This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0169813a-bb63-4d7c-af7c-621b7522e549.roa File: 0169813a-bb63-4d7c-af7c-621b7522e549.roa (raw, json) Hash identifier: DSkE6ueaQTXjgCmthasrJvvDNQblG/bzfP/gxJ0GuSo= Subject key identifier: 1C:52:75:8C:3A:C2:9B:80:A6:00:FF:F7:54:4F:2D:57:06:4F:83:A3 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 20B71BEFED09BA9E1552A5B6484D12FCEB0B3BDB Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0169813a-bb63-4d7c-af7c-621b7522e549.roa Signing time: Tue 25 Nov 2025 19:40:44 +0000 ROA not before: Tue 25 Nov 2025 19:40:44 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:b7:1b:ef:ed:09:ba:9e:15:52:a5:b6:48:4d:12:fc:eb:0b:3b:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 25 19:40:44 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=5b57367fc65ca4698e43a15931eef9a18b4ba94b65e00de601fee2d167e23de4, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:39:7d:b4:ba:cf:76:96:87:d5:f4:f6:4b:7d: db:65:64:95:1c:e8:63:5f:19:fd:ab:8c:77:ba:b8: f1:d6:42:3c:6a:ea:4c:0d:4e:1e:d1:0f:66:29:e2: 5c:3d:bd:f1:2d:93:91:91:b9:d7:31:89:12:90:53: 4e:55:d2:c9:96:dc:bf:28:8a:d8:cd:88:0b:5a:5a: b9:40:e1:08:5d:56:67:77:36:38:be:87:39:28:0e: 6b:71:6c:b0:ab:14:03:98:27:95:ea:04:43:6e:d1: c9:fa:c0:51:2d:43:13:a5:e2:63:5b:41:9a:df:c6: 04:0b:75:b9:4f:6c:89:53:5c:9e:6d:ae:5a:7c:e0: 76:70:56:59:18:5b:71:c9:6e:e7:f4:c6:da:84:bf: ec:3b:de:6f:56:bb:40:fc:4d:4c:01:5f:ba:4b:c7: 75:a2:f7:3a:ad:8f:e9:b1:47:2a:d5:fa:63:50:1b: 9d:6b:c4:4c:4a:b1:8c:ff:ea:42:7d:27:74:4d:46: c5:61:92:aa:24:cc:45:11:4c:35:48:11:de:b6:47: 47:7c:38:5c:e6:00:ad:7f:ee:8a:36:c7:05:c5:e9: 89:b3:e6:8a:64:9a:cd:fb:53:c2:bf:dd:74:4e:ff: f6:82:70:f4:27:f6:77:a7:4c:ab:24:3f:1e:2e:af: 70:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:52:75:8C:3A:C2:9B:80:A6:00:FF:F7:54:4F:2D:57:06:4F:83:A3 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0169813a-bb63-4d7c-af7c-621b7522e549.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.24.0/23 Signature Algorithm: sha256WithRSAEncryption 71:2a:55:c2:68:90:78:9a:d3:0d:16:3c:90:82:28:5e:7b:72: 8f:a8:f5:68:98:9d:90:1e:e6:61:dd:5d:21:06:ed:66:d8:03: cc:8d:0a:72:a2:ef:e7:54:be:10:14:8f:ed:e1:52:3d:4b:ad: ce:b6:56:29:08:37:de:a4:55:7e:3c:a4:9b:a8:82:ce:18:24: 87:ec:3d:ee:b8:f4:68:23:16:d9:0f:36:1d:8c:07:9e:e1:28: 50:9f:1a:bf:4b:9c:27:96:2c:a4:cb:7e:5e:ba:61:20:ef:90: 64:05:c6:a6:d7:b5:55:ee:b3:1e:05:82:e2:2a:6f:65:88:32: 0d:79:00:40:25:d3:eb:82:ef:84:0e:b9:37:7b:55:6a:7a:1f: 91:fd:0a:e2:5c:75:35:75:62:57:1a:17:ea:24:26:2e:e2:4e: 56:1b:bd:4a:4c:6c:9d:ad:8e:12:d9:d0:e8:ae:10:26:43:45: d0:ca:97:51:08:46:dd:94:f9:5a:52:99:a0:59:ae:8f:53:15: b3:67:d9:ad:c5:9f:4c:5b:79:10:21:bc:ae:cc:93:ec:ba:ed: a3:09:66:3c:3f:dd:d3:f8:90:e5:08:53:ce:8b:c7:da:9f:83: ec:f0:49:4f:a2:3f:59:55:4d:bb:9d:3c:01:b9:7e:75:f6:54: bc:70:37:c1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUILcb7+0Jup4VUqW2SE0S/OsLO9swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMTI1MTk0MDQ0WhcNMjYwMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1YjU3MzY3ZmM2NWNhNDY5OGU0M2ExNTkzMWVlZjlhMThi NGJhOTRiNjVlMDBkZTYwMWZlZTJkMTY3ZTIzZGU0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsOX20us92lofV9PZLfdtlZJUc6GNfGf2rjHe6uPHWQjxq 6kwNTh7RD2Yp4lw9vfEtk5GRudcxiRKQU05V0smW3L8oitjNiAtaWrlA4QhdVmd3 Nji+hzkoDmtxbLCrFAOYJ5XqBENu0cn6wFEtQxOl4mNbQZrfxgQLdblPbIlTXJ5t rlp84HZwVlkYW3HJbuf0xtqEv+w73m9Wu0D8TUwBX7pLx3Wi9zqtj+mxRyrV+mNQ G51rxExKsYz/6kJ9J3RNRsVhkqokzEURTDVIEd62R0d8OFzmAK1/7oo2xwXF6Ymz 5opkms37U8K/3XRO//aCcPQn9nenTKskPx4ur3DxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHFJ1jDrCm4CmAP/3VE8tVwZPg6MwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzAxNjk4MTNhLWJiNjMtNGQ3Yy1hZjdjLTYyMWI3NTIyZTU0OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBgwDQYJKoZIhvcNAQELBQADggEBAHEqVcJokHia0w0WPJCCKF57co+o 9WiYnZAe5mHdXSEG7WbYA8yNCnKi7+dUvhAUj+3hUj1Lrc62VikIN96kVX48pJuo gs4YJIfsPe649GgjFtkPNh2MB57hKFCfGr9LnCeWLKTLfl66YSDvkGQFxqbXtVXu sx4FguIqb2WIMg15AEAl0+uC74QOuTd7VWp6H5H9CuJcdTV1YlcaF+okJi7iTlYb vUpMbJ2tjhLZ0OiuECZDRdDKl1EIRt2U+VpSmaBZro9TFbNn2a3Fn0xbeRAhvK7M k+y67aMJZjw/3dP4kOUIU86Lx9qfg+zwSU+iP1lVTbudPAG5fnX2VLxwN8E= -----END CERTIFICATE-----Generated at Sat Dec 6 15:14:08 2025 by rpki-client