This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa File: 59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa (raw, json) Hash identifier: +Z0mgb37erLwFyGRgXwdT3KD79rkQd/Ngz4XDq2TW7k= Subject key identifier: DB:E7:16:82:13:42:57:2F:73:69:30:40:F6:C4:80:2D:53:2E:45:1D Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 68860421D3B3338F2F6E1FF968A951C34B3C9F9D Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa Signing time: Sun 23 Nov 2025 00:30:18 +0000 ROA not before: Sun 23 Nov 2025 00:30:18 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:86:04:21:d3:b3:33:8f:2f:6e:1f:f9:68:a9:51:c3:4b:3c:9f:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Nov 23 00:30:18 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=83aeddb465c5ae6e7eb834d72c582f1c84cba7e7615c76029ff6614f91cac921, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:e0:9a:4e:1e:53:d5:75:b0:6b:71:69:68:c9: 8f:08:62:90:29:4f:c0:6f:2f:85:16:a0:ee:bd:f8: d8:41:ee:37:03:93:e3:a4:53:4d:b9:e4:f2:cd:35: 4a:e1:db:5b:79:ac:9b:35:a3:66:46:28:a7:d3:c9: 25:7b:c0:7c:a7:ee:24:72:45:ee:a6:b9:6b:fc:bb: 42:64:f9:b1:99:8a:3b:0a:bf:c6:bb:6b:a6:07:79: d0:a2:2a:ac:66:ef:40:2f:c3:c9:8c:e6:5a:6a:0e: cb:da:86:cf:e8:4f:07:e4:51:da:c4:06:d1:d7:c8: 00:43:64:08:ae:c7:f3:b1:cd:5a:2a:15:12:8e:e1: e2:60:cd:b8:1a:71:8d:f1:c4:6c:75:98:38:82:18: 1b:3d:b6:9a:aa:8e:e1:33:21:c7:5e:70:6d:e7:1b: e2:53:95:ea:f1:76:72:04:04:42:96:80:cc:9d:60: 7a:bd:a3:3c:98:dc:46:3c:a4:d8:fd:71:ca:23:06: 57:5c:40:7a:7b:99:58:52:cc:6d:4b:6c:1a:8b:1a: c6:d6:f0:6a:69:a0:68:b2:62:c0:1d:0b:3c:ac:aa: 8c:9c:72:56:95:64:14:20:63:3b:83:cb:e7:37:d3: d0:29:cf:e4:78:78:e3:1d:21:5f:10:af:96:59:31: 63:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E7:16:82:13:42:57:2F:73:69:30:40:F6:C4:80:2D:53:2E:45:1D X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/59ab264e-284f-4e30-b2f0-d85fa73b62b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.220.0/24 Signature Algorithm: sha256WithRSAEncryption 87:e7:f7:38:01:bc:2d:06:44:20:74:67:58:d1:ee:27:56:6f: e1:e3:df:ef:95:1a:53:9c:62:0f:e8:d4:2d:0f:62:35:78:05: 73:b9:34:29:76:9f:37:d8:1f:99:e8:3f:c1:a0:72:ed:ef:aa: 2b:90:4d:23:82:9b:c0:64:2e:1c:0f:3b:c9:4f:20:2d:5f:46: 13:48:90:09:22:79:11:ba:e1:ff:67:ed:9c:2e:00:72:f5:35: e6:da:54:18:27:a8:eb:a3:e1:cf:34:f1:3d:61:15:ce:b3:7b: 7b:35:3d:ca:12:54:85:cc:c4:ac:05:03:b4:ba:22:72:aa:39: 23:08:2a:e7:13:1d:de:48:9c:f7:e2:db:02:04:be:a9:08:8e: bb:97:23:de:86:dc:b4:42:18:2a:3a:80:a8:c7:ff:01:b3:54: fe:81:34:eb:f7:a0:8b:f0:e7:b2:11:55:b8:13:6c:f5:42:2b: 64:f4:20:74:cc:39:a2:38:66:35:a2:68:1b:a7:c7:4a:b8:19: c7:e3:2e:43:d4:96:be:a5:e4:56:3d:ca:93:71:34:de:f2:fb: a9:0a:8c:7f:7a:21:35:11:d9:3e:3e:0e:f8:4b:6b:6d:23:a2: f1:23:e6:c8:d3:57:39:7e:9f:6f:47:b0:c5:a4:08:8d:ad:6a: b4:fc:f8:ac -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaIYEIdOzM48vbh/5aKlRw0s8n50wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMTIzMDAzMDE4WhcNMjYwMjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4M2FlZGRiNDY1YzVhZTZlN2ViODM0ZDcyYzU4MmYxYzg0 Y2JhN2U3NjE1Yzc2MDI5ZmY2NjE0ZjkxY2FjOTIxMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDv4JpOHlPVdbBrcWloyY8IYpApT8BvL4UWoO69+NhB7jcD k+OkU0255PLNNUrh21t5rJs1o2ZGKKfTySV7wHyn7iRyRe6muWv8u0Jk+bGZijsK v8a7a6YHedCiKqxm70Avw8mM5lpqDsvahs/oTwfkUdrEBtHXyABDZAiux/OxzVoq FRKO4eJgzbgacY3xxGx1mDiCGBs9tpqqjuEzIcdecG3nG+JTlerxdnIEBEKWgMyd YHq9ozyY3EY8pNj9ccojBldcQHp7mVhSzG1LbBqLGsbW8GppoGiyYsAdCzysqoyc claVZBQgYzuDy+c309Apz+R4eOMdIV8Qr5ZZMWOhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2+cWghNCVy9zaTBA9sSALVMuRR0wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzU5YWIyNjRlLTI4NGYtNGUzMC1iMmYwLWQ4NWZhNzNiNjJiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dwwDQYJKoZIhvcNAQELBQADggEBAIfn9zgBvC0GRCB0Z1jR7idWb+Hj 3++VGlOcYg/o1C0PYjV4BXO5NCl2nzfYH5noP8Ggcu3vqiuQTSOCm8BkLhwPO8lP IC1fRhNIkAkieRG64f9n7ZwuAHL1NebaVBgnqOuj4c808T1hFc6ze3s1PcoSVIXM xKwFA7S6InKqOSMIKucTHd5InPfi2wIEvqkIjruXI96G3LRCGCo6gKjH/wGzVP6B NOv3oIvw57IRVbgTbPVCK2T0IHTMOaI4ZjWiaBunx0q4GcfjLkPUlr6l5FY9ypNx NN7y+6kKjH96ITUR2T4+DvhLa20jovEj5sjTVzl+n29HsMWkCI2tarT8+Kw= -----END CERTIFICATE-----Generated at Sat Dec 6 14:04:10 2025 by rpki-client