This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dae0253e-b4d8-4623-b4ce-9451a6087b11.roa File: dae0253e-b4d8-4623-b4ce-9451a6087b11.roa (raw, json) Hash identifier: XdqMD2wYJj3GA2z+lLKV01lLWCfycWbWyxt9tpUyWMU= Subject key identifier: 7D:AF:A7:D3:4A:DB:61:78:F9:8E:4F:44:14:D7:DD:B1:23:89:F0:17 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 611D4DAC9BF8F99478DAC8241E0806F6AAFB4668 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dae0253e-b4d8-4623-b4ce-9451a6087b11.roa Signing time: Sun 30 Nov 2025 00:10:09 +0000 ROA not before: Sun 30 Nov 2025 00:10:09 +0000 ROA not after: Sat 28 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 216.157.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:1d:4d:ac:9b:f8:f9:94:78:da:c8:24:1e:08:06:f6:aa:fb:46:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 30 00:10:09 2025 GMT Not After : Feb 28 23:59:59 2026 GMT Subject: serialNumber=012c16b99f874865f4c1805f8cfbe98c088aa20bab76fb370820ca04f3f82cac, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:b7:a7:97:7b:ea:88:ae:6e:8c:2f:f5:6c:d4: ab:57:72:31:b0:31:1e:1a:71:8e:51:4f:86:05:97: e5:67:58:31:c4:56:44:ec:12:01:7f:63:af:c1:fc: da:58:78:ca:5f:44:c8:1c:ea:f3:ef:d1:0c:5f:e4: 99:9c:22:a1:b0:da:ce:cf:18:e1:3c:7b:e4:71:0c: e1:a3:43:b9:7c:ec:ee:9b:6e:c5:6e:3d:11:da:7c: b5:4e:9b:6c:a1:b8:3f:9a:1b:80:a0:b8:4c:16:d3: af:7b:4e:79:e7:60:e7:a1:eb:61:01:11:e9:0d:97: 8f:c4:9b:18:74:97:25:40:8f:3e:cc:b3:49:d9:4c: c6:e1:76:ea:17:7f:f2:1c:5c:11:e8:e2:b2:bd:44: d0:02:db:60:81:07:92:86:04:b8:1c:79:41:22:58: eb:ec:fb:84:66:d9:cf:d7:67:39:04:7c:f6:a8:48: a9:0c:63:f0:c6:e6:a2:7a:06:e6:9e:5f:d1:24:51: d1:51:a7:05:71:ab:01:ec:41:57:01:21:bb:30:dc: 51:28:e6:15:10:fd:9b:61:17:b9:df:e8:16:2a:ac: 4c:fe:56:56:2f:54:42:15:03:7b:76:02:e0:30:29: 64:d1:39:6e:db:88:7f:9b:e5:4f:3b:ac:05:2c:9a: 54:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:AF:A7:D3:4A:DB:61:78:F9:8E:4F:44:14:D7:DD:B1:23:89:F0:17 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dae0253e-b4d8-4623-b4ce-9451a6087b11.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.157.4.0/22 Signature Algorithm: sha256WithRSAEncryption 35:4d:a5:37:32:ec:c3:87:34:54:8f:03:74:22:21:37:15:14: 1f:e8:d6:07:d7:33:84:5c:e1:32:a6:0d:1a:6e:7f:5a:d5:bf: 72:36:94:28:90:09:96:ef:31:01:31:28:a6:7f:76:d7:27:ce: 5e:5d:1a:ce:47:c7:e7:15:ba:3b:b5:4f:d0:09:47:d0:51:40: de:9c:10:4c:a4:a4:21:89:b8:e9:c3:b0:60:f7:f1:da:e1:01: 7c:8f:81:1a:b8:8e:a0:35:56:b0:99:a8:42:0f:51:c9:60:4b: 5e:97:08:97:9a:99:8f:f9:c5:f6:82:92:fc:a1:c5:3d:4a:c1: cd:78:26:e2:0a:2d:9f:ff:4a:8a:ac:2b:bb:6e:28:ca:2f:13: df:2a:49:d3:40:e8:3d:d3:1c:4d:36:b4:e2:e8:99:86:96:db: e6:01:63:68:4f:b9:c3:f5:79:71:5d:d1:d4:35:67:84:d5:79: 23:47:11:51:ba:f9:24:42:3b:9a:3e:0e:8b:74:ae:6a:d5:05: a7:b9:3b:48:c1:25:23:cf:57:ec:1e:9b:18:27:83:12:37:87: 44:a0:7b:43:32:e4:29:37:08:20:81:e3:15:07:5b:82:b5:ea: ea:2e:06:b9:7a:64:62:bf:4c:2d:ed:c1:00:fe:de:31:0c:99: 61:97:10:14 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYR1NrJv4+ZR42sgkHggG9qr7RmgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTMwMDAxMDA5WhcNMjYwMjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMTJjMTZiOTlmODc0ODY1ZjRjMTgwNWY4Y2ZiZTk4YzA4 OGFhMjBiYWI3NmZiMzcwODIwY2EwNGYzZjgyY2FjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDst6eXe+qIrm6ML/Vs1KtXcjGwMR4acY5RT4YFl+VnWDHE VkTsEgF/Y6/B/NpYeMpfRMgc6vPv0Qxf5JmcIqGw2s7PGOE8e+RxDOGjQ7l87O6b bsVuPRHafLVOm2yhuD+aG4CguEwW0697TnnnYOeh62EBEekNl4/Emxh0lyVAjz7M s0nZTMbhduoXf/IcXBHo4rK9RNAC22CBB5KGBLgceUEiWOvs+4Rm2c/XZzkEfPao SKkMY/DG5qJ6BuaeX9EkUdFRpwVxqwHsQVcBIbsw3FEo5hUQ/ZthF7nf6BYqrEz+ VlYvVEIVA3t2AuAwKWTROW7biH+b5U87rAUsmlSNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfa+n00rbYXj5jk9EFNfdsSOJ8BcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhZTAyNTNlLWI0ZDgtNDYyMy1iNGNlLTk0NTFhNjA4N2IxMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALYnQQwDQYJKoZIhvcNAQELBQADggEBADVNpTcy7MOHNFSPA3QiITcVFB/o 1gfXM4Rc4TKmDRpuf1rVv3I2lCiQCZbvMQExKKZ/dtcnzl5dGs5Hx+cVuju1T9AJ R9BRQN6cEEykpCGJuOnDsGD38drhAXyPgRq4jqA1VrCZqEIPUclgS16XCJeamY/5 xfaCkvyhxT1Kwc14JuIKLZ//SoqsK7tuKMovE98qSdNA6D3THE02tOLomYaW2+YB Y2hPucP1eXFd0dQ1Z4TVeSNHEVG6+SRCO5o+Dot0rmrVBae5O0jBJSPPV+wemxgn gxI3h0Sge0My5Ck3CCCB4xUHW4K16uouBrl6ZGK/TC3twQD+3jEMmWGXEBQ= -----END CERTIFICATE-----Generated at Sat Dec 6 12:34:58 2025 by rpki-client