This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c2811169-c1c6-4559-b237-580a584aa58a.roa File: c2811169-c1c6-4559-b237-580a584aa58a.roa (raw, json) Hash identifier: 2pBxfElpXNeTA4UVN4znJKllcqcjZHQemgYTDET9JXw= Subject key identifier: 6B:61:E0:49:6B:28:01:6A:88:14:C9:A2:D1:D6:E7:BF:CC:CE:72:4E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4DE78C64597318425B87EE72966603CCA618E30A Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c2811169-c1c6-4559-b237-580a584aa58a.roa Signing time: Mon 08 Dec 2025 02:00:34 +0000 ROA not before: Mon 08 Dec 2025 02:00:34 +0000 ROA not after: Sun 08 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 22 Dec 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:e7:8c:64:59:73:18:42:5b:87:ee:72:96:66:03:cc:a6:18:e3:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Dec 8 02:00:34 2025 GMT Not After : Mar 8 23:59:59 2026 GMT Subject: serialNumber=cd59d9b7a661b21ee375dfc74a27d381cdbfe1cc14b0c9472f4efc7280c0305a, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:01:51:b8:ed:81:d8:5e:f0:ca:77:40:18:c5: f8:55:93:34:a0:4d:5f:f0:3b:3a:06:c7:2e:6e:8d: 7c:1a:59:9b:d0:ae:43:8b:8c:c1:40:24:30:4a:f4: f1:a3:c2:b4:8a:a7:9c:28:c4:ad:df:54:58:3a:58: 9e:71:ed:73:79:75:cd:af:96:dd:18:58:00:f8:a2: c8:b3:16:3e:90:9a:79:eb:c5:a2:c6:de:d5:b8:40: 0b:0b:d8:81:96:d2:3f:57:5e:3e:14:4f:5e:46:2d: a6:f7:74:7a:f1:78:e9:aa:be:63:65:6b:e4:32:79: 53:c1:a4:b0:98:8b:a8:fb:d5:4c:4e:54:ee:5d:49: 00:96:9c:d8:ef:9d:ed:e4:1d:c2:4f:64:b3:79:1f: 9f:9c:61:d2:16:7b:57:55:db:15:aa:97:9e:52:dd: 4d:9c:1c:f6:13:8b:02:1b:97:b0:1c:09:7c:b4:3b: 89:bc:79:b0:1a:bd:3e:ce:3d:91:9c:e7:76:4a:1b: e8:38:50:a5:50:07:41:18:63:a6:50:eb:0f:79:fc: f5:64:37:70:8e:6c:01:13:a0:25:a5:5b:88:d0:01: 1a:32:0c:48:2f:df:63:55:34:be:23:23:6e:9d:50: c8:f8:08:7b:44:f7:a5:ee:fc:f8:0e:74:a1:32:6b: bf:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:61:E0:49:6B:28:01:6A:88:14:C9:A2:D1:D6:E7:BF:CC:CE:72:4E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c2811169-c1c6-4559-b237-580a584aa58a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.34.0/24 Signature Algorithm: sha256WithRSAEncryption 74:10:f3:79:74:af:fb:d2:6b:64:c8:3b:43:c9:12:f5:4a:14: 21:d3:cb:ef:c1:fd:5c:9f:dd:f9:09:52:78:a2:08:2d:2a:32: 95:a3:c4:4c:39:8f:83:6d:82:ed:1d:c2:91:e3:de:b9:e7:0b: 1a:f7:ac:ac:8b:b1:3c:54:2a:32:82:12:2c:08:e7:c2:9f:70: d2:cf:09:5d:5c:65:41:d0:b0:8e:a7:eb:70:d4:d1:3e:57:86: 25:c2:f8:67:ec:4c:3c:0a:67:cd:ff:e4:a1:4c:cf:58:62:7e: 83:d6:18:2e:f9:41:c2:9d:71:63:1e:96:6a:7c:e6:a3:2a:0b: ea:48:cf:90:ba:91:b0:13:c7:f6:4d:33:c5:80:06:a5:51:5f: 43:b6:ca:0c:31:09:ac:50:91:4a:4f:c2:65:38:77:ea:f9:75: 30:01:db:ca:e2:38:23:82:2b:0f:64:75:b3:ca:bf:ac:4c:d4: a6:b9:5e:e2:81:8c:8e:68:85:0b:63:08:92:7d:ff:6b:0b:9d: db:48:b6:8f:9f:3f:d9:a0:c1:7e:53:44:18:93:d8:e7:64:db: 93:75:83:c2:70:9b:64:4e:1c:8c:4e:d6:94:e1:93:ad:c5:e4: 32:c3:8b:b5:d8:8c:cf:f0:b5:b8:16:75:e6:dd:56:54:5f:2c: a6:62:15:c7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTeeMZFlzGEJbh+5ylmYDzKYY4wowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMjA4MDIwMDM0WhcNMjYwMzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZDU5ZDliN2E2NjFiMjFlZTM3NWRmYzc0YTI3ZDM4MWNk YmZlMWNjMTRiMGM5NDcyZjRlZmM3MjgwYzAzMDVhMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4AVG47YHYXvDKd0AYxfhVkzSgTV/wOzoGxy5ujXwaWZvQ rkOLjMFAJDBK9PGjwrSKp5woxK3fVFg6WJ5x7XN5dc2vlt0YWAD4osizFj6Qmnnr xaLG3tW4QAsL2IGW0j9XXj4UT15GLab3dHrxeOmqvmNla+QyeVPBpLCYi6j71UxO VO5dSQCWnNjvne3kHcJPZLN5H5+cYdIWe1dV2xWql55S3U2cHPYTiwIbl7AcCXy0 O4m8ebAavT7OPZGc53ZKG+g4UKVQB0EYY6ZQ6w95/PVkN3CObAEToCWlW4jQARoy DEgv32NVNL4jI26dUMj4CHtE96Xu/PgOdKEya7+LAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUa2HgSWsoAWqIFMmi0dbnv8zOck4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2MyODExMTY5LWMxYzYtNDU1OS1iMjM3LTU4MGE1ODRhYTU4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCIwDQYJKoZIhvcNAQELBQADggEBAHQQ83l0r/vSa2TIO0PJEvVKFCHT y+/B/Vyf3fkJUniiCC0qMpWjxEw5j4Ntgu0dwpHj3rnnCxr3rKyLsTxUKjKCEiwI 58KfcNLPCV1cZUHQsI6n63DU0T5XhiXC+GfsTDwKZ83/5KFMz1hifoPWGC75QcKd cWMelmp85qMqC+pIz5C6kbATx/ZNM8WABqVRX0O2ygwxCaxQkUpPwmU4d+r5dTAB 28riOCOCKw9kdbPKv6xM1Ka5XuKBjI5ohQtjCJJ9/2sLndtIto+fP9mgwX5TRBiT 2Odk25N1g8Jwm2ROHIxO1pThk63F5DLDi7XYjM/wtbgWdebdVlRfLKZiFcc= -----END CERTIFICATE-----Generated at Sun Dec 21 09:10:04 2025 by rpki-client