This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c221708b-2fb3-40d7-9d91-a273c57bb3c3.roa File: c221708b-2fb3-40d7-9d91-a273c57bb3c3.roa (raw, json) Hash identifier: aZQxv/hyOPNihNk86Fatr5BDB8f6iCxrr8qL/FV8ymE= Subject key identifier: CC:4E:32:39:9D:33:03:40:CF:BA:97:FD:9D:FD:A9:0C:EB:48:01:69 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 07B25A5FEC060DF950FAF7E921F5F91BFEBE1CA3 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c221708b-2fb3-40d7-9d91-a273c57bb3c3.roa Signing time: Mon 08 Dec 2025 01:50:06 +0000 ROA not before: Mon 08 Dec 2025 01:50:06 +0000 ROA not after: Sun 08 Mar 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 22 Dec 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:b2:5a:5f:ec:06:0d:f9:50:fa:f7:e9:21:f5:f9:1b:fe:be:1c:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Dec 8 01:50:06 2025 GMT Not After : Mar 8 23:59:59 2026 GMT Subject: serialNumber=57875c67a0afcc11848f120abdeafc4ddac4b01ec3be380457866eb13289a738, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e3:3e:ce:58:a8:e6:80:73:ca:10:71:41:fa: 3a:9d:ba:ab:bc:52:06:e0:b2:76:c8:e0:0c:99:ee: 46:94:78:ef:4f:9f:98:6e:ce:a0:87:c6:b1:5f:f4: 40:8b:07:45:d0:a0:a1:8c:b0:86:9e:19:68:a7:b2: 90:f4:4d:c3:b7:44:18:49:d1:b6:8b:8e:c7:67:fa: 9a:ae:96:9f:52:ff:ac:a5:da:79:dd:55:e1:e7:31: 88:59:7d:dc:2b:54:73:25:b3:cd:d7:38:7d:b3:13: 37:ee:44:f9:3c:69:5b:88:53:77:9d:34:a9:7e:ad: 02:a9:96:ed:99:33:85:45:66:e2:80:79:d5:d0:ad: dd:4f:16:ac:c8:17:90:16:d9:28:2f:f7:e7:e2:70: 7b:69:53:74:12:8c:e2:e9:d3:82:71:7b:a2:af:77: e2:a6:5e:02:eb:b1:d5:8b:94:79:12:96:0c:40:ca: 32:d2:5b:84:49:94:81:33:c7:22:b9:9a:c1:c8:9f: 24:86:bb:b0:37:66:83:c6:a8:48:b5:12:71:6a:16: e4:4d:ef:ed:1a:e5:0a:c8:40:6c:5f:d6:80:94:89: d5:06:22:e7:38:90:0b:21:35:58:ae:28:46:90:75: 01:83:10:3a:2f:f0:37:e4:1d:85:40:42:3d:22:e6: 42:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:4E:32:39:9D:33:03:40:CF:BA:97:FD:9D:FD:A9:0C:EB:48:01:69 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c221708b-2fb3-40d7-9d91-a273c57bb3c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.43.0/24 Signature Algorithm: sha256WithRSAEncryption 87:c2:ff:a4:10:0c:2b:f9:81:55:19:fa:14:1a:d5:e9:1d:5c: c3:48:1d:2f:7d:ac:7c:a2:a1:6e:be:92:b2:2a:36:d9:8f:c1: 24:43:35:51:c0:17:d4:1e:11:a3:65:3f:8a:7f:15:1b:9f:19: 42:31:31:bd:05:6d:2e:dc:69:7f:d5:9f:f7:02:59:20:6e:9f: 68:15:16:e5:6b:33:67:8c:52:45:32:0a:6c:a4:e9:60:bd:18: 10:4b:22:4a:03:ce:60:90:be:f1:a4:e3:1e:1a:6f:ae:62:df: f0:a5:80:43:59:67:66:af:bd:ad:08:29:a2:df:18:ea:70:01: ae:aa:47:4a:e6:a4:96:55:7f:83:77:57:7c:30:65:11:23:41: da:df:e1:6c:eb:ec:1f:8c:88:6a:9a:81:43:93:c0:7b:a7:ff: 2c:fa:84:d0:9d:b7:de:bf:2c:b3:78:6c:f1:49:89:57:6b:29: 0c:39:a7:7d:59:cc:d9:7d:bf:e2:4e:1d:b6:58:26:6e:7b:2d: 3a:eb:0e:3d:40:c5:44:c3:a4:79:a6:88:cc:a8:e4:b3:1e:90: 6b:95:3f:85:3a:4d:89:eb:ba:b5:85:21:55:ea:da:36:03:e4: 61:7c:9e:5d:22:67:3a:75:b2:14:05:08:c9:e0:57:58:bd:02: 19:78:93:31 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUB7JaX+wGDflQ+vfpIfX5G/6+HKMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMjA4MDE1MDA2WhcNMjYwMzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1Nzg3NWM2N2EwYWZjYzExODQ4ZjEyMGFiZGVhZmM0ZGRh YzRiMDFlYzNiZTM4MDQ1Nzg2NmViMTMyODlhNzM4MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCh4z7OWKjmgHPKEHFB+jqduqu8UgbgsnbI4AyZ7kaUeO9P n5huzqCHxrFf9ECLB0XQoKGMsIaeGWinspD0TcO3RBhJ0baLjsdn+pqulp9S/6yl 2nndVeHnMYhZfdwrVHMls83XOH2zEzfuRPk8aVuIU3edNKl+rQKplu2ZM4VFZuKA edXQrd1PFqzIF5AW2Sgv9+ficHtpU3QSjOLp04Jxe6Kvd+KmXgLrsdWLlHkSlgxA yjLSW4RJlIEzxyK5msHInySGu7A3ZoPGqEi1EnFqFuRN7+0a5QrIQGxf1oCUidUG Iuc4kAshNViuKEaQdQGDEDov8DfkHYVAQj0i5kK/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzE4yOZ0zA0DPupf9nf2pDOtIAWkwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2MyMjE3MDhiLTJmYjMtNDBkNy05ZDkxLWEyNzNjNTdiYjNjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCswDQYJKoZIhvcNAQELBQADggEBAIfC/6QQDCv5gVUZ+hQa1ekdXMNI HS99rHyioW6+krIqNtmPwSRDNVHAF9QeEaNlP4p/FRufGUIxMb0FbS7caX/Vn/cC WSBun2gVFuVrM2eMUkUyCmyk6WC9GBBLIkoDzmCQvvGk4x4ab65i3/ClgENZZ2av va0IKaLfGOpwAa6qR0rmpJZVf4N3V3wwZREjQdrf4Wzr7B+MiGqagUOTwHun/yz6 hNCdt96/LLN4bPFJiVdrKQw5p31ZzNl9v+JOHbZYJm57LTrrDj1AxUTDpHmmiMyo 5LMekGuVP4U6TYnrurWFIVXq2jYD5GF8nl0iZzp1shQFCMngV1i9Ahl4kzE= -----END CERTIFICATE-----Generated at Sun Dec 21 05:54:01 2025 by rpki-client