This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2ac091c5-8143-4a71-81c4-f34c33d996aa.roa File: 2ac091c5-8143-4a71-81c4-f34c33d996aa.roa (raw, json) Hash identifier: PGpI5ZwpUyP5tR9rAxExkIMYUjckSb2i15GkU0iEPfI= Subject key identifier: 9C:41:E3:83:CF:3D:B4:98:3B:79:39:AA:A9:0E:43:09:22:4F:34:4B Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 2A2491BD690FFE3EE8D67D5B79C4CADDCE0F98C1 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2ac091c5-8143-4a71-81c4-f34c33d996aa.roa Signing time: Thu 13 Nov 2025 01:50:05 +0000 ROA not before: Thu 13 Nov 2025 01:50:05 +0000 ROA not after: Thu 18 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:24:91:bd:69:0f:fe:3e:e8:d6:7d:5b:79:c4:ca:dd:ce:0f:98:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 13 01:50:05 2025 GMT Not After : Dec 18 23:59:59 2025 GMT Subject: serialNumber=d85c1535bdea6b2196d1e4ec7479a2c23438d2ed1ed6f8e0f1d58b719f18f94d, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c2:d9:4a:fa:f1:b2:50:43:1b:9f:5d:50:45: ba:ec:2f:2f:fd:db:64:cf:d9:ba:27:ac:a2:75:52: c0:95:80:5d:98:0e:c6:bb:21:e7:af:c1:d8:36:b4: b3:2e:79:8e:c6:df:5a:11:85:03:ed:e8:c5:4a:e6: 0c:9e:69:7d:7b:6c:f6:22:2a:9a:f5:e6:cc:d8:86: 3c:5e:fb:2c:aa:7b:b6:82:7b:bd:e1:64:df:47:b0: 3c:6e:b2:3d:9e:41:c3:4a:07:17:3e:11:c2:93:a6: a9:6a:15:81:d3:86:a0:f5:44:cb:0a:ab:d6:2a:dc: 10:67:47:71:20:37:db:ee:f2:12:ee:ae:fa:09:9d: bc:a6:0a:c7:b7:fe:3b:f9:53:45:d0:e7:4e:fb:8a: 77:d0:64:ce:bc:7f:14:f5:aa:b7:45:89:b3:7f:60: aa:c4:d3:85:80:b6:93:5a:fd:a6:05:93:7f:b8:d0: ab:1a:69:d4:53:75:11:63:ea:15:de:61:cc:8a:df: 26:30:c9:ed:74:c4:d6:4b:d8:67:f1:94:a3:0f:d0: 63:a5:29:e3:34:95:d9:a3:e0:87:66:fc:a3:33:c2: 81:cc:a6:d2:76:76:54:22:9d:5f:76:f7:c1:67:64: 97:07:64:f0:c6:97:01:61:76:a4:25:38:41:d3:64: f7:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:41:E3:83:CF:3D:B4:98:3B:79:39:AA:A9:0E:43:09:22:4F:34:4B X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2ac091c5-8143-4a71-81c4-f34c33d996aa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.38.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:be:f9:20:dc:01:08:c3:f8:d4:13:d8:d1:21:fe:8a:5e:5f: 66:52:2c:dd:b2:51:34:71:dd:50:95:16:bf:8c:58:b6:27:3a: 7a:f9:4f:a6:97:ec:ba:aa:20:e9:5a:e0:ef:df:98:35:b4:e6: e8:01:19:1b:54:c6:4c:74:e1:a7:d7:d9:6c:d2:4a:87:a7:01: 7c:44:17:bb:39:de:12:fa:e7:20:86:4f:d3:af:9c:1c:b3:da: f2:7a:bd:8c:34:51:ac:9d:fb:d5:10:38:9c:1a:6a:4d:e5:7e: be:f2:aa:72:21:a6:8d:1a:79:76:76:fb:a3:47:44:c9:e4:55: 2f:88:80:91:44:d2:0e:8f:c1:6b:84:5d:61:24:20:6f:f4:4e: 2c:35:70:67:c3:af:35:92:e8:eb:14:a3:c2:a1:7e:47:7a:49: 31:66:20:30:53:da:d6:77:2f:9b:93:68:47:ff:7b:91:bb:2a: dc:98:32:99:bb:c1:70:b2:d4:33:b7:43:41:c7:3a:e4:af:48: 6f:92:77:56:c7:c9:a6:0b:62:7a:28:7e:c6:ae:95:e3:53:c3: 4b:be:a4:2a:dc:9d:07:52:11:39:20:06:a7:c9:8c:d2:9c:2a: ec:47:8e:39:d1:5f:ea:06:8f:f7:69:58:c1:71:73:b3:35:aa: 3f:d3:47:9c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKiSRvWkP/j7o1n1becTK3c4PmMEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMTEzMDE1MDA1WhcNMjUxMjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkODVjMTUzNWJkZWE2YjIxOTZkMWU0ZWM3NDc5YTJjMjM0 MzhkMmVkMWVkNmY4ZTBmMWQ1OGI3MTlmMThmOTRkMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAwtlK+vGyUEMbn11QRbrsLy/922TP2bonrKJ1UsCVgF2Y Dsa7Ieevwdg2tLMueY7G31oRhQPt6MVK5gyeaX17bPYiKpr15szYhjxe+yyqe7aC e73hZN9HsDxusj2eQcNKBxc+EcKTpqlqFYHThqD1RMsKq9Yq3BBnR3EgN9vu8hLu rvoJnbymCse3/jv5U0XQ5077infQZM68fxT1qrdFibN/YKrE04WAtpNa/aYFk3+4 0KsaadRTdRFj6hXeYcyK3yYwye10xNZL2GfxlKMP0GOlKeM0ldmj4Idm/KMzwoHM ptJ2dlQinV9298FnZJcHZPDGlwFhdqQlOEHTZPcrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnEHjg889tJg7eTmqqQ5DCSJPNEswHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzJhYzA5MWM1LTgxNDMtNGE3MS04MWM0LWYzNGMzM2Q5OTZhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCYwDQYJKoZIhvcNAQELBQADggEBABu++SDcAQjD+NQT2NEh/opeX2ZS LN2yUTRx3VCVFr+MWLYnOnr5T6aX7LqqIOla4O/fmDW05ugBGRtUxkx04afX2WzS SoenAXxEF7s53hL65yCGT9OvnByz2vJ6vYw0Uayd+9UQOJwaak3lfr7yqnIhpo0a eXZ2+6NHRMnkVS+IgJFE0g6PwWuEXWEkIG/0Tiw1cGfDrzWS6OsUo8Khfkd6STFm IDBT2tZ3L5uTaEf/e5G7KtyYMpm7wXCy1DO3Q0HHOuSvSG+Sd1bHyaYLYnoofsau leNTw0u+pCrcnQdSETkgBqfJjNKcKuxHjjnRX+oGj/dpWMFxc7M1qj/TR5w= -----END CERTIFICATE-----Generated at Sat Dec 6 20:26:39 2025 by rpki-client