This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f95b2888-5f3f-4f91-b2d8-5c197dd01543.roa File: f95b2888-5f3f-4f91-b2d8-5c197dd01543.roa (raw, json) Hash identifier: 5g01pFb+N1rgH/+QSTm7Z7+tXbw+1FqcADV5Z2quLjg= Subject key identifier: 4F:96:87:9B:0D:D7:AF:BB:1E:27:EA:35:D3:45:F9:9F:5E:A0:B2:25 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B1C038100E7E3EAD153EB02EF526BA27A0819D8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f95b2888-5f3f-4f91-b2d8-5c197dd01543.roa Signing time: Sat 29 Nov 2025 00:00:43 +0000 ROA not before: Sat 29 Nov 2025 00:00:43 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 114.56.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:1c:03:81:00:e7:e3:ea:d1:53:eb:02:ef:52:6b:a2:7a:08:19:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 29 00:00:43 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=1f93a00738bba9e767d27199bc0f4fefea968b2c1fd9a7fe166fd29026eb8476, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f3:0a:27:71:b3:c2:a1:49:20:ea:44:ec:f3: af:fd:bf:bd:d3:e1:1a:36:df:6c:b0:1a:b2:f1:38: a5:e6:a2:7a:61:d0:bf:db:24:7f:f8:66:14:aa:23: 85:39:da:f5:a0:19:17:17:cb:b3:7a:90:4c:5f:66: e0:e9:4e:95:9b:9e:4b:ce:88:b5:75:35:aa:aa:02: 1b:54:a7:02:cd:e7:71:21:a7:96:3d:15:6f:37:d4: 8a:82:36:73:8b:54:48:06:57:53:fd:b9:b3:ff:9a: a3:8c:58:9b:3e:23:c1:c7:b7:67:42:b8:d9:be:d7: a5:e3:52:03:58:77:7d:71:a8:83:9d:77:99:fd:5b: 49:62:b1:88:23:3f:ee:69:69:b1:02:47:60:12:7e: 34:a2:1e:88:d2:8a:e1:3d:be:fe:65:88:99:58:24: 74:cf:b2:70:b7:07:74:cf:cb:d7:0a:d5:76:10:c3: a9:4a:85:de:d7:c7:5b:a6:e3:d6:36:6c:af:26:a1: df:46:d9:09:f8:8c:c0:c8:94:f0:90:1d:44:29:3e: d2:0d:26:72:7d:44:b5:a4:29:49:e0:64:20:35:97: 38:8b:c5:76:66:87:47:31:11:76:1b:90:3f:1b:c8: e3:e6:09:f4:9f:54:49:c9:07:86:5e:2a:1f:64:7d: e5:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:96:87:9B:0D:D7:AF:BB:1E:27:EA:35:D3:45:F9:9F:5E:A0:B2:25 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f95b2888-5f3f-4f91-b2d8-5c197dd01543.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.56.132.0/24 Signature Algorithm: sha256WithRSAEncryption a4:db:f9:d1:4b:70:c6:07:ec:19:c4:1a:41:b1:98:9d:24:a5: cd:17:b9:76:f9:2b:cd:e2:b5:ac:a8:ed:7b:01:c4:70:02:22: e6:06:db:23:c4:f4:fd:0f:97:7d:25:2f:a0:23:42:ab:26:55: 70:dc:84:11:5f:ce:3b:ab:b7:dd:7e:d3:4a:17:5e:2d:1b:17: e7:d8:ec:38:9f:43:1b:c0:73:b7:ea:03:7d:ad:9a:dc:ab:2b: e6:01:61:aa:77:b1:9e:a8:80:84:08:03:12:7c:4f:18:b2:fa: 8c:6e:e3:8f:cf:c1:f5:10:0c:b3:eb:61:20:35:26:65:1e:c0: 52:f8:ce:31:d2:1b:45:d9:63:29:8b:a7:31:10:6a:8b:6b:2f: ef:ad:e2:4f:29:d0:db:38:96:bd:fe:65:80:0a:1a:84:06:f2: 30:04:64:bf:74:ba:f2:6e:12:37:eb:5f:07:65:48:7b:2e:53: 91:76:51:72:46:d6:05:60:41:2e:12:ca:22:d7:ce:4f:06:01: 70:3b:8c:d9:fe:d6:53:18:7c:2e:5d:95:19:69:f5:55:3a:e1: 71:0c:81:c4:f9:e6:b3:ce:55:d2:cc:8a:90:61:30:53:bc:da: 87:31:cb:19:ca:eb:52:8e:26:1d:c1:1b:1a:ec:22:f9:c2:a9: 6e:a5:c2:3f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGxwDgQDn4+rRU+sC71JronoIGdgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI5MDAwMDQzWhcNMjYwMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZjkzYTAwNzM4YmJhOWU3NjdkMjcxOTliYzBmNGZlZmVh OTY4YjJjMWZkOWE3ZmUxNjZmZDI5MDI2ZWI4NDc2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDL8woncbPCoUkg6kTs86/9v73T4Ro232ywGrLxOKXmonph 0L/bJH/4ZhSqI4U52vWgGRcXy7N6kExfZuDpTpWbnkvOiLV1NaqqAhtUpwLN53Eh p5Y9FW831IqCNnOLVEgGV1P9ubP/mqOMWJs+I8HHt2dCuNm+16XjUgNYd31xqIOd d5n9W0lisYgjP+5pabECR2ASfjSiHojSiuE9vv5liJlYJHTPsnC3B3TPy9cK1XYQ w6lKhd7Xx1um49Y2bK8mod9G2Qn4jMDIlPCQHUQpPtINJnJ9RLWkKUngZCA1lziL xXZmh0cxEXYbkD8byOPmCfSfVEnJB4ZeKh9kfeVdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUT5aHmw3Xr7seJ+o100X5n16gsiUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y5NWIyODg4LTVmM2YtNGY5MS1iMmQ4LTVjMTk3ZGQwMTU0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAByOIQwDQYJKoZIhvcNAQELBQADggEBAKTb+dFLcMYH7BnEGkGxmJ0kpc0X uXb5K83itayo7XsBxHACIuYG2yPE9P0Pl30lL6AjQqsmVXDchBFfzjurt91+00oX Xi0bF+fY7DifQxvAc7fqA32tmtyrK+YBYap3sZ6ogIQIAxJ8Txiy+oxu44/PwfUQ DLPrYSA1JmUewFL4zjHSG0XZYymLpzEQaotrL++t4k8p0Ns4lr3+ZYAKGoQG8jAE ZL90uvJuEjfrXwdlSHsuU5F2UXJG1gVgQS4SyiLXzk8GAXA7jNn+1lMYfC5dlRlp 9VU64XEMgcT55rPOVdLMipBhMFO82ocxyxnK61KOJh3BGxrsIvnCqW6lwj8= -----END CERTIFICATE-----Generated at Sat Dec 6 21:03:06 2025 by rpki-client