This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/8a0cac28-29b8-4996-b010-5eab278cc342.roa File: 8a0cac28-29b8-4996-b010-5eab278cc342.roa (raw, json) Hash identifier: K5JUgSfmBKKrclDAmHrxeWqJ4Rn1McvXK2kv+YzBdl8= Subject key identifier: 6C:E1:45:36:03:39:E3:53:01:59:F2:38:BF:8C:F2:76:89:1D:25:D1 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 59755FAAEB6B21C25F3C384FD5DB60BDFC470117 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/8a0cac28-29b8-4996-b010-5eab278cc342.roa Signing time: Wed 12 Nov 2025 00:10:12 +0000 ROA not before: Wed 12 Nov 2025 00:10:12 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:75:5f:aa:eb:6b:21:c2:5f:3c:38:4f:d5:db:60:bd:fc:47:01:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Nov 12 00:10:12 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=7aac587c1190dfa904445fac41402671b9b7abdf0c4cbeba7773c4a3a7e1fcc9, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:67:e9:ea:ab:d7:d7:77:99:9b:c2:ad:81:8a: bd:66:51:b7:fc:24:de:3c:52:86:a2:1d:bc:0f:56: 4f:b8:25:fc:2e:7d:cf:68:a0:e6:b4:de:a6:b1:d7: 07:f1:c3:b8:bb:9d:a4:74:98:a1:8f:8c:ff:be:42: b4:75:5b:25:1d:fc:2e:b5:da:fe:41:31:b5:67:dd: c2:ec:31:17:ea:e1:22:55:27:12:5d:f5:bd:49:ef: e1:af:8d:00:bc:78:59:42:98:52:ac:60:bd:d0:71: 07:77:4a:a7:80:b4:99:22:12:95:57:20:5f:fc:c0: 9a:b5:7a:9f:4c:2e:13:4c:96:65:4c:79:9c:16:7d: 3e:e6:32:ed:e6:87:4b:5d:e6:23:7f:9f:14:3a:22: 98:1d:8c:c0:03:48:04:a0:8a:0f:8d:ae:29:f3:5d: 4b:be:50:d7:02:25:d8:6a:69:29:46:95:04:02:2f: 64:81:14:31:d2:23:35:8d:e7:40:52:d5:b9:f8:05: 08:82:81:99:2b:06:6a:b0:ca:ba:05:af:0a:4a:fe: 7c:0b:a2:54:47:e0:8f:f6:75:05:10:04:f6:1c:93: 42:f4:e2:6f:1f:24:f7:c5:89:39:7f:6e:dc:54:fe: 12:00:58:e7:54:62:6a:64:ed:38:f3:03:24:4d:77: 34:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:E1:45:36:03:39:E3:53:01:59:F2:38:BF:8C:F2:76:89:1D:25:D1 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/8a0cac28-29b8-4996-b010-5eab278cc342.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.100.0/24 Signature Algorithm: sha256WithRSAEncryption 83:31:07:b1:b7:aa:d9:dd:1c:0c:32:62:17:04:93:46:39:2b: 3a:0d:a2:90:ad:ab:42:58:97:aa:a9:61:23:da:af:2d:44:2b: c6:f2:55:4f:3c:33:0c:87:2f:5b:49:5c:e2:de:4b:da:8b:ee: d6:ae:d0:83:cd:48:07:fe:04:f0:de:92:6d:d4:af:61:c7:cb: be:42:5c:6b:54:c5:a6:5f:c4:cf:6f:33:5b:af:d8:c5:9f:87: 5f:5d:b2:fd:a3:48:28:17:c0:3b:1e:90:e9:da:ec:7c:f6:73: 5e:9e:44:4f:62:3b:0e:ca:5a:7d:ae:5b:21:83:ff:5e:69:37: 02:7d:3b:08:1d:ac:83:ad:55:0a:d1:97:b1:cb:7e:e7:29:6c: 7f:df:67:12:48:82:ca:5d:57:a8:d9:44:2b:b4:3b:78:31:87: 60:74:9f:49:09:42:a0:9a:de:66:3a:29:20:ea:6d:1c:01:07: 1e:4f:45:e3:0e:35:87:05:2a:4e:16:45:cc:63:46:87:18:c3: 3c:51:04:72:03:27:0d:e6:29:57:41:dc:b3:ee:45:2e:79:1b: ec:04:36:75:57:a5:c1:7a:1e:b9:f1:14:8e:e3:94:7d:42:dd: 58:8c:1e:4e:98:36:46:72:4a:d9:33:49:2c:76:a3:00:61:ab: ef:27:94:54 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWXVfqutrIcJfPDhP1dtgvfxHARcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUxMTEyMDAxMDEyWhcNMjUxMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YWFjNTg3YzExOTBkZmE5MDQ0NDVmYWM0MTQwMjY3MWI5 YjdhYmRmMGM0Y2JlYmE3NzczYzRhM2E3ZTFmY2M5MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD1Z+nqq9fXd5mbwq2Bir1mUbf8JN48UoaiHbwPVk+4Jfwu fc9ooOa03qax1wfxw7i7naR0mKGPjP++QrR1WyUd/C612v5BMbVn3cLsMRfq4SJV JxJd9b1J7+GvjQC8eFlCmFKsYL3QcQd3SqeAtJkiEpVXIF/8wJq1ep9MLhNMlmVM eZwWfT7mMu3mh0td5iN/nxQ6IpgdjMADSASgig+NrinzXUu+UNcCJdhqaSlGlQQC L2SBFDHSIzWN50BS1bn4BQiCgZkrBmqwyroFrwpK/nwLolRH4I/2dQUQBPYck0L0 4m8fJPfFiTl/btxU/hIAWOdUYmpk7TjzAyRNdzTzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbOFFNgM541MBWfI4v4zydokdJdEwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzhhMGNhYzI4LTI5YjgtNDk5Ni1iMDEwLTVlYWIyNzhjYzM0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWQwDQYJKoZIhvcNAQELBQADggEBAIMxB7G3qtndHAwyYhcEk0Y5KzoN opCtq0JYl6qpYSPary1EK8byVU88MwyHL1tJXOLeS9qL7tau0IPNSAf+BPDekm3U r2HHy75CXGtUxaZfxM9vM1uv2MWfh19dsv2jSCgXwDsekOna7Hz2c16eRE9iOw7K Wn2uWyGD/15pNwJ9OwgdrIOtVQrRl7HLfucpbH/fZxJIgspdV6jZRCu0O3gxh2B0 n0kJQqCa3mY6KSDqbRwBBx5PReMONYcFKk4WRcxjRocYwzxRBHIDJw3mKVdB3LPu RS55G+wENnVXpcF6HrnxFI7jlH1C3ViMHk6YNkZyStkzSSx2owBhq+8nlFQ= -----END CERTIFICATE-----Generated at Sat Dec 6 10:22:06 2025 by rpki-client