This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d5a67cf4-10e5-4819-91b3-5293d070d97e.roa File: d5a67cf4-10e5-4819-91b3-5293d070d97e.roa (raw, json) Hash identifier: 18jnAgP9NB9z1HJW8Bv+ZXm/eZkSrpLhBPN6jHa42qc= Subject key identifier: AE:7F:B3:A6:A3:F7:2C:43:CA:96:73:0E:D1:48:CE:EA:DB:9A:47:B8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 52972D4034DF41E09BBEB3307544A31FCA390254 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d5a67cf4-10e5-4819-91b3-5293d070d97e.roa Signing time: Thu 11 Dec 2025 00:40:53 +0000 ROA not before: Thu 11 Dec 2025 00:40:53 +0000 ROA not after: Wed 11 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.54.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:97:2d:40:34:df:41:e0:9b:be:b3:30:75:44:a3:1f:ca:39:02:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 11 00:40:53 2025 GMT Not After : Mar 11 23:59:59 2026 GMT Subject: serialNumber=48e36c0e7a3a4b06581453ad558c785f4e77dfc48f80f78a218b203dc1b2a9cc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0d:96:1b:f3:33:78:5e:3a:74:13:cf:fa:50: 7c:18:96:8f:75:69:d1:45:3e:7d:42:ed:d6:7a:a5: 32:eb:ea:a8:00:7d:8f:5a:ba:16:ae:3c:e4:58:af: 8c:dc:a7:99:4f:20:3c:dc:be:b1:67:63:d5:6f:18: 53:75:0a:bd:c5:49:cb:ce:2e:a8:46:d3:20:65:68: 6d:bd:99:36:d8:2a:c5:45:da:da:2f:7c:2d:45:34: c3:06:2e:a1:d0:df:ba:c7:bc:cf:dd:6e:60:70:37: 62:3e:19:ae:d3:bb:4b:dc:fb:5e:ad:42:e2:39:e3: 79:81:ac:6d:9d:a0:fd:51:c1:0a:af:1c:73:7c:2d: 29:ec:17:c6:54:0f:84:b2:78:0a:9e:4d:01:52:6e: 7f:16:39:60:9e:5f:04:48:85:ea:e6:61:d4:05:de: e5:01:87:77:35:7e:ec:a8:bd:4c:b3:95:3d:59:18: f9:1b:1b:e1:05:02:a5:24:99:1c:ad:9a:55:17:33: 39:c7:0e:66:aa:39:07:52:cb:c0:d6:f0:8a:ea:b4: 54:69:99:f5:f2:05:67:56:4d:86:8f:15:6d:8b:6c: 9b:36:5f:3d:3c:a1:de:d8:40:5f:cb:8e:f3:6c:db: ca:98:34:76:62:8f:6c:ee:ab:e6:54:4b:0a:88:bd: 64:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:7F:B3:A6:A3:F7:2C:43:CA:96:73:0E:D1:48:CE:EA:DB:9A:47:B8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d5a67cf4-10e5-4819-91b3-5293d070d97e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.54.128.0/17 Signature Algorithm: sha256WithRSAEncryption 5d:ed:3a:95:d7:5c:2f:92:8c:22:21:9f:aa:0a:ff:94:6d:4e: 96:02:46:6b:1c:b2:14:a2:98:7e:20:44:29:a6:0f:77:03:9d: eb:20:a0:4c:93:79:e6:60:85:29:a7:97:ab:61:a5:85:cb:06: 4e:be:27:a3:aa:e2:6f:a4:76:44:4c:f9:67:de:85:30:40:12: 50:56:b1:ba:2f:99:6f:56:f0:f6:91:f2:b4:e5:4e:b0:a6:7c: c6:09:15:d0:5a:fb:71:d0:4d:83:8b:18:72:36:9e:37:c8:b2: 04:ee:b7:77:39:98:83:ba:6e:96:9c:2b:11:7a:19:8e:74:93: 86:82:16:0a:b5:9a:df:af:cf:9d:de:8f:2a:1f:c4:af:9c:a2: c2:9b:64:7d:b9:d5:42:ba:db:fd:de:cd:6c:ef:c9:88:74:b7: d0:5d:ee:95:fa:13:f4:1f:3d:f3:c7:08:0a:97:68:74:29:e5: 9b:dc:50:6d:73:23:0b:a8:5f:33:87:0b:af:6c:80:43:13:68: 5a:fa:5b:e1:85:04:a2:88:c1:aa:e6:6e:b2:eb:0a:02:ee:f5: 69:32:e8:4b:e3:b8:4d:35:a3:4b:c7:8b:ee:ba:61:b8:07:a6: 8d:24:73:4e:43:2b:75:b9:bd:12:7c:c8:a5:11:8c:4d:55:13: 83:2e:36:61 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUpctQDTfQeCbvrMwdUSjH8o5AlQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjExMDA0MDUzWhcNMjYwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0A0OGUzNmMwZTdhM2E0YjA2NTgxNDUzYWQ1NThjNzg1ZjRl NzdkZmM0OGY4MGY3OGEyMThiMjAzZGMxYjJhOWNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDDZYb8zN4Xjp0E8/6UHwYlo91adFFPn1C7dZ6pTLr6qgA fY9auhauPORYr4zcp5lPIDzcvrFnY9VvGFN1Cr3FScvOLqhG0yBlaG29mTbYKsVF 2tovfC1FNMMGLqHQ37rHvM/dbmBwN2I+Ga7Tu0vc+16tQuI543mBrG2doP1RwQqv HHN8LSnsF8ZUD4SyeAqeTQFSbn8WOWCeXwRIhermYdQF3uUBh3c1fuyovUyzlT1Z GPkbG+EFAqUkmRytmlUXMznHDmaqOQdSy8DW8IrqtFRpmfXyBWdWTYaPFW2LbJs2 Xz08od7YQF/LjvNs28qYNHZij2zuq+ZUSwqIvWTdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrn+zpqP3LEPKlnMO0UjO6tuaR7gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q1YTY3Y2Y0LTEwZTUtNDgxOS05MWIzLTUyOTNkMDcwZDk3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcjNoAwDQYJKoZIhvcNAQELBQADggEBAF3tOpXXXC+SjCIhn6oK/5RtTpYC RmscshSimH4gRCmmD3cDnesgoEyTeeZghSmnl6thpYXLBk6+J6Oq4m+kdkRM+Wfe hTBAElBWsbovmW9W8PaR8rTlTrCmfMYJFdBa+3HQTYOLGHI2njfIsgTut3c5mIO6 bpacKxF6GY50k4aCFgq1mt+vz53ejyofxK+cosKbZH251UK62/3ezWzvyYh0t9Bd 7pX6E/QfPfPHCAqXaHQp5ZvcUG1zIwuoXzOHC69sgEMTaFr6W+GFBKKIwarmbrLr CgLu9Wky6EvjuE01o0vHi+66YbgHpo0kc05DK3W5vRJ8yKURjE1VE4MuNmE= -----END CERTIFICATE-----Generated at Sat Dec 20 12:56:47 2025 by rpki-client