This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f291d4a5-d59c-4386-a5c9-5fee4e2a78ef.roa File: f291d4a5-d59c-4386-a5c9-5fee4e2a78ef.roa (raw, json) Hash identifier: 1RHVTGwjQiE4EE6IiNqkMqpmbnRJID9dez8uu0L5wzs= Subject key identifier: 92:6B:C5:D3:F2:91:E0:3A:6C:10:AA:74:F0:37:AC:B0:C9:36:90:04 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 38142D265F6907F0823C83664B590406A8937DBF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f291d4a5-d59c-4386-a5c9-5fee4e2a78ef.roa Signing time: Tue 25 Nov 2025 00:11:18 +0000 ROA not before: Tue 25 Nov 2025 00:11:18 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 13.128.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:14:2d:26:5f:69:07:f0:82:3c:83:66:4b:59:04:06:a8:93:7d:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 25 00:11:18 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=561554bd541f326dd7c4fd83ece1b5f0c203694a7a9c11fdcc0bcde3b6fb991f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:d2:f8:5b:f5:9b:a5:8d:54:79:2c:27:90:b9: b2:a0:61:2b:bc:0c:50:31:8f:27:a1:b7:40:6f:39: 6c:58:98:48:0c:90:49:b4:f5:7e:24:6b:4e:f5:c6: dc:85:0a:4f:41:8d:bb:d4:34:6f:43:e1:c8:71:6b: 0e:ba:1a:03:68:73:9a:11:c4:db:db:b2:13:c6:5d: 10:24:ba:67:97:d4:0b:e2:53:6a:e4:bb:fd:fd:98: de:46:41:db:3e:8d:42:22:f6:5d:ae:57:63:b3:cc: af:e2:a8:be:5a:d6:67:f5:e2:47:77:16:f8:3c:81: 21:7c:c2:1f:f1:f9:e1:de:ba:13:d3:9b:27:01:9d: 25:cd:b7:76:c0:f2:2d:8e:e3:69:35:54:8c:e3:60: 38:09:7e:35:7d:0b:84:0b:0a:a6:1d:4c:3b:ee:aa: 44:18:ff:cf:d9:4b:9d:81:50:f1:90:d4:4f:be:c2: 9e:58:c1:6e:37:c2:1a:17:f7:0d:3b:3a:d8:a0:55: 98:b3:c0:a3:36:da:b0:3c:d4:f8:53:d4:6a:24:0c: e8:32:e4:a9:1f:43:a3:7a:40:65:57:2a:a9:e5:ce: ea:6c:26:0d:a3:28:f1:f1:be:63:6c:39:b1:07:12: 44:30:90:ee:55:57:f9:ef:77:21:c0:80:e6:d3:8b: a4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:6B:C5:D3:F2:91:E0:3A:6C:10:AA:74:F0:37:AC:B0:C9:36:90:04 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f291d4a5-d59c-4386-a5c9-5fee4e2a78ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.64.0/20 Signature Algorithm: sha256WithRSAEncryption 21:21:77:e3:c1:0b:f9:66:5f:df:42:9b:df:93:d6:9a:f6:54: fd:46:a1:8d:0b:a9:96:9d:b4:bb:35:54:ef:ce:ce:33:15:49: db:c4:e2:4c:fd:b6:23:0d:0b:4c:bd:16:3f:72:a6:f1:cb:90: 61:aa:50:4e:42:6b:61:7d:f9:23:70:b2:26:3b:93:d6:3d:9a: 14:e0:a5:e4:61:85:87:a4:c6:7c:55:a8:c1:e6:7b:ad:4f:37: a2:cf:28:2b:94:ee:47:01:fb:a3:60:44:14:2c:a7:7f:e9:0e: 39:b7:9a:9c:de:92:47:3b:88:d1:de:a6:ae:59:e2:a0:73:21: 26:0f:8a:b7:fc:ed:a3:c7:0f:69:6e:77:f4:6a:9d:1d:16:c7: ea:e8:1b:ec:bb:02:fa:eb:bb:2b:be:c5:63:99:77:6e:2a:76: ec:6f:e3:a8:c6:41:0b:4b:4e:2c:d7:22:75:54:cb:ef:46:37: a9:14:e9:8d:09:d9:27:29:bc:db:db:cb:f5:fa:e9:f5:5f:df: d2:7d:5d:ab:f1:7e:69:c2:ed:6f:97:47:b0:70:c0:50:90:75: a2:9e:f5:ae:77:1b:7d:f9:22:43:01:e5:ca:8d:ce:45:c8:13: 90:e5:58:21:66:4f:27:19:8b:15:b2:63:5e:14:78:6b:6e:2c: 77:d7:43:81 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOBQtJl9pB/CCPINmS1kEBqiTfb8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI1MDAxMTE4WhcNMjYwMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NjE1NTRiZDU0MWYzMjZkZDdjNGZkODNlY2UxYjVmMGMy MDM2OTRhN2E5YzExZmRjYzBiY2RlM2I2ZmI5OTFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCP0vhb9ZuljVR5LCeQubKgYSu8DFAxjyeht0BvOWxYmEgM kEm09X4ka071xtyFCk9BjbvUNG9D4chxaw66GgNoc5oRxNvbshPGXRAkumeX1Avi U2rku/39mN5GQds+jUIi9l2uV2OzzK/iqL5a1mf14kd3Fvg8gSF8wh/x+eHeuhPT mycBnSXNt3bA8i2O42k1VIzjYDgJfjV9C4QLCqYdTDvuqkQY/8/ZS52BUPGQ1E++ wp5YwW43whoX9w07OtigVZizwKM22rA81PhT1GokDOgy5KkfQ6N6QGVXKqnlzups Jg2jKPHxvmNsObEHEkQwkO5VV/nvdyHAgObTi6SxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkmvF0/KR4DpsEKp08DessMk2kAQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyOTFkNGE1LWQ1OWMtNDM4Ni1hNWM5LTVmZWU0ZTJhNzhlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNgEAwDQYJKoZIhvcNAQELBQADggEBACEhd+PBC/lmX99Cm9+T1pr2VP1G oY0LqZadtLs1VO/OzjMVSdvE4kz9tiMNC0y9Fj9ypvHLkGGqUE5Ca2F9+SNwsiY7 k9Y9mhTgpeRhhYekxnxVqMHme61PN6LPKCuU7kcB+6NgRBQsp3/pDjm3mpzekkc7 iNHepq5Z4qBzISYPirf87aPHD2lud/RqnR0Wx+roG+y7Avrruyu+xWOZd24qduxv 46jGQQtLTizXInVUy+9GN6kU6Y0J2ScpvNvby/X66fVf39J9XavxfmnC7W+XR7Bw wFCQdaKe9a53G335IkMB5cqNzkXIE5DlWCFmTycZixWyY14UeGtuLHfXQ4E= -----END CERTIFICATE-----Generated at Sat Dec 6 19:55:26 2025 by rpki-client