This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/bfa510ed-d40b-4552-a4d8-5bb4c30e482a.roa File: bfa510ed-d40b-4552-a4d8-5bb4c30e482a.roa (raw, json) Hash identifier: upASIkX5p2qL8Ydnd7RhVQk7R7bUvyUqAuIckxO3sn8= Subject key identifier: 20:D5:BE:D7:FA:BF:24:5B:69:04:C5:16:03:1D:9C:90:CA:67:B9:13 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 1131780917C8C194DE2BBE36056ADB3A4DE92D17 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/bfa510ed-d40b-4552-a4d8-5bb4c30e482a.roa Signing time: Sun 23 Nov 2025 00:20:11 +0000 ROA not before: Sun 23 Nov 2025 00:20:11 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 8987 IP address blocks: 23.249.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:31:78:09:17:c8:c1:94:de:2b:be:36:05:6a:db:3a:4d:e9:2d:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Nov 23 00:20:11 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=6b1c1339cca5c342e9f728e84e5543b95013476d46f158f69a280c261e7a21a8, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:16:9a:62:4f:b1:62:92:8d:01:6e:72:2b:1f: 83:bf:08:b4:83:e9:06:57:2b:e8:6b:b3:5c:5f:fe: 6d:e1:a6:44:6a:1f:aa:59:65:32:66:7a:3b:a2:56: 42:bf:4f:c1:10:b4:6a:23:6f:fc:12:22:61:ab:47: 00:a1:77:cf:e7:74:0a:20:32:c9:1f:65:ad:ed:2b: 0f:1c:e5:80:5c:af:3d:ed:61:fe:b3:16:5e:40:6a: 2f:b3:54:40:78:2e:f5:83:a0:44:84:c0:84:16:cb: e2:81:c9:64:de:09:33:c1:3a:ea:a7:86:b0:f7:d3: 9e:8a:23:eb:de:cd:77:77:59:07:0b:e6:a4:4f:3c: e7:28:8e:be:e6:f8:0e:c5:b8:1c:a9:29:27:7f:65: 10:8a:7a:cb:2c:e6:33:f5:d4:77:e9:02:7b:5e:2a: 2a:4a:de:e8:05:aa:e1:25:6a:e0:02:3d:51:30:8c: 4c:07:4f:1f:44:99:4d:56:27:56:93:8b:e5:76:08: 53:a5:f5:01:a9:d3:4b:3e:ad:4a:21:27:c0:c2:9a: 3d:fc:2b:88:1c:85:fc:77:11:42:32:1a:6f:37:6a: 0e:86:97:40:1a:d3:89:f9:05:4c:93:55:91:25:eb: 5a:82:2c:1a:0e:17:ce:00:c5:31:1b:df:00:76:e6: 58:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:D5:BE:D7:FA:BF:24:5B:69:04:C5:16:03:1D:9C:90:CA:67:B9:13 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/bfa510ed-d40b-4552-a4d8-5bb4c30e482a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.213.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:4a:2d:52:85:21:e5:bf:6b:c2:22:cc:a4:28:c1:49:74:1f: 3a:5b:e9:b6:f8:e0:d7:c3:b9:0a:87:fd:9c:77:e7:4e:19:1c: 9b:cf:45:98:41:78:bf:11:dd:cd:64:22:8b:a0:c8:d4:c3:ec: d0:73:40:a4:45:46:f3:be:31:bd:76:ee:45:b7:16:b9:26:47: 20:06:a8:06:49:8f:05:1a:20:d1:a5:75:e7:d9:80:c3:be:42: 69:84:6b:3d:9c:71:2b:22:9a:7c:19:36:0b:86:da:90:f4:e1: 26:4e:71:32:1d:68:1b:c2:56:2f:37:75:ad:8f:ae:6c:53:a6: 6c:9a:13:c7:b6:49:36:1c:76:de:f2:e2:69:23:38:66:a0:a2: 6f:00:e3:5d:5e:df:f0:4e:65:ed:f6:2c:2b:7e:51:1a:ac:e9: 8d:56:78:1b:e5:2a:e9:de:6a:be:3d:80:e0:d8:d0:b3:0d:85: 1b:ee:39:e9:a6:32:a0:df:0f:5c:92:ac:14:f5:9c:e3:3c:39: cb:5e:ac:e1:a9:da:8b:3d:3d:6f:a7:3f:91:8b:b7:0c:f8:05: 70:f8:db:ec:f2:6e:cc:c3:63:73:66:d1:41:96:da:01:bd:4c: 7a:17:79:8a:28:b0:0d:61:43:51:ff:d5:b1:56:56:87:84:a4: 79:f6:bb:27 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUETF4CRfIwZTeK742BWrbOk3pLRcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMTIzMDAyMDExWhcNMjYwMjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YjFjMTMzOWNjYTVjMzQyZTlmNzI4ZTg0ZTU1NDNiOTUw MTM0NzZkNDZmMTU4ZjY5YTI4MGMyNjFlN2EyMWE4MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZFppiT7Fiko0BbnIrH4O/CLSD6QZXK+hrs1xf/m3hpkRq H6pZZTJmejuiVkK/T8EQtGojb/wSImGrRwChd8/ndAogMskfZa3tKw8c5YBcrz3t Yf6zFl5Aai+zVEB4LvWDoESEwIQWy+KByWTeCTPBOuqnhrD3056KI+vezXd3WQcL 5qRPPOcojr7m+A7FuBypKSd/ZRCKesss5jP11HfpAnteKipK3ugFquElauACPVEw jEwHTx9EmU1WJ1aTi+V2CFOl9QGp00s+rUohJ8DCmj38K4gchfx3EUIyGm83ag6G l0Aa04n5BUyTVZEl61qCLBoOF84AxTEb3wB25ljjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUINW+1/q/JFtpBMUWAx2ckMpnuRMwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2JmYTUxMGVkLWQ0MGItNDU1Mi1hNGQ4LTViYjRjMzBlNDgyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dUwDQYJKoZIhvcNAQELBQADggEBAI1KLVKFIeW/a8IizKQowUl0Hzpb 6bb44NfDuQqH/Zx3504ZHJvPRZhBeL8R3c1kIougyNTD7NBzQKRFRvO+Mb127kW3 FrkmRyAGqAZJjwUaINGldefZgMO+QmmEaz2ccSsimnwZNguG2pD04SZOcTIdaBvC Vi83da2PrmxTpmyaE8e2STYcdt7y4mkjOGagom8A411e3/BOZe32LCt+URqs6Y1W eBvlKunear49gODY0LMNhRvuOemmMqDfD1ySrBT1nOM8OcterOGp2os9PW+nP5GL twz4BXD42+zybszDY3Nm0UGW2gG9THoXeYoosA1hQ1H/1bFWVoeEpHn2uyc= -----END CERTIFICATE-----Generated at Sat Dec 6 22:56:40 2025 by rpki-client