This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70aa4285-cbd0-450f-b52c-a70ba1e394d0.roa File: 70aa4285-cbd0-450f-b52c-a70ba1e394d0.roa (raw, json) Hash identifier: vDIffep4d5disSZUAzu6IE3liPsMuArxWhRJDBoy/BM= Subject key identifier: 91:58:0C:E6:74:D0:30:B4:DF:9A:AB:E4:FC:91:AC:21:1A:98:89:1E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5D5523F71D05E474C7731A75A816152E4A9BEB15 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70aa4285-cbd0-450f-b52c-a70ba1e394d0.roa Signing time: Sun 07 Dec 2025 01:21:15 +0000 ROA not before: Sun 07 Dec 2025 01:21:15 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 216.182.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:55:23:f7:1d:05:e4:74:c7:73:1a:75:a8:16:15:2e:4a:9b:eb:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 7 01:21:15 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=620a22c4961f577f11159dc3443b82ffc6ecbf882d8e871eeba213e25c2f7467, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7b:3b:85:0d:0b:91:47:e6:ca:ce:23:76:32: 91:16:30:66:31:b6:76:2e:19:96:57:59:bf:43:ba: 2b:c5:3c:57:26:96:ad:87:5a:67:ba:9f:3c:8d:ad: cc:85:71:ec:dd:c5:8b:d0:98:24:35:b5:f2:86:9b: 23:2e:39:3b:53:b6:fe:76:94:48:d1:5c:8f:30:28: 0b:00:03:4b:51:bc:16:5f:27:bd:26:50:6f:58:8d: 31:5c:50:a7:ad:75:12:50:f0:14:65:6c:a0:a2:ef: 0a:a7:1f:92:d7:f7:cb:21:13:15:aa:a3:ae:80:5d: 32:b3:cb:2d:c5:b6:d0:e3:62:94:2b:35:6a:5e:1f: 76:58:96:75:6b:4b:1c:fc:03:23:ed:07:66:14:76: b8:85:71:5c:ba:c0:99:9a:e0:c5:06:cc:25:93:4c: 33:ab:60:41:54:be:c4:63:ed:b1:0e:f3:89:3f:28: e1:c4:0a:ec:56:a3:62:4f:4a:ab:cf:c2:21:ce:06: b0:96:ae:44:95:49:8e:80:40:cb:25:21:7b:af:d1: 64:7d:58:ea:fc:a2:17:4a:b8:03:50:41:10:15:69: c6:04:00:6a:05:53:16:b4:2f:55:7c:cd:19:50:d5: 52:a5:02:6b:a7:94:91:71:f3:ff:05:88:31:61:eb: 31:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:58:0C:E6:74:D0:30:B4:DF:9A:AB:E4:FC:91:AC:21:1A:98:89:1E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70aa4285-cbd0-450f-b52c-a70ba1e394d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.182.232.0/22 Signature Algorithm: sha256WithRSAEncryption 32:a9:9c:79:ac:8f:5e:70:ca:e7:d8:a3:ed:3b:b6:24:6a:63: a0:7d:3c:e6:fa:7c:7d:82:09:12:0b:73:6f:7e:91:79:2c:c4: f8:59:3a:db:52:99:19:65:00:84:5c:7f:81:7b:45:1e:f1:d4: 64:39:ff:32:24:8b:dd:7d:79:3b:cd:73:0b:79:c8:4f:ce:85: 0e:79:58:80:bd:f3:8f:d5:4c:59:7f:ec:b7:c0:dc:ce:13:61: cd:47:d0:ef:c8:00:39:c7:c2:10:87:f0:b9:ac:75:d6:de:92: 21:0b:9a:17:57:8b:72:e5:f2:6d:c1:64:90:b9:11:4f:ee:80: 9b:4e:26:21:da:f5:7c:42:fd:10:b5:a0:9d:33:7b:bf:a2:f5: 57:61:45:ec:bb:4a:4f:f7:7a:ad:6b:6f:ef:70:e6:6c:54:8c: 5b:95:12:23:e9:0a:c3:e0:82:48:92:85:85:7f:8c:59:28:2b: 6d:2c:98:e8:da:4e:fb:61:a4:71:42:c0:24:1c:02:19:ed:ab: c3:8d:8d:af:57:53:3a:e7:96:23:cc:1f:0c:54:ec:8c:57:fb: 79:c1:0c:0e:cf:c4:9a:8c:c0:06:73:2e:74:64:16:26:03:82: ae:53:fd:d3:c0:e2:78:03:f9:07:10:d2:91:2c:37:de:e1:2f: af:d9:8b:f6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXVUj9x0F5HTHcxp1qBYVLkqb6xUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA3MDEyMTE1WhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MjBhMjJjNDk2MWY1NzdmMTExNTlkYzM0NDNiODJmZmM2 ZWNiZjg4MmQ4ZTg3MWVlYmEyMTNlMjVjMmY3NDY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuezuFDQuRR+bKziN2MpEWMGYxtnYuGZZXWb9DuivFPFcm lq2HWme6nzyNrcyFcezdxYvQmCQ1tfKGmyMuOTtTtv52lEjRXI8wKAsAA0tRvBZf J70mUG9YjTFcUKetdRJQ8BRlbKCi7wqnH5LX98shExWqo66AXTKzyy3FttDjYpQr NWpeH3ZYlnVrSxz8AyPtB2YUdriFcVy6wJma4MUGzCWTTDOrYEFUvsRj7bEO84k/ KOHECuxWo2JPSqvPwiHOBrCWrkSVSY6AQMslIXuv0WR9WOr8ohdKuANQQRAVacYE AGoFUxa0L1V8zRlQ1VKlAmunlJFx8/8FiDFh6zFBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkVgM5nTQMLTfmqvk/JGsIRqYiR4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcwYWE0Mjg1LWNiZDAtNDUwZi1iNTJjLWE3MGJhMWUzOTRkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALYtugwDQYJKoZIhvcNAQELBQADggEBADKpnHmsj15wyufYo+07tiRqY6B9 POb6fH2CCRILc29+kXksxPhZOttSmRllAIRcf4F7RR7x1GQ5/zIki919eTvNcwt5 yE/OhQ55WIC984/VTFl/7LfA3M4TYc1H0O/IADnHwhCH8LmsddbekiELmhdXi3Ll 8m3BZJC5EU/ugJtOJiHa9XxC/RC1oJ0ze7+i9VdhRey7Sk/3eq1rb+9w5mxUjFuV EiPpCsPggkiShYV/jFkoK20smOjaTvthpHFCwCQcAhntq8ONja9XUzrnliPMHwxU 7IxX+3nBDA7PxJqMwAZzLnRkFiYDgq5T/dPA4ngD+QcQ0pEsN97hL6/Zi/Y= -----END CERTIFICATE-----Generated at Sat Dec 20 16:38:03 2025 by rpki-client