This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18e20a74-bdc3-4bcf-9338-15e54b26aae0.roa File: 18e20a74-bdc3-4bcf-9338-15e54b26aae0.roa (raw, json) Hash identifier: /9mKKpT3n9EawlLSh3IOBbmQzc3MpGzizCGOu4E1x38= Subject key identifier: A8:F3:7B:53:D9:0E:0B:09:27:08:0C:58:F6:FA:CF:88:E5:58:3F:1D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4A9C3C78E246412A94620254CF9E4E725090D7B2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18e20a74-bdc3-4bcf-9338-15e54b26aae0.roa Signing time: Wed 26 Nov 2025 00:41:05 +0000 ROA not before: Wed 26 Nov 2025 00:41:05 +0000 ROA not after: Tue 24 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.12.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 06 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:9c:3c:78:e2:46:41:2a:94:62:02:54:cf:9e:4e:72:50:90:d7:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 26 00:41:05 2025 GMT Not After : Feb 24 23:59:59 2026 GMT Subject: serialNumber=4a4e6c88583bc4d5658ca5cc7877df08dfc578d41a40552a06eb7c3a1885c4a4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d2:b3:d6:cf:08:95:e0:3b:2b:d9:6a:51:f0: 56:5c:62:7b:01:8f:37:6f:bb:2b:9b:4f:00:2c:64: cc:a1:45:c2:53:ce:c0:f6:0e:3a:ec:70:24:26:48: c4:5b:6a:af:0a:22:55:dd:aa:ea:66:94:f6:a7:a0: 8f:c5:a5:85:c4:f0:b7:c9:99:03:87:b4:be:9a:be: 00:0d:5f:8e:01:01:c3:db:63:c6:99:47:c4:ca:e7: a5:b1:05:f4:01:ba:c3:ae:47:c2:ac:66:f6:b1:11: 35:e4:ee:39:ed:e7:65:93:9d:44:d8:9e:46:6b:76: 41:b1:ea:e6:c9:b9:af:ce:06:80:5a:e7:2c:51:b6: 1b:e6:88:d4:4e:d9:f4:c1:b5:ed:6c:68:13:93:a7: 34:c8:c0:e6:56:1b:02:c1:98:b0:22:41:4e:47:c2: ca:a0:c9:ec:80:4a:a7:2e:ff:a9:37:55:24:75:0f: c2:3b:51:6e:1e:1a:24:44:99:1c:32:3f:91:12:f3: d7:7e:e8:ee:4a:49:6b:d2:2c:f5:a3:2c:2c:20:39: ea:84:5e:99:1f:5a:a4:ed:9f:72:03:06:f5:bb:4d: 59:39:09:07:e5:8a:58:6e:c7:85:dc:c3:5d:c8:e7: c9:e6:f6:3d:37:a3:cb:4f:2a:5d:c8:3e:24:f1:10: 0e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:F3:7B:53:D9:0E:0B:09:27:08:0C:58:F6:FA:CF:88:E5:58:3F:1D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18e20a74-bdc3-4bcf-9338-15e54b26aae0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.12.0.0/16 Signature Algorithm: sha256WithRSAEncryption 48:7f:3e:6c:ac:e4:c1:80:65:e6:29:f2:9b:4b:dc:c7:a1:7e: 4b:f4:e6:cf:eb:cb:0a:fc:50:19:36:da:14:13:fb:18:b7:45: c7:ba:aa:c3:e9:ac:27:1e:40:ca:ed:ed:be:b8:e3:fc:9a:07: 3b:9d:a6:40:be:39:c0:cb:fa:7c:dd:e4:89:5d:2a:78:27:3c: 4f:e4:67:5b:ef:e2:1c:b7:75:97:66:e6:bb:b8:f8:dd:ab:25: 39:7c:f1:15:8e:f6:db:c2:ff:c4:f3:07:81:06:00:11:ac:1f: 8a:49:b0:81:ea:f0:72:e7:52:bc:56:d6:3e:31:41:85:3b:c6: ea:65:29:a9:bf:49:ed:15:0b:a0:3a:b4:a1:e9:b3:02:c0:d0: 47:f7:f6:05:82:02:31:4e:1b:8a:b5:de:d8:5a:25:46:6d:67: ef:da:14:08:46:ce:1c:aa:3f:25:25:ef:8b:c6:10:0e:57:b5: b8:d5:63:4c:9a:45:15:2e:2b:52:9d:e2:d4:da:44:32:9f:41: 71:58:07:2a:9c:d0:e8:cf:0f:cc:0e:88:43:91:3c:a0:64:b3: 48:2a:2d:d0:3f:c1:0d:91:84:d0:ec:a1:dd:95:3f:9d:44:1a: 75:ed:05:4b:21:ac:f2:10:7a:fe:0d:d0:65:4a:0f:42:1f:e4: c7:7c:22:f9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSpw8eOJGQSqUYgJUz55OclCQ17IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI2MDA0MTA1WhcNMjYwMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YTRlNmM4ODU4M2JjNGQ1NjU4Y2E1Y2M3ODc3ZGYwOGRm YzU3OGQ0MWE0MDU1MmEwNmViN2MzYTE4ODVjNGE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl0rPWzwiV4Dsr2WpR8FZcYnsBjzdvuyubTwAsZMyhRcJT zsD2DjrscCQmSMRbaq8KIlXdqupmlPanoI/FpYXE8LfJmQOHtL6avgANX44BAcPb Y8aZR8TK56WxBfQBusOuR8KsZvaxETXk7jnt52WTnUTYnkZrdkGx6ubJua/OBoBa 5yxRthvmiNRO2fTBte1saBOTpzTIwOZWGwLBmLAiQU5HwsqgyeyASqcu/6k3VSR1 D8I7UW4eGiREmRwyP5ES89d+6O5KSWvSLPWjLCwgOeqEXpkfWqTtn3IDBvW7TVk5 CQflilhux4Xcw13I58nm9j03o8tPKl3IPiTxEA5dAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUqPN7U9kOCwknCAxY9vrPiOVYPx0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE4ZTIwYTc0LWJkYzMtNGJjZi05MzM4LTE1ZTU0YjI2YWFlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQDDANBgkqhkiG9w0BAQsFAAOCAQEASH8+bKzkwYBl5inym0vcx6F+S/Tm z+vLCvxQGTbaFBP7GLdFx7qqw+msJx5Ayu3tvrjj/JoHO52mQL45wMv6fN3kiV0q eCc8T+RnW+/iHLd1l2bmu7j43aslOXzxFY7228L/xPMHgQYAEawfikmwgerwcudS vFbWPjFBhTvG6mUpqb9J7RULoDq0oemzAsDQR/f2BYICMU4birXe2FolRm1n79oU CEbOHKo/JSXvi8YQDle1uNVjTJpFFS4rUp3i1NpEMp9BcVgHKpzQ6M8PzA6IQ5E8 oGSzSCot0D/BDZGE0Oyh3ZU/nUQade0FSyGs8hB6/g3QZUoPQh/kx3wi+Q== -----END CERTIFICATE-----Generated at Thu Dec 4 21:41:30 2025 by rpki-client