This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/8bae045f-365b-43cf-99fc-12cbcbce5f67.roa File: 8bae045f-365b-43cf-99fc-12cbcbce5f67.roa (raw, json) Hash identifier: 0j/DV5J9gmmZ27dbFDLDoJ6lXBajnL2Ww2yvT21qVY0= Subject key identifier: 6C:D0:22:F6:5C:C9:04:A6:B5:0C:33:06:2B:AB:C9:79:B4:12:13:F5 Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 2BC07388D06C8579008D21B262BE1FD3F685EDBC Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/8bae045f-365b-43cf-99fc-12cbcbce5f67.roa Signing time: Sat 29 Nov 2025 00:10:07 +0000 ROA not before: Sat 29 Nov 2025 00:10:07 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 62785 IP address blocks: 172.96.104.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:c0:73:88:d0:6c:85:79:00:8d:21:b2:62:be:1f:d3:f6:85:ed:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Nov 29 00:10:07 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=414e182a978c85d8bdd26303a7a8aa35a164a5241a009da3bbb0ba4aadf04019, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f0:a9:d0:49:27:e6:bc:67:fd:25:c8:4c:14: 37:8c:b4:53:60:b4:a8:7e:04:31:2c:e6:d6:72:46: 3e:a8:7e:bb:d7:cc:2e:2f:0f:20:c3:36:f5:c9:37: a4:c9:64:c7:68:f7:5f:bc:5e:bf:f5:b7:24:0e:ac: 4d:54:2a:ce:30:73:20:d9:fb:e4:fe:c1:7f:58:18: 49:e1:55:44:16:e1:d8:37:f8:52:ab:3b:61:cf:44: f5:ef:d6:e1:86:fb:8a:6e:45:c5:d1:95:fb:00:c0: c6:73:35:0f:3d:fa:a5:43:a5:b7:4c:6b:ff:2b:8f: d9:be:c5:6c:d3:fb:63:5f:c1:ff:da:ac:0b:28:ef: 64:b3:cd:e7:14:7c:67:e9:9a:21:45:c2:95:11:d6: f8:ef:b2:f6:d0:c6:bd:a3:c4:62:d9:ad:48:2f:a7: 1a:7d:f1:5a:25:1f:87:5e:70:f7:32:02:b5:4b:7f: 31:dd:15:b5:20:12:80:1a:65:8e:59:bb:1d:27:4e: 7a:29:94:b4:80:25:3d:04:51:b6:f0:26:fc:1b:bf: ba:ec:f7:ba:7a:f8:65:e4:fe:e3:62:56:f1:28:3e: 2f:24:c3:88:3c:dc:fc:cf:e6:8f:f7:43:16:f7:fd: b1:9d:b3:39:71:40:82:88:29:48:3a:e6:50:a6:08: 91:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:D0:22:F6:5C:C9:04:A6:B5:0C:33:06:2B:AB:C9:79:B4:12:13:F5 X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/8bae045f-365b-43cf-99fc-12cbcbce5f67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.96.104.0/21 Signature Algorithm: sha256WithRSAEncryption a5:7b:10:8d:29:d0:d7:cc:43:73:80:ba:df:ea:63:b2:ea:a9: 26:a9:55:38:d8:92:a8:e0:8d:16:b7:16:56:06:e8:e4:b6:7c: 72:f7:67:a2:a9:be:c8:d4:10:fd:fa:bc:85:0e:fe:ad:2f:12: 5a:59:b6:7c:24:ac:57:c7:14:5e:40:cd:8d:38:97:bc:67:d2: 1d:48:e9:2f:26:ad:58:8c:a8:52:69:a9:a7:6a:2b:00:e6:ae: 55:48:86:a5:fc:7b:21:87:7f:a1:98:c3:5e:4f:b0:e8:0b:d5: 8d:6f:0c:17:0c:65:48:58:71:1b:3e:5e:77:9b:e6:00:87:98: 47:38:12:5d:cb:00:2e:3d:82:af:d9:8e:91:e9:7b:94:9f:79: 31:1e:c7:9b:be:9d:d4:60:72:c0:44:c0:5b:ec:5f:b0:ff:69: 33:aa:3f:d7:19:cc:9b:8d:73:20:99:c7:d9:e6:e0:d4:d3:97: 31:31:fc:9f:7b:08:1a:14:36:dc:63:14:08:88:33:ef:48:4d: c8:1c:b5:d3:d5:ae:5f:16:ea:72:39:2f:bf:7a:29:c4:13:e2: 2d:d2:b8:26:99:d9:39:34:5c:80:f0:f0:26:dc:c9:a3:00:72: 7c:b6:9f:29:b8:0d:e3:e6:a7:9f:d7:68:a8:11:c5:97:ac:12: 14:19:ea:63 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK8BziNBshXkAjSGyYr4f0/aF7bwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjUxMTI5MDAxMDA3WhcNMjYwMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MTRlMTgyYTk3OGM4NWQ4YmRkMjYzMDNhN2E4YWEzNWEx NjRhNTI0MWEwMDlkYTNiYmIwYmE0YWFkZjA0MDE5MS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDT8KnQSSfmvGf9JchMFDeMtFNgtKh+BDEs5tZyRj6ofrvX zC4vDyDDNvXJN6TJZMdo91+8Xr/1tyQOrE1UKs4wcyDZ++T+wX9YGEnhVUQW4dg3 +FKrO2HPRPXv1uGG+4puRcXRlfsAwMZzNQ89+qVDpbdMa/8rj9m+xWzT+2Nfwf/a rAso72SzzecUfGfpmiFFwpUR1vjvsvbQxr2jxGLZrUgvpxp98VolH4decPcyArVL fzHdFbUgEoAaZY5Zux0nTnoplLSAJT0EUbbwJvwbv7rs97p6+GXk/uNiVvEoPi8k w4g83PzP5o/3Qxb3/bGdszlxQIKIKUg65lCmCJEJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbNAi9lzJBKa1DDMGK6vJebQSE/UwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4LzhiYWUwNDVmLTM2NWItNDNjZi05OWZjLTEyY2JjYmNlNWY2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOsYGgwDQYJKoZIhvcNAQELBQADggEBAKV7EI0p0NfMQ3OAut/qY7LqqSap VTjYkqjgjRa3FlYG6OS2fHL3Z6KpvsjUEP36vIUO/q0vElpZtnwkrFfHFF5AzY04 l7xn0h1I6S8mrViMqFJpqadqKwDmrlVIhqX8eyGHf6GYw15PsOgL1Y1vDBcMZUhY cRs+Xneb5gCHmEc4El3LAC49gq/ZjpHpe5SfeTEex5u+ndRgcsBEwFvsX7D/aTOq P9cZzJuNcyCZx9nm4NTTlzEx/J97CBoUNtxjFAiIM+9ITcgctdPVrl8W6nI5L796 KcQT4i3SuCaZ2Tk0XIDw8CbcyaMAcny2nym4DePmp5/XaKgRxZesEhQZ6mM= -----END CERTIFICATE-----Generated at Sat Dec 6 20:16:37 2025 by rpki-client