This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a831197c-8b82-49b5-9fa5-fb2277e6850c.roa File: a831197c-8b82-49b5-9fa5-fb2277e6850c.roa (raw, json) Hash identifier: tPgeuZgkE5h0mEv/Xletn/khpCVnz52BT62UdrIR+YI= Subject key identifier: B7:6F:37:52:CC:00:42:78:8D:15:05:21:EF:47:11:3F:58:F3:29:83 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 3CD28178DF68685A9828C9FACF2A3FD871E3B5B3 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a831197c-8b82-49b5-9fa5-fb2277e6850c.roa Signing time: Mon 08 Dec 2025 02:00:29 +0000 ROA not before: Mon 08 Dec 2025 02:00:29 +0000 ROA not after: Sun 08 Mar 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 22 Dec 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:d2:81:78:df:68:68:5a:98:28:c9:fa:cf:2a:3f:d8:71:e3:b5:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Dec 8 02:00:29 2025 GMT Not After : Mar 8 23:59:59 2026 GMT Subject: serialNumber=aced3fbe9b796c34ebdbba5bb64317b57a3f127ea2abd805601ad0c747120bcd, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1c:74:0b:b4:5a:21:4c:e5:0e:93:7f:5d:12: 85:51:94:71:4a:23:e8:79:ac:d0:c0:9d:e9:30:2d: cd:2a:3d:cd:b8:9c:9b:f7:41:a7:3d:62:2e:61:bb: 0c:6b:83:50:54:1b:ec:6f:74:a7:41:66:61:8a:30: 55:48:fe:f9:26:5a:cf:20:54:95:4d:e0:ff:b2:3f: ea:cf:41:96:3b:69:be:cc:10:df:e9:e2:bf:98:1a: 60:22:81:d3:01:27:49:a2:1d:44:2b:03:fd:18:35: e1:37:46:03:cc:a4:55:fb:e9:54:ce:b2:71:04:e2: 37:a1:a8:75:d1:9d:85:f3:c5:a9:23:9a:d8:c8:c5: 14:e4:7a:e5:93:65:bf:9e:22:0b:4d:54:ab:a0:de: ef:fe:d0:17:47:a2:86:22:54:d0:b8:36:eb:9e:c5: b3:ec:d7:c3:7c:d8:00:55:f7:fe:b4:ab:2b:5e:a5: 99:45:0c:3a:87:9a:1a:cf:33:85:fe:2f:5c:0b:f5: 39:83:a0:31:ce:82:0c:b7:bb:65:51:a2:54:64:8e: 4b:10:c4:fe:9d:33:4d:40:ca:57:86:eb:f2:28:48: dd:19:6c:72:41:53:e4:6c:cd:66:61:8b:d1:16:90: a7:c7:cd:c1:50:88:6f:dc:c0:cd:be:e6:80:a1:41: e4:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:6F:37:52:CC:00:42:78:8D:15:05:21:EF:47:11:3F:58:F3:29:83 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a831197c-8b82-49b5-9fa5-fb2277e6850c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.38.0/24 Signature Algorithm: sha256WithRSAEncryption 57:eb:4e:4e:af:8c:8b:38:62:df:85:18:ea:25:d9:46:2c:62: c4:0d:a9:c1:7d:d1:dc:ba:58:4e:91:f7:a9:cd:94:71:21:81: 77:63:51:f9:a1:99:04:8a:63:d7:56:10:7a:e9:46:dd:cc:c4: 70:98:97:1f:d0:7b:15:9c:4e:02:b1:3e:2b:6e:d9:2c:e1:a1: 19:0f:ef:76:e7:38:be:c8:04:1f:b0:5f:ff:01:02:13:ef:56: 80:1a:5f:f1:b8:c2:6d:31:0e:7e:3c:7e:be:1f:f1:b5:f6:93: a5:6d:f1:12:99:fb:f6:4c:27:6d:bc:3c:da:8d:47:60:bf:bd: ff:6d:b8:16:fb:d5:94:98:8d:07:e2:a7:bb:2d:e9:1f:c2:e4: 79:b8:dc:ee:01:02:b0:a7:8c:f6:68:7f:2d:19:3e:30:61:ea: 28:91:0a:c8:62:87:03:f0:ea:91:9b:60:96:1f:c3:dc:66:a8: f5:a6:cc:92:96:c4:d8:63:12:dc:06:52:54:3f:b2:66:26:c1: ed:0f:9c:1e:ea:24:70:15:eb:8a:b0:02:08:c1:1b:80:8f:a3: 6c:04:98:32:6e:e2:8a:89:89:6a:c8:43:a6:8e:3d:06:50:f4: 1d:bb:6d:e7:55:4e:25:a0:98:e2:59:e5:17:e7:b7:10:e9:38: 7e:8d:bd:9d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPNKBeN9oaFqYKMn6zyo/2HHjtbMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMjA4MDIwMDI5WhcNMjYwMzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhY2VkM2ZiZTliNzk2YzM0ZWJkYmJhNWJiNjQzMTdiNTdh M2YxMjdlYTJhYmQ4MDU2MDFhZDBjNzQ3MTIwYmNkMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYHHQLtFohTOUOk39dEoVRlHFKI+h5rNDAnekwLc0qPc24 nJv3Qac9Yi5huwxrg1BUG+xvdKdBZmGKMFVI/vkmWs8gVJVN4P+yP+rPQZY7ab7M EN/p4r+YGmAigdMBJ0miHUQrA/0YNeE3RgPMpFX76VTOsnEE4jehqHXRnYXzxakj mtjIxRTkeuWTZb+eIgtNVKug3u/+0BdHooYiVNC4NuuexbPs18N82ABV9/60qyte pZlFDDqHmhrPM4X+L1wL9TmDoDHOggy3u2VRolRkjksQxP6dM01AyleG6/IoSN0Z bHJBU+RszWZhi9EWkKfHzcFQiG/cwM2+5oChQeShAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUt283UswAQniNFQUh70cRP1jzKYMwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2E4MzExOTdjLThiODItNDliNS05ZmE1LWZiMjI3N2U2ODUwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCYwDQYJKoZIhvcNAQELBQADggEBAFfrTk6vjIs4Yt+FGOol2UYsYsQN qcF90dy6WE6R96nNlHEhgXdjUfmhmQSKY9dWEHrpRt3MxHCYlx/QexWcTgKxPitu 2SzhoRkP73bnOL7IBB+wX/8BAhPvVoAaX/G4wm0xDn48fr4f8bX2k6Vt8RKZ+/ZM J228PNqNR2C/vf9tuBb71ZSYjQfip7st6R/C5Hm43O4BArCnjPZofy0ZPjBh6iiR CshihwPw6pGbYJYfw9xmqPWmzJKWxNhjEtwGUlQ/smYmwe0PnB7qJHAV64qwAgjB G4CPo2wEmDJu4oqJiWrIQ6aOPQZQ9B27bedVTiWgmOJZ5RfntxDpOH6NvZ0= -----END CERTIFICATE-----Generated at Sun Dec 21 05:52:52 2025 by rpki-client