This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bfd96660-29cf-4054-a14e-cd48975d08b4.roa File: bfd96660-29cf-4054-a14e-cd48975d08b4.roa (raw, json) Hash identifier: eIQkSgedhb0POjiNoF8rBdEC822ZyhtIEJd6OHSvim4= Subject key identifier: 76:C7:35:74:B6:EE:71:0D:D6:19:DD:E0:DB:18:2D:48:5D:0E:6D:37 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7A1DFFA9184E6737D5A8994AEBD07BB864AC4B66 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bfd96660-29cf-4054-a14e-cd48975d08b4.roa Signing time: Tue 25 Nov 2025 19:40:44 +0000 ROA not before: Tue 25 Nov 2025 19:40:44 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:1d:ff:a9:18:4e:67:37:d5:a8:99:4a:eb:d0:7b:b8:64:ac:4b:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 25 19:40:44 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=8f32b41a730caf3e5ec48eccaded6775e17d05d0ea66c190553c73a5485f73dc, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fd:09:b4:7f:40:47:9a:30:1e:b2:d1:f7:d2: 82:31:7a:06:79:08:95:cc:64:3b:32:56:c4:ef:18: a5:fa:8f:d1:ea:7b:4f:3e:6b:b0:55:68:6a:fe:71: 97:d9:3b:1e:5f:67:9b:cd:3a:0d:59:74:ac:98:6f: 5a:8c:b1:49:a5:0b:b0:cf:74:3e:d4:c8:93:fd:38: 28:6c:6e:9d:7f:8b:f3:30:bc:cf:7c:7e:ab:be:40: 4b:6a:06:77:51:ed:a3:63:57:3d:38:dd:c6:0a:99: bf:aa:82:a1:c2:af:42:5a:89:5b:4b:8e:0b:3a:7b: 87:c3:03:c4:1a:f8:16:b9:d9:35:3d:ab:f7:3a:83: ff:93:f4:c4:ea:18:6c:6e:a3:bf:f3:d5:e4:56:99: 50:00:f9:72:6b:f7:23:ea:f6:43:cd:ae:b3:ff:25: 0c:1b:09:5b:1c:29:68:c5:b3:da:a6:87:cb:8a:2c: 8f:c6:96:c4:99:ec:4a:b2:a3:05:d5:01:69:04:bd: 44:92:08:e0:a7:f2:f6:0f:c0:e7:bd:40:17:d7:26: 46:1c:0e:f6:c1:48:0d:40:71:dd:4f:a6:69:f5:a7: 82:38:d4:5d:ed:8a:2b:15:a8:4c:c7:78:9c:35:df: 8a:2f:27:4f:b5:04:8a:38:a9:7a:9c:5b:d8:8b:b0: bf:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:C7:35:74:B6:EE:71:0D:D6:19:DD:E0:DB:18:2D:48:5D:0E:6D:37 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bfd96660-29cf-4054-a14e-cd48975d08b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.24.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:9a:a3:89:47:be:9a:c2:a7:83:b4:10:7a:22:b1:40:3d:a6: d9:14:6c:d9:60:f2:4d:37:a4:e7:00:e0:f8:8b:74:b3:f8:4a: ba:e3:22:79:f4:a9:1a:b8:cc:47:73:8d:bc:0c:57:fe:4e:32: 0a:56:b3:63:75:85:c3:3d:92:d8:3b:41:92:d1:70:d5:79:73: 3f:f5:f9:3a:7a:db:58:dc:39:7a:01:1d:28:4a:ed:c8:93:c9: 8d:c8:37:a3:bc:30:58:18:56:e3:08:e8:31:9c:b7:df:66:8a: b7:d3:1e:d3:6d:ee:85:02:47:99:ec:80:ec:09:53:fa:3f:de: 94:09:3f:e3:4f:72:7a:f8:02:aa:60:4d:73:49:1e:b2:03:6e: 55:c4:dc:27:1f:bf:1e:af:21:1c:29:06:28:0f:f6:32:a0:35: dc:e4:dd:15:4f:f3:9b:1c:2f:c6:ed:3e:94:67:a7:9c:0d:72: cd:d2:d8:9d:af:32:75:18:09:f3:d7:7f:cc:ce:e0:c0:1e:9a: 4c:b6:93:00:a4:5c:2b:ea:b3:09:96:de:49:9e:76:17:83:df: fd:29:ac:ff:37:bf:b9:e4:9d:c4:fa:58:0c:3a:d8:33:0f:d8: f3:e6:81:23:2f:99:17:69:77:6d:2f:2c:63:8f:5a:ce:7f:c0: 90:85:8b:f6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeh3/qRhOZzfVqJlK69B7uGSsS2YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMTI1MTk0MDQ0WhcNMjYwMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZjMyYjQxYTczMGNhZjNlNWVjNDhlY2NhZGVkNjc3NWUx N2QwNWQwZWE2NmMxOTA1NTNjNzNhNTQ4NWY3M2RjMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDI/Qm0f0BHmjAestH30oIxegZ5CJXMZDsyVsTvGKX6j9Hq e08+a7BVaGr+cZfZOx5fZ5vNOg1ZdKyYb1qMsUmlC7DPdD7UyJP9OChsbp1/i/Mw vM98fqu+QEtqBndR7aNjVz043cYKmb+qgqHCr0JaiVtLjgs6e4fDA8Qa+Ba52TU9 q/c6g/+T9MTqGGxuo7/z1eRWmVAA+XJr9yPq9kPNrrP/JQwbCVscKWjFs9qmh8uK LI/GlsSZ7EqyowXVAWkEvUSSCOCn8vYPwOe9QBfXJkYcDvbBSA1Acd1Ppmn1p4I4 1F3tiisVqEzHeJw134ovJ0+1BIo4qXqcW9iLsL8BAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdsc1dLbucQ3WGd3g2xgtSF0ObTcwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2JmZDk2NjYwLTI5Y2YtNDA1NC1hMTRlLWNkNDg5NzVkMDhiNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBgwDQYJKoZIhvcNAQELBQADggEBAGqao4lHvprCp4O0EHoisUA9ptkU bNlg8k03pOcA4PiLdLP4SrrjInn0qRq4zEdzjbwMV/5OMgpWs2N1hcM9ktg7QZLR cNV5cz/1+Tp621jcOXoBHShK7ciTyY3IN6O8MFgYVuMI6DGct99mirfTHtNt7oUC R5nsgOwJU/o/3pQJP+NPcnr4AqpgTXNJHrIDblXE3Ccfvx6vIRwpBigP9jKgNdzk 3RVP85scL8btPpRnp5wNcs3S2J2vMnUYCfPXf8zO4MAemky2kwCkXCvqswmW3kme dheD3/0prP83v7nkncT6WAw62DMP2PPmgSMvmRdpd20vLGOPWs5/wJCFi/Y= -----END CERTIFICATE-----Generated at Sat Dec 6 21:05:15 2025 by rpki-client