This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e85f7629-042d-460b-8057-96331b4ff972.roa File: e85f7629-042d-460b-8057-96331b4ff972.roa (raw, json) Hash identifier: P8d9L1JrqFSgFz2YoLUaHCnUZkYJ2YNhamxSGGD0b2Q= Subject key identifier: 94:53:6B:B7:A9:2D:AC:C4:03:DA:85:44:FF:BB:57:6A:28:89:08:A5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4351FB43ABF37E43760F65B6EC92B07AC8BB3097 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e85f7629-042d-460b-8057-96331b4ff972.roa Signing time: Wed 26 Nov 2025 01:00:09 +0000 ROA not before: Wed 26 Nov 2025 01:00:09 +0000 ROA not after: Tue 24 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 209.19.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:51:fb:43:ab:f3:7e:43:76:0f:65:b6:ec:92:b0:7a:c8:bb:30:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 26 01:00:09 2025 GMT Not After : Feb 24 23:59:59 2026 GMT Subject: serialNumber=5dc221e6ee028591ad28906b2cd2604e11b00055f6a70ec71372868d10f0f9a8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e7:be:75:bd:0a:cc:78:98:df:d1:29:0f:f9: 1c:27:3f:55:6e:63:0a:f4:ae:24:3a:25:7a:0d:11: e9:b7:73:20:79:fa:09:73:cc:2b:44:98:0b:95:3f: 88:a6:cb:08:4a:88:25:b1:8c:2e:88:5c:58:d6:bf: 78:89:89:fe:fe:5d:22:49:a8:e8:5a:b8:60:0b:c8: 3d:78:ee:38:44:19:30:a6:4b:6f:ae:de:02:ec:41: e5:57:d6:fe:e7:cb:e2:32:82:55:8b:bf:eb:73:0f: 3f:82:40:bc:76:2b:be:4b:e5:d1:38:a6:a8:6a:2d: d1:97:07:e4:9d:b1:fe:b9:46:3a:42:08:d3:e4:69: 01:e1:f7:5a:b9:64:45:cd:3a:03:09:cf:09:cd:e9: b8:7e:0a:62:4c:82:1b:8a:50:c2:30:45:c7:10:57: 6c:57:d5:9d:43:be:86:ec:85:e3:00:ff:16:2d:06: 0e:3c:77:be:14:e4:39:09:8c:35:8d:f5:6f:ff:6f: a5:91:43:67:86:df:6f:0f:a1:16:d9:3c:fa:45:b8: 93:5a:b9:fc:cc:80:e3:25:af:49:7f:27:40:13:41: bf:49:25:64:15:63:13:70:db:a7:ad:c8:65:ec:56: 0c:56:59:67:69:c0:fd:bc:0e:3b:00:95:66:c8:8b: 8c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:53:6B:B7:A9:2D:AC:C4:03:DA:85:44:FF:BB:57:6A:28:89:08:A5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e85f7629-042d-460b-8057-96331b4ff972.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.19.0.0/17 Signature Algorithm: sha256WithRSAEncryption 92:eb:e1:9f:46:ee:ee:bf:fc:3e:29:fe:30:e2:55:0b:43:49: 4a:3e:e8:75:0e:e0:d9:c8:65:88:d5:fa:d1:b2:15:89:35:a8: 0d:8f:d8:d9:17:3d:56:03:03:94:e8:75:a5:7d:a9:a9:bf:b3: b8:aa:40:e6:ad:f9:ac:b1:d6:4e:2e:41:d9:89:a7:f4:f4:7b: 1b:e0:13:19:d0:80:61:3d:7c:1b:3b:b0:e5:d0:7f:71:50:d9: 2f:2e:79:1f:21:9f:ca:df:59:67:c9:d9:fe:5c:25:f3:28:b8: 68:68:14:f0:db:84:e0:c5:7a:05:78:fb:09:46:fb:eb:b2:3f: c0:00:dc:f6:97:9c:2c:c9:1d:e7:02:69:7c:3b:b3:1a:8b:df: 84:22:dc:55:b8:75:f7:a5:55:1e:dd:18:47:58:4d:cb:b9:68: 13:6f:e1:48:b2:2a:50:ce:83:33:ee:3a:b6:9e:f2:8e:d3:cd: 76:b6:9d:14:c6:7b:f3:15:05:87:4b:fe:6a:96:26:1c:92:03: 80:54:11:30:70:ca:e8:af:7d:ab:a4:2c:5b:47:d1:ba:ea:3a: d2:d8:5d:31:8b:a7:a9:f0:56:b6:77:f8:97:12:a8:c8:a8:41: 16:ef:ea:56:ef:2b:53:6e:b2:02:2d:52:ef:39:5c:36:c1:6a: a7:87:79:18 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ1H7Q6vzfkN2D2W27JKwesi7MJcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI2MDEwMDA5WhcNMjYwMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZGMyMjFlNmVlMDI4NTkxYWQyODkwNmIyY2QyNjA0ZTEx YjAwMDU1ZjZhNzBlYzcxMzcyODY4ZDEwZjBmOWE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCp5751vQrMeJjf0SkP+RwnP1VuYwr0riQ6JXoNEem3cyB5 +glzzCtEmAuVP4imywhKiCWxjC6IXFjWv3iJif7+XSJJqOhauGALyD147jhEGTCm S2+u3gLsQeVX1v7ny+IyglWLv+tzDz+CQLx2K75L5dE4pqhqLdGXB+Sdsf65RjpC CNPkaQHh91q5ZEXNOgMJzwnN6bh+CmJMghuKUMIwRccQV2xX1Z1DvobsheMA/xYt Bg48d74U5DkJjDWN9W//b6WRQ2eG328PoRbZPPpFuJNaufzMgOMlr0l/J0ATQb9J JWQVYxNw26etyGXsVgxWWWdpwP28DjsAlWbIi4zbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlFNrt6ktrMQD2oVE/7tXaiiJCKUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U4NWY3NjI5LTA0MmQtNDYwYi04MDU3LTk2MzMxYjRmZjk3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfREwAwDQYJKoZIhvcNAQELBQADggEBAJLr4Z9G7u6//D4p/jDiVQtDSUo+ 6HUO4NnIZYjV+tGyFYk1qA2P2NkXPVYDA5TodaV9qam/s7iqQOat+ayx1k4uQdmJ p/T0exvgExnQgGE9fBs7sOXQf3FQ2S8ueR8hn8rfWWfJ2f5cJfMouGhoFPDbhODF egV4+wlG++uyP8AA3PaXnCzJHecCaXw7sxqL34Qi3FW4dfelVR7dGEdYTcu5aBNv 4UiyKlDOgzPuOrae8o7TzXa2nRTGe/MVBYdL/mqWJhySA4BUETBwyuivfaukLFtH 0brqOtLYXTGLp6nwVrZ3+JcSqMioQRbv6lbvK1NusgItUu85XDbBaqeHeRg= -----END CERTIFICATE-----Generated at Sat Dec 6 13:54:44 2025 by rpki-client