This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cff2aad7-f173-47b6-ad48-6f279ff321d1.roa File: cff2aad7-f173-47b6-ad48-6f279ff321d1.roa (raw, json) Hash identifier: +j+R8ouPQXtlAVRfRbc64MgUHnSTtfki07fe5OEhK74= Subject key identifier: 9A:79:66:30:7D:21:FF:33:E8:4E:79:A2:87:1F:6E:5A:F9:AE:38:24 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 25C2A1D9D33E643294D6E09DD35C769D1DD02A4F Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cff2aad7-f173-47b6-ad48-6f279ff321d1.roa Signing time: Sun 23 Nov 2025 00:20:08 +0000 ROA not before: Sun 23 Nov 2025 00:20:08 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:c2:a1:d9:d3:3e:64:32:94:d6:e0:9d:d3:5c:76:9d:1d:d0:2a:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Nov 23 00:20:08 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=05403cf76f48b1244263d5a65b593ba061dde1907e66cd6accd34d98a84bb369, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:63:0a:6a:52:44:d8:b1:c6:4b:78:09:d2:0e: b1:84:fa:51:38:d0:77:d1:0a:8c:2f:ec:13:fd:cd: 27:ed:64:37:48:63:ae:96:0a:a4:7f:9c:c2:58:36: e5:56:76:87:cc:29:a4:50:6e:9b:ad:b1:60:30:7a: cb:e3:6d:a3:51:42:b4:82:1c:fc:f3:da:3b:58:3b: 2c:b9:d7:ba:26:40:5a:94:7d:fd:54:b4:82:a5:2d: 7d:fb:b8:f7:b0:ae:6b:60:4d:b6:8b:8c:53:80:a2: 10:ee:cb:8b:44:51:e8:ac:b0:d3:26:e0:28:0a:17: 2f:4d:b0:e1:37:0d:4f:02:fa:ce:52:2f:bb:84:ee: a0:e2:00:4d:d8:a0:c5:ff:13:12:6f:1c:5d:f0:85: e9:c0:02:5b:fe:b7:8f:b9:fa:62:c3:56:db:65:ac: 18:a1:f5:68:07:bd:d4:d6:73:b7:bd:1f:c3:b0:eb: d6:cd:a2:27:35:8b:e1:db:26:24:f8:13:af:0a:d3: b9:7f:22:17:4f:42:de:d3:2a:3b:03:4c:0f:62:c0: 95:7f:0c:53:24:bd:a8:d4:00:6f:f8:93:47:05:8b: 6a:05:cd:a5:70:61:77:e5:a6:2e:26:0b:7c:c5:85: 5d:dd:95:ec:0b:5d:85:b4:57:5f:96:e9:3a:90:c8: 43:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:79:66:30:7D:21:FF:33:E8:4E:79:A2:87:1F:6E:5A:F9:AE:38:24 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/cff2aad7-f173-47b6-ad48-6f279ff321d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.212.0/24 Signature Algorithm: sha256WithRSAEncryption 31:c1:af:96:69:1a:f5:22:b9:e6:b3:dd:50:be:95:d9:1b:35: 9e:cc:db:f8:c6:83:b6:61:b6:b3:eb:7f:7b:3d:9d:74:95:77: 6c:44:87:b3:fe:d9:64:57:60:be:cf:63:d7:6f:a8:58:e2:af: 05:63:f1:7d:07:60:e8:5c:ca:e7:2f:35:f1:dc:2d:cc:1d:11: 3b:ec:fe:0a:94:85:a2:0d:d2:59:bc:a3:10:bc:8c:33:62:11: 00:a6:a7:a5:6b:7c:63:67:10:37:28:67:7b:4e:70:e0:4c:59: 2f:6b:e0:28:12:24:64:19:b0:32:79:5d:28:3d:67:01:81:b9: a5:8d:67:76:42:4c:45:76:07:c7:79:a2:47:1b:19:0c:9d:78: e6:93:4b:55:90:d7:9e:0d:72:45:ff:50:dd:8c:85:15:11:51: 90:5a:3e:cf:30:f8:2c:a9:6f:a8:3c:25:f3:a1:5f:86:a7:15: 31:dd:6c:55:be:f1:03:22:80:cb:f3:f2:df:c4:a7:9a:c8:a3: 48:47:cf:56:9b:fa:d2:27:57:58:fc:a2:31:07:49:17:45:86: a9:8e:13:12:49:e3:3a:c2:8b:13:d1:bf:1a:79:6e:80:94:62: a8:f1:b7:78:88:51:d3:d1:db:5a:04:59:81:07:a9:8d:7d:5a: 8b:66:26:6a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJcKh2dM+ZDKU1uCd01x2nR3QKk8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMTIzMDAyMDA4WhcNMjYwMjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNTQwM2NmNzZmNDhiMTI0NDI2M2Q1YTY1YjU5M2JhMDYx ZGRlMTkwN2U2NmNkNmFjY2QzNGQ5OGE4NGJiMzY5MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1YwpqUkTYscZLeAnSDrGE+lE40HfRCowv7BP9zSftZDdI Y66WCqR/nMJYNuVWdofMKaRQbputsWAwesvjbaNRQrSCHPzz2jtYOyy517omQFqU ff1UtIKlLX37uPewrmtgTbaLjFOAohDuy4tEUeissNMm4CgKFy9NsOE3DU8C+s5S L7uE7qDiAE3YoMX/ExJvHF3whenAAlv+t4+5+mLDVttlrBih9WgHvdTWc7e9H8Ow 69bNoic1i+HbJiT4E68K07l/IhdPQt7TKjsDTA9iwJV/DFMkvajUAG/4k0cFi2oF zaVwYXflpi4mC3zFhV3dlewLXYW0V1+W6TqQyEOvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmnlmMH0h/zPoTnmihx9uWvmuOCQwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2NmZjJhYWQ3LWYxNzMtNDdiNi1hZDQ4LTZmMjc5ZmYzMjFkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dQwDQYJKoZIhvcNAQELBQADggEBADHBr5ZpGvUiueaz3VC+ldkbNZ7M 2/jGg7ZhtrPrf3s9nXSVd2xEh7P+2WRXYL7PY9dvqFjirwVj8X0HYOhcyucvNfHc LcwdETvs/gqUhaIN0lm8oxC8jDNiEQCmp6VrfGNnEDcoZ3tOcOBMWS9r4CgSJGQZ sDJ5XSg9ZwGBuaWNZ3ZCTEV2B8d5okcbGQydeOaTS1WQ154NckX/UN2MhRURUZBa Ps8w+Cypb6g8JfOhX4anFTHdbFW+8QMigMvz8t/Ep5rIo0hHz1ab+tInV1j8ojEH SRdFhqmOExJJ4zrCixPRvxp5boCUYqjxt3iIUdPR21oEWYEHqY19WotmJmo= -----END CERTIFICATE-----Generated at Sat Dec 6 14:22:23 2025 by rpki-client