This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cebf71bb-d72e-4713-b9f8-f01cdab094a7.roa File: cebf71bb-d72e-4713-b9f8-f01cdab094a7.roa (raw, json) Hash identifier: 4x2Oc93N/Ax8p2/lsol/FsbIK4IG07V3lwxzfobtuDM= Subject key identifier: 9C:C9:79:4D:D3:97:5F:14:19:2E:A9:D6:26:D3:73:26:A9:8F:7E:27 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 32BFDAAC68C905DFE89502D94CBF04C7D3838DFD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cebf71bb-d72e-4713-b9f8-f01cdab094a7.roa Signing time: Thu 27 Nov 2025 00:31:03 +0000 ROA not before: Thu 27 Nov 2025 00:31:03 +0000 ROA not after: Wed 25 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:bf:da:ac:68:c9:05:df:e8:95:02:d9:4c:bf:04:c7:d3:83:8d:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 27 00:31:03 2025 GMT Not After : Feb 25 23:59:59 2026 GMT Subject: serialNumber=87cf74709fb88fca016e4968fbda8e663a242e34ef8498c990c6e36258c6c732, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c0:31:fa:4b:7b:58:92:b7:c2:56:40:1f:ae: e6:f7:ac:36:bb:f5:a8:8d:73:65:1e:a5:31:a5:ff: 68:e5:e1:41:4c:2e:76:cf:ba:cf:91:d5:0a:eb:83: f8:7d:19:7c:94:dd:66:21:6e:5c:0b:7c:e3:d8:9c: 86:8a:3a:63:5c:9d:81:f0:cb:fe:e4:68:ee:39:2a: fa:fb:9e:4f:a3:3f:c5:2e:e2:c6:35:a5:46:c3:5b: 83:ff:b0:9c:dd:5b:94:c8:59:a7:70:c1:45:04:53: f8:65:d1:23:b1:f7:4e:2c:4d:77:92:e6:37:14:8e: a4:e7:91:73:25:09:2f:74:c5:e2:ff:3e:0b:48:00: 17:13:9e:af:46:82:68:14:d3:a4:b2:c5:3d:0c:01: 5c:7c:cd:65:b6:99:1b:c5:9c:87:0b:1a:e7:50:9b: 68:ae:7b:10:6f:fa:1e:ab:50:2a:0d:30:95:a2:83: 76:8b:02:e2:f3:01:81:6a:32:28:09:a5:6e:44:f6: bb:db:ee:ee:b8:bb:0a:39:1a:32:91:96:a6:d7:68: 62:85:80:ca:16:b7:08:52:d0:17:8b:66:f6:fd:e2: ac:de:2a:81:80:2a:8d:bd:92:33:19:e2:d7:6c:9b: b1:bf:b7:80:dd:42:c2:4a:62:88:11:92:db:b0:bb: 4f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:C9:79:4D:D3:97:5F:14:19:2E:A9:D6:26:D3:73:26:A9:8F:7E:27 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cebf71bb-d72e-4713-b9f8-f01cdab094a7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.0.0/17 Signature Algorithm: sha256WithRSAEncryption a9:2c:4b:54:39:ec:d4:a3:fc:9f:68:ce:23:7b:fc:92:a0:4a: 14:b3:2d:05:90:fe:8d:c3:cf:35:1d:d1:55:35:db:75:29:b5: 96:ac:69:dd:27:db:de:a6:2d:ce:eb:a8:cb:5a:92:b5:66:8a: 5b:60:d1:f9:8d:80:d2:2c:88:bc:ed:08:55:c6:62:c8:6f:46: 76:3f:3b:ea:2a:98:27:f8:ed:4c:89:6a:ed:a3:2c:95:8b:1a: 87:ef:22:20:59:a2:75:a4:95:b9:86:1a:15:f8:b0:1d:ff:40: c1:e2:99:7a:05:e5:49:fb:bf:22:ef:ef:63:ec:91:d0:92:ca: 42:10:d5:85:35:68:09:c9:80:b3:ca:d5:5e:2d:1e:1d:92:87: ee:26:dc:30:66:af:49:69:8d:66:c2:14:78:55:f5:23:ac:88: 91:2c:e2:be:6c:1f:40:b0:79:95:84:28:34:55:51:3c:1a:00: 1a:30:78:d8:8a:49:22:02:2b:5f:6d:43:bf:1e:b3:cc:0b:81: 5f:e6:12:a7:65:dd:c8:17:89:b5:f8:bd:7a:da:28:0f:db:af: 8d:62:22:61:08:98:0f:30:39:4c:0c:3a:7b:37:5f:a1:a9:78: 1c:2f:cd:ac:e7:29:fd:5f:8b:d5:29:61:e6:31:50:d7:32:e0: 6a:80:1c:00 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMr/arGjJBd/olQLZTL8Ex9ODjf0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI3MDAzMTAzWhcNMjYwMjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4N2NmNzQ3MDlmYjg4ZmNhMDE2ZTQ5NjhmYmRhOGU2NjNh MjQyZTM0ZWY4NDk4Yzk5MGM2ZTM2MjU4YzZjNzMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2wDH6S3tYkrfCVkAfrub3rDa79aiNc2UepTGl/2jl4UFM LnbPus+R1Qrrg/h9GXyU3WYhblwLfOPYnIaKOmNcnYHwy/7kaO45Kvr7nk+jP8Uu 4sY1pUbDW4P/sJzdW5TIWadwwUUEU/hl0SOx904sTXeS5jcUjqTnkXMlCS90xeL/ PgtIABcTnq9GgmgU06SyxT0MAVx8zWW2mRvFnIcLGudQm2iuexBv+h6rUCoNMJWi g3aLAuLzAYFqMigJpW5E9rvb7u64uwo5GjKRlqbXaGKFgMoWtwhS0BeLZvb94qze KoGAKo29kjMZ4tdsm7G/t4DdQsJKYogRktuwu09VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnMl5TdOXXxQZLqnWJtNzJqmPficwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NlYmY3MWJiLWQ3MmUtNDcxMy1iOWY4LWYwMWNkYWIwOTRhNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdjlgAwDQYJKoZIhvcNAQELBQADggEBAKksS1Q57NSj/J9oziN7/JKgShSz LQWQ/o3DzzUd0VU123UptZasad0n296mLc7rqMtakrVmiltg0fmNgNIsiLztCFXG YshvRnY/O+oqmCf47UyJau2jLJWLGofvIiBZonWklbmGGhX4sB3/QMHimXoF5Un7 vyLv72PskdCSykIQ1YU1aAnJgLPK1V4tHh2Sh+4m3DBmr0lpjWbCFHhV9SOsiJEs 4r5sH0CweZWEKDRVUTwaABoweNiKSSICK19tQ78es8wLgV/mEqdl3cgXibX4vXra KA/br41iImEImA8wOUwMOns3X6GpeBwvzaznKf1fi9UpYeYxUNcy4GqAHAA= -----END CERTIFICATE-----Generated at Sat Dec 6 23:57:08 2025 by rpki-client