This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d171a8a1-9f08-410d-8286-615fcfbb13fc.roa File: d171a8a1-9f08-410d-8286-615fcfbb13fc.roa (raw, json) Hash identifier: GOfKb9gF/tZ6eF+o5jYQflry+BYVMJldtlx8jWGOCIA= Subject key identifier: 2D:F8:C2:DF:1B:40:A5:CF:F2:03:E6:02:A8:15:6F:A2:4F:6E:ED:C6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 680AB35D795E317D3954C3B86DCE404EE89991D5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d171a8a1-9f08-410d-8286-615fcfbb13fc.roa Signing time: Wed 26 Nov 2025 00:11:05 +0000 ROA not before: Wed 26 Nov 2025 00:11:05 +0000 ROA not after: Tue 24 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.15.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:0a:b3:5d:79:5e:31:7d:39:54:c3:b8:6d:ce:40:4e:e8:99:91:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 26 00:11:05 2025 GMT Not After : Feb 24 23:59:59 2026 GMT Subject: serialNumber=4f03e8336fb35035d614aaedfe1dc1ed44efa82b820cb92fa1b2ef4369ad1ff1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b5:f8:6a:32:c0:ef:86:0d:e3:9b:03:02:95: 47:eb:f9:21:97:27:83:52:87:fd:fa:66:a1:90:cc: dd:40:65:e7:c5:76:b1:1f:43:cf:9e:0b:86:e5:f4: 35:1a:49:a5:5e:37:f5:06:0b:02:1b:66:19:c5:09: 34:4d:98:76:90:49:d1:24:e7:b0:f5:36:0e:b9:22: 1e:ac:5d:5d:77:aa:4e:06:43:9a:4d:1e:91:18:01: 1f:8d:14:62:5c:82:b6:87:16:fc:2f:99:06:c7:2c: 02:ab:5e:54:e8:65:de:1b:9c:0b:3d:93:20:b4:57: 72:47:f9:d2:70:02:61:f9:15:25:b0:cc:2b:ad:b7: 13:5b:07:36:34:88:ce:2c:80:55:f5:65:42:de:e3: 05:c2:7c:6a:66:8b:0a:8c:e5:2e:cb:9a:6f:30:2b: e0:98:7f:0e:91:98:6d:ef:b6:d3:fa:8a:71:09:35: 49:7d:b3:e4:72:a8:60:e7:e6:9b:ea:2b:f4:15:6e: f9:77:bd:98:c8:bc:da:12:f4:7a:3e:e2:3d:e7:dd: 79:28:d5:74:c9:bf:c1:0c:e1:48:c0:7c:95:da:30: e6:e5:99:6d:50:04:37:0d:25:cd:25:95:50:d1:21: 2a:d5:7b:7c:1f:37:7c:15:17:64:56:11:7c:aa:55: fd:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F8:C2:DF:1B:40:A5:CF:F2:03:E6:02:A8:15:6F:A2:4F:6E:ED:C6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d171a8a1-9f08-410d-8286-615fcfbb13fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.15.176.0/20 Signature Algorithm: sha256WithRSAEncryption 40:8f:7c:8b:bc:8c:64:aa:03:eb:15:2d:ef:7f:7e:10:ca:e7: 0a:cc:9a:52:ec:2f:cd:f4:7c:6b:79:d4:53:bb:6c:be:fe:b0: 78:da:67:0c:18:bc:f7:fa:7a:8f:b8:f4:5a:5c:47:3d:30:cf: 18:5a:38:b8:b2:ca:c4:f2:51:14:d7:9e:56:4e:6c:3a:cf:f0: 65:9e:37:7c:d9:5e:8e:9b:27:a0:d7:47:55:f9:3f:9e:cc:16: ac:78:53:6d:88:e1:da:40:51:4d:32:4b:fe:5b:f4:67:b8:52: 9d:09:0a:2b:b1:77:df:a1:bc:b6:a7:48:df:73:c6:dc:8d:ab: 58:cc:db:20:5d:9b:f2:c2:83:fe:2a:98:b9:af:d9:0b:d1:cc: e3:58:df:96:7f:ea:41:29:4e:da:bb:0c:65:99:29:1d:4f:73: 71:c0:f8:1c:dc:e9:b2:66:6f:94:7b:1c:19:0d:5f:19:6b:61: c2:c7:a4:b3:b4:ed:17:3a:bd:6e:aa:22:3d:27:5a:3c:87:26: f3:ef:08:2a:af:4d:6d:58:e8:38:75:ab:23:cd:4c:53:ec:7a: 3c:29:40:71:34:d7:96:1b:c6:fe:f7:5b:2b:61:05:40:d6:ef: ea:3b:0e:9f:e0:1c:e0:ae:a3:56:82:83:89:c6:c6:26:ac:61: cc:e2:3d:7a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaAqzXXleMX05VMO4bc5ATuiZkdUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI2MDAxMTA1WhcNMjYwMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZjAzZTgzMzZmYjM1MDM1ZDYxNGFhZWRmZTFkYzFlZDQ0 ZWZhODJiODIwY2I5MmZhMWIyZWY0MzY5YWQxZmYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3tfhqMsDvhg3jmwMClUfr+SGXJ4NSh/36ZqGQzN1AZefF drEfQ8+eC4bl9DUaSaVeN/UGCwIbZhnFCTRNmHaQSdEk57D1Ng65Ih6sXV13qk4G Q5pNHpEYAR+NFGJcgraHFvwvmQbHLAKrXlToZd4bnAs9kyC0V3JH+dJwAmH5FSWw zCuttxNbBzY0iM4sgFX1ZULe4wXCfGpmiwqM5S7Lmm8wK+CYfw6RmG3vttP6inEJ NUl9s+RyqGDn5pvqK/QVbvl3vZjIvNoS9Ho+4j3n3Xko1XTJv8EM4UjAfJXaMObl mW1QBDcNJc0llVDRISrVe3wfN3wVF2RWEXyqVf11AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULfjC3xtApc/yA+YCqBVvok9u7cYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QxNzFhOGExLTlmMDgtNDEwZC04Mjg2LTYxNWZjZmJiMTNmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQQD7AwDQYJKoZIhvcNAQELBQADggEBAECPfIu8jGSqA+sVLe9/fhDK5wrM mlLsL830fGt51FO7bL7+sHjaZwwYvPf6eo+49FpcRz0wzxhaOLiyysTyURTXnlZO bDrP8GWeN3zZXo6bJ6DXR1X5P57MFqx4U22I4dpAUU0yS/5b9Ge4Up0JCiuxd9+h vLanSN9zxtyNq1jM2yBdm/LCg/4qmLmv2QvRzONY35Z/6kEpTtq7DGWZKR1Pc3HA +Bzc6bJmb5R7HBkNXxlrYcLHpLO07Rc6vW6qIj0nWjyHJvPvCCqvTW1Y6Dh1qyPN TFPsejwpQHE015Ybxv73WythBUDW7+o7Dp/gHOCuo1aCg4nGxiasYcziPXo= -----END CERTIFICATE-----Generated at Sat Dec 6 23:00:20 2025 by rpki-client