This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1b8dd216-c20b-4301-bd6e-0d090408de27.roa File: 1b8dd216-c20b-4301-bd6e-0d090408de27.roa (raw, json) Hash identifier: muM77J3yd29u8y1qWYwaUAwSxnf0daFRJHtWs8UHVNc= Subject key identifier: 8C:2E:49:0B:04:7C:92:6E:5C:E3:5D:57:53:94:9E:12:08:B2:16:68 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 42B21FAFB4E8EAF83D25D3749464BD989DBF5EC0 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1b8dd216-c20b-4301-bd6e-0d090408de27.roa Signing time: Wed 03 Dec 2025 01:50:33 +0000 ROA not before: Wed 03 Dec 2025 01:50:33 +0000 ROA not after: Tue 03 Mar 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:b2:1f:af:b4:e8:ea:f8:3d:25:d3:74:94:64:bd:98:9d:bf:5e:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Dec 3 01:50:33 2025 GMT Not After : Mar 3 23:59:59 2026 GMT Subject: serialNumber=0bd4976499a5e390d0d2cd00664eb16f95469a15baf22abfa470f96a4c633aa5, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:8c:2e:9e:e3:52:ca:0b:fc:19:34:84:5e:6b: b6:98:12:a2:fc:4b:dd:59:80:6f:02:e6:44:d0:92: 9e:ad:e0:c0:20:84:1a:b6:16:6a:1d:3a:1d:d6:0b: 37:52:0d:88:71:13:72:bb:2e:3a:90:b3:b0:b0:ee: 1b:14:d2:e8:d3:23:bb:30:c5:6d:fd:49:a9:c7:6f: 21:1f:79:d6:9c:3f:d2:ec:47:ee:34:01:23:8c:51: a7:5f:3e:8e:fe:f6:b1:26:44:f3:fe:60:c8:95:3a: df:6f:84:a2:10:ad:db:f9:5d:21:bf:ce:68:7d:55: 3e:8b:d2:2b:7e:88:1e:60:7e:9f:9b:d8:39:f4:e4: 78:39:5e:27:04:2c:92:49:e0:5e:e8:3e:50:c1:d7: 65:9b:22:49:94:ad:8d:ec:a4:47:df:f2:19:6c:70: 10:bb:40:48:29:25:3e:74:bd:cf:a6:0b:03:ed:3e: bf:6b:3e:b6:64:e5:81:3b:d2:6b:8d:57:2b:bf:b1: b1:84:23:b7:20:b6:19:c9:74:c3:6a:1e:a2:a5:9c: 12:d6:5d:52:9b:33:c8:6c:4e:08:dc:3b:47:33:50: 96:12:4a:98:7e:c3:2b:77:56:f8:45:e4:8e:26:b9: b1:90:a8:cd:88:87:4d:d0:d0:7f:ad:73:01:ac:24: 67:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:2E:49:0B:04:7C:92:6E:5C:E3:5D:57:53:94:9E:12:08:B2:16:68 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1b8dd216-c20b-4301-bd6e-0d090408de27.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.48.0/24 Signature Algorithm: sha256WithRSAEncryption 99:f0:12:17:da:4f:88:58:3e:1a:ca:fe:9e:77:f2:88:56:37: c8:23:5d:49:94:fd:38:36:37:28:bf:d2:e5:2d:01:33:99:b0: c3:75:f8:44:93:7c:c1:b9:2d:fd:de:ff:0f:3e:48:ed:d5:97: ac:a5:19:8f:3c:e0:82:7b:ea:ce:ab:58:46:07:26:e3:d3:b3: 86:c8:12:35:7c:98:c8:e2:86:e5:02:67:a3:93:cb:8c:ea:69: 3d:c7:d8:a4:07:7f:de:5a:5b:1a:6c:63:fa:3c:69:c2:57:6e: 32:60:6e:c3:c8:3d:fd:cb:93:b6:13:01:7d:65:eb:27:35:7b: 89:7f:f9:45:82:19:8e:bb:85:45:70:56:84:0f:38:dd:71:4d: ab:13:e6:23:0e:68:8b:ae:3f:06:0b:39:76:ea:7a:23:2f:e5: ed:8b:6b:d5:9b:f0:ff:42:ad:62:08:be:e5:9f:b9:38:34:c5: 70:2c:af:c4:57:72:f5:66:9d:3b:9e:e1:5d:e7:c7:6d:e7:8b: 61:b1:9c:e7:24:a0:b2:3e:45:e3:85:f1:8e:be:19:bd:15:10: 80:93:07:ed:c6:0b:ce:ce:60:4b:3d:17:9f:4e:e4:7c:37:67: fd:7b:d8:16:e9:3a:d9:84:18:cd:b8:0b:6a:d5:2f:d5:2d:db: 49:01:48:0d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQrIfr7To6vg9JdN0lGS9mJ2/XsAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMjAzMDE1MDMzWhcNMjYwMzAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYmQ0OTc2NDk5YTVlMzkwZDBkMmNkMDA2NjRlYjE2Zjk1 NDY5YTE1YmFmMjJhYmZhNDcwZjk2YTRjNjMzYWE1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbjC6e41LKC/wZNIRea7aYEqL8S91ZgG8C5kTQkp6t4MAg hBq2FmodOh3WCzdSDYhxE3K7LjqQs7Cw7hsU0ujTI7swxW39SanHbyEfedacP9Ls R+40ASOMUadfPo7+9rEmRPP+YMiVOt9vhKIQrdv5XSG/zmh9VT6L0it+iB5gfp+b 2Dn05Hg5XicELJJJ4F7oPlDB12WbIkmUrY3spEff8hlscBC7QEgpJT50vc+mCwPt Pr9rPrZk5YE70muNVyu/sbGEI7cgthnJdMNqHqKlnBLWXVKbM8hsTgjcO0czUJYS Sph+wyt3VvhF5I4mubGQqM2Ih03Q0H+tcwGsJGdxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjC5JCwR8km5c411XU5SeEgiyFmgwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzFiOGRkMjE2LWMyMGItNDMwMS1iZDZlLTBkMDkwNDA4ZGUyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYDAwDQYJKoZIhvcNAQELBQADggEBAJnwEhfaT4hYPhrK/p538ohWN8gj XUmU/Tg2Nyi/0uUtATOZsMN1+ESTfMG5Lf3e/w8+SO3Vl6ylGY884IJ76s6rWEYH JuPTs4bIEjV8mMjihuUCZ6OTy4zqaT3H2KQHf95aWxpsY/o8acJXbjJgbsPIPf3L k7YTAX1l6yc1e4l/+UWCGY67hUVwVoQPON1xTasT5iMOaIuuPwYLOXbqeiMv5e2L a9Wb8P9CrWIIvuWfuTg0xXAsr8RXcvVmnTue4V3nx23ni2GxnOckoLI+ReOF8Y6+ Gb0VEICTB+3GC87OYEs9F59O5Hw3Z/172BbpOtmEGM24C2rVL9Ut20kBSA0= -----END CERTIFICATE-----Generated at Sun Dec 7 02:13:55 2025 by rpki-client