3:dd:a7:38:71:05:25:e2:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 20 00:50:12 2025 GMT Not After : Feb 18 23:59:59 2026 GMT Subject: serialNumber=a9ebc45c99afc727e59a2b90004b45c43cc5a4d93956e400ff48c37241b6df60, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b1:61:32:1f:b5:7a:4d:16:a1:f3:25:46:aa: 2f:2b:0b:6f:da:b3:57:6d:3a:55:9d:63:fa:f8:8f: 5a:79:17:d4:bf:ba:1e:9e:10:4c:76:fa:ed:c4:86: d9:7e:64:0b:04:15:fe:af:cd:03:f6:7c:e5:06:60: d6:1e:0d:8a:bd:23:38:cd:e2:b0:ab:8c:2a:da:39: d7:d6:b8:8a:3b:1f:b5:5a:67:4b:c6:ee:66:4c:b8: 51:16:4c:ce:af:65:5b:8e:f0:11:39:8b:81:80:bd: 93:55:9b:79:70:33:89:6f:2e:54:19:8b:ea:b3:1a: 49:08:27:d3:f2:ed:12:d9:6e:29:e4:3b:0e:d6:69: ac:b6:c5:74:c7:47:1c:6c:3e:22:20:fb:86:d2:06: 56:40:64:08:6b:19:f8:ae:25:ca:b8:24:17:f6:41: 33:2f:ef:4f:79:67:a3:3a:2c:05:df:97:a5:d4:57: 77:e0:37:10:63:26:01:8c:ef:98:b5:f7:63:8e:e8: d4:2f:33:f7:4b:79:ab:bd:73:e8:36:45:9d:2c:46: bb:9d:65:92:83:64:35:66:98:38:df:fa:77:e2:71: f6:af:80:2c:b7:67:10:93:d0:48:50:7e:6f:26:9a: ca:b7:8a:40:09:95:e7:f5:ff:83:e4:6f:e7:ca:13: df:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:51:AD:01:9F:FA:36:8B:B9:ED:A4:B3:33:C1:27:BB:6F:5E:E9:92 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cde0b60f-013f-4194-82b6-b09974b3149a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.37.128.0/18 Signature Algorithm: sha256WithRSAEncryption 04:89:82:45:ec:84:b3:97:33:dc:c4:d3:e0:37:8c:37:a2:62: f6:e0:0e:24:66:b5:02:ce:7d:7d:f1:a1:be:2b:d9:24:e4:b1: c8:e8:7c:31:92:05:9d:ca:ba:ea:b1:bb:34:63:31:16:6b:e9: 8b:6a:ad:fc:9b:40:c8:97:8e:10:39:ac:bd:b2:85:10:34:5d: 00:78:7a:f3:39:d7:43:04:f3:20:7c:0c:16:c8:55:46:7f:89: 8d:5c:fc:da:8a:eb:a9:a9:68:8c:21:63:f7:98:3c:f5:c2:a2: c5:0d:88:b3:5a:4b:17:4a:4d:c8:7c:07:f1:9a:89:8a:5f:f9: d6:4c:6d:52:30:03:87:15:d7:4c:6f:99:9d:ef:82:df:cd:fd: 3b:38:e0:c9:d7:82:9d:da:e3:b1:55:96:ca:ee:9e:92:61:a8: e4:e9:32:96:97:32:16:dd:bf:18:52:c7:22:9c:c9:25:ee:de: ae:28:2f:67:0d:2d:d4:f2:89:00:54:a4:13:c6:27:87:6f:f1: 2d:61:b1:f1:6e:f3:92:e9:a5:b0:e3:a9:45:4a:7f:84:d2:15: 56:14:31:8e:f5:38:d7:e0:cc:cd:5e:b5:70:f4:10:f8:7d:6d: f5:e9:e4:c7:19:f1:b8:25:d4:69:6f:19:a4:46:e2:1f:0c:88: b7:4e:bd:7b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK/iULlkUhu0Q92vD3ac4cQUl4kUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTIwMDA1MDEyWhcNMjYwMjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhOWViYzQ1Yzk5YWZjNzI3ZTU5YTJiOTAwMDRiNDVjNDNj YzVhNGQ5Mzk1NmU0MDBmZjQ4YzM3MjQxYjZkZjYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCasWEyH7V6TRah8yVGqi8rC2/as1dtOlWdY/r4j1p5F9S/ uh6eEEx2+u3Ehtl+ZAsEFf6vzQP2fOUGYNYeDYq9IzjN4rCrjCraOdfWuIo7H7Va Z0vG7mZMuFEWTM6vZVuO8BE5i4GAvZNVm3lwM4lvLlQZi+qzGkkIJ9Py7RLZbink Ow7Waay2xXTHRxxsPiIg+4bSBlZAZAhrGfiuJcq4JBf2QTMv7095Z6M6LAXfl6XU V3fgNxBjJgGM75i192OO6NQvM/dLeau9c+g2RZ0sRrudZZKDZDVmmDjf+nficfav gCy3ZxCT0EhQfm8mmsq3ikAJlef1/4Pkb+fKE999AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUG1GtAZ/6Nou57aSzM8Enu29e6ZIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NkZTBiNjBmLTAxM2YtNDE5NC04MmI2LWIwOTk3NGIzMTQ5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZBJYAwDQYJKoZIhvcNAQELBQADggEBAASJgkXshLOXM9zE0+A3jDeiYvbg DiRmtQLOfX3xob4r2STkscjofDGSBZ3KuuqxuzRjMRZr6YtqrfybQMiXjhA5rL2y hRA0XQB4evM510ME8yB8DBbIVUZ/iY1c/NqK66mpaIwhY/eYPPXCosUNiLNaSxdK Tch8B/GaiYpf+dZMbVIwA4cV10xvmZ3vgt/N/Ts44MnXgp3a47FVlsrunpJhqOTp MpaXMhbdvxhSxyKcySXu3q4oL2cNLdTyiQBUpBPGJ4dv8S1hsfFu85LppbDjqUVK f4TSFVYUMY71ONfgzM1etXD0EPh9bfXp5McZ8bgl1GlvGaRG4h8MiLdOvXs= -----END CERTIFICATE-----Generated at Sat Dec 6 11:59:42 2025 by rpki-client