This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12b6201c-9d02-4277-832d-0f1c79e967c0.roa File: 12b6201c-9d02-4277-832d-0f1c79e967c0.roa (raw, json) Hash identifier: v15KiT4+P7mgu7qqyxQKIPH+H9czpgivCKeS8OsbIoY= Subject key identifier: 96:87:3E:C0:A2:5B:70:89:5B:FA:6C:19:6A:69:51:65:48:92:C1:42 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 65878FC8418145B8B98CAC69D5942ECE8BFF4F49 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12b6201c-9d02-4277-832d-0f1c79e967c0.roa Signing time: Sun 07 Dec 2025 01:50:11 +0000 ROA not before: Sun 07 Dec 2025 01:50:11 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 23.23.80.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:87:8f:c8:41:81:45:b8:b9:8c:ac:69:d5:94:2e:ce:8b:ff:4f:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 7 01:50:11 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=9386b2d4e54de67b0e5298ffdff924db4386bd2bc5e9b7606e073af6720b9675, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:bf:31:98:b4:89:77:07:84:37:77:58:87:c9: d6:c8:5c:85:e3:bc:66:51:6e:47:4c:ba:3c:13:c3: 99:34:9e:9a:63:e1:d5:6d:86:59:cf:ab:69:d3:e7: ae:fe:cc:d7:63:e0:e1:78:4e:2a:ed:9f:d3:33:43: db:e3:00:96:2a:5f:23:a9:4f:e0:24:3c:bc:6a:01: 9a:d4:4a:cc:7a:ab:47:88:f2:c9:41:a9:9d:a2:5d: 28:23:41:4a:5d:e2:11:11:c3:e6:28:62:7d:27:33: 21:20:81:97:bc:11:69:ee:75:1b:ec:e2:84:80:e1: e7:36:73:bc:39:47:aa:9d:41:ea:7a:f2:41:39:f3: 64:2a:62:ae:e9:62:f5:e9:18:7e:f5:27:27:1b:74: 11:3d:2b:8c:b8:b4:f0:ff:c6:c9:48:87:12:69:9f: 76:1b:4e:0d:c1:9c:47:74:21:d9:65:a9:e6:b7:27: 01:3b:6f:af:f3:69:fa:18:66:8a:50:7d:97:82:8e: ae:1e:cd:0a:0c:4c:35:d7:68:49:b3:8c:7f:71:24: 62:55:90:0d:a4:52:3b:fa:ea:9c:44:02:97:0a:bb: 4a:6c:8e:fe:45:e4:7f:6f:a1:0e:83:77:d1:3f:59: d3:be:53:fc:90:39:75:94:50:10:08:b6:1f:33:9b: a3:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:87:3E:C0:A2:5B:70:89:5B:FA:6C:19:6A:69:51:65:48:92:C1:42 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12b6201c-9d02-4277-832d-0f1c79e967c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.23.80.0/20 Signature Algorithm: sha256WithRSAEncryption 73:0d:4f:0f:14:59:63:55:38:52:ee:ac:ee:94:ec:5c:5a:7d: e7:9d:9c:4e:28:cf:43:89:6b:54:a0:ff:41:39:b4:e8:aa:42: 1f:70:1a:46:f4:75:a6:74:28:76:db:b0:bc:40:9f:64:91:49: de:10:12:6d:00:b1:f3:a7:43:9d:85:9f:d9:92:c2:ff:46:b4: fd:af:9c:37:f2:8a:c0:8d:48:f5:50:d1:7a:df:a0:66:0d:91: a7:03:8d:ac:c9:53:34:aa:6c:72:bf:55:03:61:e4:c2:74:d2: e9:b6:1c:0f:c0:16:b3:a6:34:55:47:39:f6:a9:58:3b:62:88: 32:9f:1f:80:c1:af:05:c2:d0:04:fe:de:c1:1f:67:bf:08:3a: 5f:ee:99:40:b1:d2:5c:e4:f2:73:53:66:36:99:52:b9:0e:38: af:80:92:0d:3c:28:79:e4:58:69:c0:60:37:e4:05:49:67:13: 62:cc:15:83:b8:34:4c:4a:07:52:d2:1a:49:05:33:3b:b9:fc: ab:f1:2d:21:ca:01:fc:4d:45:5a:b0:e2:83:e2:e7:f9:1d:dc: 5b:c4:1f:f1:0c:6e:f5:fa:77:8c:9a:ea:e5:e1:29:85:ad:36: f6:c7:e4:11:0d:1f:45:81:96:f1:af:ac:fc:85:67:e6:36:13: 09:43:dc:db -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZYePyEGBRbi5jKxp1ZQuzov/T0kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA3MDE1MDExWhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5Mzg2YjJkNGU1NGRlNjdiMGU1Mjk4ZmZkZmY5MjRkYjQz ODZiZDJiYzVlOWI3NjA2ZTA3M2FmNjcyMGI5Njc1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCGvzGYtIl3B4Q3d1iHydbIXIXjvGZRbkdMujwTw5k0nppj 4dVthlnPq2nT567+zNdj4OF4Tirtn9MzQ9vjAJYqXyOpT+AkPLxqAZrUSsx6q0eI 8slBqZ2iXSgjQUpd4hERw+YoYn0nMyEggZe8EWnudRvs4oSA4ec2c7w5R6qdQep6 8kE582QqYq7pYvXpGH71JycbdBE9K4y4tPD/xslIhxJpn3YbTg3BnEd0Idllqea3 JwE7b6/zafoYZopQfZeCjq4ezQoMTDXXaEmzjH9xJGJVkA2kUjv66pxEApcKu0ps jv5F5H9voQ6Dd9E/WdO+U/yQOXWUUBAIth8zm6O1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUloc+wKJbcIlb+mwZamlRZUiSwUIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEyYjYyMDFjLTlkMDItNDI3Ny04MzJkLTBmMWM3OWU5NjdjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQXF1AwDQYJKoZIhvcNAQELBQADggEBAHMNTw8UWWNVOFLurO6U7Fxafeed nE4oz0OJa1Sg/0E5tOiqQh9wGkb0daZ0KHbbsLxAn2SRSd4QEm0AsfOnQ52Fn9mS wv9GtP2vnDfyisCNSPVQ0XrfoGYNkacDjazJUzSqbHK/VQNh5MJ00um2HA/AFrOm NFVHOfapWDtiiDKfH4DBrwXC0AT+3sEfZ78IOl/umUCx0lzk8nNTZjaZUrkOOK+A kg08KHnkWGnAYDfkBUlnE2LMFYO4NExKB1LSGkkFMzu5/KvxLSHKAfxNRVqw4oPi 5/kd3FvEH/EMbvX6d4ya6uXhKYWtNvbH5BENH0WBlvGvrPyFZ+Y2EwlD3Ns= -----END CERTIFICATE-----Generated at Sat Dec 20 16:35:25 2025 by rpki-client