This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2cd4e3dc-4ef5-4487-b00f-142b8b8ff3c0.roa File: 2cd4e3dc-4ef5-4487-b00f-142b8b8ff3c0.roa (raw, json) Hash identifier: ShbRxMIgRun9XxLT5JSSJj22Subrxddjum41uxBQ+NE= Subject key identifier: 50:B1:B4:89:13:00:3F:93:8F:61:09:DC:07:71:42:A7:CC:C8:9E:29 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 57B66C5EBCFCAC74D59BE8D54FFDE4797FD09F3D Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2cd4e3dc-4ef5-4487-b00f-142b8b8ff3c0.roa Signing time: Tue 25 Nov 2025 18:50:45 +0000 ROA not before: Tue 25 Nov 2025 18:50:45 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 3.2.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:b6:6c:5e:bc:fc:ac:74:d5:9b:e8:d5:4f:fd:e4:79:7f:d0:9f:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Nov 25 18:50:45 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=8c0987aa31afcf805e34cdf3150d38ddceeaffe2571ef808dabcd317180e2619, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1a:31:da:b2:24:04:58:53:a8:3a:c4:b2:c3: 43:2f:70:56:b7:0c:78:04:5a:2f:f4:35:37:10:fc: 11:31:1f:de:aa:90:81:2a:a2:37:1e:48:1b:ed:8a: 90:d0:8b:63:9f:41:47:ec:6e:59:9d:e1:2c:ac:7e: bd:63:db:b2:ab:8f:36:8e:b2:f6:94:1d:d0:b1:53: 26:d1:7d:ee:bb:39:fa:34:d8:6a:34:38:ca:f1:cd: 3a:f9:c0:ab:d2:4b:6a:79:50:39:13:ee:b5:6b:87: a2:85:1e:f8:46:d5:80:98:4a:97:30:7d:09:f4:e0: d6:07:5f:a6:80:09:28:f0:24:26:56:39:4f:81:a3: 93:c6:5c:8a:54:23:c6:c8:8c:11:9c:47:63:8c:d3: 31:ef:55:24:e8:b2:7c:86:6b:b6:8f:c4:f8:7e:86: 8e:a8:ba:ae:67:ac:1d:7a:7a:8b:7a:f4:16:8c:5a: 21:a7:3d:ea:60:3b:31:da:33:ea:6e:ae:5c:1f:97: 02:d3:89:5d:7a:be:a8:1d:ef:12:0a:25:1a:71:94: eb:25:7e:8e:5c:a8:63:00:04:5a:5a:88:36:f8:9d: 53:5a:53:08:6a:12:06:a6:3e:0e:a3:9f:96:f1:97: b2:ac:a6:49:3e:b0:bd:b9:bf:3f:1b:04:e5:01:b4: 1f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:B1:B4:89:13:00:3F:93:8F:61:09:DC:07:71:42:A7:CC:C8:9E:29 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2cd4e3dc-4ef5-4487-b00f-142b8b8ff3c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 3.2.86.0/24 Signature Algorithm: sha256WithRSAEncryption 93:d9:c8:71:99:61:8c:95:e8:6d:ea:da:5f:7a:ed:3b:57:66: d7:3b:53:df:0e:9b:b1:e5:f4:50:0e:33:38:cc:64:b2:88:de: 7e:3e:d9:90:7c:1f:08:47:f9:1f:bd:81:28:00:d1:d0:36:64: ec:20:18:ac:13:fc:23:0e:7c:52:5a:db:27:e8:90:92:b8:75: 76:ce:b1:95:d8:fd:79:20:f3:8f:f6:78:66:5c:73:6e:7d:d4: 72:14:33:0e:33:e9:d5:36:6c:e4:ce:67:aa:4c:c8:eb:6d:8a: 6a:a9:75:5c:70:f6:eb:be:9d:bb:3d:b6:de:05:c8:91:f2:76: 2a:53:ab:d6:6c:42:ef:62:f2:35:de:0e:75:4f:81:87:ae:d5: 71:cf:a7:13:00:96:09:ca:fb:28:3b:08:7f:76:01:dc:7b:1b: d7:30:01:ec:12:e5:bc:3e:a3:a4:e7:c5:6f:7c:23:73:2d:9a: 8c:3f:2c:c4:6c:3f:d8:74:7b:1e:2c:25:30:07:d7:fd:bf:02: bd:73:c2:26:2a:18:21:f9:57:14:d5:78:1d:00:7d:d8:c6:27: fa:d6:d3:3a:43:7a:e0:c5:bb:d7:b0:27:2b:03:30:50:5f:fd: 13:25:3d:6d:15:5c:5b:b3:45:e4:66:8e:2b:c9:4f:88:8c:40: 85:91:3f:c0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV7ZsXrz8rHTVm+jVT/3keX/Qnz0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMTI1MTg1MDQ1WhcNMjYwMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4YzA5ODdhYTMxYWZjZjgwNWUzNGNkZjMxNTBkMzhkZGNl ZWFmZmUyNTcxZWY4MDhkYWJjZDMxNzE4MGUyNjE5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAGjHasiQEWFOoOsSyw0MvcFa3DHgEWi/0NTcQ/BExH96q kIEqojceSBvtipDQi2OfQUfsblmd4Sysfr1j27KrjzaOsvaUHdCxUybRfe67Ofo0 2Go0OMrxzTr5wKvSS2p5UDkT7rVrh6KFHvhG1YCYSpcwfQn04NYHX6aACSjwJCZW OU+Bo5PGXIpUI8bIjBGcR2OM0zHvVSTosnyGa7aPxPh+ho6ouq5nrB16eot69BaM WiGnPepgOzHaM+purlwflwLTiV16vqgd7xIKJRpxlOslfo5cqGMABFpaiDb4nVNa UwhqEgamPg6jn5bxl7Kspkk+sL25vz8bBOUBtB9HAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUULG0iRMAP5OPYQncB3FCp8zInikwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJjZDRlM2RjLTRlZjUtNDQ4Ny1iMDBmLTE0MmI4YjhmZjNjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAADAlYwDQYJKoZIhvcNAQELBQADggEBAJPZyHGZYYyV6G3q2l967TtXZtc7 U98Om7Hl9FAOMzjMZLKI3n4+2ZB8HwhH+R+9gSgA0dA2ZOwgGKwT/CMOfFJa2yfo kJK4dXbOsZXY/Xkg84/2eGZcc2591HIUMw4z6dU2bOTOZ6pMyOttimqpdVxw9uu+ nbs9tt4FyJHydipTq9ZsQu9i8jXeDnVPgYeu1XHPpxMAlgnK+yg7CH92Adx7G9cw AewS5bw+o6TnxW98I3Mtmow/LMRsP9h0ex4sJTAH1/2/Ar1zwiYqGCH5VxTVeB0A fdjGJ/rW0zpDeuDFu9ewJysDMFBf/RMlPW0VXFuzReRmjivJT4iMQIWRP8A= -----END CERTIFICATE-----Generated at Sat Dec 6 13:36:22 2025 by rpki-client