This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2c885d6-4061-421b-99ff-f05202cdada5.roa File: f2c885d6-4061-421b-99ff-f05202cdada5.roa (raw, json) Hash identifier: PndUpDnpr4znxKgu6pQVdql2O2xvUXE8honjnYgYraU= Subject key identifier: 6E:6F:07:FB:DD:3B:41:DB:7F:B7:D0:BA:D9:E3:47:C4:44:C7:18:A7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 41B4933DD4A4B2CCC47DD6F48789798B440F13F2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2c885d6-4061-421b-99ff-f05202cdada5.roa Signing time: Tue 25 Nov 2025 00:20:43 +0000 ROA not before: Tue 25 Nov 2025 00:20:43 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 44.223.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:b4:93:3d:d4:a4:b2:cc:c4:7d:d6:f4:87:89:79:8b:44:0f:13:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 25 00:20:43 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=d6974c34944a5795d062a4b208bde13b9b8a1051bdf5d9bf5887d23cff84626d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c8:5c:70:f4:82:e5:94:12:88:99:aa:f6:06: d3:68:13:64:6a:3a:8a:e7:69:47:3f:db:8c:80:a9: a0:67:92:f3:91:94:70:a8:a3:ba:ef:5c:d7:d5:f9: 62:aa:d5:6b:5a:3c:91:75:50:d3:ae:d5:2b:89:99: 0f:86:67:4e:c0:a2:b5:7a:65:61:c2:88:0c:26:1b: 75:3a:10:89:8d:46:db:b3:a7:f3:99:c9:5b:ea:bf: f9:3b:09:c3:26:83:ed:34:9b:38:7a:55:a5:1f:b7: 24:4f:13:4c:8b:4b:3d:51:de:ea:ef:f2:7c:66:34: 91:4f:cd:9f:d9:f5:f8:7d:b6:23:b4:c9:9b:29:10: fd:2c:1f:d4:66:31:60:b3:46:14:1d:fe:c1:b1:db: a9:db:1f:ff:f8:19:91:de:38:bc:25:71:61:bf:57: 61:6c:6d:ee:0a:eb:2b:b0:88:b2:02:42:36:ed:1f: 0b:de:84:e0:bd:4d:0c:7c:a3:4a:1b:e0:38:9c:29: 24:5f:94:31:c3:5a:69:9b:0b:a1:c6:2c:76:96:f8: 47:87:84:8e:64:97:3e:5d:f8:9a:e1:7b:27:80:ae: f7:58:96:31:58:ae:89:c1:1a:57:a6:7a:da:57:22: 0f:d6:16:31:02:bf:71:86:b3:19:f4:14:39:3e:7a: 10:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:6F:07:FB:DD:3B:41:DB:7F:B7:D0:BA:D9:E3:47:C4:44:C7:18:A7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2c885d6-4061-421b-99ff-f05202cdada5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.223.121.0/24 Signature Algorithm: sha256WithRSAEncryption 23:e1:00:04:c7:a9:f5:fc:77:ce:87:5c:7e:be:cd:68:e1:b6: 5e:57:19:f2:72:80:00:d4:a4:6e:8f:e5:5f:72:4a:36:12:04: a0:75:d2:d8:69:ca:f9:b8:cb:59:c0:6f:1e:a0:72:0d:f3:f8: e1:78:41:1e:2d:f0:4e:45:25:fd:a1:73:43:7b:de:0d:c4:6d: 0c:21:64:7a:7d:a3:c3:1a:9d:8d:2f:9d:ba:91:04:70:b2:8c: 84:ca:bc:19:4c:31:e0:1e:a8:ec:05:bf:c8:5a:e6:23:13:0c: da:c3:8c:14:f2:6f:43:0f:c8:4b:1f:bd:9d:1c:b2:0a:6a:55: 88:d4:c1:3f:f1:15:38:78:b7:a0:88:15:74:3a:e8:3e:f4:89: 77:9f:3a:2b:1e:07:f3:22:c6:cf:5e:e6:af:26:90:c0:d4:a6: 52:46:9f:ab:4a:c7:76:f9:47:f0:ec:ce:97:b7:70:fd:d0:7e: 95:a7:18:86:00:a6:c0:6b:8b:d2:45:dd:0a:a0:8c:37:41:b3: be:72:40:39:1e:99:25:63:35:a9:e2:6a:aa:f7:47:ab:e4:8f: a5:43:19:7a:0e:55:29:80:de:aa:b8:2b:85:92:3f:9f:a3:42: c1:d0:03:e3:70:93:e5:30:72:59:e2:0c:44:e2:5b:5c:c6:d0: 6a:bb:80:06 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQbSTPdSksszEfdb0h4l5i0QPE/IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI1MDAyMDQzWhcNMjYwMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNjk3NGMzNDk0NGE1Nzk1ZDA2MmE0YjIwOGJkZTEzYjli OGExMDUxYmRmNWQ5YmY1ODg3ZDIzY2ZmODQ2MjZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjyFxw9ILllBKImar2BtNoE2RqOornaUc/24yAqaBnkvOR lHCoo7rvXNfV+WKq1WtaPJF1UNOu1SuJmQ+GZ07AorV6ZWHCiAwmG3U6EImNRtuz p/OZyVvqv/k7CcMmg+00mzh6VaUftyRPE0yLSz1R3urv8nxmNJFPzZ/Z9fh9tiO0 yZspEP0sH9RmMWCzRhQd/sGx26nbH//4GZHeOLwlcWG/V2Fsbe4K6yuwiLICQjbt HwvehOC9TQx8o0ob4DicKSRflDHDWmmbC6HGLHaW+EeHhI5klz5d+JrheyeArvdY ljFYronBGlemetpXIg/WFjECv3GGsxn0FDk+ehBvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbm8H+907Qdt/t9C62eNHxETHGKcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyYzg4NWQ2LTQwNjEtNDIxYi05OWZmLWYwNTIwMmNkYWRhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAs33kwDQYJKoZIhvcNAQELBQADggEBACPhAATHqfX8d86HXH6+zWjhtl5X GfJygADUpG6P5V9ySjYSBKB10thpyvm4y1nAbx6gcg3z+OF4QR4t8E5FJf2hc0N7 3g3EbQwhZHp9o8ManY0vnbqRBHCyjITKvBlMMeAeqOwFv8ha5iMTDNrDjBTyb0MP yEsfvZ0csgpqVYjUwT/xFTh4t6CIFXQ66D70iXefOiseB/Mixs9e5q8mkMDUplJG n6tKx3b5R/Dszpe3cP3QfpWnGIYApsBri9JF3QqgjDdBs75yQDkemSVjNaniaqr3 R6vkj6VDGXoOVSmA3qq4K4WSP5+jQsHQA+Nwk+UwclniDETiW1zG0Gq7gAY= -----END CERTIFICATE-----Generated at Sat Dec 6 13:51:59 2025 by rpki-client