This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0114a896-9728-46a0-a9f2-a6fdf1c6fb94.roa File: 0114a896-9728-46a0-a9f2-a6fdf1c6fb94.roa (raw, json) Hash identifier: fSaiKtkpV5yqy272Vfwrhx3E5PsF+HpcpbUveOf3tbM= Subject key identifier: 89:7B:31:71:CC:CD:9C:31:00:E1:E4:BC:E4:CA:58:3C:95:4B:75:73 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4FBEFECED742319ADB6E15517E0536890673FFF7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0114a896-9728-46a0-a9f2-a6fdf1c6fb94.roa Signing time: Sun 07 Dec 2025 01:51:30 +0000 ROA not before: Sun 07 Dec 2025 01:51:30 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 92.201.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 03 Jan 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:be:fe:ce:d7:42:31:9a:db:6e:15:51:7e:05:36:89:06:73:ff:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 7 01:51:30 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=fd560d4dc5df818c77fbc40519964288ae3e35ce2c061cdf6554b719e9e30db2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ba:93:59:73:7d:ba:b3:10:ae:33:69:d4:96: f2:44:ec:58:a2:ef:93:82:12:bc:f7:fd:21:d8:4c: 80:20:48:5f:14:3c:00:70:f3:1b:0b:88:60:fb:3d: 6b:0b:8d:86:5d:0f:73:a2:ad:ae:4a:d9:88:5d:ea: 58:08:d5:24:69:73:69:79:91:ee:a7:f2:e6:f6:5d: c1:b1:6e:88:4d:8b:af:75:c6:24:4c:c9:84:f6:57: a0:63:3c:7a:b8:16:e6:70:e4:2c:0b:ac:fa:e9:99: 43:5b:0c:50:c0:c2:eb:e0:4f:e4:4a:29:f0:46:ed: 28:57:0d:bb:2a:bc:eb:04:4b:f2:d3:cd:50:78:84: 77:de:c5:e7:f1:2a:a6:90:bc:1b:41:e4:cb:7a:22: f8:63:00:75:27:1d:85:11:0f:d3:b4:6f:39:57:89: ad:05:cd:00:d0:13:75:a4:cf:36:2a:a7:f3:ce:df: f0:55:11:1d:32:62:c3:82:e0:19:96:5d:a2:d4:35: 7e:83:8e:33:5c:70:01:40:05:e9:74:48:be:1e:c2: b5:df:f1:89:61:e7:dd:ff:d1:40:20:58:97:1f:a9: 8f:15:b2:70:08:0b:d1:19:bd:b0:f1:49:58:ae:62: 2c:e2:e5:c2:e5:d7:e0:15:2a:45:4b:c5:b9:1c:d5: fd:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:7B:31:71:CC:CD:9C:31:00:E1:E4:BC:E4:CA:58:3C:95:4B:75:73 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0114a896-9728-46a0-a9f2-a6fdf1c6fb94.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 92.201.128.0/17 Signature Algorithm: sha256WithRSAEncryption d8:e3:d2:41:1b:b6:01:8f:6f:27:16:90:87:86:5e:fe:57:04: 62:56:4f:9c:ed:13:f4:6a:cc:5d:76:f6:4e:c3:7d:e5:c2:97: 51:30:b6:46:ad:6e:37:71:b3:d5:6d:31:3e:2a:7e:23:e1:7a: 15:d6:b5:32:c1:65:ee:c0:82:6d:26:72:f5:3c:b3:e1:7a:2f: 07:11:42:11:fa:7a:54:17:0d:e9:f3:1b:77:4e:32:1b:90:25: 61:59:e9:5b:a2:7a:b1:46:8e:55:3e:33:cf:e9:f2:ca:e3:22: 33:d9:e6:fa:23:5e:81:d9:ce:9a:93:62:18:28:95:28:90:03: 2d:d7:3d:4d:56:c5:db:85:13:f7:97:a2:ae:5c:44:38:70:e4: 00:5f:3e:be:25:39:1b:a7:f9:9d:04:e6:2f:21:44:12:3d:b2: 19:a9:48:08:1b:0a:d3:e9:6c:67:e0:d4:e4:70:10:c7:49:9c: 18:bc:5e:f5:d3:8f:be:66:77:09:31:c7:9a:d2:ca:10:21:1b: c8:40:ba:38:c1:23:b9:70:b3:67:da:b5:12:df:a1:b0:b0:a0: d7:09:1c:6c:9e:5c:33:ea:84:b2:b1:23:16:b8:f0:03:5b:22: 20:22:93:dc:ac:76:58:ac:4f:59:f6:f2:90:7f:b1:62:32:32: b4:2a:65:f7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUT77+ztdCMZrbbhVRfgU2iQZz//cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA3MDE1MTMwWhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZDU2MGQ0ZGM1ZGY4MThjNzdmYmM0MDUxOTk2NDI4OGFl M2UzNWNlMmMwNjFjZGY2NTU0YjcxOWU5ZTMwZGIyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9upNZc326sxCuM2nUlvJE7Fii75OCErz3/SHYTIAgSF8U PABw8xsLiGD7PWsLjYZdD3Oira5K2Yhd6lgI1SRpc2l5ke6n8ub2XcGxbohNi691 xiRMyYT2V6BjPHq4FuZw5CwLrPrpmUNbDFDAwuvgT+RKKfBG7ShXDbsqvOsES/LT zVB4hHfexefxKqaQvBtB5Mt6IvhjAHUnHYURD9O0bzlXia0FzQDQE3WkzzYqp/PO 3/BVER0yYsOC4BmWXaLUNX6DjjNccAFABel0SL4ewrXf8Ylh593/0UAgWJcfqY8V snAIC9EZvbDxSViuYizi5cLl1+AVKkVLxbkc1f1DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiXsxcczNnDEA4eS85MpYPJVLdXMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAxMTRhODk2LTk3MjgtNDZhMC1hOWYyLWE2ZmRmMWM2ZmI5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdcyYAwDQYJKoZIhvcNAQELBQADggEBANjj0kEbtgGPbycWkIeGXv5XBGJW T5ztE/RqzF129k7DfeXCl1Ewtkatbjdxs9VtMT4qfiPhehXWtTLBZe7Agm0mcvU8 s+F6LwcRQhH6elQXDenzG3dOMhuQJWFZ6VuierFGjlU+M8/p8srjIjPZ5vojXoHZ zpqTYhgolSiQAy3XPU1WxduFE/eXoq5cRDhw5ABfPr4lORun+Z0E5i8hRBI9shmp SAgbCtPpbGfg1ORwEMdJnBi8XvXTj75mdwkxx5rSyhAhG8hAujjBI7lws2fatRLf obCwoNcJHGyeXDPqhLKxIxa48ANbIiAik9ysdlisT1n28pB/sWIyMrQqZfc= -----END CERTIFICATE-----Generated at Fri Jan 2 09:35:32 2026 by rpki-client