This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/490da442-9a78-4422-8ee9-ded4482ab131.roa File: 490da442-9a78-4422-8ee9-ded4482ab131.roa (raw, json) Hash identifier: OPQnK+ExAZ65RXucwyUA7ACV57O/Vf0Ft5TgdyoRaBg= Subject key identifier: 82:33:9C:9D:98:72:9A:9A:AC:EE:22:87:75:70:9E:B9:98:35:DB:5A Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 7441996523A56AC7725C94B17DA59E415C40D4D1 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/490da442-9a78-4422-8ee9-ded4482ab131.roa Signing time: Sun 07 Dec 2025 00:10:08 +0000 ROA not before: Sun 07 Dec 2025 00:10:08 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 23 Dec 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:41:99:65:23:a5:6a:c7:72:5c:94:b1:7d:a5:9e:41:5c:40:d4:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Dec 7 00:10:08 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=29e6180f8f00c6a5dd3a217eae9c015e4eac4138d372214645c0d75e5581cc0a, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a6:04:d9:0c:a2:0e:99:87:90:ad:4b:8b:9f: 71:62:d0:cf:02:9d:38:7e:a9:84:8a:8d:5d:93:e5: 12:62:f0:04:41:b4:56:ea:8e:ef:38:c2:e1:6d:66: 1b:c1:00:6c:54:28:b0:54:06:09:cf:86:a1:10:86: 52:19:85:92:cf:a9:79:b6:bc:53:9e:c1:6a:bb:11: fa:79:44:b7:8f:05:85:92:29:b7:f2:b9:8c:fa:90: dd:e5:66:90:04:fe:30:30:fd:4b:94:25:35:af:72: a7:b5:b6:83:60:3f:56:6b:07:a9:43:10:a8:ab:96: fe:f0:54:30:fa:cc:6f:3d:3f:99:c2:84:40:47:19: 59:e7:69:5b:c3:5c:34:5e:80:03:31:ce:3e:a4:37: 4b:10:12:df:aa:2b:df:c8:ce:5c:62:82:35:b1:1b: 55:a4:f7:3f:0b:9b:32:e8:2f:99:7c:10:fd:1c:99: 25:46:ec:a5:52:f5:37:4d:0e:46:e4:25:ee:3d:80: 9b:c1:45:09:63:11:70:67:98:b9:4d:ef:4d:1c:73: 21:82:eb:3b:87:ff:3e:a1:5d:72:f4:16:10:c7:ec: c5:be:7f:58:59:a9:a6:c9:66:dc:c9:93:e8:61:a7: 13:77:21:3f:b9:58:a1:4a:6e:f8:53:02:11:88:5c: 95:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:33:9C:9D:98:72:9A:9A:AC:EE:22:87:75:70:9E:B9:98:35:DB:5A X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/490da442-9a78-4422-8ee9-ded4482ab131.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/19 Signature Algorithm: sha256WithRSAEncryption 27:ed:56:8b:df:6f:c4:ab:9d:af:e2:0f:e9:91:f9:d7:19:bf: a1:20:90:ae:71:79:ed:02:a7:9c:2f:a1:e8:34:99:15:c4:7f: 80:4d:c1:db:43:39:05:60:fe:d0:2a:79:c4:6f:7d:89:c5:38: 66:d1:9b:dc:d9:7d:a8:3e:d9:58:1b:c2:1b:16:f6:3d:4b:8b: 76:3d:73:d3:76:fd:6f:ba:18:46:09:16:2f:25:25:f6:d5:a9: 66:e9:7e:c5:7d:23:fb:d8:b0:5d:08:aa:08:31:f5:94:30:bb: 02:08:c7:ed:08:34:c5:18:0f:7b:0a:02:88:75:84:fe:b4:33: d3:4e:0c:73:09:48:63:b4:09:92:12:83:cf:4c:6d:28:c7:e2: 82:8e:7e:3a:d0:db:70:66:c2:61:20:fd:a8:2c:17:77:6b:85: 36:d5:62:66:0e:28:90:ca:43:7b:9d:76:51:a9:07:e4:a3:2b: 70:9e:d6:eb:d6:fc:81:c9:a9:76:2c:4a:52:04:dc:ef:73:ae: 82:7e:70:c3:b2:36:de:66:72:99:00:3e:a9:50:b9:c2:f6:c6: 2f:20:0f:78:5c:74:c0:fc:fb:ce:7f:7e:da:ed:17:ba:1c:cb: 26:1f:de:1a:66:7d:7c:f4:7d:cb:9a:73:a3:57:d4:2c:54:ec: 5c:00:7f:65 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdEGZZSOlasdyXJSxfaWeQVxA1NEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUxMjA3MDAxMDA4WhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOWU2MTgwZjhmMDBjNmE1ZGQzYTIxN2VhZTljMDE1ZTRl YWM0MTM4ZDM3MjIxNDY0NWMwZDc1ZTU1ODFjYzBhMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCepgTZDKIOmYeQrUuLn3Fi0M8CnTh+qYSKjV2T5RJi8ARB tFbqju84wuFtZhvBAGxUKLBUBgnPhqEQhlIZhZLPqXm2vFOewWq7Efp5RLePBYWS KbfyuYz6kN3lZpAE/jAw/UuUJTWvcqe1toNgP1ZrB6lDEKirlv7wVDD6zG89P5nC hEBHGVnnaVvDXDRegAMxzj6kN0sQEt+qK9/IzlxigjWxG1Wk9z8LmzLoL5l8EP0c mSVG7KVS9TdNDkbkJe49gJvBRQljEXBnmLlN700ccyGC6zuH/z6hXXL0FhDH7MW+ f1hZqabJZtzJk+hhpxN3IT+5WKFKbvhTAhGIXJUDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgjOcnZhympqs7iKHdXCeuZg121owHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzQ5MGRhNDQyLTlhNzgtNDQyMi04ZWU5LWRlZDQ0ODJhYjEzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGKWAwDQYJKoZIhvcNAQELBQADggEBACftVovfb8Srna/iD+mR+dcZv6Eg kK5xee0Cp5wvoeg0mRXEf4BNwdtDOQVg/tAqecRvfYnFOGbRm9zZfag+2VgbwhsW 9j1Li3Y9c9N2/W+6GEYJFi8lJfbVqWbpfsV9I/vYsF0Iqggx9ZQwuwIIx+0INMUY D3sKAoh1hP60M9NODHMJSGO0CZISg89MbSjH4oKOfjrQ23BmwmEg/agsF3drhTbV YmYOKJDKQ3uddlGpB+SjK3Ce1uvW/IHJqXYsSlIE3O9zroJ+cMOyNt5mcpkAPqlQ ucL2xi8gD3hcdMD8+85/ftrtF7ocyyYf3hpmfXz0fcuac6NX1CxU7FwAf2U= -----END CERTIFICATE-----Generated at Mon Dec 22 10:42:28 2025 by rpki-client