This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8aab46c-bd5c-48b1-add7-6f55ffc2ef94.roa File: c8aab46c-bd5c-48b1-add7-6f55ffc2ef94.roa (raw, json) Hash identifier: NjLlzTVtGZf/wBsfO43l29mEqaIistsmfHle+E61md4= Subject key identifier: 40:02:0E:EE:CE:2F:A7:FB:0D:1B:DD:A3:A3:52:0D:F4:67:AB:7E:89 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 347ACE42D8227147FF30F91D6AE57850A39495E1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8aab46c-bd5c-48b1-add7-6f55ffc2ef94.roa Signing time: Sun 07 Dec 2025 00:50:40 +0000 ROA not before: Sun 07 Dec 2025 00:50:40 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 204.236.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:7a:ce:42:d8:22:71:47:ff:30:f9:1d:6a:e5:78:50:a3:94:95:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 7 00:50:40 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=a548989a8f27596d5b641e132c6bf1aab1b7311bfbfbbaf2beba31158d401344, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:86:13:ca:fc:39:29:6f:86:c6:dc:f7:b1:13: cf:93:0a:40:5a:5e:6a:a8:cf:90:38:89:b7:f3:2b: 91:d9:9e:26:b1:5b:cd:56:6a:20:f5:29:91:9b:dc: a8:e6:4e:98:e9:a6:52:44:3d:cc:60:66:7a:7f:1e: e6:01:b4:b9:c7:7e:7f:f0:b0:63:c8:78:10:0d:68: f7:e2:15:10:eb:ad:70:80:cd:75:8c:aa:f2:b2:a3: 24:2b:ca:6c:2e:8b:0b:ae:4c:95:99:d0:2c:a9:c9: e1:64:52:e5:e6:85:e4:12:ed:d1:df:61:99:07:52: d1:8b:ac:1f:fc:bf:7a:c2:bf:49:5e:20:38:5d:b0: 49:28:10:2f:97:15:99:33:18:23:3d:25:77:2b:b8: b3:c0:57:53:12:dd:70:e4:61:31:d9:1b:88:8d:29: d1:91:26:01:53:c7:46:96:2a:e6:90:1a:37:41:bb: 1a:64:b6:57:ad:4c:f0:f8:06:5f:b8:fc:c8:e1:02: 6e:f5:c2:2d:ff:50:9a:b4:67:55:29:61:81:43:0a: 1f:57:73:0a:9a:88:f1:62:69:19:f2:4e:af:4f:87: bd:ea:5f:7a:31:ff:ae:13:28:73:65:33:9b:c7:70: dd:c7:b0:0b:12:03:df:4a:fc:e2:cd:17:43:a4:ad: bd:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:02:0E:EE:CE:2F:A7:FB:0D:1B:DD:A3:A3:52:0D:F4:67:AB:7E:89 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8aab46c-bd5c-48b1-add7-6f55ffc2ef94.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.224.0/19 Signature Algorithm: sha256WithRSAEncryption 13:21:80:c8:9d:4c:79:6d:31:47:9a:87:3a:08:2f:82:50:ba: 0e:d0:19:52:01:6b:d0:4f:45:5e:53:b4:84:be:f9:b5:f3:e1: b9:a6:d3:ed:8f:ae:7a:6b:85:36:fc:f4:cd:f5:1b:9d:fd:fd: 92:5a:0e:08:a0:67:4f:db:ce:5e:a6:e2:18:e3:e6:23:82:8c: 29:e3:57:74:aa:6c:79:f2:6b:5f:68:4b:63:62:38:03:75:99: ad:7e:2b:05:87:fa:9b:ff:ed:bb:01:79:a2:20:ec:9f:c8:a5: 04:36:d1:13:de:ed:d1:8a:3c:8a:f4:50:d1:91:43:3b:db:11: 83:9f:c8:87:ae:ec:ca:5a:9c:b7:cf:31:67:1c:20:54:bb:ca: 6d:3e:df:d9:fb:96:be:ed:ae:7a:be:05:4e:b9:28:68:da:45: c5:32:b0:97:a5:6d:45:9e:c9:ad:5f:60:a2:77:de:61:5d:3d: 2d:f0:f4:f6:98:99:2b:70:65:23:60:b0:d8:bd:e7:af:56:3c: 22:95:c8:e9:14:df:c6:41:33:97:10:c8:a4:35:52:59:eb:3c: db:7c:80:06:74:a5:a1:a3:97:77:e0:24:3b:d0:a1:e1:94:50: 82:82:2c:84:49:b6:a4:78:7e:b4:0d:0f:f6:f5:e0:87:01:c5: 19:a2:c0:c3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNHrOQtgicUf/MPkdauV4UKOUleEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA3MDA1MDQwWhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNTQ4OTg5YThmMjc1OTZkNWI2NDFlMTMyYzZiZjFhYWIx YjczMTFiZmJmYmJhZjJiZWJhMzExNThkNDAxMzQ0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4hhPK/Dkpb4bG3PexE8+TCkBaXmqoz5A4ibfzK5HZniax W81WaiD1KZGb3KjmTpjpplJEPcxgZnp/HuYBtLnHfn/wsGPIeBANaPfiFRDrrXCA zXWMqvKyoyQrymwuiwuuTJWZ0CypyeFkUuXmheQS7dHfYZkHUtGLrB/8v3rCv0le IDhdsEkoEC+XFZkzGCM9JXcruLPAV1MS3XDkYTHZG4iNKdGRJgFTx0aWKuaQGjdB uxpktletTPD4Bl+4/MjhAm71wi3/UJq0Z1UpYYFDCh9XcwqaiPFiaRnyTq9Ph73q X3ox/64TKHNlM5vHcN3HsAsSA99K/OLNF0Okrb3NAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQAIO7s4vp/sNG92jo1IN9GerfokwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M4YWFiNDZjLWJkNWMtNDhiMS1hZGQ3LTZmNTVmZmMyZWY5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXM7OAwDQYJKoZIhvcNAQELBQADggEBABMhgMidTHltMUeahzoIL4JQug7Q GVIBa9BPRV5TtIS++bXz4bmm0+2PrnprhTb89M31G539/ZJaDgigZ0/bzl6m4hjj 5iOCjCnjV3SqbHnya19oS2NiOAN1ma1+KwWH+pv/7bsBeaIg7J/IpQQ20RPe7dGK PIr0UNGRQzvbEYOfyIeu7MpanLfPMWccIFS7ym0+39n7lr7trnq+BU65KGjaRcUy sJelbUWeya1fYKJ33mFdPS3w9PaYmStwZSNgsNi9569WPCKVyOkU38ZBM5cQyKQ1 UlnrPNt8gAZ0paGjl3fgJDvQoeGUUIKCLIRJtqR4frQND/b14IcBxRmiwMM= -----END CERTIFICATE-----Generated at Sat Dec 20 11:01:59 2025 by rpki-client