This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dfa2fd02-5f23-4780-a0fc-7db70709ecad.roa File: dfa2fd02-5f23-4780-a0fc-7db70709ecad.roa (raw, json) Hash identifier: 34PK+4Pv5kkOTvJFiH1MCPCylYkK/cy1UpwITl9qCRg= Subject key identifier: 3D:F1:D5:A0:BD:21:42:AA:DF:D2:D3:59:A9:37:AF:65:EB:A1:EF:EF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 42111FE21E080917C8306FA9806451F4D30C1C7A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dfa2fd02-5f23-4780-a0fc-7db70709ecad.roa Signing time: Sun 30 Nov 2025 00:30:39 +0000 ROA not before: Sun 30 Nov 2025 00:30:39 +0000 ROA not after: Sat 28 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 209.196.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:11:1f:e2:1e:08:09:17:c8:30:6f:a9:80:64:51:f4:d3:0c:1c:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 30 00:30:39 2025 GMT Not After : Feb 28 23:59:59 2026 GMT Subject: serialNumber=f1fc0bfd981e75662de89f32192eb6514e7dbd66e513c536c2c7acc22518b605, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:39:2b:3d:05:24:6f:4f:04:39:36:33:e2:e4: e0:1f:cf:5e:bb:c6:48:e5:f4:3a:fc:2f:c4:bd:df: f7:f1:a2:fc:f3:f1:c6:54:00:3d:dc:d3:b3:05:ed: 3d:dc:82:15:78:15:29:28:e7:11:7e:29:fc:ca:c8: 9d:9a:02:3b:77:5c:62:f6:f2:93:8c:92:99:7a:78: e1:e9:fa:58:e6:bb:95:f7:84:1e:76:e6:61:85:3e: 57:11:9d:ad:02:48:bd:82:aa:99:73:a2:6d:01:03: 4f:5e:31:30:d2:b5:81:72:fc:47:c8:8a:8a:30:45: ce:88:89:48:2a:66:54:20:5f:51:ea:c3:e8:f0:80: 5b:a3:3e:df:8b:3d:f0:87:e7:0e:9c:ee:bf:43:d1: 8d:07:be:98:b6:dc:d4:cc:bb:3a:6a:5f:6c:9d:8c: 27:b2:1b:36:fa:38:73:41:bb:b4:00:9b:ae:3c:26: e6:98:93:86:e3:a6:6d:dc:34:34:91:b6:1b:1e:89: 3d:41:64:6c:8b:e4:09:26:fd:9e:2d:76:ec:ce:64: 3a:b1:28:c2:1f:a6:5c:1d:36:6c:11:4b:27:27:c6: 8e:12:00:f9:f8:54:08:84:38:19:4b:48:a6:29:28: e9:a0:0c:77:93:bf:31:71:83:66:02:60:03:4e:97: 9d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:F1:D5:A0:BD:21:42:AA:DF:D2:D3:59:A9:37:AF:65:EB:A1:EF:EF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dfa2fd02-5f23-4780-a0fc-7db70709ecad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.196.156.0/22 Signature Algorithm: sha256WithRSAEncryption cb:22:b9:02:26:e5:5d:02:32:14:9e:26:97:81:7d:8f:f0:61: cf:fd:c7:11:f2:c1:40:1a:4d:e7:ce:e2:76:29:a0:9d:6f:f8: 3b:76:91:96:94:93:75:7f:75:fa:4d:b6:46:2d:2a:93:64:6f: 58:ae:1f:95:e5:e7:2a:58:f4:19:08:eb:d9:7b:3e:51:98:33: fc:b3:82:42:57:15:b7:6d:df:d1:8a:22:63:8b:b6:5f:4a:2f: cf:47:ad:34:76:53:29:bd:30:56:d0:9a:c8:ae:d7:78:5a:94: 60:a4:0a:89:95:fb:80:30:97:4d:13:42:22:ed:7a:2b:ba:70: d9:1b:c4:62:d1:72:7b:f3:b6:d7:80:a1:ba:d4:22:fd:f8:37: 98:3c:90:25:cc:30:bd:db:6f:8b:5f:43:6a:14:2b:84:a6:d1: 02:62:5e:ca:5b:ed:27:21:de:da:6f:2d:72:74:82:3d:1f:95: d4:d0:63:74:f1:80:cb:3e:0c:9e:3b:d5:3d:b7:bb:08:7c:0e: b2:c2:8d:12:d5:fb:f7:ae:e2:a6:0b:0e:e3:f5:c2:07:42:28: 28:6a:99:4c:4d:37:5e:c2:75:3e:44:f4:29:f0:dc:38:8a:96: 67:4a:28:38:ad:1c:da:6f:de:69:01:85:f6:02:2b:83:94:1b: e0:fd:98:6d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQhEf4h4ICRfIMG+pgGRR9NMMHHowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTMwMDAzMDM5WhcNMjYwMjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMWZjMGJmZDk4MWU3NTY2MmRlODlmMzIxOTJlYjY1MTRl N2RiZDY2ZTUxM2M1MzZjMmM3YWNjMjI1MThiNjA1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDcOSs9BSRvTwQ5NjPi5OAfz167xkjl9Dr8L8S93/fxovzz 8cZUAD3c07MF7T3cghV4FSko5xF+KfzKyJ2aAjt3XGL28pOMkpl6eOHp+ljmu5X3 hB525mGFPlcRna0CSL2Cqplzom0BA09eMTDStYFy/EfIioowRc6IiUgqZlQgX1Hq w+jwgFujPt+LPfCH5w6c7r9D0Y0Hvpi23NTMuzpqX2ydjCeyGzb6OHNBu7QAm648 JuaYk4bjpm3cNDSRthseiT1BZGyL5Akm/Z4tduzOZDqxKMIfplwdNmwRSycnxo4S APn4VAiEOBlLSKYpKOmgDHeTvzFxg2YCYANOl52LAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPfHVoL0hQqrf0tNZqTevZeuh7+8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RmYTJmZDAyLTVmMjMtNDc4MC1hMGZjLTdkYjcwNzA5ZWNhZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALRxJwwDQYJKoZIhvcNAQELBQADggEBAMsiuQIm5V0CMhSeJpeBfY/wYc/9 xxHywUAaTefO4nYpoJ1v+Dt2kZaUk3V/dfpNtkYtKpNkb1iuH5Xl5ypY9BkI69l7 PlGYM/yzgkJXFbdt39GKImOLtl9KL89HrTR2Uym9MFbQmsiu13halGCkComV+4Aw l00TQiLteiu6cNkbxGLRcnvztteAobrUIv34N5g8kCXMML3bb4tfQ2oUK4Sm0QJi Xspb7Sch3tpvLXJ0gj0fldTQY3TxgMs+DJ471T23uwh8DrLCjRLV+/eu4qYLDuP1 wgdCKChqmUxNN17CdT5E9Cnw3DiKlmdKKDitHNpv3mkBhfYCK4OUG+D9mG0= -----END CERTIFICATE-----Generated at Sat Dec 6 10:05:10 2025 by rpki-client