This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c20cef01-d6c4-4442-8fcc-76bc24a7afa2.roa File: c20cef01-d6c4-4442-8fcc-76bc24a7afa2.roa (raw, json) Hash identifier: 3hJaiHgh5718h/1k2IB7mZr2NJ7AdYriRKdZyXIVDXg= Subject key identifier: 11:81:9C:6C:7A:B4:E4:FB:28:F1:4F:13:25:06:DD:31:A6:8B:9C:4C Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 24889031335CEBC1CC1382437873B125C4E45136 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c20cef01-d6c4-4442-8fcc-76bc24a7afa2.roa Signing time: Tue 25 Nov 2025 19:40:49 +0000 ROA not before: Tue 25 Nov 2025 19:40:49 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:88:90:31:33:5c:eb:c1:cc:13:82:43:78:73:b1:25:c4:e4:51:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 25 19:40:49 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=d6a3adb2358c1eb1d1132b4e5471fbd1b0bbb4d620eed6176853fc3713dc6f66, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:73:3c:87:0a:37:c6:2f:23:1d:04:3d:b9:fa: 13:63:a8:80:2f:1c:2e:9b:0d:74:91:eb:8a:19:93: 4b:12:ba:ee:90:a7:ad:27:90:45:50:46:23:32:04: 42:8b:5f:21:03:bb:32:35:84:f3:21:f5:44:9f:21: 2e:b7:d7:2c:c3:ff:2b:fa:69:b4:7f:82:28:91:78: e9:c2:78:ed:fc:52:ad:d1:78:de:2c:fc:15:1a:65: 15:23:a8:f5:45:88:cc:c8:75:98:e0:06:71:60:12: 95:8d:46:27:09:7d:95:33:ee:8d:6c:26:6b:47:03: 84:82:2c:3b:42:48:81:24:c0:1f:56:e0:b5:f8:e4: 51:e3:7f:bf:a5:a5:52:b1:78:29:84:3a:6d:5f:c1: cf:c1:96:88:8e:22:09:f9:45:a4:c7:00:2a:8c:6d: e1:f4:19:fd:ac:56:69:0c:af:a9:4d:d1:b9:8e:44: 5b:49:eb:db:a2:77:34:8f:dc:44:a6:92:1c:e0:74: b6:b1:6f:68:1c:57:88:0a:84:8a:52:49:0b:d6:ac: db:52:dc:6d:25:f8:fe:cb:59:02:c4:44:d1:06:7f: f4:af:63:ce:af:6f:75:ec:b5:ae:64:ce:26:83:3f: f0:d7:16:4f:41:a5:c5:98:a4:68:bd:06:ca:f7:18: 69:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:81:9C:6C:7A:B4:E4:FB:28:F1:4F:13:25:06:DD:31:A6:8B:9C:4C X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c20cef01-d6c4-4442-8fcc-76bc24a7afa2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.5.0/24 Signature Algorithm: sha256WithRSAEncryption 57:f4:bf:0e:98:16:7f:7b:e1:cf:f6:80:9e:dc:2e:b2:bd:91: 98:89:6a:6e:89:26:60:f3:f0:02:92:07:ed:4c:1e:4e:6d:60: ab:19:e8:14:26:47:4b:89:8a:64:19:c4:85:95:7d:a0:23:1e: 69:a7:8f:3b:a2:0b:0b:a1:3f:aa:fb:42:d0:1c:03:35:c5:7b: f7:63:3f:04:0a:55:ef:4d:5a:f2:64:53:34:8e:33:5d:be:b7: e6:e9:fc:74:45:20:55:83:64:ac:c4:36:43:7e:db:aa:1c:d9: 1c:c8:11:cb:5e:f0:37:de:0d:fd:35:45:2c:4d:55:68:93:49: 9f:5f:43:5a:03:30:87:00:49:4b:20:0c:c5:35:a1:d9:5a:b2: 7e:b5:13:f2:90:15:fd:22:fd:35:57:9f:26:ba:3d:39:25:22: 07:6c:b3:d4:85:3f:34:0c:11:dc:96:8e:db:41:5a:13:31:e8: 4b:95:d3:5c:57:b9:e2:6e:a1:9d:66:e7:33:29:32:b7:63:e8: 31:99:5b:8b:73:31:a3:82:fd:a7:c6:4e:6a:c5:a1:d8:74:45: 05:93:c0:ce:8c:92:e1:76:b1:fb:c0:b2:80:18:19:bd:03:18: dd:21:e6:9d:f6:27:49:8b:85:f0:0e:3d:9a:fd:c7:3c:f6:e7: 47:4f:ce:10 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJIiQMTNc68HME4JDeHOxJcTkUTYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMTI1MTk0MDQ5WhcNMjYwMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNmEzYWRiMjM1OGMxZWIxZDExMzJiNGU1NDcxZmJkMWIw YmJiNGQ2MjBlZWQ2MTc2ODUzZmMzNzEzZGM2ZjY2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+czyHCjfGLyMdBD25+hNjqIAvHC6bDXSR64oZk0sSuu6Q p60nkEVQRiMyBEKLXyEDuzI1hPMh9USfIS631yzD/yv6abR/giiReOnCeO38Uq3R eN4s/BUaZRUjqPVFiMzIdZjgBnFgEpWNRicJfZUz7o1sJmtHA4SCLDtCSIEkwB9W 4LX45FHjf7+lpVKxeCmEOm1fwc/BloiOIgn5RaTHACqMbeH0Gf2sVmkMr6lN0bmO RFtJ69uidzSP3ESmkhzgdLaxb2gcV4gKhIpSSQvWrNtS3G0l+P7LWQLERNEGf/Sv Y86vb3Xsta5kziaDP/DXFk9BpcWYpGi9Bsr3GGmpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEYGcbHq05Pso8U8TJQbdMaaLnEwwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2MyMGNlZjAxLWQ2YzQtNDQ0Mi04ZmNjLTc2YmMyNGE3YWZhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAUwDQYJKoZIhvcNAQELBQADggEBAFf0vw6YFn974c/2gJ7cLrK9kZiJ am6JJmDz8AKSB+1MHk5tYKsZ6BQmR0uJimQZxIWVfaAjHmmnjzuiCwuhP6r7QtAc AzXFe/djPwQKVe9NWvJkUzSOM12+t+bp/HRFIFWDZKzENkN+26oc2RzIEcte8Dfe Df01RSxNVWiTSZ9fQ1oDMIcASUsgDMU1odlasn61E/KQFf0i/TVXnya6PTklIgds s9SFPzQMEdyWjttBWhMx6EuV01xXueJuoZ1m5zMpMrdj6DGZW4tzMaOC/afGTmrF odh0RQWTwM6MkuF2sfvAsoAYGb0DGN0h5p32J0mLhfAOPZr9xzz250dPzhA= -----END CERTIFICATE-----Generated at Sat Dec 6 14:14:19 2025 by rpki-client