This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f4aece0-320f-46a2-ae45-69cd23b5c314.roa File: 7f4aece0-320f-46a2-ae45-69cd23b5c314.roa (raw, json) Hash identifier: 4CQRL5tRohaXfnc3/ZjzmBMDJOHgDfbT9wLbWEEK9kA= Subject key identifier: D8:CE:04:CE:85:A9:B6:1D:E6:62:91:E8:5A:1F:65:36:3D:A4:97:EF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 11B93EEC86349329A9D8DB9C78B12B3D21D092EF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f4aece0-320f-46a2-ae45-69cd23b5c314.roa Signing time: Wed 10 Dec 2025 00:10:41 +0000 ROA not before: Wed 10 Dec 2025 00:10:41 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 149.188.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:b9:3e:ec:86:34:93:29:a9:d8:db:9c:78:b1:2b:3d:21:d0:92:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 10 00:10:41 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=ae8cc0dd85548e708d6778d40a1cff96cfe31e747679d6dd2ff1dec093631ab7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:62:9a:6c:10:61:00:71:21:02:df:b3:d2:bc: c7:ab:ec:19:8e:0f:db:b6:4a:e6:81:a8:45:16:e7: 09:44:bc:8a:24:df:19:80:bf:be:e7:6c:0e:6a:d4: d8:7e:a2:9d:77:e6:9f:05:4c:f9:85:05:d0:0c:e2: e3:0f:bf:bb:dd:44:fc:1e:00:f7:0e:d1:5d:38:a6: 00:6c:7d:89:a0:6e:01:65:4d:ee:8a:2f:fb:11:5a: 8c:79:fd:c7:74:09:ff:56:e9:f2:64:49:18:3c:24: 90:df:41:e5:fd:d8:7e:5f:17:30:03:78:bd:1d:db: 1a:6c:f3:f3:68:0d:2a:6d:4a:b0:50:a6:40:47:a8: f1:99:aa:35:2d:44:f1:77:e1:98:5d:ef:b1:7e:c8: 25:02:da:ac:ed:8d:39:c0:f2:38:9e:f0:7c:a8:58: 7a:f0:e6:31:98:fd:36:3e:af:c1:a9:66:0a:df:4f: 9a:01:01:e4:89:c2:78:f9:df:57:68:be:92:bc:21: a9:cd:5a:bf:12:d1:b3:7c:ba:ec:06:7d:f4:aa:89: 3d:aa:c8:aa:53:24:a9:42:de:cc:dc:92:f1:e5:a9: 0b:e3:44:60:43:8f:11:89:41:63:7e:b7:ee:58:82: 87:14:9c:a4:b6:8b:1d:4a:45:d8:2e:1d:b1:35:18: f6:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:CE:04:CE:85:A9:B6:1D:E6:62:91:E8:5A:1F:65:36:3D:A4:97:EF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f4aece0-320f-46a2-ae45-69cd23b5c314.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.188.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4c:84:78:c4:62:f0:45:61:03:ff:1f:e2:19:78:d2:40:54:14: 66:77:49:b2:6e:e1:b6:4c:70:67:37:fc:42:f3:af:f7:b1:90: 94:68:73:bf:04:77:b5:51:30:2d:cf:43:03:bb:c2:62:cc:05: 98:a0:22:ee:c2:84:a5:51:92:73:9b:8b:5c:9d:d9:de:c8:56: 80:3a:bb:2d:58:7e:f8:4f:11:1c:e1:56:96:8c:0d:47:64:35: c2:7f:c4:35:44:9b:6f:df:66:2c:5c:a2:25:9e:89:be:e7:b6: d5:2e:2d:88:18:52:76:17:7f:59:03:b0:7d:95:4b:dd:f6:e5: 2c:4b:8e:97:00:80:26:85:10:b0:01:e0:d9:91:bc:53:13:d3: 9f:8b:28:81:eb:aa:a4:fc:ea:48:c3:35:ee:8b:10:cc:54:0f: 84:2d:b4:fe:f7:6e:85:06:d4:55:f2:fc:30:37:46:44:7c:e0: ec:74:5e:8d:4c:1c:45:46:dc:77:8d:e1:d7:81:64:e0:c9:9a: 20:25:a0:35:c2:89:17:c9:3a:29:ee:67:1a:8f:3d:55:2f:8e: ab:7d:8e:31:38:86:15:54:b9:af:18:b5:e6:17:1f:f0:2d:33: 27:d3:b7:9a:5f:0c:aa:02:1d:57:95:c7:04:52:a5:9f:fe:e3: 12:1c:d3:97 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEbk+7IY0kymp2NuceLErPSHQku8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjEwMDAxMDQxWhcNMjYwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZThjYzBkZDg1NTQ4ZTcwOGQ2Nzc4ZDQwYTFjZmY5NmNm ZTMxZTc0NzY3OWQ2ZGQyZmYxZGVjMDkzNjMxYWI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcYppsEGEAcSEC37PSvMer7BmOD9u2SuaBqEUW5wlEvIok 3xmAv77nbA5q1Nh+op135p8FTPmFBdAM4uMPv7vdRPweAPcO0V04pgBsfYmgbgFl Te6KL/sRWox5/cd0Cf9W6fJkSRg8JJDfQeX92H5fFzADeL0d2xps8/NoDSptSrBQ pkBHqPGZqjUtRPF34Zhd77F+yCUC2qztjTnA8jie8HyoWHrw5jGY/TY+r8GpZgrf T5oBAeSJwnj531dovpK8IanNWr8S0bN8uuwGffSqiT2qyKpTJKlC3szckvHlqQvj RGBDjxGJQWN+t+5YgocUnKS2ix1KRdguHbE1GPaTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU2M4EzoWpth3mYpHoWh9lNj2kl+8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdmNGFlY2UwLTMyMGYtNDZhMi1hZTQ1LTY5Y2QyM2I1YzMxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCVvDANBgkqhkiG9w0BAQsFAAOCAQEATIR4xGLwRWED/x/iGXjSQFQUZndJ sm7htkxwZzf8QvOv97GQlGhzvwR3tVEwLc9DA7vCYswFmKAi7sKEpVGSc5uLXJ3Z 3shWgDq7LVh++E8RHOFWlowNR2Q1wn/ENUSbb99mLFyiJZ6Jvue21S4tiBhSdhd/ WQOwfZVL3fblLEuOlwCAJoUQsAHg2ZG8UxPTn4sogeuqpPzqSMM17osQzFQPhC20 /vduhQbUVfL8MDdGRHzg7HRejUwcRUbcd43h14Fk4MmaICWgNcKJF8k6Ke5nGo89 VS+Oq32OMTiGFVS5rxi15hcf8C0zJ9O3ml8MqgIdV5XHBFKln/7jEhzTlw== -----END CERTIFICATE-----Generated at Sat Dec 20 13:16:59 2025 by rpki-client