This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f893b02-709b-4a20-ab74-f859a710b1be.roa File: 0f893b02-709b-4a20-ab74-f859a710b1be.roa (raw, json) Hash identifier: di5hcUF+PFfnFCyKDNM59vq8Jr6f35i/rSIUOIMcbIw= Subject key identifier: A1:7D:41:E9:01:67:9F:69:82:37:9F:93:F3:77:79:E4:78:DA:1B:BD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2945D0E47183983E7C3FF35AD0C640C9DB253498 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f893b02-709b-4a20-ab74-f859a710b1be.roa Signing time: Thu 11 Dec 2025 00:40:51 +0000 ROA not before: Thu 11 Dec 2025 00:40:51 +0000 ROA not after: Wed 11 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.128.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Dec 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:45:d0:e4:71:83:98:3e:7c:3f:f3:5a:d0:c6:40:c9:db:25:34:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 11 00:40:51 2025 GMT Not After : Mar 11 23:59:59 2026 GMT Subject: serialNumber=a8a625d806c09e0ad6d94b4401f38a7d62c732db28f892e34da30acc0447a26d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:17:83:53:1f:9a:7f:9a:f3:bc:e0:fa:ae:3d: ec:60:61:ef:78:b9:b8:f2:f8:d1:71:1c:21:8a:85: 41:0b:87:7c:53:29:6c:b7:36:f4:88:bf:6e:29:14: 78:b3:86:65:05:75:2f:20:41:4a:40:ba:82:bf:1d: 68:92:a2:62:9f:74:93:f3:69:24:da:cf:88:51:68: 2a:53:2f:4d:b0:d0:f0:b8:87:59:2a:f7:2a:13:8f: 12:45:2f:d3:e9:ca:2c:ba:85:00:55:8b:34:ff:82: a7:24:8c:23:7c:2b:84:d2:06:82:fd:19:74:24:f4: a0:7e:bd:92:71:00:21:02:69:e9:5d:72:fa:28:7b: 00:3b:64:f2:dc:7d:3c:d1:b8:aa:74:c3:f1:60:14: 92:c5:41:8f:75:a0:6f:07:bb:be:ee:9f:8c:b5:13: 95:67:69:6a:46:ad:c5:c7:c0:18:4c:32:34:8d:1f: 38:6c:0b:e4:4c:a3:4f:79:37:db:57:bc:e0:75:a3: 9f:c3:5e:40:f1:7d:c8:ae:3c:6a:b7:dc:10:41:86: d9:d8:0e:37:43:22:30:72:6b:7f:a7:b6:c3:f1:f0: c7:f2:69:5f:f7:15:8c:ca:79:4b:9e:01:fd:be:24: d3:7e:32:92:63:7b:b3:74:6c:67:3d:5b:5b:a3:3f: 44:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:7D:41:E9:01:67:9F:69:82:37:9F:93:F3:77:79:E4:78:DA:1B:BD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f893b02-709b-4a20-ab74-f859a710b1be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.128.64.0/18 Signature Algorithm: sha256WithRSAEncryption ba:f1:15:ee:e4:e1:a6:f8:ec:cf:be:3d:4f:17:b5:16:67:a2: e6:c6:72:32:35:58:82:ba:27:cd:64:56:b5:c9:d4:ba:7e:8e: ec:24:29:5b:42:58:55:eb:d0:05:76:f1:99:cb:54:dd:0e:f1: 69:9a:14:e5:74:87:5d:93:96:c9:3c:3c:46:71:f0:b9:68:8a: 06:86:a6:e1:d0:e4:65:7e:1f:e1:7f:b6:8c:f8:4d:39:52:c2: 4c:31:62:4d:e5:09:df:67:9d:38:ce:3b:c0:6f:94:16:15:ff: df:e2:7e:ce:e6:fa:a3:02:1e:78:45:b9:50:de:90:9c:b5:00: 20:e5:21:f0:39:0b:82:da:9c:9c:44:9f:01:6f:7a:b2:6a:8b: fa:a9:ee:df:1d:54:42:29:91:b3:84:ee:5b:c7:d9:17:2b:26: b1:5e:67:66:7c:70:82:da:f9:f2:a2:63:32:d1:e7:dc:6a:14: 0a:ea:ed:92:ef:90:6f:a3:f6:18:d5:c6:06:4b:ad:00:a2:83: 32:46:15:c8:a0:b4:4a:23:83:f3:78:23:46:80:91:6d:c4:c8: 63:01:eb:a5:dd:19:55:e6:86:28:4a:b1:ee:4e:92:35:92:2b: 7f:98:0e:f7:53:a1:ab:76:82:2a:49:44:72:29:b2:3c:05:d4: 48:c3:55:2d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKUXQ5HGDmD58P/Na0MZAydslNJgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjExMDA0MDUxWhcNMjYwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0BhOGE2MjVkODA2YzA5ZTBhZDZkOTRiNDQwMWYzOGE3ZDYy YzczMmRiMjhmODkyZTM0ZGEzMGFjYzA0NDdhMjZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEF4NTH5p/mvO84PquPexgYe94ubjy+NFxHCGKhUELh3xT KWy3NvSIv24pFHizhmUFdS8gQUpAuoK/HWiSomKfdJPzaSTaz4hRaCpTL02w0PC4 h1kq9yoTjxJFL9Ppyiy6hQBVizT/gqckjCN8K4TSBoL9GXQk9KB+vZJxACECaeld cvooewA7ZPLcfTzRuKp0w/FgFJLFQY91oG8Hu77un4y1E5VnaWpGrcXHwBhMMjSN HzhsC+RMo095N9tXvOB1o5/DXkDxfciuPGq33BBBhtnYDjdDIjBya3+ntsPx8Mfy aV/3FYzKeUueAf2+JNN+MpJje7N0bGc9W1ujP0SDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoX1B6QFnn2mCN5+T83d55HjaG70wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBmODkzYjAyLTcwOWItNGEyMC1hYjc0LWY4NTlhNzEwYjFiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYjgEAwDQYJKoZIhvcNAQELBQADggEBALrxFe7k4ab47M++PU8XtRZnoubG cjI1WIK6J81kVrXJ1Lp+juwkKVtCWFXr0AV28ZnLVN0O8WmaFOV0h12Tlsk8PEZx 8LloigaGpuHQ5GV+H+F/toz4TTlSwkwxYk3lCd9nnTjOO8BvlBYV/9/ifs7m+qMC HnhFuVDekJy1ACDlIfA5C4LanJxEnwFverJqi/qp7t8dVEIpkbOE7lvH2RcrJrFe Z2Z8cILa+fKiYzLR59xqFArq7ZLvkG+j9hjVxgZLrQCigzJGFcigtEojg/N4I0aA kW3EyGMB66XdGVXmhihKse5OkjWSK3+YDvdToat2gipJRHIpsjwF1EjDVS0= -----END CERTIFICATE-----Generated at Fri Dec 19 13:14:28 2025 by rpki-client