This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/98b5c890-47f1-4f7f-a9dd-32289554f1d0.roa File: 98b5c890-47f1-4f7f-a9dd-32289554f1d0.roa (raw, json) Hash identifier: w8UZr9sCjzHFHKeF/xUjoKv6UGXtqJm9EeLInInGHk8= Subject key identifier: 95:F2:DD:02:D5:CE:FB:80:60:AA:A7:6B:09:6F:29:CA:15:62:95:C4 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1B8CFF487D6F3E8D1C9A22BC78109EF0E44322B5 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/98b5c890-47f1-4f7f-a9dd-32289554f1d0.roa Signing time: Tue 25 Nov 2025 19:40:45 +0000 ROA not before: Tue 25 Nov 2025 19:40:45 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:8c:ff:48:7d:6f:3e:8d:1c:9a:22:bc:78:10:9e:f0:e4:43:22:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 25 19:40:45 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=3728a7712a5478c838df0580906e9a6975ef46bb7f9543f127cbeaa7ac307c74, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:71:aa:cb:9e:ab:b9:30:6c:c0:c4:45:47:cd: 37:aa:0c:5e:5a:a0:bb:2f:1d:86:0b:a6:fb:b8:f1: ba:ed:f5:29:45:95:74:5d:10:54:1e:b4:c9:98:d9: 0b:5d:78:21:ce:a7:e5:40:8c:70:d9:50:19:c0:35: d5:0f:fb:9d:42:d9:fc:d9:07:76:98:58:0e:cd:70: a6:19:3d:82:a0:4a:2f:dd:a1:7a:ce:0c:df:62:0d: 35:cb:65:5e:14:63:da:df:f6:ce:43:83:92:ec:6d: 26:ef:a5:d8:1d:25:07:aa:44:68:c0:0e:87:33:32: 76:0f:1f:07:b7:1d:09:b1:2b:57:5a:41:8c:88:62: 9d:ab:bd:b8:60:f3:8a:85:e8:a9:6c:4d:8f:42:41: 25:c7:82:9d:5a:33:cb:c1:71:b4:51:74:8f:d2:47: 1c:7d:86:8a:58:4d:f0:09:a3:81:7d:34:8c:d5:ab: 44:2a:52:f5:51:52:c0:8f:0b:8d:47:ba:a2:48:e2: c3:3b:b8:26:ac:ab:c0:8c:7e:cc:ed:ba:48:55:73: 41:04:d8:16:f6:e2:84:18:85:80:15:79:7c:76:96: 44:63:92:37:ce:b7:05:b1:c9:d2:61:08:cd:c5:69: 8f:74:f2:65:e9:f7:87:b3:27:e8:8f:c1:8c:3d:97: eb:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:F2:DD:02:D5:CE:FB:80:60:AA:A7:6B:09:6F:29:CA:15:62:95:C4 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/98b5c890-47f1-4f7f-a9dd-32289554f1d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.247.0/24 Signature Algorithm: sha256WithRSAEncryption 80:48:a1:4e:90:05:21:be:37:a1:3f:44:95:7b:22:e6:21:45: 51:f2:97:11:16:f7:8a:75:b6:a3:86:6b:1d:b6:07:34:38:4e: 44:65:a9:fb:81:2e:1c:6c:26:79:40:f7:8b:f8:cd:f2:bb:a3: 21:ad:f7:f9:94:43:10:f5:4d:06:82:6c:ec:01:bd:06:f9:c1: d3:72:e2:ef:0f:74:2f:73:24:71:03:f4:e9:25:27:8a:24:a2: 99:a2:dc:4a:ef:7a:04:b9:6f:d2:c5:08:fe:0c:54:0d:44:a2: 50:08:25:4e:4a:5c:16:b4:d1:10:c6:76:1d:1b:8b:4d:a4:6b: 20:8c:4e:08:87:17:fa:1c:cd:0d:be:bd:28:27:cc:04:1b:93: c8:46:8e:6f:9c:34:c5:29:0e:f8:1c:65:af:0e:94:e8:62:55: 47:74:a7:a7:ed:94:65:23:cc:91:94:66:ab:a6:20:a4:c8:3e: 45:39:e0:f7:d1:29:ab:71:8f:c6:f5:93:5f:60:ef:5a:ef:f7: e3:84:45:47:ec:e0:08:67:dc:1d:e6:72:e5:26:2b:54:7b:a4: 20:d0:23:ef:d8:54:61:88:93:3e:da:d9:ea:d8:29:49:01:ed: f6:20:f8:ed:4e:f2:ef:a5:1f:0f:6b:de:84:54:59:26:4c:0b: 00:6f:14:60 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUG4z/SH1vPo0cmiK8eBCe8ORDIrUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMTI1MTk0MDQ1WhcNMjYwMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNzI4YTc3MTJhNTQ3OGM4MzhkZjA1ODA5MDZlOWE2OTc1 ZWY0NmJiN2Y5NTQzZjEyN2NiZWFhN2FjMzA3Yzc0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYcarLnqu5MGzAxEVHzTeqDF5aoLsvHYYLpvu48brt9SlF lXRdEFQetMmY2QtdeCHOp+VAjHDZUBnANdUP+51C2fzZB3aYWA7NcKYZPYKgSi/d oXrODN9iDTXLZV4UY9rf9s5Dg5LsbSbvpdgdJQeqRGjADoczMnYPHwe3HQmxK1da QYyIYp2rvbhg84qF6KlsTY9CQSXHgp1aM8vBcbRRdI/SRxx9hopYTfAJo4F9NIzV q0QqUvVRUsCPC41HuqJI4sM7uCasq8CMfsztukhVc0EE2Bb24oQYhYAVeXx2lkRj kjfOtwWxydJhCM3FaY908mXp94ezJ+iPwYw9l+tNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlfLdAtXO+4BgqqdrCW8pyhVilcQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzk4YjVjODkwLTQ3ZjEtNGY3Zi1hOWRkLTMyMjg5NTU0ZjFkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPcwDQYJKoZIhvcNAQELBQADggEBAIBIoU6QBSG+N6E/RJV7IuYhRVHy lxEW94p1tqOGax22BzQ4TkRlqfuBLhxsJnlA94v4zfK7oyGt9/mUQxD1TQaCbOwB vQb5wdNy4u8PdC9zJHED9OklJ4okopmi3ErvegS5b9LFCP4MVA1EolAIJU5KXBa0 0RDGdh0bi02kayCMTgiHF/oczQ2+vSgnzAQbk8hGjm+cNMUpDvgcZa8OlOhiVUd0 p6ftlGUjzJGUZqumIKTIPkU54PfRKatxj8b1k19g71rv9+OERUfs4Ahn3B3mcuUm K1R7pCDQI+/YVGGIkz7a2erYKUkB7fYg+O1O8u+lHw9r3oRUWSZMCwBvFGA= -----END CERTIFICATE-----Generated at Sat Dec 6 15:32:11 2025 by rpki-client