This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf4c0d6a-87e1-4500-994c-6d67c6dffa61.roa File: cf4c0d6a-87e1-4500-994c-6d67c6dffa61.roa (raw, json) Hash identifier: GRDNKuQe+jHqAe3J4s392Ac+XnUndFXBZ5Uf6Q92a5M= Subject key identifier: 0E:4C:E2:F9:F2:CE:4E:81:F5:44:20:06:ED:40:B8:EF:5B:FB:CF:34 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 66EAE9A7E1363F5DCF3B610DFD4D2FAB7EB62EA3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf4c0d6a-87e1-4500-994c-6d67c6dffa61.roa Signing time: Wed 26 Nov 2025 00:41:06 +0000 ROA not before: Wed 26 Nov 2025 00:41:06 +0000 ROA not after: Tue 24 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 108.171.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:ea:e9:a7:e1:36:3f:5d:cf:3b:61:0d:fd:4d:2f:ab:7e:b6:2e:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 26 00:41:06 2025 GMT Not After : Feb 24 23:59:59 2026 GMT Subject: serialNumber=59b5b1d07c071307dee0ca1fc1b2d3f7f63e59324982d65bb74a1541d3e17616, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9c:3a:a8:52:da:c3:c4:aa:7e:82:b2:5b:24: bd:4a:e2:8c:58:93:78:f5:d0:ee:db:05:14:a2:f8: 09:b2:eb:89:dc:0b:6c:2a:50:89:9d:64:7f:87:b7: 6e:ab:63:fb:77:5c:d2:d7:24:1b:5c:b7:7e:50:c7: dc:e9:a7:7f:03:9b:da:9f:a7:5c:82:a7:36:0e:7a: 47:cd:65:e2:fb:b4:4c:89:b2:d7:64:27:d8:d9:31: ac:53:ab:d5:d7:2a:08:e7:b2:55:b6:b2:d7:da:92: d7:fd:da:3b:d8:03:20:c4:8c:61:27:27:21:1f:84: 3b:b4:25:ea:11:3a:42:87:4a:cb:58:78:63:87:55: f8:27:ed:ae:40:de:0b:f0:79:35:b6:4d:d4:79:30: f9:9b:4b:94:a0:1f:cb:6c:12:a6:0c:24:aa:99:02: 50:1f:03:27:00:64:52:2d:f0:c0:84:d4:b1:34:d6: df:79:9a:0c:62:be:67:cf:0e:d8:e9:96:4f:d7:07: ca:f8:38:3a:71:e1:92:48:06:5f:cc:a3:af:01:d6: b3:fc:23:de:be:8a:26:ae:eb:43:e0:67:23:4d:4c: 0f:a5:00:5b:49:d8:df:74:dd:56:21:e1:4f:52:01: 2b:d8:26:81:aa:44:41:9c:09:a4:f2:06:a5:3c:1b: fd:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:4C:E2:F9:F2:CE:4E:81:F5:44:20:06:ED:40:B8:EF:5B:FB:CF:34 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf4c0d6a-87e1-4500-994c-6d67c6dffa61.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 108.171.240.0/20 Signature Algorithm: sha256WithRSAEncryption 4c:ba:dc:58:2b:2e:1c:ed:1a:5f:99:4d:65:fe:fc:37:3b:96: 43:1a:d6:cc:bf:a3:df:25:e7:44:5e:3c:03:7b:50:0c:7f:25: ec:50:32:e3:6d:7b:6b:e4:12:6c:c4:91:48:f5:91:c4:1e:b4: cd:7c:b9:60:13:9b:23:5f:79:21:78:fe:2a:8f:6e:8e:79:85: f1:12:8d:70:04:34:ff:e5:75:a2:c8:83:02:2e:ed:53:45:85: 5b:24:70:54:77:2b:73:66:25:20:70:ff:31:d2:71:7a:c7:6c: 96:2a:89:ac:f7:f2:3b:cb:3e:3f:57:ac:d8:3d:0c:38:a8:d4: 28:f0:ce:48:49:08:58:6b:bd:23:73:5c:eb:d9:55:59:c6:eb: ea:45:3f:3a:fa:42:19:ea:8b:f1:96:b5:03:c3:33:09:52:61: 83:26:b1:03:e1:67:a2:5e:2a:d8:f7:bc:76:f9:92:2b:cf:bb: 46:40:98:1f:64:89:1a:4b:60:ae:c9:f1:14:01:be:43:33:9d: 71:01:b2:ef:7c:27:25:3d:a6:5d:6e:e5:4b:19:72:cf:4e:71: c4:c8:88:af:a2:79:80:57:1b:60:df:ff:05:60:ec:cd:6a:fd: 72:f7:8c:8b:cc:11:5a:0e:2e:bf:c6:cf:8f:2b:7f:92:fa:3f: 30:ef:bd:31 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZurpp+E2P13PO2EN/U0vq362LqMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI2MDA0MTA2WhcNMjYwMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OWI1YjFkMDdjMDcxMzA3ZGVlMGNhMWZjMWIyZDNmN2Y2 M2U1OTMyNDk4MmQ2NWJiNzRhMTU0MWQzZTE3NjE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8nDqoUtrDxKp+grJbJL1K4oxYk3j10O7bBRSi+Amy64nc C2wqUImdZH+Ht26rY/t3XNLXJBtct35Qx9zpp38Dm9qfp1yCpzYOekfNZeL7tEyJ stdkJ9jZMaxTq9XXKgjnslW2stfaktf92jvYAyDEjGEnJyEfhDu0JeoROkKHSstY eGOHVfgn7a5A3gvweTW2TdR5MPmbS5SgH8tsEqYMJKqZAlAfAycAZFIt8MCE1LE0 1t95mgxivmfPDtjplk/XB8r4ODpx4ZJIBl/Mo68B1rP8I96+iiau60PgZyNNTA+l AFtJ2N903VYh4U9SASvYJoGqREGcCaTyBqU8G/13AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDkzi+fLOToH1RCAG7UC471v7zzQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NmNGMwZDZhLTg3ZTEtNDUwMC05OTRjLTZkNjdjNmRmZmE2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARsq/AwDQYJKoZIhvcNAQELBQADggEBAEy63FgrLhztGl+ZTWX+/Dc7lkMa 1sy/o98l50RePAN7UAx/JexQMuNte2vkEmzEkUj1kcQetM18uWATmyNfeSF4/iqP bo55hfESjXAENP/ldaLIgwIu7VNFhVskcFR3K3NmJSBw/zHScXrHbJYqiaz38jvL Pj9XrNg9DDio1CjwzkhJCFhrvSNzXOvZVVnG6+pFPzr6Qhnqi/GWtQPDMwlSYYMm sQPhZ6JeKtj3vHb5kivPu0ZAmB9kiRpLYK7J8RQBvkMznXEBsu98JyU9pl1u5UsZ cs9OccTIiK+ieYBXG2Df/wVg7M1q/XL3jIvMEVoOLr/Gz48rf5L6PzDvvTE= -----END CERTIFICATE-----Generated at Sat Dec 6 22:58:25 2025 by rpki-client