This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2a82e51-505a-4886-af9b-6d40cb2ba521.roa File: f2a82e51-505a-4886-af9b-6d40cb2ba521.roa (raw, json) Hash identifier: ++yhDcMJr3pzaWxYd2IKz+vyoIekENyBWep57+zujmE= Subject key identifier: 33:A1:D8:17:64:E2:B8:29:35:02:CE:EF:4F:11:57:2E:89:51:94:0E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 255C3751FFF12FC1B065C02D862287CB58E591B4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2a82e51-505a-4886-af9b-6d40cb2ba521.roa Signing time: Sat 06 Dec 2025 01:51:33 +0000 ROA not before: Sat 06 Dec 2025 01:51:33 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 107.21.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:5c:37:51:ff:f1:2f:c1:b0:65:c0:2d:86:22:87:cb:58:e5:91:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 6 01:51:33 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=a3412eb1c6955de69c0643aaddbd0b9ac60a198a4ab7593ef17a38bf1859bfde, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d0:09:45:05:13:54:25:bc:a0:46:f6:28:6a: 05:ec:ea:88:e8:7b:94:fc:0a:4e:f5:db:9b:7a:78: c5:18:03:04:74:4e:55:9d:84:f3:9c:ec:1f:3f:0b: 6c:8f:8b:24:58:71:22:1d:db:85:9d:72:af:d7:3c: 68:84:57:ce:3e:37:d4:90:1b:37:1d:d8:2f:1e:bf: 36:64:1f:60:3c:a0:7a:99:75:28:4e:8d:af:45:1a: 54:3a:f6:3d:a7:52:40:83:89:14:9a:4b:86:35:b0: bc:a5:d3:3f:9b:28:a5:57:c6:24:7b:78:7b:02:67: f5:a0:17:7a:71:c7:1c:cb:f0:d5:c8:8b:27:e4:19: 4b:fc:83:39:33:a8:b7:7c:61:af:f0:2b:c5:1a:48: d5:28:a3:00:b0:ef:49:a5:f0:18:4f:0a:c6:5e:2d: 45:c8:57:71:64:56:bb:0b:ca:62:d9:6a:0f:dc:ad: fe:55:32:e6:fa:bd:23:7b:2e:16:cb:cd:f6:0c:64: 3c:2c:d5:55:dc:61:56:c0:10:0e:56:b6:aa:22:2c: c8:23:56:f9:7d:a5:d2:1b:7f:6c:2e:63:90:a3:cc: 18:7b:2b:d1:ec:01:64:6a:7a:fb:13:7b:25:4d:50: 26:18:c1:3d:05:52:e8:a5:94:ac:35:49:bc:45:bb: 61:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:A1:D8:17:64:E2:B8:29:35:02:CE:EF:4F:11:57:2E:89:51:94:0E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2a82e51-505a-4886-af9b-6d40cb2ba521.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.21.208.0/20 Signature Algorithm: sha256WithRSAEncryption 3b:bc:29:72:59:51:f3:33:ca:4a:7c:f3:1d:b5:bf:a0:3c:01: 1b:96:1c:47:a6:04:4b:66:c4:71:1f:69:f8:38:a6:82:6d:3a: 8b:9e:de:a3:62:81:a4:96:2f:63:a4:78:86:19:e7:73:fb:e8: e9:96:c1:d2:62:34:ff:95:9d:d7:62:e4:e0:f8:6a:a8:79:81: ab:d6:58:17:7e:90:76:bd:7c:07:a7:d5:2c:65:76:fd:10:ee: db:c7:6e:55:fa:5f:15:e2:d4:81:da:b7:8e:9a:0b:ba:24:a5: 90:35:5d:9e:a0:fc:7e:33:24:03:e1:3c:4b:03:22:80:40:2b: 88:ab:42:d3:96:c4:8e:10:9f:b1:d9:00:ce:25:f5:11:78:0e: 2e:96:6c:ef:f1:15:d8:f7:3b:72:11:6f:a4:8a:5f:e4:c0:c1: e1:cf:86:c7:4d:9e:0a:54:b9:62:26:86:bb:be:21:8a:58:86: 74:b5:ac:5b:eb:9a:02:36:71:a1:1b:6a:d8:05:a3:08:4d:e0: db:2c:78:17:18:4e:83:78:e6:f9:9d:5b:d8:e1:83:3a:d8:4e: a1:1a:d3:f6:2c:8f:6a:1a:34:ee:6f:c0:1d:93:b8:8e:71:23: 16:13:d6:27:d8:86:6e:25:6c:cc:fd:68:8d:33:8f:56:01:4f: a7:57:80:47 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJVw3Uf/xL8GwZcAthiKHy1jlkbQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA2MDE1MTMzWhcNMjYwMzA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMzQxMmViMWM2OTU1ZGU2OWMwNjQzYWFkZGJkMGI5YWM2 MGExOThhNGFiNzU5M2VmMTdhMzhiZjE4NTliZmRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCs0AlFBRNUJbygRvYoagXs6ojoe5T8Ck7125t6eMUYAwR0 TlWdhPOc7B8/C2yPiyRYcSId24Wdcq/XPGiEV84+N9SQGzcd2C8evzZkH2A8oHqZ dShOja9FGlQ69j2nUkCDiRSaS4Y1sLyl0z+bKKVXxiR7eHsCZ/WgF3pxxxzL8NXI iyfkGUv8gzkzqLd8Ya/wK8UaSNUoowCw70ml8BhPCsZeLUXIV3FkVrsLymLZag/c rf5VMub6vSN7LhbLzfYMZDws1VXcYVbAEA5WtqoiLMgjVvl9pdIbf2wuY5CjzBh7 K9HsAWRqevsTeyVNUCYYwT0FUuillKw1SbxFu2H/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUM6HYF2TiuCk1As7vTxFXLolRlA4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyYTgyZTUxLTUwNWEtNDg4Ni1hZjliLTZkNDBjYjJiYTUyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARrFdAwDQYJKoZIhvcNAQELBQADggEBADu8KXJZUfMzykp88x21v6A8ARuW HEemBEtmxHEfafg4poJtOoue3qNigaSWL2OkeIYZ53P76OmWwdJiNP+Vnddi5OD4 aqh5gavWWBd+kHa9fAen1Sxldv0Q7tvHblX6XxXi1IHat46aC7okpZA1XZ6g/H4z JAPhPEsDIoBAK4irQtOWxI4Qn7HZAM4l9RF4Di6WbO/xFdj3O3IRb6SKX+TAweHP hsdNngpUuWImhru+IYpYhnS1rFvrmgI2caEbatgFowhN4NsseBcYToN45vmdW9jh gzrYTqEa0/Ysj2oaNO5vwB2TuI5xIxYT1ifYhm4lbMz9aI0zj1YBT6dXgEc= -----END CERTIFICATE-----Generated at Sat Dec 6 16:30:21 2025 by rpki-client