This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8a554833-7334-4e02-8426-138572f3d41a.roa File: 8a554833-7334-4e02-8426-138572f3d41a.roa (raw, json) Hash identifier: caroN77NuWoXWA4j+UEHpNq7ilivMu25L/K1LVjsb18= Subject key identifier: 44:DD:7F:4E:39:0B:A9:C7:A6:91:D9:C2:D0:62:9B:0A:82:43:13:58 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 45C548B870A8C520607BEC7951E61DBA1E8DCF98 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8a554833-7334-4e02-8426-138572f3d41a.roa Signing time: Sun 23 Nov 2025 00:30:08 +0000 ROA not before: Sun 23 Nov 2025 00:30:08 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 23.249.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:c5:48:b8:70:a8:c5:20:60:7b:ec:79:51:e6:1d:ba:1e:8d:cf:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Nov 23 00:30:08 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=fbec4b079818879ce6a91d32a4200844b9ca107361601ee4ebb98f5e85226db3, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:bb:61:fc:dc:66:8b:0d:f4:e0:b6:09:2f:55: d2:94:fe:f2:e2:1c:84:c3:2f:74:43:4e:ed:16:2d: 0b:e8:70:ef:71:9e:71:5a:77:28:9e:80:c6:4c:b5: 10:a4:96:4f:b0:50:f1:d5:76:72:72:49:53:36:dd: f1:82:ab:73:17:cf:6a:1a:56:45:49:b1:84:63:d8: d0:aa:ca:36:a8:bb:37:db:2e:26:76:02:4e:4a:50: 65:7c:9f:68:31:97:76:ac:07:ee:25:20:c4:e6:f5: 0a:38:e3:c5:a9:fd:12:28:88:61:fd:1d:8e:a1:d1: 15:9a:0d:1c:2a:9e:25:fe:aa:f9:54:ff:49:87:eb: 57:b7:c0:3f:72:0c:d2:73:b9:07:5e:7a:04:5c:2c: 7d:6a:c5:af:a1:59:4b:88:50:ef:25:2a:ea:c7:f7: 4e:d2:92:26:fc:05:ff:46:a6:83:ba:e0:1e:de:a2: e3:d3:eb:82:b4:4f:82:56:08:e2:5c:94:ba:33:ef: 7b:1e:1e:02:e9:ab:84:29:95:73:54:d0:23:d4:e8: bc:fd:c2:f2:83:a2:e3:70:93:ec:15:05:86:30:d2: d5:a7:2d:89:37:21:5b:12:96:ce:c2:88:07:2a:5b: 6f:25:ac:fd:6e:f5:03:dd:a5:7c:c9:64:6d:a1:9c: bc:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:DD:7F:4E:39:0B:A9:C7:A6:91:D9:C2:D0:62:9B:0A:82:43:13:58 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/8a554833-7334-4e02-8426-138572f3d41a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.217.0/24 Signature Algorithm: sha256WithRSAEncryption 11:e4:9a:e5:af:3e:83:57:ce:35:dc:18:11:2c:b8:19:ed:43: 36:b4:28:05:46:f9:b5:ec:b3:78:11:db:9f:e3:63:f1:8c:0a: 32:1c:eb:55:fe:15:55:31:96:43:be:59:6a:a1:69:4b:87:82: 8c:c5:bc:b1:fe:40:33:d2:69:d4:06:32:6c:5e:b2:59:36:d9: a4:0d:23:f9:0b:ac:66:42:ca:81:ee:dc:48:e8:13:15:46:56: 18:22:dd:6e:13:df:8c:23:b6:fd:6b:f1:90:f3:b2:43:9e:bf: ea:f8:7f:a0:e6:c7:75:c2:07:a2:5a:d7:8a:97:43:97:89:fa: b7:fb:9f:7a:67:13:ce:f3:54:ad:cb:5c:85:7a:2b:98:b4:61: 26:03:40:27:46:ce:3d:d3:39:ed:1d:27:f4:b2:73:fb:ac:fa: 86:33:f6:60:c7:83:45:f5:46:ed:e2:c0:91:04:0e:ab:ea:5e: be:e0:fb:f6:cd:3a:cd:cc:43:e6:fc:91:b5:0c:3f:78:45:66: a0:45:f1:8e:99:03:30:72:b6:ba:8f:dc:32:78:b2:96:bf:af: 3c:3c:85:59:59:62:24:ed:78:f5:9f:cd:cd:80:49:91:f6:2c: be:cb:77:ff:ce:61:1f:63:41:04:3a:d2:cd:6d:f7:09:0e:42: ce:12:2e:77 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURcVIuHCoxSBge+x5UeYduh6Nz5gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMTIzMDAzMDA4WhcNMjYwMjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYmVjNGIwNzk4MTg4NzljZTZhOTFkMzJhNDIwMDg0NGI5 Y2ExMDczNjE2MDFlZTRlYmI5OGY1ZTg1MjI2ZGIzMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOu2H83GaLDfTgtgkvVdKU/vLiHITDL3RDTu0WLQvocO9x nnFadyiegMZMtRCklk+wUPHVdnJySVM23fGCq3MXz2oaVkVJsYRj2NCqyjaouzfb LiZ2Ak5KUGV8n2gxl3asB+4lIMTm9Qo448Wp/RIoiGH9HY6h0RWaDRwqniX+qvlU /0mH61e3wD9yDNJzuQdeegRcLH1qxa+hWUuIUO8lKurH907Skib8Bf9GpoO64B7e ouPT64K0T4JWCOJclLoz73seHgLpq4QplXNU0CPU6Lz9wvKDouNwk+wVBYYw0tWn LYk3IVsSls7CiAcqW28lrP1u9QPdpXzJZG2hnLxdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURN1/TjkLqcemkdnC0GKbCoJDE1gwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzhhNTU0ODMzLTczMzQtNGUwMi04NDI2LTEzODU3MmYzZDQxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dkwDQYJKoZIhvcNAQELBQADggEBABHkmuWvPoNXzjXcGBEsuBntQza0 KAVG+bXss3gR25/jY/GMCjIc61X+FVUxlkO+WWqhaUuHgozFvLH+QDPSadQGMmxe slk22aQNI/kLrGZCyoHu3EjoExVGVhgi3W4T34wjtv1r8ZDzskOev+r4f6Dmx3XC B6Ja14qXQ5eJ+rf7n3pnE87zVK3LXIV6K5i0YSYDQCdGzj3TOe0dJ/Syc/us+oYz 9mDHg0X1Ru3iwJEEDqvqXr7g+/bNOs3MQ+b8kbUMP3hFZqBF8Y6ZAzBytrqP3DJ4 spa/rzw8hVlZYiTtePWfzc2ASZH2LL7Ld//OYR9jQQQ60s1t9wkOQs4SLnc= -----END CERTIFICATE-----Generated at Sat Dec 6 13:28:29 2025 by rpki-client