This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e5a52770-75fd-4126-9116-3362d8dc25af.roa File: e5a52770-75fd-4126-9116-3362d8dc25af.roa (raw, json) Hash identifier: fZSc52Fck6ma2KGbpRf1gPRPJoKjx9h4ecMoYSMSxmQ= Subject key identifier: 57:3F:E5:C1:58:16:E4:92:55:56:13:B6:F9:72:D6:A1:B4:E6:7D:95 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 354F04FEF3DD85DF7F6B849069586971184414A9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e5a52770-75fd-4126-9116-3362d8dc25af.roa Signing time: Sat 06 Dec 2025 01:50:48 +0000 ROA not before: Sat 06 Dec 2025 01:50:48 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.16.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:4f:04:fe:f3:dd:85:df:7f:6b:84:90:69:58:69:71:18:44:14:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 6 01:50:48 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=7a8ccbcfa46e65741becc22e9b7ab196ee528bbe55df75563aca8b98c58face6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:20:52:95:8c:0c:63:46:3a:a4:f3:1e:c2:ce: 51:2f:40:a7:6e:6e:df:d6:1d:36:cc:14:d8:0c:bd: e8:91:07:04:44:69:29:7a:1d:cc:d9:64:1a:59:d1: 2e:06:c8:7a:91:09:10:ea:93:17:f2:5e:5f:4e:00: 11:f9:be:a5:71:bb:b1:9d:b0:fd:8f:65:09:12:11: 43:ce:27:33:b4:83:7f:02:30:b2:5a:92:30:2c:f0: 8f:f0:f1:1c:57:7d:0d:a3:7c:7d:f3:16:ef:62:b9: 7b:cf:3a:02:44:ee:27:7d:0b:6b:f7:79:19:80:55: 59:92:d2:6a:36:2d:07:a7:cf:e0:34:da:7e:f0:e5: 5d:c3:4d:e5:31:a2:a5:24:fc:61:80:08:a0:08:5c: 70:d5:08:73:54:a6:bd:01:da:6e:60:b7:ba:7a:9b: 46:b7:bc:d7:f4:ef:8d:ea:82:47:ef:28:ab:e9:a5: c8:56:36:48:ec:2c:e9:ae:96:19:d1:d7:62:94:11: 3e:27:10:e5:7e:9a:b9:99:a2:44:f0:5d:24:e5:df: 2d:7e:35:08:89:fd:6e:f5:12:b5:a8:c2:93:cb:05: ac:3f:fc:77:c5:ec:e0:b5:51:f6:8d:6f:f2:38:6e: c0:36:b8:31:c7:f6:72:bb:d4:61:c2:a3:37:e3:ff: c6:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:3F:E5:C1:58:16:E4:92:55:56:13:B6:F9:72:D6:A1:B4:E6:7D:95 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e5a52770-75fd-4126-9116-3362d8dc25af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.16.108.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:d1:9d:10:4a:b5:02:7f:2c:72:c0:82:a2:b9:98:b1:a8:37: 60:8a:95:1c:20:7b:81:8a:bb:94:d3:4d:65:0c:2e:77:2b:b4: f3:e4:8a:27:f4:9a:ae:f6:98:a8:74:50:85:e1:07:15:d8:82: 32:25:1e:8c:b8:43:db:1d:ab:5f:72:f0:31:0d:2c:1a:f9:1a: e5:4f:e1:17:cf:33:d6:d3:86:fb:37:09:a1:c1:e6:1c:65:04: 7f:93:d9:8e:83:0b:89:b8:60:d4:b0:f6:f1:7c:0c:a6:dd:1f: f4:1e:2a:cf:a4:46:1c:22:db:78:9e:70:5d:c5:ea:08:53:30: 4d:6e:0a:50:dd:ce:d6:a2:a2:17:ba:1c:7a:fc:89:82:a3:bd: 15:2e:dd:ee:cc:31:d9:fe:36:c2:34:26:77:81:b3:88:5d:8a: 02:47:d4:12:e4:ad:0b:dd:c2:aa:44:dc:76:d5:c8:7d:6c:90: 5e:b9:53:79:e0:a2:de:52:3d:28:63:e9:b1:90:90:9f:51:7e: da:1e:a5:d3:10:ec:a8:28:e1:a0:32:91:ba:6f:31:e4:b6:d7: 7f:a5:04:5d:ee:ac:6d:a1:f6:ae:c1:4f:0e:3d:bf:13:2d:25: db:a1:31:43:f3:89:8c:27:3c:aa:b7:88:af:4c:a4:6a:83:ab: 73:d7:d1:53 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNU8E/vPdhd9/a4SQaVhpcRhEFKkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA2MDE1MDQ4WhcNMjYwMzA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YThjY2JjZmE0NmU2NTc0MWJlY2MyMmU5YjdhYjE5NmVl NTI4YmJlNTVkZjc1NTYzYWNhOGI5OGM1OGZhY2U2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCIFKVjAxjRjqk8x7CzlEvQKdubt/WHTbMFNgMveiRBwRE aSl6HczZZBpZ0S4GyHqRCRDqkxfyXl9OABH5vqVxu7GdsP2PZQkSEUPOJzO0g38C MLJakjAs8I/w8RxXfQ2jfH3zFu9iuXvPOgJE7id9C2v3eRmAVVmS0mo2LQenz+A0 2n7w5V3DTeUxoqUk/GGACKAIXHDVCHNUpr0B2m5gt7p6m0a3vNf0743qgkfvKKvp pchWNkjsLOmulhnR12KUET4nEOV+mrmZokTwXSTl3y1+NQiJ/W71ErWowpPLBaw/ /HfF7OC1UfaNb/I4bsA2uDHH9nK71GHCozfj/8ZPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVz/lwVgW5JJVVhO2+XLWobTmfZUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U1YTUyNzcwLTc1ZmQtNDEyNi05MTE2LTMzNjJkOGRjMjVhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEQEGwwDQYJKoZIhvcNAQELBQADggEBAF3RnRBKtQJ/LHLAgqK5mLGoN2CK lRwge4GKu5TTTWUMLncrtPPkiif0mq72mKh0UIXhBxXYgjIlHoy4Q9sdq19y8DEN LBr5GuVP4RfPM9bThvs3CaHB5hxlBH+T2Y6DC4m4YNSw9vF8DKbdH/QeKs+kRhwi 23iecF3F6ghTME1uClDdztaiohe6HHr8iYKjvRUu3e7MMdn+NsI0JneBs4hdigJH 1BLkrQvdwqpE3HbVyH1skF65U3ngot5SPShj6bGQkJ9RftoepdMQ7Kgo4aAykbpv MeS213+lBF3urG2h9q7BTw49vxMtJduhMUPziYwnPKq3iK9MpGqDq3PX0VM= -----END CERTIFICATE-----Generated at Sat Dec 6 12:26:28 2025 by rpki-client