This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/db0b227f-9958-4ebb-9f23-65cc24c5c799.roa File: db0b227f-9958-4ebb-9f23-65cc24c5c799.roa (raw, json) Hash identifier: 1D6Q+vv3aL9Ad6rmlrE6UELLL5JbuKfigkSApYgxdDs= Subject key identifier: 8F:63:32:46:BD:6C:DC:25:40:C4:BB:07:58:7C:92:B9:6C:9A:CF:A9 Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 6C04C5E57EA702A901A2918919833E3EAA5C7F6E Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/db0b227f-9958-4ebb-9f23-65cc24c5c799.roa Signing time: Sat 29 Nov 2025 00:10:06 +0000 ROA not before: Sat 29 Nov 2025 00:10:06 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 62785 IP address blocks: 172.96.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:04:c5:e5:7e:a7:02:a9:01:a2:91:89:19:83:3e:3e:aa:5c:7f:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Nov 29 00:10:06 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=6bfc5d8c03eaeda66bfa0f2556a621933701797497ed4d3c91849672e6454820, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8e:82:b4:30:68:4d:4f:ea:3d:d3:56:45:e5: ac:00:4d:8c:9a:44:d3:f6:30:61:7a:f7:62:e0:ae: 40:48:b4:34:c6:44:e7:41:9b:e1:d3:04:be:c8:31: 27:b5:e4:c8:42:5e:ee:12:c6:d0:68:54:72:57:4f: ae:77:ca:e8:57:6d:ef:b4:0d:c7:a0:b6:07:76:2d: 42:ce:fe:c3:31:d3:b4:86:a1:80:5f:de:d7:a6:bb: 3d:9f:93:5c:41:1e:9d:07:2f:42:fd:16:19:7e:d3: 04:42:85:56:3f:ee:a2:5a:13:b9:b9:93:9b:86:bc: 50:64:74:c9:ea:98:7e:d0:dc:3c:c2:0d:d0:6d:a0: d6:f7:a7:ce:f3:20:f5:ed:ac:d7:20:54:4d:e2:13: 27:8e:ff:f0:68:d9:64:b8:e6:f9:96:47:82:8e:d9: 0a:15:a6:3a:3c:99:6e:17:58:a1:a9:52:99:75:56: d1:52:ec:c0:03:09:2d:e0:86:52:76:c3:79:f7:26: fc:a6:5e:e2:a7:82:52:2d:25:ce:a3:a0:09:0d:3f: a0:1c:f0:f5:b2:43:a0:bd:40:47:68:7e:b3:0e:8d: bb:33:3f:c1:5c:e9:09:62:5d:81:7f:e8:03:74:61: 42:41:c7:9a:2f:17:18:97:0e:b3:56:06:42:61:83: ad:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:63:32:46:BD:6C:DC:25:40:C4:BB:07:58:7C:92:B9:6C:9A:CF:A9 X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/db0b227f-9958-4ebb-9f23-65cc24c5c799.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.96.96.0/20 Signature Algorithm: sha256WithRSAEncryption 60:0b:cc:f1:77:2f:6d:40:28:c0:4a:50:79:dc:f3:89:83:d8: 1b:27:b5:1d:54:c3:e1:c4:4c:34:14:4c:e4:ed:ea:3d:23:82: a9:b8:ac:35:43:59:34:e4:4d:e1:7c:a1:39:3b:8a:98:f0:09: b8:ca:c2:0d:e7:3d:30:df:f0:75:5d:17:59:c5:db:b5:df:7a: c8:3f:0f:2f:f9:08:3f:07:77:a6:be:84:a6:c4:08:92:6a:a6: d3:63:6e:be:19:02:51:26:2b:ad:02:0f:1f:18:f9:fb:9f:54: c4:a1:7a:69:59:84:24:cf:01:8f:a6:33:e9:6a:2d:97:8f:d1: fe:08:17:0a:1b:bc:f4:e5:28:06:62:55:86:36:09:ab:05:87: 68:f0:35:83:7a:44:13:f0:bd:e7:e3:a6:f4:36:70:20:6f:21: da:0c:73:2f:df:ad:21:2d:7a:88:69:aa:5a:5b:1e:a2:bc:e5: 1c:60:01:5c:1f:81:0a:bf:f6:4c:85:5f:de:40:f6:3e:7b:5b: a7:df:71:de:1e:b0:78:80:bc:c4:92:1e:9c:75:34:7a:24:fa: 8b:cf:e0:10:73:21:ec:4f:64:97:ed:e1:8c:9a:87:f3:fa:d1: 99:39:7f:91:6d:df:55:ee:17:32:1d:bd:78:44:94:5c:25:8c: 73:a7:e7:bc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbATF5X6nAqkBopGJGYM+Pqpcf24wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjUxMTI5MDAxMDA2WhcNMjYwMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YmZjNWQ4YzAzZWFlZGE2NmJmYTBmMjU1NmE2MjE5MzM3 MDE3OTc0OTdlZDRkM2M5MTg0OTY3MmU2NDU0ODIwMS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7joK0MGhNT+o901ZF5awATYyaRNP2MGF692LgrkBItDTG ROdBm+HTBL7IMSe15MhCXu4SxtBoVHJXT653yuhXbe+0Dcegtgd2LULO/sMx07SG oYBf3temuz2fk1xBHp0HL0L9Fhl+0wRChVY/7qJaE7m5k5uGvFBkdMnqmH7Q3DzC DdBtoNb3p87zIPXtrNcgVE3iEyeO//Bo2WS45vmWR4KO2QoVpjo8mW4XWKGpUpl1 VtFS7MADCS3ghlJ2w3n3JvymXuKnglItJc6joAkNP6Ac8PWyQ6C9QEdofrMOjbsz P8Fc6QliXYF/6AN0YUJBx5ovFxiXDrNWBkJhg62hAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUj2MyRr1s3CVAxLsHWHySuWyaz6kwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4L2RiMGIyMjdmLTk5NTgtNGViYi05ZjIzLTY1Y2MyNGM1Yzc5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASsYGAwDQYJKoZIhvcNAQELBQADggEBAGALzPF3L21AKMBKUHnc84mD2Bsn tR1Uw+HETDQUTOTt6j0jgqm4rDVDWTTkTeF8oTk7ipjwCbjKwg3nPTDf8HVdF1nF 27Xfesg/Dy/5CD8Hd6a+hKbECJJqptNjbr4ZAlEmK60CDx8Y+fufVMShemlZhCTP AY+mM+lqLZeP0f4IFwobvPTlKAZiVYY2CasFh2jwNYN6RBPwvefjpvQ2cCBvIdoM cy/frSEteohpqlpbHqK85RxgAVwfgQq/9kyFX95A9j57W6ffcd4esHiAvMSSHpx1 NHok+ovP4BBzIexPZJft4Yyah/P60Zk5f5Ft31XuFzIdvXhElFwljHOn57w= -----END CERTIFICATE-----Generated at Sat Dec 6 20:15:56 2025 by rpki-client