This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fdb64d29-8d64-4450-9e51-563785a35ffb.roa File: fdb64d29-8d64-4450-9e51-563785a35ffb.roa (raw, json) Hash identifier: MbzAe32dAuYkmsKWU/N/jM9iqXJsbxxUSH1kEF+2UH8= Subject key identifier: CA:C5:12:09:E4:C7:81:F3:60:96:BB:60:73:54:F5:C9:70:91:03:91 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 422EF309F3A95C20F51A819CD670685B3F780B03 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fdb64d29-8d64-4450-9e51-563785a35ffb.roa Signing time: Wed 26 Nov 2025 00:50:08 +0000 ROA not before: Wed 26 Nov 2025 00:50:08 +0000 ROA not after: Tue 24 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 136.18.254.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:2e:f3:09:f3:a9:5c:20:f5:1a:81:9c:d6:70:68:5b:3f:78:0b:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 26 00:50:08 2025 GMT Not After : Feb 24 23:59:59 2026 GMT Subject: serialNumber=c7677bbc5712330e894c72fa1dc69a2e96efb8118c0521aba22456e8b6416366, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ef:51:67:4e:04:76:3f:f4:f1:6f:fd:32:1d: 8a:31:c2:f3:7b:5d:1d:b9:04:1b:97:97:e4:a4:7d: 91:1b:e6:23:a2:47:54:d4:35:09:eb:0e:14:1d:3b: fd:f1:15:21:f1:1f:f2:c0:cb:8c:58:e2:2d:23:fa: 3c:e0:e2:fe:41:a4:c5:c1:e5:36:99:ee:df:07:85: 00:ec:ff:09:b3:dc:8c:01:ec:d1:e7:1c:7f:84:b6: 25:97:f1:af:1a:2b:8c:c5:7f:d8:c8:47:4b:01:f0: f7:37:48:e8:db:77:32:ae:ff:6a:c6:2e:a0:c4:3c: 0e:f1:e8:b0:f7:99:b4:dc:95:80:ca:db:5a:01:ac: 00:16:b7:5b:2c:d0:e2:70:7a:fb:19:9e:06:fd:c6: 3e:5e:32:2f:a1:e9:a9:f9:df:28:a1:82:bc:9b:5c: 6e:01:4e:8f:96:f7:30:dd:75:ab:c8:92:30:26:d2: 5c:89:b8:4a:46:da:c8:cc:ac:cc:50:fa:3e:a9:05: 52:82:09:70:03:ec:e9:22:e3:5c:60:4c:e9:31:e5: 81:fe:2a:1b:de:92:d5:26:48:e6:02:78:86:b5:41: d7:6a:67:47:08:16:56:71:35:39:f6:1e:c7:5e:13: bb:dc:42:41:1f:d8:90:8d:26:39:5a:75:4d:26:75: bf:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:C5:12:09:E4:C7:81:F3:60:96:BB:60:73:54:F5:C9:70:91:03:91 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fdb64d29-8d64-4450-9e51-563785a35ffb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.254.0/23 Signature Algorithm: sha256WithRSAEncryption 87:a2:f9:ba:51:54:00:67:05:62:86:27:12:55:44:aa:59:11: ff:f0:f1:aa:75:b9:da:dc:6f:45:3d:b2:a3:23:77:90:3d:48: 2a:f3:29:d8:c9:67:56:9b:55:92:c5:6d:7f:88:ba:1e:4d:31: 4b:cf:31:9d:70:8f:79:c7:89:e5:47:34:b8:f7:40:4e:c7:36: 96:6b:ad:13:3c:5a:6b:09:aa:e2:1b:aa:bd:a4:a7:26:6d:f4: fc:9b:6b:92:bf:9e:17:9a:3c:08:14:8f:ef:21:40:08:5b:ab: 1f:a9:24:27:6f:3e:d4:12:7e:45:f3:5b:68:de:40:2e:df:1b: c3:c1:dc:52:77:06:7b:14:31:12:c5:14:62:18:49:ca:da:44: bf:d6:4d:e4:d9:98:87:a2:c7:1e:b5:88:3c:2b:96:af:12:82: dc:50:18:8f:b3:f7:88:6a:81:24:43:66:0f:e5:01:ed:1f:9f: 2e:53:8a:30:d2:09:fc:ce:16:34:f8:f0:bc:e1:f9:c7:12:c6: 59:3c:c6:05:fc:1e:20:bb:a1:81:73:cf:ae:8e:62:0f:25:83: b8:10:cc:91:d7:52:c6:9d:48:0d:19:99:e2:05:e5:08:e8:61: ba:6f:cd:2b:12:f4:da:1a:12:5b:82:be:2b:9e:6f:50:e0:87: ef:79:79:81 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQi7zCfOpXCD1GoGc1nBoWz94CwMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI2MDA1MDA4WhcNMjYwMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNzY3N2JiYzU3MTIzMzBlODk0YzcyZmExZGM2OWEyZTk2 ZWZiODExOGMwNTIxYWJhMjI0NTZlOGI2NDE2MzY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCx71FnTgR2P/Txb/0yHYoxwvN7XR25BBuXl+SkfZEb5iOi R1TUNQnrDhQdO/3xFSHxH/LAy4xY4i0j+jzg4v5BpMXB5TaZ7t8HhQDs/wmz3IwB 7NHnHH+EtiWX8a8aK4zFf9jIR0sB8Pc3SOjbdzKu/2rGLqDEPA7x6LD3mbTclYDK 21oBrAAWt1ss0OJwevsZngb9xj5eMi+h6an53yihgrybXG4BTo+W9zDddavIkjAm 0lyJuEpG2sjMrMxQ+j6pBVKCCXAD7Oki41xgTOkx5YH+KhvektUmSOYCeIa1Qddq Z0cIFlZxNTn2HsdeE7vcQkEf2JCNJjladU0mdb/FAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUysUSCeTHgfNglrtgc1T1yXCRA5EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZkYjY0ZDI5LThkNjQtNDQ1MC05ZTUxLTU2Mzc4NWEzNWZmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGIEv4wDQYJKoZIhvcNAQELBQADggEBAIei+bpRVABnBWKGJxJVRKpZEf/w 8ap1udrcb0U9sqMjd5A9SCrzKdjJZ1abVZLFbX+Iuh5NMUvPMZ1wj3nHieVHNLj3 QE7HNpZrrRM8WmsJquIbqr2kpyZt9Pyba5K/nheaPAgUj+8hQAhbqx+pJCdvPtQS fkXzW2jeQC7fG8PB3FJ3BnsUMRLFFGIYScraRL/WTeTZmIeixx61iDwrlq8SgtxQ GI+z94hqgSRDZg/lAe0fny5TijDSCfzOFjT48Lzh+ccSxlk8xgX8HiC7oYFzz66O Yg8lg7gQzJHXUsadSA0ZmeIF5QjoYbpvzSsS9NoaEluCviueb1Dgh+95eYE= -----END CERTIFICATE-----Generated at Sat Dec 6 19:28:45 2025 by rpki-client