This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa File: 2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa (raw, json) Hash identifier: zk9dOPD8d7dpbnc7rafPAIAWzXUNHw8H136doW2Rv1A= Subject key identifier: 84:75:44:D9:05:BB:68:16:C1:F8:DE:90:40:0D:88:64:05:14:2B:08 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 3E16E8296AF27242DF37C593D60265CB0DB0812F Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa Signing time: Sat 29 Nov 2025 02:50:31 +0000 ROA not before: Sat 29 Nov 2025 02:50:31 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:16:e8:29:6a:f2:72:42:df:37:c5:93:d6:02:65:cb:0d:b0:81:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 29 02:50:31 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=1866b756c04a6df4658141ef102adb610fa0f68ce00c4cee701ecbaf69bc8e25, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:4a:9d:0f:10:31:e5:d4:0a:a3:cf:4b:0f:d5: db:fe:e4:3e:46:ce:54:ea:a9:17:09:8c:ec:b5:54: 6f:79:ab:41:ac:41:06:b9:52:64:94:94:58:e5:b2: 8e:4b:10:d8:7b:62:db:54:f0:2d:f6:7e:f2:f0:9a: cb:34:0e:a0:2a:9d:e4:6d:b3:81:25:58:96:14:ea: 5e:aa:a7:25:11:70:06:c8:0a:3d:91:97:40:07:e3: 53:6e:01:bd:b1:e0:bc:45:af:fe:58:6c:e0:6d:b2: 11:a8:48:6c:1a:5e:64:3b:75:75:37:73:8c:9f:c7: a2:26:a9:01:cc:64:50:f8:67:4b:bd:16:0f:06:0c: ba:00:ee:1d:f6:c4:ae:3c:90:cf:00:9e:5d:a6:51: 60:80:7d:d1:c9:bc:ba:36:aa:03:11:19:58:be:fa: 39:52:d4:cf:17:01:0e:59:3f:0c:04:b7:42:6d:88: 8e:65:b1:e7:e3:b6:c4:a6:76:e9:1b:98:48:ac:c8: c1:05:02:a3:f5:38:ad:61:4b:a5:67:e7:32:19:37: f7:19:63:5a:5b:55:40:4d:40:b6:d0:27:13:7f:d2: 4a:04:6e:61:c9:13:57:cb:5f:4b:19:9a:d1:3a:78: eb:b6:74:6c:a4:ce:50:df:26:5f:ef:c2:3e:e8:1e: 3b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:75:44:D9:05:BB:68:16:C1:F8:DE:90:40:0D:88:64:05:14:2B:08 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.8.0/24 Signature Algorithm: sha256WithRSAEncryption 49:c8:a3:99:b0:68:71:1a:67:d1:a2:65:a2:d0:6d:09:93:e8: 40:0d:a5:1e:90:f1:7d:da:9f:25:63:03:c3:18:dd:a8:23:a0: 32:dc:1a:d9:e4:66:f6:eb:53:4e:b0:dc:3b:bd:81:35:23:cb: 0b:53:ea:a7:9f:a2:52:28:6c:ce:69:45:5e:21:31:19:11:a5: 4d:60:db:33:87:d5:1c:38:34:3c:23:af:ee:ac:87:90:0b:f7: 8a:0a:0d:85:02:d0:ec:24:2f:e9:3a:13:e6:3b:87:ee:82:9a: 5b:9b:07:05:fa:9f:5f:94:dc:00:5b:65:66:2a:ac:69:31:67: f5:89:c6:60:64:e1:f8:52:30:82:7f:39:fa:42:83:ec:7c:b3: 16:48:60:ff:9d:88:94:2b:0c:b1:32:d1:9a:46:cf:a1:a6:91: e6:7e:64:0a:11:c5:61:db:60:8e:d1:fa:71:5d:4e:71:12:e0: 75:d6:a7:3d:d1:f2:68:c9:60:47:99:8a:a2:43:6f:99:01:b7: 7e:ce:7d:ec:78:eb:87:c4:93:5a:f9:5d:05:11:d0:7c:be:b0: 55:68:37:2d:d5:6b:34:0e:22:75:54:53:f0:63:62:96:3f:32: ed:2a:0d:46:e1:3a:3b:7d:1d:54:75:50:99:a5:bf:0c:c4:b0: 4b:ac:a7:15 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPhboKWryckLfN8WT1gJlyw2wgS8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMTI5MDI1MDMxWhcNMjYwMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxODY2Yjc1NmMwNGE2ZGY0NjU4MTQxZWYxMDJhZGI2MTBm YTBmNjhjZTAwYzRjZWU3MDFlY2JhZjY5YmM4ZTI1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWSp0PEDHl1Aqjz0sP1dv+5D5GzlTqqRcJjOy1VG95q0Gs QQa5UmSUlFjlso5LENh7YttU8C32fvLwmss0DqAqneRts4ElWJYU6l6qpyURcAbI Cj2Rl0AH41NuAb2x4LxFr/5YbOBtshGoSGwaXmQ7dXU3c4yfx6ImqQHMZFD4Z0u9 Fg8GDLoA7h32xK48kM8Anl2mUWCAfdHJvLo2qgMRGVi++jlS1M8XAQ5ZPwwEt0Jt iI5lsefjtsSmdukbmEisyMEFAqP1OK1hS6Vn5zIZN/cZY1pbVUBNQLbQJxN/0koE bmHJE1fLX0sZmtE6eOu2dGykzlDfJl/vwj7oHjslAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhHVE2QW7aBbB+N6QQA2IZAUUKwgwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzI4MDBjNzBjLTZlYzEtNGQ4Ni1hOTE2LTQ4NTBkZWIyZGZhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAgwDQYJKoZIhvcNAQELBQADggEBAEnIo5mwaHEaZ9GiZaLQbQmT6EAN pR6Q8X3anyVjA8MY3agjoDLcGtnkZvbrU06w3Du9gTUjywtT6qefolIobM5pRV4h MRkRpU1g2zOH1Rw4NDwjr+6sh5AL94oKDYUC0OwkL+k6E+Y7h+6CmlubBwX6n1+U 3ABbZWYqrGkxZ/WJxmBk4fhSMIJ/OfpCg+x8sxZIYP+diJQrDLEy0ZpGz6GmkeZ+ ZAoRxWHbYI7R+nFdTnES4HXWpz3R8mjJYEeZiqJDb5kBt37Ofex464fEk1r5XQUR 0Hy+sFVoNy3VazQOInVUU/BjYpY/Mu0qDUbhOjt9HVR1UJmlvwzEsEuspxU= -----END CERTIFICATE-----Generated at Sat Dec 6 15:56:10 2025 by rpki-client