This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d43a58c1-65d8-408a-9da2-aac1d5d7a248.roa File: d43a58c1-65d8-408a-9da2-aac1d5d7a248.roa (raw, json) Hash identifier: jpP4ZyvzuqQUiv15sucE7dR8jejPTRWCjTDF40H36aQ= Subject key identifier: 9A:24:DC:90:7F:6D:73:52:87:56:FF:2D:16:17:0A:11:BD:51:EC:B1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 07C9C518BD626CD7DB92A8CB97D91F97E0D1817A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d43a58c1-65d8-408a-9da2-aac1d5d7a248.roa Signing time: Wed 03 Dec 2025 01:21:16 +0000 ROA not before: Wed 03 Dec 2025 01:21:16 +0000 ROA not after: Tue 03 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:c9:c5:18:bd:62:6c:d7:db:92:a8:cb:97:d9:1f:97:e0:d1:81:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 3 01:21:16 2025 GMT Not After : Mar 3 23:59:59 2026 GMT Subject: serialNumber=e7ba31eacfb203720617bdb45a58407e5be96def3eeb0484569af5659d33a463, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f8:a7:05:4e:3f:6b:23:e0:04:8e:42:67:ef: 45:5a:7e:f8:69:cf:16:3f:b2:f8:cf:c1:8d:0e:69: bb:b6:cb:35:bf:a2:8f:32:4a:3a:13:6e:2a:a8:14: 81:f7:1f:3d:a1:5d:44:49:78:02:f7:27:62:c1:9c: c2:37:ab:57:f7:94:2c:e6:a2:fc:da:32:bb:72:b3: d9:b7:c2:51:59:dd:55:08:8d:56:cd:44:f5:22:ef: bf:76:26:fa:c8:f7:b1:f9:43:50:57:34:e4:eb:19: 99:97:8c:10:d9:3a:10:b8:bf:bf:87:e7:f9:91:1e: 21:a9:08:3e:58:30:d1:3d:12:7c:45:7c:38:79:67: 6e:f7:22:aa:ff:6e:9e:0c:2e:57:35:67:44:2e:9c: 8f:f8:31:8c:a6:03:52:9e:2e:a4:c1:6a:9d:da:26: 73:02:94:fd:7e:ae:fc:2d:80:dc:3c:13:df:c4:27: 40:02:86:d6:08:58:15:e9:22:18:71:64:1c:80:47: 43:53:61:7e:7d:01:cc:41:2b:3a:63:e3:2e:07:f6: e4:07:27:c0:f9:17:fa:59:20:c4:03:82:50:4a:84: 62:61:2a:f2:89:fb:8c:4d:62:90:fb:f9:6e:fa:27: 03:e1:7d:53:3d:b0:f3:d6:66:a2:5e:88:dd:04:8b: 38:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:24:DC:90:7F:6D:73:52:87:56:FF:2D:16:17:0A:11:BD:51:EC:B1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d43a58c1-65d8-408a-9da2-aac1d5d7a248.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.128.0/18 Signature Algorithm: sha256WithRSAEncryption 44:ee:98:7d:41:ba:ab:6f:76:56:70:14:af:94:c7:68:c3:f9: 26:b0:80:e5:31:5e:f4:97:4a:e9:62:28:13:f2:27:ba:e6:ea: f9:2e:b3:a9:fc:54:00:10:67:2c:c5:65:e1:ff:c1:23:a7:c6: af:a7:2a:ed:b3:fb:da:64:0a:ec:73:89:f9:68:3d:8b:09:80: af:e7:44:55:1e:ed:28:b5:04:bd:2d:4e:ef:b1:f5:6c:8e:08: 18:ca:4e:dc:2a:72:bc:ab:0b:60:61:52:08:1d:78:a1:eb:77: e5:85:a0:15:e2:bc:16:14:ea:aa:e5:c2:27:86:be:15:03:4f: 92:fb:30:46:c5:f1:2c:3c:0e:68:36:fe:f4:05:58:65:12:75: b1:0a:13:b4:d3:28:6a:a6:72:7a:ee:f0:a1:78:bf:9a:23:f5: a6:9e:d9:c8:23:a2:32:c1:58:87:b8:a6:ef:51:10:0f:36:58: ce:c0:fb:e9:c7:33:50:39:f7:af:83:de:26:33:de:9c:71:12: ae:08:f0:2f:c7:56:e9:77:69:bf:7d:59:ba:93:f3:eb:39:a2: 72:d9:a4:e4:f2:8c:d1:a1:aa:c8:ab:28:45:1b:9b:d3:12:8c: b3:23:37:8f:5f:d0:4c:8d:49:a6:19:1f:ed:e8:9a:94:45:09: a5:5b:82:e5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUB8nFGL1ibNfbkqjLl9kfl+DRgXowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjAzMDEyMTE2WhcNMjYwMzAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlN2JhMzFlYWNmYjIwMzcyMDYxN2JkYjQ1YTU4NDA3ZTVi ZTk2ZGVmM2VlYjA0ODQ1NjlhZjU2NTlkMzNhNDYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCh+KcFTj9rI+AEjkJn70VafvhpzxY/svjPwY0Oabu2yzW/ oo8ySjoTbiqoFIH3Hz2hXURJeAL3J2LBnMI3q1f3lCzmovzaMrtys9m3wlFZ3VUI jVbNRPUi7792JvrI97H5Q1BXNOTrGZmXjBDZOhC4v7+H5/mRHiGpCD5YMNE9EnxF fDh5Z273Iqr/bp4MLlc1Z0QunI/4MYymA1KeLqTBap3aJnMClP1+rvwtgNw8E9/E J0AChtYIWBXpIhhxZByAR0NTYX59AcxBKzpj4y4H9uQHJ8D5F/pZIMQDglBKhGJh KvKJ+4xNYpD7+W76JwPhfVM9sPPWZqJeiN0EiziJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmiTckH9tc1KHVv8tFhcKEb1R7LEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q0M2E1OGMxLTY1ZDgtNDA4YS05ZGEyLWFhYzFkNWQ3YTI0OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjl4AwDQYJKoZIhvcNAQELBQADggEBAETumH1BuqtvdlZwFK+Ux2jD+Saw gOUxXvSXSuliKBPyJ7rm6vkus6n8VAAQZyzFZeH/wSOnxq+nKu2z+9pkCuxziflo PYsJgK/nRFUe7Si1BL0tTu+x9WyOCBjKTtwqcryrC2BhUggdeKHrd+WFoBXivBYU 6qrlwieGvhUDT5L7MEbF8Sw8Dmg2/vQFWGUSdbEKE7TTKGqmcnru8KF4v5oj9aae 2cgjojLBWIe4pu9REA82WM7A++nHM1A596+D3iYz3pxxEq4I8C/HVul3ab99WbqT 8+s5onLZpOTyjNGhqsirKEUbm9MSjLMjN49f0EyNSaYZH+3ompRFCaVbguU= -----END CERTIFICATE-----Generated at Sat Dec 6 14:24:37 2025 by rpki-client