This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5dab641b-24fb-48f2-8b71-57a07d630894.roa File: 5dab641b-24fb-48f2-8b71-57a07d630894.roa (raw, json) Hash identifier: gRKJR7zjDzp1spA96XHTFz3uGqKUF58CwYk91M9Ps1g= Subject key identifier: 70:85:39:3E:15:D2:59:AF:23:8B:B3:7C:58:0F:C5:FA:87:16:B7:6E Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 2BB07299AF42C3808DCF248195B189B50721A19E Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5dab641b-24fb-48f2-8b71-57a07d630894.roa Signing time: Sun 23 Nov 2025 00:30:25 +0000 ROA not before: Sun 23 Nov 2025 00:30:25 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:b0:72:99:af:42:c3:80:8d:cf:24:81:95:b1:89:b5:07:21:a1:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Nov 23 00:30:25 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=a6e2e7a21e901abeec83f611eedbf756acf33856be8fc2e4d267d6d6854c13e1, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:fe:ce:c4:e5:4d:e9:91:b4:a3:15:3a:db:53: c3:25:14:f7:c5:14:e4:35:a1:0e:27:50:90:3b:0b: bd:09:fa:88:4b:c8:ad:1f:33:12:68:31:fe:94:45: 30:47:c5:a1:19:cf:41:8d:d1:96:75:06:e9:f4:4b: e9:51:59:9a:f2:ae:73:30:5c:ff:22:48:67:8f:10: 7c:ff:59:d6:a1:b6:b4:8f:5f:ea:1a:cf:38:47:22: 18:97:c6:51:db:ee:08:6d:86:02:5b:bd:64:bc:11: c5:54:6f:6b:5a:e4:00:fb:75:be:95:54:32:07:37: e6:7d:82:6c:dc:0c:94:da:0a:16:37:b4:93:23:1d: bb:7b:d0:0b:9a:0b:18:49:3c:2c:48:71:73:7d:a0: 35:ab:f4:fe:29:68:e6:03:6d:2c:8d:8c:6d:da:3a: 76:60:9b:3e:a3:38:23:83:a0:3c:27:16:d2:0c:8e: d3:4f:e8:be:6c:01:78:ae:60:eb:9b:3a:7b:b6:bd: de:22:a2:3f:26:37:87:32:d0:25:92:6e:bc:8a:62: f2:dd:a9:db:91:54:61:2f:49:9c:fd:9f:94:2e:5a: 2d:29:a5:4a:2e:39:68:ac:d7:d9:e7:a5:75:fb:28: 55:83:7d:7d:ab:31:cd:ae:d5:bb:ee:15:78:8c:59: fb:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:85:39:3E:15:D2:59:AF:23:8B:B3:7C:58:0F:C5:FA:87:16:B7:6E X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/5dab641b-24fb-48f2-8b71-57a07d630894.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.252.0/22 Signature Algorithm: sha256WithRSAEncryption 28:e6:48:75:18:42:5b:b0:78:46:f4:39:be:ff:15:29:6e:54: ba:f8:37:27:9c:7a:43:2d:8b:47:e1:a3:01:d7:26:58:10:61: 8d:5d:9e:39:23:72:b6:13:2b:5b:cc:dd:87:bc:98:3a:34:e2: 30:26:8f:90:2f:85:79:db:82:78:47:82:b1:f8:44:86:68:8c: 65:90:cc:e1:e2:4b:03:ad:1d:12:91:7a:be:c4:7d:b1:26:ba: a0:be:99:3d:c4:da:d4:fe:db:8a:7d:ba:20:4e:02:2b:9e:b7: 86:2c:83:9f:80:55:16:b7:ac:46:43:ea:8e:d5:46:19:54:db: 74:73:24:ef:22:f7:76:c2:cb:71:7d:80:cb:17:1a:2f:fe:25: 8b:0b:73:c2:02:7e:77:af:dc:7b:14:17:a9:f2:7b:c6:72:19: c8:1a:00:5d:2e:6a:5c:42:a7:1c:52:9c:a5:75:ec:f5:95:78: 3e:9b:1f:72:0b:32:9f:b0:f9:c2:6d:51:de:bc:9a:f1:af:a8: 94:56:bc:a2:a4:a7:54:c3:37:d4:fa:e7:95:9b:74:95:b9:00: f9:1e:c5:9e:11:41:c2:bd:e5:6a:2a:5e:26:9d:e7:e8:88:4d: 2b:ff:59:58:7c:65:a6:c4:d1:6f:7f:95:bc:19:42:5c:da:76: a9:b5:1b:58 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK7Byma9Cw4CNzySBlbGJtQchoZ4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMTIzMDAzMDI1WhcNMjYwMjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNmUyZTdhMjFlOTAxYWJlZWM4M2Y2MTFlZWRiZjc1NmFj ZjMzODU2YmU4ZmMyZTRkMjY3ZDZkNjg1NGMxM2UxMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCq/s7E5U3pkbSjFTrbU8MlFPfFFOQ1oQ4nUJA7C70J+ohL yK0fMxJoMf6URTBHxaEZz0GN0ZZ1Bun0S+lRWZryrnMwXP8iSGePEHz/WdahtrSP X+oazzhHIhiXxlHb7ghthgJbvWS8EcVUb2ta5AD7db6VVDIHN+Z9gmzcDJTaChY3 tJMjHbt70AuaCxhJPCxIcXN9oDWr9P4paOYDbSyNjG3aOnZgmz6jOCODoDwnFtIM jtNP6L5sAXiuYOubOnu2vd4ioj8mN4cy0CWSbryKYvLdqduRVGEvSZz9n5QuWi0p pUouOWis19nnpXX7KFWDfX2rMc2u1bvuFXiMWfv9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcIU5PhXSWa8ji7N8WA/F+ocWt24wHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzVkYWI2NDFiLTI0ZmItNDhmMi04YjcxLTU3YTA3ZDYzMDg5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIX+/wwDQYJKoZIhvcNAQELBQADggEBACjmSHUYQluweEb0Ob7/FSluVLr4 NyecekMti0fhowHXJlgQYY1dnjkjcrYTK1vM3Ye8mDo04jAmj5AvhXnbgnhHgrH4 RIZojGWQzOHiSwOtHRKRer7EfbEmuqC+mT3E2tT+24p9uiBOAiuet4Ysg5+AVRa3 rEZD6o7VRhlU23RzJO8i93bCy3F9gMsXGi/+JYsLc8ICfnev3HsUF6nye8ZyGcga AF0ualxCpxxSnKV17PWVeD6bH3ILMp+w+cJtUd68mvGvqJRWvKKkp1TDN9T655Wb dJW5APkexZ4RQcK95WoqXiad5+iITSv/WVh8ZabE0W9/lbwZQlzadqm1G1g= -----END CERTIFICATE-----Generated at Sat Dec 6 14:08:29 2025 by rpki-client