This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/898b4557-ed43-42cb-99fe-3cd21033edf4.roa File: 898b4557-ed43-42cb-99fe-3cd21033edf4.roa (raw, json) Hash identifier: Tlab82Hw1TNAxzHDgUiChKBgFVCCHv3bfTl1Ur+jicY= Subject key identifier: 7F:42:01:CD:1F:DC:1E:BF:F3:8F:2C:CB:53:1F:8A:9A:CA:E5:C0:51 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 32C228ADD9EEEFCE65589B3AFB7620A3AD128D97 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/898b4557-ed43-42cb-99fe-3cd21033edf4.roa Signing time: Mon 08 Dec 2025 01:50:09 +0000 ROA not before: Mon 08 Dec 2025 01:50:09 +0000 ROA not after: Sun 08 Mar 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 22 Dec 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:c2:28:ad:d9:ee:ef:ce:65:58:9b:3a:fb:76:20:a3:ad:12:8d:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Dec 8 01:50:09 2025 GMT Not After : Mar 8 23:59:59 2026 GMT Subject: serialNumber=c1c22d7506aebeec946ef5e8ec362c1d3945aa66746faf89bd0dcfae03e9e310, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:92:7e:db:e1:ef:f3:2e:73:b8:aa:0f:0f:e6: 72:fe:bb:ee:a8:c9:4a:d2:aa:a1:88:65:be:b3:dd: 54:58:7a:38:c3:be:73:69:3a:b0:d2:7b:95:db:87: ae:4e:24:8f:d7:c7:96:a6:19:14:e0:cc:74:ed:6d: 73:d3:68:e7:cb:97:26:3e:ee:3c:fc:59:9c:c1:05: 9d:06:88:a8:37:28:b8:63:3f:e9:f0:0a:3e:d7:af: 97:be:23:74:ba:6d:af:25:7a:7b:bf:dc:36:6a:35: 76:b0:3e:35:d2:76:d8:3c:48:0e:07:48:ea:e9:69: 11:ba:10:ec:a2:b4:4b:a2:49:7b:8c:09:6c:ac:0c: f7:75:30:0e:73:09:d6:e0:cd:3b:13:90:97:a8:57: 78:d9:ed:0d:bf:b0:79:9d:6c:9c:d0:95:3b:b3:59: be:38:8c:bb:71:07:e3:cd:af:41:6a:d9:54:d6:06: 71:ec:65:8f:63:a7:92:fe:8b:76:32:a0:77:60:b2: d8:80:f2:ab:5f:6f:a2:48:58:2e:16:81:55:04:e0: 82:f4:20:46:26:64:92:5e:a7:dc:9d:95:22:83:e1: f9:8d:f6:ea:b1:63:ad:c4:d9:ca:c7:14:91:bc:80: 26:ab:a7:fb:11:49:43:fd:b2:a2:7f:9d:0a:7f:25: 32:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:42:01:CD:1F:DC:1E:BF:F3:8F:2C:CB:53:1F:8A:9A:CA:E5:C0:51 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/898b4557-ed43-42cb-99fe-3cd21033edf4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.37.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:b5:20:c3:00:6e:83:63:d0:d9:1d:7f:3d:98:99:25:b6:dd: 08:62:aa:d7:ee:6e:af:f8:32:00:68:1b:af:ee:cb:82:f3:e4: d5:28:02:20:fd:69:e4:a4:5b:7f:8e:5e:39:79:8b:42:38:77: a1:85:f3:63:d2:ad:76:cc:62:ad:82:5d:dc:88:76:66:7a:f7: 40:cb:89:e1:6f:7d:ec:1d:bb:41:cf:1b:9c:ec:19:b0:7c:2b: 4a:07:7f:ae:c4:0e:69:1d:bc:d9:c1:fd:69:73:8c:18:af:29: 29:af:b9:da:e5:41:c1:8e:79:89:b1:c3:42:f7:a4:2c:96:5c: 52:c6:78:69:1b:25:6f:ae:00:e9:c6:3e:d8:15:8a:b9:fe:0b: cc:e1:6f:8e:e5:4b:8b:ea:d7:3f:b7:8e:2b:92:b7:46:af:3a: 11:e7:ad:92:c3:1f:c3:34:9b:c2:67:50:2e:c2:92:37:ef:81: db:94:c9:33:76:28:44:83:84:fd:61:70:54:f0:71:33:86:27: 44:77:e3:7e:0c:5b:be:a2:b0:bd:d5:30:e8:6c:ad:44:f4:f7: f8:1f:31:57:ad:1b:f1:ce:d3:38:a5:3d:d8:a7:f7:6e:8c:cf: dd:b9:b0:a2:a1:09:f8:a3:ae:10:bd:1e:d3:0a:b4:c0:49:6f: 07:ea:25:25 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMsIordnu785lWJs6+3Ygo60SjZcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMjA4MDE1MDA5WhcNMjYwMzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMWMyMmQ3NTA2YWViZWVjOTQ2ZWY1ZThlYzM2MmMxZDM5 NDVhYTY2NzQ2ZmFmODliZDBkY2ZhZTAzZTllMzEwMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClkn7b4e/zLnO4qg8P5nL+u+6oyUrSqqGIZb6z3VRYejjD vnNpOrDSe5Xbh65OJI/Xx5amGRTgzHTtbXPTaOfLlyY+7jz8WZzBBZ0GiKg3KLhj P+nwCj7Xr5e+I3S6ba8lenu/3DZqNXawPjXSdtg8SA4HSOrpaRG6EOyitEuiSXuM CWysDPd1MA5zCdbgzTsTkJeoV3jZ7Q2/sHmdbJzQlTuzWb44jLtxB+PNr0Fq2VTW BnHsZY9jp5L+i3YyoHdgstiA8qtfb6JIWC4WgVUE4IL0IEYmZJJep9ydlSKD4fmN 9uqxY63E2crHFJG8gCarp/sRSUP9sqJ/nQp/JTKtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUf0IBzR/cHr/zjyzLUx+KmsrlwFEwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzg5OGI0NTU3LWVkNDMtNDJjYi05OWZlLTNjZDIxMDMzZWRmNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCUwDQYJKoZIhvcNAQELBQADggEBAHu1IMMAboNj0Nkdfz2YmSW23Qhi qtfubq/4MgBoG6/uy4Lz5NUoAiD9aeSkW3+OXjl5i0I4d6GF82PSrXbMYq2CXdyI dmZ690DLieFvfewdu0HPG5zsGbB8K0oHf67EDmkdvNnB/WlzjBivKSmvudrlQcGO eYmxw0L3pCyWXFLGeGkbJW+uAOnGPtgVirn+C8zhb47lS4vq1z+3jiuSt0avOhHn rZLDH8M0m8JnUC7CkjfvgduUyTN2KESDhP1hcFTwcTOGJ0R3434MW76isL3VMOhs rUT09/gfMVetG/HO0zilPdin926Mz925sKKhCfijrhC9HtMKtMBJbwfqJSU= -----END CERTIFICATE-----Generated at Sun Dec 21 05:54:51 2025 by rpki-client