This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa File: f174f360-a3ca-4335-8414-4727cef110a8.roa (raw, json) Hash identifier: KFDvbcU9S9dFuu7dy/kLmBTdYbZZWzlXK8ytvzRY7TI= Subject key identifier: C5:E6:03:22:62:52:D9:20:56:84:C4:FC:07:06:99:CA:2A:62:98:14 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 4A4FCA7C3B5B05E70B3F972DE0277E0D751B4F25 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa Signing time: Sun 23 Nov 2025 00:20:10 +0000 ROA not before: Sun 23 Nov 2025 00:20:10 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.249.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:4f:ca:7c:3b:5b:05:e7:0b:3f:97:2d:e0:27:7e:0d:75:1b:4f:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Nov 23 00:20:10 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=b2d729003b3c7616e459c05f4ebb62e4bd58401966f7890d04061eeec58486bd, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1d:9e:3b:bd:35:8b:97:f9:22:c8:0d:97:38: 06:b3:2a:f3:6c:43:f0:02:3b:b2:32:5a:4a:37:1f: 81:4e:48:b7:61:08:9b:7d:e4:3a:99:24:0f:10:2a: cd:43:41:2d:e6:7a:c1:8b:6a:13:63:bc:9a:46:e7: 82:46:8c:cb:17:31:51:ae:88:26:d8:a2:ff:40:a3: ff:2d:9f:54:ec:a4:ab:4e:fd:36:3f:7d:2d:aa:e1: f1:5d:07:51:50:0c:9b:79:7d:da:17:2e:0a:2a:6c: 89:d6:f0:2e:b8:12:fb:5c:a0:b7:8d:7e:57:be:16: cb:fc:ab:a5:10:8b:80:96:5d:4d:8a:1f:24:de:1b: 49:7f:95:82:da:cc:eb:71:b1:cc:d4:20:6b:2b:e5: b7:51:a2:0c:3e:58:33:78:87:7d:60:f2:8f:64:2c: 55:d5:f2:c7:7d:4e:d2:8b:2f:ec:42:c1:34:e3:96: 60:97:f7:9d:02:a0:62:38:0b:d8:12:af:c0:43:20: d2:a9:9e:fb:7b:84:6d:06:19:b6:c3:26:10:45:ec: a0:31:4a:13:ff:03:26:e9:f6:14:98:52:ad:c7:07: 61:a7:f3:9f:2f:ff:82:f5:49:62:a1:80:2a:ea:d2: 41:ad:74:e1:74:00:40:d3:4a:c2:99:54:ad:7c:a2: d8:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:E6:03:22:62:52:D9:20:56:84:C4:FC:07:06:99:CA:2A:62:98:14 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/f174f360-a3ca-4335-8414-4727cef110a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.249.213.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:84:0a:fc:74:c2:3f:f8:23:58:55:65:e3:56:05:44:1d:ba: 2d:42:00:39:cf:3b:10:1d:c5:73:40:1a:b4:75:d1:5c:73:62: 1b:09:39:5f:b7:e9:bb:b1:85:ee:62:64:1d:90:97:f6:58:3a: 56:a9:be:fb:65:a6:59:c7:42:17:c8:3b:72:1e:92:54:7b:c4: 10:b7:a3:4d:19:58:0a:b4:c2:fc:0a:66:1f:e9:a1:95:7d:cd: 38:00:9d:92:cb:5e:6a:23:53:51:a3:6a:30:b4:ce:d2:89:8c: c7:ed:6d:a0:79:4f:16:d7:59:ec:9c:2f:4c:86:35:94:72:28: c1:92:1d:92:9d:9f:39:e8:9e:87:31:3d:bf:05:20:3d:a0:cc: 3e:bf:29:e5:00:35:e2:1d:c1:c6:16:09:8e:09:bf:ee:34:57: 80:37:67:23:07:91:e0:5f:e0:8f:d0:59:ce:1d:e6:26:ea:e7: ad:9b:7f:7f:ca:de:b1:17:d4:cc:1b:12:55:b2:db:ba:2c:4c: f7:4a:4e:f2:0b:4c:fd:8b:ac:eb:3b:e8:95:b2:7a:22:ad:0f: af:8d:e1:2c:05:d4:ab:c8:52:11:ec:9f:02:fa:1e:12:d7:14: e9:d7:0a:de:b7:56:ef:20:57:ac:4f:6f:ec:43:e7:08:48:ab: 2a:d9:76:b6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSk/KfDtbBecLP5ct4Cd+DXUbTyUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMTIzMDAyMDEwWhcNMjYwMjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMmQ3MjkwMDNiM2M3NjE2ZTQ1OWMwNWY0ZWJiNjJlNGJk NTg0MDE5NjZmNzg5MGQwNDA2MWVlZWM1ODQ4NmJkMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjHZ47vTWLl/kiyA2XOAazKvNsQ/ACO7IyWko3H4FOSLdh CJt95DqZJA8QKs1DQS3mesGLahNjvJpG54JGjMsXMVGuiCbYov9Ao/8tn1TspKtO /TY/fS2q4fFdB1FQDJt5fdoXLgoqbInW8C64EvtcoLeNfle+Fsv8q6UQi4CWXU2K HyTeG0l/lYLazOtxsczUIGsr5bdRogw+WDN4h31g8o9kLFXV8sd9TtKLL+xCwTTj lmCX950CoGI4C9gSr8BDINKpnvt7hG0GGbbDJhBF7KAxShP/Aybp9hSYUq3HB2Gn 858v/4L1SWKhgCrq0kGtdOF0AEDTSsKZVK18otjDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxeYDImJS2SBWhMT8BwaZyipimBQwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkL2YxNzRmMzYwLWEzY2EtNDMzNS04NDE0LTQ3MjdjZWYxMTBhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX+dUwDQYJKoZIhvcNAQELBQADggEBAEqECvx0wj/4I1hVZeNWBUQdui1C ADnPOxAdxXNAGrR10VxzYhsJOV+36buxhe5iZB2Ql/ZYOlapvvtlplnHQhfIO3Ie klR7xBC3o00ZWAq0wvwKZh/poZV9zTgAnZLLXmojU1GjajC0ztKJjMftbaB5TxbX WeycL0yGNZRyKMGSHZKdnznonocxPb8FID2gzD6/KeUANeIdwcYWCY4Jv+40V4A3 ZyMHkeBf4I/QWc4d5ibq562bf3/K3rEX1MwbElWy27osTPdKTvILTP2LrOs76JWy eiKtD6+N4SwF1KvIUhHsnwL6HhLXFOnXCt63Vu8gV6xPb+xD5whIqyrZdrY= -----END CERTIFICATE-----Generated at Sat Dec 6 16:30:56 2025 by rpki-client