This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/683f0f25-6fc4-4076-b464-0eae077d79de.roa File: 683f0f25-6fc4-4076-b464-0eae077d79de.roa (raw, json) Hash identifier: nozbStDKqdOOo9JO9wulh711ecHGyDmEA5B7YQGs3sk= Subject key identifier: 62:DF:78:1D:60:67:FE:32:D2:84:54:22:15:17:BC:4F:03:47:77:05 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 44659C4C828DFFD0B628F6786959ACD0FCEBBA12 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/683f0f25-6fc4-4076-b464-0eae077d79de.roa Signing time: Thu 11 Dec 2025 00:30:57 +0000 ROA not before: Thu 11 Dec 2025 00:30:57 +0000 ROA not after: Wed 11 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.54.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:65:9c:4c:82:8d:ff:d0:b6:28:f6:78:69:59:ac:d0:fc:eb:ba:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 11 00:30:57 2025 GMT Not After : Mar 11 23:59:59 2026 GMT Subject: serialNumber=b9499b41720b7821ae10f4fd156c9d0465009a0dc9ea1d9a65981643b982dfe6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:31:31:87:ab:fc:d4:a4:25:50:7e:81:40:ab: a7:9b:fa:77:1a:bc:22:41:d1:2f:2b:43:e8:de:26: 35:c7:28:af:a7:b1:7a:39:51:05:b1:bb:7b:23:25: d2:26:c5:97:43:97:76:61:86:2d:19:d3:d5:24:68: 8a:b3:4a:73:84:ac:61:bd:bf:a4:0c:26:73:a9:ed: e4:8c:98:31:b0:c8:25:22:ff:61:28:59:f2:ff:20: ae:99:e3:7e:94:14:11:d3:72:1b:68:26:1a:ff:cd: 31:a7:7d:fa:42:92:28:6e:83:49:62:93:6e:c5:49: 09:93:32:98:b0:9c:8f:60:b3:5c:89:82:7e:ca:96: 95:ee:4d:6e:3c:e2:53:4e:a1:e5:53:a4:1d:c2:ae: a9:43:71:d2:cd:40:f2:3b:1a:1c:49:be:0b:16:45: c2:75:8b:fa:9a:4c:20:58:d1:d4:7a:ee:68:e2:0b: 6a:bf:1c:59:95:cb:c0:25:cb:54:39:a4:db:11:31: e1:18:20:5c:7f:6c:2f:1a:4f:20:fb:87:7d:fb:cb: c3:38:27:60:76:41:fc:14:3f:8f:ec:1f:e3:68:59: 8b:49:8d:11:9d:a8:2a:e5:08:f0:b9:32:e3:0b:eb: b6:5b:a4:a8:ae:7e:00:15:8c:a0:51:d2:5b:58:e8: 8e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:DF:78:1D:60:67:FE:32:D2:84:54:22:15:17:BC:4F:03:47:77:05 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/683f0f25-6fc4-4076-b464-0eae077d79de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.54.57.0/24 Signature Algorithm: sha256WithRSAEncryption 62:67:33:1d:dd:b4:0b:e3:5c:2f:0a:bb:ea:23:5f:36:c4:2b: 78:0a:fb:48:cd:23:97:76:31:5e:7c:0e:43:f9:4d:06:ef:35: 0f:77:9c:73:fd:50:f5:f3:f3:1e:fc:8e:82:c8:1e:92:c0:bf: 15:da:8f:aa:e3:1d:e7:c5:53:9e:c1:0c:05:3f:ed:11:bf:34: 2f:e8:ed:1e:be:8d:ce:9b:6b:d5:3f:88:10:da:05:11:a8:95: 47:59:08:50:c1:18:fa:2a:ec:06:53:6b:23:9e:45:e1:cc:f6: f5:0f:1d:6b:20:af:68:d4:5a:7e:3a:01:b4:37:4b:2f:73:62: f7:6a:95:66:74:8b:2a:b0:cf:9f:43:88:74:10:10:9b:78:1b: e6:31:a4:4d:12:42:41:e9:4b:5f:4e:cd:78:eb:fd:d4:2e:71: 37:35:66:aa:71:fb:3b:87:db:d2:14:d9:0c:01:36:54:1e:6c: 73:00:25:2b:06:8d:a7:ec:54:9e:7d:09:cc:b2:d4:6e:55:5a: a9:b4:58:4c:ca:16:66:34:41:3c:b3:1f:40:a5:d6:9f:06:5d: 61:3a:56:df:a3:a2:6d:42:17:07:ed:e8:45:10:41:86:90:0d: 7e:ba:4c:43:2c:7e:39:d3:a5:ce:8c:58:25:47:08:7e:be:53: a6:f4:ef:d2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURGWcTIKN/9C2KPZ4aVms0PzruhIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjExMDAzMDU3WhcNMjYwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0BiOTQ5OWI0MTcyMGI3ODIxYWUxMGY0ZmQxNTZjOWQwNDY1 MDA5YTBkYzllYTFkOWE2NTk4MTY0M2I5ODJkZmU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0MTGHq/zUpCVQfoFAq6eb+ncavCJB0S8rQ+jeJjXHKK+n sXo5UQWxu3sjJdImxZdDl3Zhhi0Z09UkaIqzSnOErGG9v6QMJnOp7eSMmDGwyCUi /2EoWfL/IK6Z436UFBHTchtoJhr/zTGnffpCkihug0lik27FSQmTMpiwnI9gs1yJ gn7KlpXuTW484lNOoeVTpB3CrqlDcdLNQPI7GhxJvgsWRcJ1i/qaTCBY0dR67mji C2q/HFmVy8Aly1Q5pNsRMeEYIFx/bC8aTyD7h337y8M4J2B2QfwUP4/sH+NoWYtJ jRGdqCrlCPC5MuML67ZbpKiufgAVjKBR0ltY6I7pAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYt94HWBn/jLShFQiFRe8TwNHdwUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY4M2YwZjI1LTZmYzQtNDA3Ni1iNDY0LTBlYWUwNzdkNzlkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjNjkwDQYJKoZIhvcNAQELBQADggEBAGJnMx3dtAvjXC8Ku+ojXzbEK3gK +0jNI5d2MV58DkP5TQbvNQ93nHP9UPXz8x78joLIHpLAvxXaj6rjHefFU57BDAU/ 7RG/NC/o7R6+jc6ba9U/iBDaBRGolUdZCFDBGPoq7AZTayOeReHM9vUPHWsgr2jU Wn46AbQ3Sy9zYvdqlWZ0iyqwz59DiHQQEJt4G+YxpE0SQkHpS19OzXjr/dQucTc1 Zqpx+zuH29IU2QwBNlQebHMAJSsGjafsVJ59Ccyy1G5VWqm0WEzKFmY0QTyzH0Cl 1p8GXWE6Vt+jom1CFwft6EUQQYaQDX66TEMsfjnTpc6MWCVHCH6+U6b079I= -----END CERTIFICATE-----Generated at Sat Dec 20 15:14:40 2025 by rpki-client