This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e32e9d70-77da-4d7f-838c-cace7dac9464.roa File: e32e9d70-77da-4d7f-838c-cace7dac9464.roa (raw, json) Hash identifier: 9LF1YODMg7vxoUuNpTBiqmfjemI1gedai3zurYClG14= Subject key identifier: A3:4E:9E:1C:66:E6:35:C0:57:A5:D4:43:0F:C2:9A:32:4F:FB:35:88 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0F688A9786EE630A29B2DB006F756A2236AB2495 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e32e9d70-77da-4d7f-838c-cace7dac9464.roa Signing time: Thu 20 Nov 2025 00:50:55 +0000 ROA not before: Thu 20 Nov 2025 00:50:55 +0000 ROA not after: Wed 18 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 216.231.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:68:8a:97:86:ee:63:0a:29:b2:db:00:6f:75:6a:22:36:ab:24:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 20 00:50:55 2025 GMT Not After : Feb 18 23:59:59 2026 GMT Subject: serialNumber=6c1e45e0be0529c3786f02720b676b8ee77922846319499914d6bf674e76e029, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:cd:53:6a:15:04:e7:81:85:c1:94:4f:6a:bb: 5f:b6:ca:11:fa:b9:3c:7c:5e:26:12:37:40:02:61: b0:2e:87:f3:1e:2d:e3:94:29:a5:17:85:10:61:d0: ac:4a:1b:7c:fe:d6:96:e2:3c:ab:c5:3d:84:1b:26: 0f:8a:07:4a:72:77:d6:c4:a1:e1:87:54:60:f0:5c: 51:ce:90:b2:76:c0:31:c9:58:48:85:92:90:2a:7f: 65:76:68:b2:12:0e:e4:76:ea:e5:53:bb:7e:06:45: 36:ec:fa:d0:2d:e8:71:e4:4c:36:f4:2c:96:f1:e6: 20:1f:26:20:15:50:60:dc:8d:d4:4d:9e:61:bf:d1: 51:b9:bc:52:7d:3a:df:fd:29:27:4a:ac:0a:96:33: e5:62:73:8a:52:f5:70:cc:4d:83:f0:71:2d:b6:e9: 80:82:ee:bc:d8:a7:47:51:1d:63:07:28:63:b4:80: b5:ea:64:e7:19:f0:7c:d1:3e:d6:0d:63:dc:ad:b0: e0:6a:7a:82:42:e8:5a:df:c0:d7:03:66:91:2e:3b: 38:fb:27:33:73:b2:f4:91:df:2b:04:5e:a9:f0:c5: 28:b6:0d:89:18:6e:38:67:7c:0c:0f:de:68:1e:8c: 45:a8:30:71:e6:01:f9:68:4b:c4:98:15:40:64:f9: d0:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:4E:9E:1C:66:E6:35:C0:57:A5:D4:43:0F:C2:9A:32:4F:FB:35:88 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e32e9d70-77da-4d7f-838c-cace7dac9464.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.231.96.0/19 Signature Algorithm: sha256WithRSAEncryption 0e:fb:1f:57:20:10:82:62:ab:f5:1e:32:13:a3:ca:4d:0f:a6: 64:31:2e:a8:87:cd:cb:92:55:03:89:d5:a3:66:39:e2:7c:b4: 20:e9:c7:a6:fd:1d:2c:10:9f:76:3c:86:ff:f2:e3:5b:eb:b0: 3b:47:1e:30:1f:34:a1:c6:85:80:4e:33:8e:73:1e:97:c0:fc: 59:d8:3c:af:6b:1b:8b:82:ff:9d:22:fc:62:9f:67:63:8a:69: 1c:56:cb:dc:7e:8c:d6:b7:e4:54:b7:2e:2c:b1:b5:8a:bf:e4: 6e:1a:9c:91:34:74:24:c1:0a:a2:89:93:81:d8:b4:f7:74:e3: 29:7f:f4:42:49:11:fc:a9:82:5a:ca:e7:44:fc:0d:29:cb:0b: f1:fd:72:b4:15:64:86:3b:f1:0b:77:a4:d4:8d:02:d2:d4:5e: f2:21:8a:c3:99:73:a4:a2:7a:e4:91:3f:50:3b:d0:bd:c2:ca: c8:48:e0:a4:a4:f8:7c:f4:ac:ef:ff:e8:87:c6:cc:de:3f:27: 21:36:7c:23:8e:7a:62:8f:81:17:23:8f:46:8f:c1:4e:10:a5: 49:bc:15:58:cd:f4:33:95:cc:5e:e2:38:03:4f:da:5f:71:ec: f0:9a:26:8a:20:0a:e8:3e:ec:48:72:52:b7:84:b0:44:e3:46: c0:23:9f:7e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD2iKl4buYwopstsAb3VqIjarJJUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTIwMDA1MDU1WhcNMjYwMjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YzFlNDVlMGJlMDUyOWMzNzg2ZjAyNzIwYjY3NmI4ZWU3 NzkyMjg0NjMxOTQ5OTkxNGQ2YmY2NzRlNzZlMDI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtzVNqFQTngYXBlE9qu1+2yhH6uTx8XiYSN0ACYbAuh/Me LeOUKaUXhRBh0KxKG3z+1pbiPKvFPYQbJg+KB0pyd9bEoeGHVGDwXFHOkLJ2wDHJ WEiFkpAqf2V2aLISDuR26uVTu34GRTbs+tAt6HHkTDb0LJbx5iAfJiAVUGDcjdRN nmG/0VG5vFJ9Ot/9KSdKrAqWM+Vic4pS9XDMTYPwcS226YCC7rzYp0dRHWMHKGO0 gLXqZOcZ8HzRPtYNY9ytsOBqeoJC6FrfwNcDZpEuOzj7JzNzsvSR3ysEXqnwxSi2 DYkYbjhnfAwP3mgejEWoMHHmAfloS8SYFUBk+dCNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUo06eHGbmNcBXpdRDD8KaMk/7NYgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UzMmU5ZDcwLTc3ZGEtNGQ3Zi04MzhjLWNhY2U3ZGFjOTQ2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXY52AwDQYJKoZIhvcNAQELBQADggEBAA77H1cgEIJiq/UeMhOjyk0PpmQx LqiHzcuSVQOJ1aNmOeJ8tCDpx6b9HSwQn3Y8hv/y41vrsDtHHjAfNKHGhYBOM45z HpfA/FnYPK9rG4uC/50i/GKfZ2OKaRxWy9x+jNa35FS3LiyxtYq/5G4anJE0dCTB CqKJk4HYtPd04yl/9EJJEfypglrK50T8DSnLC/H9crQVZIY78Qt3pNSNAtLUXvIh isOZc6SieuSRP1A70L3CyshI4KSk+Hz0rO//6IfGzN4/JyE2fCOOemKPgRcjj0aP wU4QpUm8FVjN9DOVzF7iOANP2l9x7PCaJoogCug+7EhyUreEsETjRsAjn34= -----END CERTIFICATE-----Generated at Sat Dec 6 10:04:34 2025 by rpki-client