This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9f885891-00d3-485c-8684-7666dfbef761.roa File: 9f885891-00d3-485c-8684-7666dfbef761.roa (raw, json) Hash identifier: Da97Pl41DpIUGNWIvQ+IrTYeKtm2lYpTwzsGAeOD5Hs= Subject key identifier: BA:DC:04:75:0F:93:A1:25:B4:2C:0B:74:B9:C1:74:22:5C:39:7B:FA Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0433B8738A44A1F10135C3B5E504E7613288BEE8 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9f885891-00d3-485c-8684-7666dfbef761.roa Signing time: Fri 05 Dec 2025 01:30:13 +0000 ROA not before: Fri 05 Dec 2025 01:30:13 +0000 ROA not after: Thu 05 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 52.124.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:33:b8:73:8a:44:a1:f1:01:35:c3:b5:e5:04:e7:61:32:88:be:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Dec 5 01:30:13 2025 GMT Not After : Mar 5 23:59:59 2026 GMT Subject: serialNumber=aa0237de1aeadd00411c67fd8a52b4475bf33153d5312032e602da21e25cda07, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e0:cc:54:e2:60:f0:f1:7e:2b:89:0c:64:a0: 0e:2d:3b:7d:2a:a4:ba:c0:9b:03:13:27:f4:39:24: 8a:58:ab:d4:c0:41:2d:54:40:d9:51:24:3e:60:0f: ea:3a:46:0e:cd:1b:0b:eb:27:92:66:6d:0d:0c:7d: a1:2f:d8:26:de:46:4b:27:d7:92:e8:c8:fc:d9:5d: a9:82:c1:d7:d2:8e:dd:10:a3:85:4c:31:a5:ea:21: b1:f7:48:59:cd:10:d7:ca:aa:c1:af:84:1c:1f:8f: e6:85:5a:12:e6:89:55:41:ae:0f:da:73:98:47:26: d7:1f:61:55:db:f7:26:24:1d:b7:c0:5c:dc:a3:b7: 7c:4c:5c:1d:04:84:5f:f4:1b:aa:47:0f:f0:52:16: dc:95:95:fc:b5:ca:6c:a2:94:99:fc:41:f0:1f:6e: 41:18:01:cf:53:95:4b:94:76:42:18:17:24:61:ad: 7e:fa:99:c2:68:f2:25:9e:33:4a:48:f8:60:60:48: 4e:a6:18:01:b2:68:14:4c:59:e4:f3:ac:f7:4d:70: ed:8d:2f:97:77:d8:2f:f7:2d:9f:ec:50:11:92:20: 6d:1b:74:ab:fa:03:79:87:c2:78:fb:64:d1:03:6e: 72:ae:e5:09:07:17:4c:59:57:c2:74:58:20:6b:6e: 7d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:DC:04:75:0F:93:A1:25:B4:2C:0B:74:B9:C1:74:22:5C:39:7B:FA X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/9f885891-00d3-485c-8684-7666dfbef761.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.124.185.0/24 Signature Algorithm: sha256WithRSAEncryption 89:8e:d0:f5:3d:2e:79:70:a1:f8:5f:9d:5f:22:d9:d5:55:43: 90:ec:96:60:ae:f4:63:c7:cd:af:fd:f2:d8:18:39:4f:c2:04: 9c:98:ea:2e:b8:82:11:1e:fe:e3:a5:1e:df:e6:6a:fb:6b:1b: 7d:6e:85:df:77:1c:5b:b5:73:da:5c:b8:7e:26:9e:5a:1d:53: 80:01:25:91:25:01:fe:80:5e:ef:34:7c:23:d7:51:af:c9:91: 09:ad:9a:5a:9a:50:3b:ac:17:50:78:65:ae:bb:08:92:85:06: 50:0b:3c:df:ce:3a:b5:eb:e5:38:9c:94:99:ef:65:21:1c:cf: f2:ad:0f:c3:51:bb:78:a7:25:25:d4:c9:17:95:2c:84:d3:33: 3c:43:38:55:e7:12:26:90:14:a5:8a:81:55:28:d0:ea:ff:d4: 2f:75:8b:d0:d3:7d:aa:5a:6d:c5:23:90:63:38:46:0c:e5:1c: a2:e2:f9:9b:45:e2:3c:e6:cd:ab:23:0e:d7:c7:b7:a0:12:9e: f5:49:a5:a7:c2:8c:90:ed:91:8c:e1:19:84:25:00:fd:03:38: f8:7f:30:ca:64:e0:1e:85:e7:af:9c:6f:71:22:60:76:fd:d0: e2:7a:c4:e8:46:52:00:ee:1d:4f:98:22:17:d0:a1:d8:de:27: 12:36:52:ac -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBDO4c4pEofEBNcO15QTnYTKIvugwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMjA1MDEzMDEzWhcNMjYwMzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTAyMzdkZTFhZWFkZDAwNDExYzY3ZmQ4YTUyYjQ0NzVi ZjMzMTUzZDUzMTIwMzJlNjAyZGEyMWUyNWNkYTA3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDb4MxU4mDw8X4riQxkoA4tO30qpLrAmwMTJ/Q5JIpYq9TA QS1UQNlRJD5gD+o6Rg7NGwvrJ5JmbQ0MfaEv2CbeRksn15LoyPzZXamCwdfSjt0Q o4VMMaXqIbH3SFnNENfKqsGvhBwfj+aFWhLmiVVBrg/ac5hHJtcfYVXb9yYkHbfA XNyjt3xMXB0EhF/0G6pHD/BSFtyVlfy1ymyilJn8QfAfbkEYAc9TlUuUdkIYFyRh rX76mcJo8iWeM0pI+GBgSE6mGAGyaBRMWeTzrPdNcO2NL5d32C/3LZ/sUBGSIG0b dKv6A3mHwnj7ZNEDbnKu5QkHF0xZV8J0WCBrbn3dAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUutwEdQ+ToSW0LAt0ucF0Ilw5e/owHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzlmODg1ODkxLTAwZDMtNDg1Yy04Njg0LTc2NjZkZmJlZjc2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA0fLkwDQYJKoZIhvcNAQELBQADggEBAImO0PU9LnlwofhfnV8i2dVVQ5Ds lmCu9GPHza/98tgYOU/CBJyY6i64ghEe/uOlHt/mavtrG31uhd93HFu1c9pcuH4m nlodU4ABJZElAf6AXu80fCPXUa/JkQmtmlqaUDusF1B4Za67CJKFBlALPN/OOrXr 5TiclJnvZSEcz/KtD8NRu3inJSXUyReVLITTMzxDOFXnEiaQFKWKgVUo0Or/1C91 i9DTfapabcUjkGM4RgzlHKLi+ZtF4jzmzasjDtfHt6ASnvVJpafCjJDtkYzhGYQl AP0DOPh/MMpk4B6F56+cb3EiYHb90OJ6xOhGUgDuHU+YIhfQodjeJxI2Uqw= -----END CERTIFICATE-----Generated at Sat Dec 6 10:08:14 2025 by rpki-client