This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2526c3a-77ad-4669-af27-f2171d468d2d.roa File: d2526c3a-77ad-4669-af27-f2171d468d2d.roa (raw, json) Hash identifier: JHyuu+OYwumD2UxQowxpffPNWrTp03w98YAxbv8makA= Subject key identifier: FD:D8:23:81:B1:0B:0F:0C:29:FC:8F:74:A1:B5:A8:D3:EC:B2:B6:1B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 44354ABFD8A5BBD854E94262266EFF53E3950FC9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2526c3a-77ad-4669-af27-f2171d468d2d.roa Signing time: Thu 11 Dec 2025 00:10:30 +0000 ROA not before: Thu 11 Dec 2025 00:10:30 +0000 ROA not after: Wed 11 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 63.246.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:35:4a:bf:d8:a5:bb:d8:54:e9:42:62:26:6e:ff:53:e3:95:0f:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 11 00:10:30 2025 GMT Not After : Mar 11 23:59:59 2026 GMT Subject: serialNumber=c96297787e14f461b27e8bf6ca63e259398aa83f9217273e78ed73a629ec81bb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:94:66:90:cd:7d:c7:99:2e:cf:50:f6:08:56: a8:34:5f:64:46:72:7a:1e:25:12:29:fd:3a:3c:b6: 7b:94:fd:af:8e:ab:41:f4:4e:a5:93:3b:8e:03:38: 22:9b:e4:ba:08:25:b3:f8:94:4a:e0:d7:5e:aa:f4: 49:62:fa:fc:3b:ca:a8:74:50:a2:01:b4:80:7d:15: 9e:e8:26:79:08:cb:56:fc:50:84:3b:16:22:40:1b: 05:7a:28:5e:1b:e2:55:01:d4:8f:59:eb:34:dd:11: 8c:4b:e9:81:df:01:6f:1a:c0:d8:5f:52:dc:20:8b: 03:bc:b0:bc:db:db:99:ad:40:5a:9a:6d:d9:9e:36: d1:1d:db:84:81:87:7c:38:54:e3:85:a7:cf:54:54: 92:11:03:5c:f4:52:6b:06:a8:ae:83:70:46:00:bb: 2c:c5:c3:4b:72:c6:81:ce:50:96:bc:f9:73:fd:53: 8f:02:20:64:5b:8c:98:61:ce:1f:32:7d:bf:1e:dc: 97:e3:04:90:18:93:f9:f6:fe:5d:9e:59:91:7c:6d: 3a:03:f5:ca:c4:47:de:0d:07:b2:68:f7:11:a0:78: 49:2b:02:48:32:8e:b8:1a:82:57:96:62:88:57:fd: 57:07:2f:60:7c:82:e1:64:cf:0c:05:e6:2e:54:3a: f0:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:D8:23:81:B1:0B:0F:0C:29:FC:8F:74:A1:B5:A8:D3:EC:B2:B6:1B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2526c3a-77ad-4669-af27-f2171d468d2d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.246.116.0/24 Signature Algorithm: sha256WithRSAEncryption 71:a3:b6:42:db:d9:b6:d5:a3:66:43:6d:fa:76:ec:8f:b6:db: d2:50:19:3b:54:ff:cb:f8:75:b8:01:67:df:cb:ee:3f:1d:54: 25:66:a6:d7:22:30:5d:aa:b7:b6:3a:54:a1:3a:38:21:66:cd: ed:d1:38:76:24:16:3f:06:4e:61:4f:a2:16:a9:b8:53:39:0b: e4:8f:78:89:62:14:8b:4e:d3:48:3f:63:d7:d2:f9:32:ac:25: 3a:22:af:34:59:f5:b0:03:00:e3:1d:3b:5f:18:f5:ea:59:15: 0f:2c:55:e3:8b:38:b1:5b:7e:3e:9e:bc:50:4a:ca:5e:47:72: 3d:06:a1:89:66:0e:1b:f2:a7:36:bb:32:80:fa:04:3d:c3:8c: 3a:d8:68:bf:86:e8:bf:e5:de:ac:30:6f:d6:ad:fe:52:61:e7: 32:ef:05:b2:c2:3c:27:e4:55:5d:e9:8d:99:13:b7:6d:1a:19: 43:19:12:6f:15:a7:1d:f0:95:bb:83:7b:60:0b:3c:21:46:c8: 77:e1:79:72:11:10:b5:6d:d3:79:95:09:b3:9d:92:f1:78:b3: a4:b3:37:f6:6e:11:fc:31:88:1a:3b:66:04:6e:53:eb:df:72: 36:16:0b:22:11:6b:fd:75:6b:12:28:a6:87:a0:ad:1e:0e:6c: 20:d0:0c:e9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURDVKv9ilu9hU6UJiJm7/U+OVD8kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjExMDAxMDMwWhcNMjYwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0BjOTYyOTc3ODdlMTRmNDYxYjI3ZThiZjZjYTYzZTI1OTM5 OGFhODNmOTIxNzI3M2U3OGVkNzNhNjI5ZWM4MWJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCylGaQzX3HmS7PUPYIVqg0X2RGcnoeJRIp/To8tnuU/a+O q0H0TqWTO44DOCKb5LoIJbP4lErg116q9Eli+vw7yqh0UKIBtIB9FZ7oJnkIy1b8 UIQ7FiJAGwV6KF4b4lUB1I9Z6zTdEYxL6YHfAW8awNhfUtwgiwO8sLzb25mtQFqa bdmeNtEd24SBh3w4VOOFp89UVJIRA1z0UmsGqK6DcEYAuyzFw0tyxoHOUJa8+XP9 U48CIGRbjJhhzh8yfb8e3JfjBJAYk/n2/l2eWZF8bToD9crER94NB7Jo9xGgeEkr AkgyjrgagleWYohX/VcHL2B8guFkzwwF5i5UOvAxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/dgjgbELDwwp/I90obWo0+yythswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QyNTI2YzNhLTc3YWQtNDY2OS1hZjI3LWYyMTcxZDQ2OGQyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA/9nQwDQYJKoZIhvcNAQELBQADggEBAHGjtkLb2bbVo2ZDbfp27I+229JQ GTtU/8v4dbgBZ9/L7j8dVCVmptciMF2qt7Y6VKE6OCFmze3ROHYkFj8GTmFPohap uFM5C+SPeIliFItO00g/Y9fS+TKsJToirzRZ9bADAOMdO18Y9epZFQ8sVeOLOLFb fj6evFBKyl5Hcj0GoYlmDhvypza7MoD6BD3DjDrYaL+G6L/l3qwwb9at/lJh5zLv BbLCPCfkVV3pjZkTt20aGUMZEm8Vpx3wlbuDe2ALPCFGyHfheXIRELVt03mVCbOd kvF4s6SzN/ZuEfwxiBo7ZgRuU+vfcjYWCyIRa/11axIopoegrR4ObCDQDOk= -----END CERTIFICATE-----Generated at Sat Dec 20 17:05:51 2025 by rpki-client