This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa File: 53ebdc18-8f5d-4119-b14e-730702513e1b.roa (raw, json) Hash identifier: FiTCulLAEQte90+4Nc2Ho77h6Y64SFfgKbot9K+vSqM= Subject key identifier: 79:7D:53:F9:DF:5E:D2:EB:4C:45:0D:BE:F9:67:A3:1A:28:DB:6E:9C Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 24A46DFE115AA8A38B48B50E11C6A0CA7F7FA53E Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa Signing time: Sat 22 Nov 2025 00:00:06 +0000 ROA not before: Sat 22 Nov 2025 00:00:06 +0000 ROA not after: Fri 20 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:a4:6d:fe:11:5a:a8:a3:8b:48:b5:0e:11:c6:a0:ca:7f:7f:a5:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Nov 22 00:00:06 2025 GMT Not After : Feb 20 23:59:59 2026 GMT Subject: serialNumber=4e122290d072b8321ca6351a12c08c7e2c1cdbc0312ba796dcca5faa1d450dda, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b7:6b:a1:c7:87:6f:e2:26:9a:53:e4:e9:b4: ad:b0:ea:e7:ab:79:63:7f:d8:e9:30:d4:9c:da:49: 94:52:c9:e8:b7:53:99:08:2a:75:e6:41:fc:51:6b: 72:0c:4a:fe:21:10:3b:70:68:d7:f5:cd:36:89:4b: 2c:52:80:c8:6c:59:36:c2:58:bb:2d:3f:59:cf:4d: a1:53:46:b0:f5:c0:e6:b6:d4:26:10:6b:f4:af:7f: 43:ae:93:ba:f5:52:eb:b4:4d:56:81:34:37:03:b3: bd:bb:6a:c2:78:ef:ca:33:5f:d2:4a:ec:cf:34:df: 3f:9d:49:de:9e:62:f1:12:ac:ad:7d:2f:dd:da:43: b9:cb:b6:b9:93:be:de:e5:ab:db:05:d7:12:54:18: 8d:08:f8:df:26:42:7e:30:56:ea:4e:a7:dd:79:a0: 2e:1d:8f:a5:2f:86:98:cc:d3:64:e2:27:e9:dc:79: 78:49:e2:6a:e1:22:c1:54:bd:7a:9b:c9:5a:ee:ee: da:c3:83:29:7f:44:a0:a5:48:9d:ed:8d:9d:07:e4: c2:ee:93:f2:21:f1:a7:65:34:55:b2:57:9d:d0:41: 97:99:bf:a0:26:3d:90:25:f9:9e:02:5e:2a:d5:8b: 8d:23:c4:b5:9c:dc:5e:3e:a7:4c:b2:c5:d3:9e:13: 69:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:7D:53:F9:DF:5E:D2:EB:4C:45:0D:BE:F9:67:A3:1A:28:DB:6E:9C X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/53ebdc18-8f5d-4119-b14e-730702513e1b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.166.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:3c:86:f1:03:68:27:48:36:7a:47:b2:e4:d4:70:8c:b5:fe: 5f:7a:18:ce:42:8f:1f:f1:f0:e9:69:1e:0a:4e:7f:d4:a6:12: a0:d8:7d:eb:3b:ea:a1:32:73:b2:65:d8:7f:f5:d9:df:e5:f1: ec:9e:9e:70:7e:56:c6:ad:33:b2:a6:5d:60:23:0e:53:18:a2: 40:4d:ab:98:c9:3a:e8:fb:35:1b:86:54:64:f4:6c:88:a1:9e: a3:17:b3:c4:3b:f8:ff:38:e8:3f:17:09:c8:42:a6:4c:92:76: ee:5c:31:ed:f2:fa:c6:0d:01:17:75:4f:e7:15:ce:48:e0:9e: 30:ee:89:71:54:38:6c:47:0b:93:56:93:8b:72:11:55:99:db: 8d:aa:46:a4:7f:85:ef:29:d1:4a:80:84:42:23:42:43:eb:8c: b3:1f:e9:63:56:9e:36:3c:a3:bc:70:ad:3a:fd:fb:94:5a:28: 1d:b7:f2:f8:44:90:44:66:4b:6b:49:bf:12:4b:51:75:82:7d: 93:b3:39:42:ac:8f:1d:50:5b:96:49:2f:4d:63:38:3e:74:22: ef:3b:5a:bf:d3:4b:36:e7:e0:df:ac:9d:93:66:dc:76:7f:29: 34:9b:7f:da:2b:a8:f2:dd:82:9e:cb:74:7e:e7:83:02:dc:cd: 87:b1:db:9e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJKRt/hFaqKOLSLUOEcagyn9/pT4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMTIyMDAwMDA2WhcNMjYwMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZTEyMjI5MGQwNzJiODMyMWNhNjM1MWExMmMwOGM3ZTJj MWNkYmMwMzEyYmE3OTZkY2NhNWZhYTFkNDUwZGRhMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbt2uhx4dv4iaaU+TptK2w6uereWN/2Okw1JzaSZRSyei3 U5kIKnXmQfxRa3IMSv4hEDtwaNf1zTaJSyxSgMhsWTbCWLstP1nPTaFTRrD1wOa2 1CYQa/Svf0Ouk7r1Uuu0TVaBNDcDs727asJ478ozX9JK7M803z+dSd6eYvESrK19 L93aQ7nLtrmTvt7lq9sF1xJUGI0I+N8mQn4wVupOp915oC4dj6UvhpjM02TiJ+nc eXhJ4mrhIsFUvXqbyVru7trDgyl/RKClSJ3tjZ0H5MLuk/Ih8adlNFWyV53QQZeZ v6AmPZAl+Z4CXirVi40jxLWc3F4+p0yyxdOeE2nZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeX1T+d9e0utMRQ2++WejGijbbpwwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzUzZWJkYzE4LThmNWQtNDExOS1iMTRlLTczMDcwMjUxM2UxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHY3aYwDQYJKoZIhvcNAQELBQADggEBABs8hvEDaCdINnpHsuTUcIy1/l96 GM5Cjx/x8OlpHgpOf9SmEqDYfes76qEyc7Jl2H/12d/l8eyennB+VsatM7KmXWAj DlMYokBNq5jJOuj7NRuGVGT0bIihnqMXs8Q7+P846D8XCchCpkySdu5cMe3y+sYN ARd1T+cVzkjgnjDuiXFUOGxHC5NWk4tyEVWZ242qRqR/he8p0UqAhEIjQkPrjLMf 6WNWnjY8o7xwrTr9+5RaKB238vhEkERmS2tJvxJLUXWCfZOzOUKsjx1QW5ZJL01j OD50Iu87Wr/TSzbn4N+snZNm3HZ/KTSbf9orqPLdgp7LdH7ngwLczYex254= -----END CERTIFICATE-----Generated at Sat Dec 6 15:24:48 2025 by rpki-client