This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ccf275ae-7935-4f0a-b4e1-9b0bd0532ac8.roa File: ccf275ae-7935-4f0a-b4e1-9b0bd0532ac8.roa (raw, json) Hash identifier: 1EhAdNboqdGbjjaThoOfqynm6ojKA03vx2Yf7ixZiYw= Subject key identifier: CC:C7:08:8C:99:24:E1:16:59:50:70:9A:F5:06:BE:42:08:1D:90:B6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0D61179B787A071D3FA18BE5C7E4F8B41DB0A89A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ccf275ae-7935-4f0a-b4e1-9b0bd0532ac8.roa Signing time: Sun 07 Dec 2025 01:30:37 +0000 ROA not before: Sun 07 Dec 2025 01:30:37 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.176.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:61:17:9b:78:7a:07:1d:3f:a1:8b:e5:c7:e4:f8:b4:1d:b0:a8:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 7 01:30:37 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=48a60af896c00ebdd0e3d50da735144b8903e05ac954c99bf9f0db6ccb60da65, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c8:f1:b0:a9:fd:24:1f:94:5c:df:76:0e:1c: ff:cb:8e:89:a2:99:90:56:29:80:78:3e:90:86:50: 6c:7b:75:2b:06:58:bd:f6:e8:88:7d:19:bd:a5:2b: 85:4a:74:bd:1a:c8:f4:52:a1:ca:88:ec:63:75:97: 58:05:a5:f5:c0:f7:67:1a:8e:ca:af:e4:e2:cc:e6: 9b:72:50:63:07:c3:45:44:7f:fe:fa:7e:4d:b8:e5: 4c:1b:67:47:b1:97:9e:ac:e8:0d:82:fe:2e:07:3d: d3:7e:a5:33:77:31:26:60:f5:ee:a9:f2:25:78:2b: 35:9e:8b:a5:c1:c0:2e:27:dd:af:8e:59:c7:e5:40: 7c:1a:54:dc:a2:f5:6b:76:ab:84:1b:30:cc:e1:0e: 10:cd:fc:22:8b:49:04:a6:5c:da:7c:3b:84:52:f3: 9c:6e:84:4b:bd:b0:bc:b2:23:e1:ad:ed:63:de:f5: d4:8a:c8:7d:48:da:b1:df:b8:86:f4:ec:1a:0c:19: d1:14:1b:35:af:be:43:33:12:4e:49:94:d0:e4:9f: 3d:81:87:56:d8:12:ec:67:7a:9c:6d:f7:b7:c6:b4: 57:98:64:8d:d0:d6:19:ef:49:ff:7e:f5:d6:ff:3b: bc:91:18:e6:be:7c:89:f1:30:82:3c:3b:ba:73:89: 7d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:C7:08:8C:99:24:E1:16:59:50:70:9A:F5:06:BE:42:08:1D:90:B6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ccf275ae-7935-4f0a-b4e1-9b0bd0532ac8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.176.82.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:5b:35:fd:e1:b7:75:0b:eb:cb:f9:6e:1e:36:fa:2d:17:33: d0:32:07:8d:9f:74:8d:03:a2:65:51:33:16:77:17:43:5b:8c: 83:53:ed:6a:7d:d0:4d:27:ac:8a:3d:02:2f:17:83:ab:9b:6a: 4c:55:df:69:3a:14:45:41:a4:68:2c:7e:27:ec:db:cf:7c:8c: f6:c0:56:3b:52:17:56:af:6e:56:c7:54:76:df:63:44:c3:9c: 0f:7c:7d:25:5c:82:95:ba:62:f3:88:ac:52:95:4c:07:f9:b2: bf:82:49:91:17:0e:61:0d:b7:02:32:11:fd:83:d0:55:66:3f: b9:7a:1d:99:95:be:df:43:a8:2f:20:f3:71:58:40:a3:49:65: 24:3c:6c:e4:6f:a8:3d:eb:23:54:c2:89:48:79:51:48:fe:d2: 58:9b:4a:2c:cb:5f:80:cc:d9:0b:ab:33:c2:49:4a:f8:84:c8: a9:56:14:04:50:99:ce:ad:22:ff:d3:d1:13:55:31:ce:55:ce: e7:87:23:c1:4f:29:4b:0c:75:e1:05:a3:b5:5c:1d:85:4f:38: 3b:74:1a:3a:f2:d0:fd:d2:57:43:9f:96:d1:24:7a:45:3d:d9: bf:17:f2:89:05:ad:a0:d0:fa:79:39:c7:cc:8b:ed:7d:ad:3d: 3b:f3:22:a2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDWEXm3h6Bx0/oYvlx+T4tB2wqJowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA3MDEzMDM3WhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0OGE2MGFmODk2YzAwZWJkZDBlM2Q1MGRhNzM1MTQ0Yjg5 MDNlMDVhYzk1NGM5OWJmOWYwZGI2Y2NiNjBkYTY1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDcyPGwqf0kH5Rc33YOHP/LjomimZBWKYB4PpCGUGx7dSsG WL326Ih9Gb2lK4VKdL0ayPRSocqI7GN1l1gFpfXA92cajsqv5OLM5ptyUGMHw0VE f/76fk245UwbZ0exl56s6A2C/i4HPdN+pTN3MSZg9e6p8iV4KzWei6XBwC4n3a+O WcflQHwaVNyi9Wt2q4QbMMzhDhDN/CKLSQSmXNp8O4RS85xuhEu9sLyyI+Gt7WPe 9dSKyH1I2rHfuIb07BoMGdEUGzWvvkMzEk5JlNDknz2Bh1bYEuxnepxt97fGtFeY ZI3Q1hnvSf9+9db/O7yRGOa+fInxMII8O7pziX2XAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzMcIjJkk4RZZUHCa9Qa+QggdkLYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NjZjI3NWFlLTc5MzUtNGYwYS1iNGUxLTliMGJkMDUzMmFjOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAosFIwDQYJKoZIhvcNAQELBQADggEBACpbNf3ht3UL68v5bh42+i0XM9Ay B42fdI0DomVRMxZ3F0NbjINT7Wp90E0nrIo9Ai8Xg6ubakxV32k6FEVBpGgsfifs 2898jPbAVjtSF1avblbHVHbfY0TDnA98fSVcgpW6YvOIrFKVTAf5sr+CSZEXDmEN twIyEf2D0FVmP7l6HZmVvt9DqC8g83FYQKNJZSQ8bORvqD3rI1TCiUh5UUj+0lib SizLX4DM2QurM8JJSviEyKlWFARQmc6tIv/T0RNVMc5VzueHI8FPKUsMdeEFo7Vc HYVPODt0Gjry0P3SV0OfltEkekU92b8X8okFraDQ+nk5x8yL7X2tPTvzIqI= -----END CERTIFICATE-----Generated at Sat Dec 20 13:16:49 2025 by rpki-client