This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0caf62b0-1cb6-426a-827d-61eb989f8a93.roa File: 0caf62b0-1cb6-426a-827d-61eb989f8a93.roa (raw, json) Hash identifier: orIVzImqY09fywRvWwDSsEEf28aafaquV5+7ZfY7ErE= Subject key identifier: 98:E3:B0:21:B9:09:BB:E4:2B:29:5F:F0:3F:A0:E7:22:6D:4A:9F:A6 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 791E12F8FBA7273D63FD5C4D068D0048F55FB9FA Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0caf62b0-1cb6-426a-827d-61eb989f8a93.roa Signing time: Wed 03 Dec 2025 01:50:09 +0000 ROA not before: Wed 03 Dec 2025 01:50:09 +0000 ROA not after: Tue 03 Mar 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:1e:12:f8:fb:a7:27:3d:63:fd:5c:4d:06:8d:00:48:f5:5f:b9:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Dec 3 01:50:09 2025 GMT Not After : Mar 3 23:59:59 2026 GMT Subject: serialNumber=6c4cb8a0e14cbc270f917a5ee3a79be81f19501ffdac68c6a016e45e64cffb28, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b7:b3:c6:7b:2e:d8:4d:08:91:a9:58:ba:0f: ba:64:b8:19:23:99:43:60:87:e8:ef:d3:16:40:4b: 7c:75:b8:bc:6f:5e:05:7a:4d:6a:be:fb:0f:aa:6f: 43:a0:99:43:f6:90:62:8e:d6:42:4b:d5:84:ee:a2: fa:c8:0d:11:03:57:82:2f:c2:77:9e:bb:a1:d0:51: b3:8d:6d:e2:15:22:78:2a:f8:ac:f5:f1:7c:60:96: b3:75:86:f6:dd:40:25:a9:f1:2c:6c:2a:1d:40:bb: 21:47:c1:83:3b:37:61:76:7b:33:24:25:6d:37:3e: 13:9c:af:82:57:f8:63:f7:b3:99:c7:ef:70:4e:2b: 16:9f:3b:8b:df:e6:5f:2f:7d:0c:2a:ae:af:ab:4c: b9:28:af:ae:e8:63:e1:92:59:b0:c3:68:64:85:9e: 41:99:a1:ae:46:b4:3f:c2:61:37:de:1b:82:3e:70: b1:ac:c5:8c:bc:cd:5d:7c:ee:cd:8d:45:bf:76:cc: 0a:29:26:bd:bb:c2:ca:b6:ee:11:70:8f:3c:a1:c9: 9e:aa:79:ba:9a:29:45:ad:00:80:97:2c:35:3d:f3: f3:1f:4f:85:6c:db:47:79:c7:f0:e7:56:59:d6:00: 71:05:d8:1c:36:4f:a8:b3:74:82:23:87:bc:c6:db: 05:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:E3:B0:21:B9:09:BB:E4:2B:29:5F:F0:3F:A0:E7:22:6D:4A:9F:A6 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0caf62b0-1cb6-426a-827d-61eb989f8a93.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.49.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:d8:77:70:74:47:d1:86:9c:a1:84:75:5a:84:14:af:af:e3: d7:bc:07:1b:34:e9:a0:16:0e:3e:b3:1b:6d:6c:03:aa:2c:bf: 80:be:ee:5a:94:46:5b:91:ab:9e:fa:5b:ec:41:35:40:46:93: e9:7e:63:a8:0e:18:48:ab:a9:5c:e4:58:33:21:76:35:6a:02: c1:d3:52:df:86:cf:5b:d7:8c:38:3f:d5:17:fc:d9:5f:96:34: ba:b4:16:5a:45:8d:91:8f:d3:24:49:f6:8f:6f:c5:95:19:8b: de:28:63:a1:db:75:38:fd:84:4e:86:28:59:4d:6e:32:b7:03: a2:03:39:4b:89:b9:71:f7:36:91:b5:f2:5e:68:fb:2d:6d:47: 11:85:ff:97:ef:33:e9:9b:53:a8:f6:81:50:7d:46:53:18:05: ea:80:a1:fa:6e:7d:45:73:d4:27:6f:a4:71:db:e9:66:0a:05: 97:2f:a4:ac:1c:f2:6f:00:76:59:62:80:e3:96:c4:e3:19:27: d2:de:9e:84:e6:a9:33:6a:4d:03:0e:44:42:4d:44:aa:78:3d: d7:f7:c6:b8:7b:a7:d7:8c:81:06:f0:14:a7:f0:92:b2:66:43: 3b:a3:3e:68:ae:be:50:c7:0d:4d:ad:34:44:2f:24:58:ab:7a: 19:2d:b6:26 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeR4S+PunJz1j/VxNBo0ASPVfufowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMjAzMDE1MDA5WhcNMjYwMzAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YzRjYjhhMGUxNGNiYzI3MGY5MTdhNWVlM2E3OWJlODFm MTk1MDFmZmRhYzY4YzZhMDE2ZTQ1ZTY0Y2ZmYjI4MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+t7PGey7YTQiRqVi6D7pkuBkjmUNgh+jv0xZAS3x1uLxv XgV6TWq++w+qb0OgmUP2kGKO1kJL1YTuovrIDREDV4Ivwneeu6HQUbONbeIVIngq +Kz18XxglrN1hvbdQCWp8SxsKh1AuyFHwYM7N2F2ezMkJW03PhOcr4JX+GP3s5nH 73BOKxafO4vf5l8vfQwqrq+rTLkor67oY+GSWbDDaGSFnkGZoa5GtD/CYTfeG4I+ cLGsxYy8zV187s2NRb92zAopJr27wsq27hFwjzyhyZ6qebqaKUWtAICXLDU98/Mf T4Vs20d5x/DnVlnWAHEF2Bw2T6izdIIjh7zG2wVFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmOOwIbkJu+QrKV/wP6DnIm1Kn6YwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzBjYWY2MmIwLTFjYjYtNDI2YS04MjdkLTYxZWI5ODlmOGE5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYDEwDQYJKoZIhvcNAQELBQADggEBAE7Yd3B0R9GGnKGEdVqEFK+v49e8 Bxs06aAWDj6zG21sA6osv4C+7lqURluRq576W+xBNUBGk+l+Y6gOGEirqVzkWDMh djVqAsHTUt+Gz1vXjDg/1Rf82V+WNLq0FlpFjZGP0yRJ9o9vxZUZi94oY6HbdTj9 hE6GKFlNbjK3A6IDOUuJuXH3NpG18l5o+y1tRxGF/5fvM+mbU6j2gVB9RlMYBeqA ofpufUVz1CdvpHHb6WYKBZcvpKwc8m8AdlligOOWxOMZJ9LenoTmqTNqTQMOREJN RKp4Pdf3xrh7p9eMgQbwFKfwkrJmQzujPmiuvlDHDU2tNEQvJFirehkttiY= -----END CERTIFICATE-----Generated at Sun Dec 7 01:09:04 2025 by rpki-client