This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25f2c0c2-b535-4699-9790-e41a1bf11d51.roa File: 25f2c0c2-b535-4699-9790-e41a1bf11d51.roa (raw, json) Hash identifier: oYDd1cKi4i0UyfVGG6NNEngN4PuTbipCQRDHpuA373Q= Subject key identifier: 6C:21:DF:5E:62:A6:48:7D:04:9A:D3:60:6D:C3:A5:03:1E:5D:4F:02 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3AC13BA4F8500F31CD919531A09135BF411E0451 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25f2c0c2-b535-4699-9790-e41a1bf11d51.roa Signing time: Mon 08 Dec 2025 00:50:06 +0000 ROA not before: Mon 08 Dec 2025 00:50:06 +0000 ROA not after: Sun 08 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 220.157.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:c1:3b:a4:f8:50:0f:31:cd:91:95:31:a0:91:35:bf:41:1e:04:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 8 00:50:06 2025 GMT Not After : Mar 8 23:59:59 2026 GMT Subject: serialNumber=590555cfe241a5a8a8a9d1445540d3f2e1814a81cd5d3549b27e5566b9874ca0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:bb:f3:38:5f:d3:d5:aa:16:a3:84:3d:38:c3: 0e:23:3d:0e:eb:91:fd:11:e3:d8:0f:12:53:b0:e6: 73:46:ed:e4:8e:1d:5d:7f:c8:23:d9:2d:d6:7f:83: 3b:8a:5d:29:1e:2b:6b:3c:5b:80:35:ed:21:87:b1: 4f:19:fa:02:4f:8c:be:ce:ae:0d:0c:e6:c0:cc:2a: 5b:47:47:9e:5b:fb:70:2f:99:89:88:35:38:fc:ad: 97:af:27:13:a1:43:dc:60:c4:62:5f:8b:4d:35:1f: 2b:2c:61:08:18:e8:42:53:ff:f4:5a:3e:72:f3:e9: 5d:42:29:b1:19:21:28:73:5b:25:d4:8b:a1:bc:0a: 74:01:08:3d:4e:51:78:4e:ae:d4:35:e3:f3:d0:23: 62:53:a9:f6:68:6f:fd:81:67:0a:0e:78:2b:b0:48: c2:21:5a:8a:46:b2:b7:55:4a:69:9b:aa:81:72:1f: 17:74:ed:e6:d8:78:a0:82:1e:aa:22:ff:62:9e:dd: b6:95:a2:c6:27:89:6a:5b:d6:91:5c:74:4b:91:78: 7f:98:c2:88:d2:de:90:a0:8c:4f:2e:05:28:78:7c: 97:68:48:1d:e1:ed:95:b2:30:01:8a:74:96:59:bc: 8e:98:a5:c9:ca:9b:02:39:85:1f:c8:27:4b:19:66: 00:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:21:DF:5E:62:A6:48:7D:04:9A:D3:60:6D:C3:A5:03:1E:5D:4F:02 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25f2c0c2-b535-4699-9790-e41a1bf11d51.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.157.66.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:1c:3b:fc:a3:8e:61:de:6a:13:dd:8d:01:bd:55:2a:fc:71: b4:62:6e:29:f0:6d:7c:f7:70:86:49:68:eb:9a:3c:57:37:eb: f4:34:d9:52:08:97:64:fa:98:75:5e:eb:83:00:8e:3f:3e:de: cf:ad:f6:ec:15:7f:cd:08:5a:d7:74:ec:96:82:64:b1:1d:4c: af:b9:84:d5:e8:0b:0c:c6:ee:87:a0:0f:da:8c:8a:e2:97:48: f3:44:d7:b7:22:15:01:54:9d:36:49:d5:5c:c8:aa:e6:b7:8e: 33:62:7a:b4:e0:b2:38:fd:76:ea:03:0b:6a:8f:2f:92:cc:7f: 13:3b:3b:24:89:3a:49:97:91:5f:13:d9:38:cf:e0:b5:8a:f6: 64:b1:fc:db:67:8c:41:0b:71:ba:09:31:b6:8e:59:3a:99:7b: 3c:a1:1e:19:c8:07:5b:84:24:22:60:a4:c4:8e:49:8f:a2:94: 4f:09:ed:ae:4f:6d:9e:ae:50:87:ab:fd:b1:f5:f6:4e:ba:36: 22:3d:6b:2e:ba:36:04:5c:98:6a:b6:3d:8c:4a:84:0b:63:dc: ed:35:9e:2c:b1:2c:9a:85:6a:57:43:bc:5e:6a:03:57:c8:fe: df:52:38:5d:46:e2:19:85:0b:a3:69:30:c3:0b:31:8d:24:bc: 24:c8:6f:43 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOsE7pPhQDzHNkZUxoJE1v0EeBFEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA4MDA1MDA2WhcNMjYwMzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTA1NTVjZmUyNDFhNWE4YThhOWQxNDQ1NTQwZDNmMmUx ODE0YTgxY2Q1ZDM1NDliMjdlNTU2NmI5ODc0Y2EwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJu/M4X9PVqhajhD04ww4jPQ7rkf0R49gPElOw5nNG7eSO HV1/yCPZLdZ/gzuKXSkeK2s8W4A17SGHsU8Z+gJPjL7Org0M5sDMKltHR55b+3Av mYmINTj8rZevJxOhQ9xgxGJfi001HyssYQgY6EJT//RaPnLz6V1CKbEZIShzWyXU i6G8CnQBCD1OUXhOrtQ14/PQI2JTqfZob/2BZwoOeCuwSMIhWopGsrdVSmmbqoFy Hxd07ebYeKCCHqoi/2Ke3baVosYniWpb1pFcdEuReH+YwojS3pCgjE8uBSh4fJdo SB3h7ZWyMAGKdJZZvI6YpcnKmwI5hR/IJ0sZZgCpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbCHfXmKmSH0EmtNgbcOlAx5dTwIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI1ZjJjMGMyLWI1MzUtNDY5OS05NzkwLWU0MWExYmYxMWQ1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHcnUIwDQYJKoZIhvcNAQELBQADggEBAA8cO/yjjmHeahPdjQG9VSr8cbRi binwbXz3cIZJaOuaPFc36/Q02VIIl2T6mHVe64MAjj8+3s+t9uwVf80IWtd07JaC ZLEdTK+5hNXoCwzG7oegD9qMiuKXSPNE17ciFQFUnTZJ1VzIqua3jjNierTgsjj9 duoDC2qPL5LMfxM7OySJOkmXkV8T2TjP4LWK9mSx/NtnjEELcboJMbaOWTqZezyh HhnIB1uEJCJgpMSOSY+ilE8J7a5PbZ6uUIer/bH19k66NiI9ay66NgRcmGq2PYxK hAtj3O01niyxLJqFaldDvF5qA1fI/t9SOF1G4hmFC6NpMMMLMY0kvCTIb0M= -----END CERTIFICATE-----Generated at Sat Dec 20 13:17:32 2025 by rpki-client