This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e2a09846-443b-40e8-960d-92a8061d00c7.roa File: e2a09846-443b-40e8-960d-92a8061d00c7.roa (raw, json) Hash identifier: Km83cFFMdAGXAfjRrPkH+Su2KJImB0QLjxMl/TLqyds= Subject key identifier: 04:4C:AA:2E:5C:01:EA:B4:DC:85:B6:C9:A5:43:14:DA:CE:AE:EF:E7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2D0171A35D1960EA82BC142AD4571C413C245C3B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e2a09846-443b-40e8-960d-92a8061d00c7.roa Signing time: Thu 20 Nov 2025 00:20:56 +0000 ROA not before: Thu 20 Nov 2025 00:20:56 +0000 ROA not after: Wed 18 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:01:71:a3:5d:19:60:ea:82:bc:14:2a:d4:57:1c:41:3c:24:5c:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 20 00:20:56 2025 GMT Not After : Feb 18 23:59:59 2026 GMT Subject: serialNumber=b7800573760579f5968ae7c1bf3d81a3bf7c676c72a772969c4f8a6c468810cd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:36:91:96:d6:37:34:64:b7:3b:74:94:ce:f3: 9f:8a:fc:8c:7e:e3:58:14:81:94:33:7c:85:81:57: c8:c6:78:89:83:a8:ee:81:0b:62:c5:3a:03:52:0a: 4b:7a:fc:d0:05:31:03:56:e3:8c:00:de:f9:97:b9: a6:ab:74:d9:af:db:9b:15:0c:c7:b9:40:c6:9c:49: ea:89:f8:67:43:0f:68:fe:57:76:78:fd:ec:6c:9d: b9:dc:49:c4:13:21:86:69:99:f1:04:85:ca:79:00: 7c:68:37:28:02:80:f0:77:b5:91:3e:8a:9e:00:4a: 3d:b2:b0:6c:6b:5f:2d:36:71:ae:27:0a:64:34:13: ef:fc:1d:40:bc:ea:4a:8a:0e:ca:c8:b3:01:c5:a7: b8:37:1b:0d:1e:46:45:90:3e:0c:d5:33:94:68:eb: 0b:0a:c2:74:88:c6:33:07:13:2c:65:3e:df:84:d1: 9a:4b:de:90:d4:90:37:a3:45:8b:37:35:bd:9e:3f: 52:4e:53:65:24:0e:bd:9e:c3:fe:93:af:a6:9c:ce: 76:d0:82:4b:29:64:63:eb:8f:cf:57:28:04:c6:ca: 6d:e0:07:41:36:25:01:5c:71:70:15:67:fe:75:7b: 54:7e:f4:da:a0:8e:96:3e:04:c6:12:21:37:9e:89: 42:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:4C:AA:2E:5C:01:EA:B4:DC:85:B6:C9:A5:43:14:DA:CE:AE:EF:E7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e2a09846-443b-40e8-960d-92a8061d00c7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.66.0/24 Signature Algorithm: sha256WithRSAEncryption 22:64:f5:c2:1b:60:9f:85:e8:6b:26:ef:8f:f4:5a:b4:51:18: ce:a2:7f:f1:a9:30:ef:f8:50:88:e1:a2:ee:0c:dd:d9:3f:66: e5:7f:69:b9:4b:d1:61:45:50:a5:87:00:f4:4d:4a:8e:63:36: 89:9a:8e:e8:e7:6c:7f:e6:c5:0b:71:e9:7b:ee:7b:0b:7d:5c: 26:ad:9b:b2:c7:0d:37:b9:81:5d:90:2e:b1:04:0a:72:c6:92: d9:69:e6:8a:38:fd:aa:af:2a:b5:d9:69:f7:ca:35:32:3b:6d: 7b:eb:4b:61:42:26:78:01:04:21:f4:f7:07:67:76:60:c8:90: ec:d5:d2:14:be:94:48:07:30:2e:ea:12:2b:e0:d5:83:13:db: a8:6c:01:d9:b3:c5:01:b4:04:bc:b6:2e:72:97:21:39:65:b7: 4b:12:48:30:58:00:96:62:23:c1:b6:c3:4c:f6:10:db:cd:ea: 20:fc:64:2d:e2:23:b2:d1:cb:24:11:0f:fe:1c:5b:9d:5b:5c: e8:e2:25:5f:60:01:1d:1a:0e:e7:bc:ca:b8:48:1c:e9:cc:02: 20:8a:41:c2:d5:4b:e4:af:b4:75:6a:ff:98:30:2c:20:df:3f: 66:7f:7e:e3:51:b8:f5:d4:41:39:f4:f7:a5:5b:e5:fb:8f:d3: 47:48:cf:b6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULQFxo10ZYOqCvBQq1FccQTwkXDswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTIwMDAyMDU2WhcNMjYwMjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNzgwMDU3Mzc2MDU3OWY1OTY4YWU3YzFiZjNkODFhM2Jm N2M2NzZjNzJhNzcyOTY5YzRmOGE2YzQ2ODgxMGNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUNpGW1jc0ZLc7dJTO85+K/Ix+41gUgZQzfIWBV8jGeImD qO6BC2LFOgNSCkt6/NAFMQNW44wA3vmXuaardNmv25sVDMe5QMacSeqJ+GdDD2j+ V3Z4/exsnbncScQTIYZpmfEEhcp5AHxoNygCgPB3tZE+ip4ASj2ysGxrXy02ca4n CmQ0E+/8HUC86kqKDsrIswHFp7g3Gw0eRkWQPgzVM5Ro6wsKwnSIxjMHEyxlPt+E 0ZpL3pDUkDejRYs3Nb2eP1JOU2UkDr2ew/6Tr6acznbQgkspZGPrj89XKATGym3g B0E2JQFccXAVZ/51e1R+9NqgjpY+BMYSITeeiULxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBEyqLlwB6rTchbbJpUMU2s6u7+cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UyYTA5ODQ2LTQ0M2ItNDBlOC05NjBkLTkyYTgwNjFkMDBjNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/EIwDQYJKoZIhvcNAQELBQADggEBACJk9cIbYJ+F6Gsm74/0WrRRGM6i f/GpMO/4UIjhou4M3dk/ZuV/ablL0WFFUKWHAPRNSo5jNomajujnbH/mxQtx6Xvu ewt9XCatm7LHDTe5gV2QLrEECnLGktlp5oo4/aqvKrXZaffKNTI7bXvrS2FCJngB BCH09wdndmDIkOzV0hS+lEgHMC7qEivg1YMT26hsAdmzxQG0BLy2LnKXITllt0sS SDBYAJZiI8G2w0z2ENvN6iD8ZC3iI7LRyyQRD/4cW51bXOjiJV9gAR0aDue8yrhI HOnMAiCKQcLVS+SvtHVq/5gwLCDfP2Z/fuNRuPXUQTn096Vb5fuP00dIz7Y= -----END CERTIFICATE-----Generated at Sat Dec 6 16:23:14 2025 by rpki-client