This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28c6be0c-7940-4a4f-b9f7-c77b672267e1.roa File: 28c6be0c-7940-4a4f-b9f7-c77b672267e1.roa (raw, json) Hash identifier: XizMbzvaTlcPSE9o8RuJNIySN/cH7BZTMGTdjyLqUfw= Subject key identifier: 06:58:42:BE:18:1A:53:0F:71:64:CA:07:29:9C:55:4D:60:34:FC:53 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5D41AA05EA81D73EE0034AA629EC00CD4D898823 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28c6be0c-7940-4a4f-b9f7-c77b672267e1.roa Signing time: Thu 11 Dec 2025 00:30:13 +0000 ROA not before: Thu 11 Dec 2025 00:30:13 +0000 ROA not after: Wed 11 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.54.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 03 Jan 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:41:aa:05:ea:81:d7:3e:e0:03:4a:a6:29:ec:00:cd:4d:89:88:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 11 00:30:13 2025 GMT Not After : Mar 11 23:59:59 2026 GMT Subject: serialNumber=6afe0f26da09887ecef7538039dd9a09910ef5d3ab3103e61d5c6b727dc974fb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:2c:05:fc:06:1c:46:bd:b6:2f:16:ca:43:02: 21:14:0a:fc:9f:14:c2:79:81:7f:fc:de:55:d8:e2: c6:8d:4b:6c:1c:a5:6f:c2:73:c6:2c:9e:8d:61:54: 14:f2:6f:9d:bb:83:4a:52:1f:72:c0:a6:cf:69:93: 04:8c:5d:2e:65:fc:5c:53:a7:dc:c1:ef:f6:32:4c: 00:93:72:1a:46:5d:43:4d:a0:84:f1:ec:1c:2d:f2: 93:34:eb:2b:50:b3:4c:27:ba:f7:d4:5a:39:a8:ae: 4c:a2:7f:cb:0d:88:68:56:ba:75:14:d0:27:c5:d6: 3b:b4:dd:3e:75:ad:3c:56:75:eb:5b:e6:ae:5a:a7: 3a:35:53:4f:4a:64:bf:da:72:85:41:e1:17:e3:8a: 1d:00:2f:18:f7:7a:4e:c9:82:d8:cb:21:9d:c4:b7: b9:8a:bf:27:3d:ed:80:9f:1b:50:b8:6b:62:84:6e: e0:31:0b:24:82:7a:f3:0b:ac:a7:92:c1:9a:6f:02: e9:fe:0c:0b:62:94:1e:74:0c:04:41:c8:dc:fc:8d: 0b:cb:44:ed:64:ac:32:d2:d5:86:0a:52:db:99:46: 0c:2c:17:65:ea:59:c6:66:aa:7f:ba:30:49:3c:f8: 23:7b:1c:45:bb:7a:a6:9a:2f:33:fe:53:68:ff:ff: 0d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:58:42:BE:18:1A:53:0F:71:64:CA:07:29:9C:55:4D:60:34:FC:53 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28c6be0c-7940-4a4f-b9f7-c77b672267e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.54.60.0/24 Signature Algorithm: sha256WithRSAEncryption 27:9b:7d:b0:5c:31:ab:b1:9b:32:01:32:28:89:da:1f:f3:93: d1:3f:70:a8:f0:06:35:79:12:d4:86:0d:67:23:ef:0a:98:69: a9:87:af:a8:1e:f1:29:1c:07:40:d5:6c:6d:9e:2d:a9:ad:ec: cc:a7:c2:7a:a2:21:be:0a:65:56:fc:81:8c:14:22:9d:f0:58: e4:ee:c3:d8:e7:6b:95:dc:60:15:bb:ff:d5:a7:e6:4b:59:fd: 1d:68:96:ab:ac:02:62:ad:a7:6b:8f:93:14:91:b1:76:61:c0: 87:7b:e0:d2:a2:0c:6a:7c:1d:ac:a2:34:89:91:a6:92:44:ee: 48:3e:a3:9a:51:d7:69:19:69:98:f3:eb:9c:e5:f9:a7:bc:ff: 75:a8:0e:2a:e5:26:f5:12:b4:a7:b6:c8:73:c8:b8:4f:84:95: aa:d6:78:58:fb:e5:ff:f0:e1:fd:62:3f:7c:a3:5f:e1:d4:b4: 81:a0:e3:91:91:34:0c:ab:1d:aa:d3:05:c1:bc:c7:1c:4b:f2: 90:70:2d:57:84:80:7e:12:e3:62:33:30:39:db:96:1e:1d:31: c5:3a:8f:d7:a4:c8:ba:43:b5:31:17:6e:40:87:f2:9e:d2:8f: 75:f6:cf:ca:ef:91:db:97:0a:99:ed:a5:58:6c:d3:13:f8:f5: 5b:96:c7:fb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXUGqBeqB1z7gA0qmKewAzU2JiCMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjExMDAzMDEzWhcNMjYwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YWZlMGYyNmRhMDk4ODdlY2VmNzUzODAzOWRkOWEwOTkx MGVmNWQzYWIzMTAzZTYxZDVjNmI3MjdkYzk3NGZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkLAX8BhxGvbYvFspDAiEUCvyfFMJ5gX/83lXY4saNS2wc pW/Cc8Ysno1hVBTyb527g0pSH3LAps9pkwSMXS5l/FxTp9zB7/YyTACTchpGXUNN oITx7Bwt8pM06ytQs0wnuvfUWjmorkyif8sNiGhWunUU0CfF1ju03T51rTxWdetb 5q5apzo1U09KZL/acoVB4Rfjih0ALxj3ek7JgtjLIZ3Et7mKvyc97YCfG1C4a2KE buAxCySCevMLrKeSwZpvAun+DAtilB50DARByNz8jQvLRO1krDLS1YYKUtuZRgws F2XqWcZmqn+6MEk8+CN7HEW7eqaaLzP+U2j//w0fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBlhCvhgaUw9xZMoHKZxVTWA0/FMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI4YzZiZTBjLTc5NDAtNGE0Zi1iOWY3LWM3N2I2NzIyNjdlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjNjwwDQYJKoZIhvcNAQELBQADggEBACebfbBcMauxmzIBMiiJ2h/zk9E/ cKjwBjV5EtSGDWcj7wqYaamHr6ge8SkcB0DVbG2eLamt7MynwnqiIb4KZVb8gYwU Ip3wWOTuw9jna5XcYBW7/9Wn5ktZ/R1olqusAmKtp2uPkxSRsXZhwId74NKiDGp8 HayiNImRppJE7kg+o5pR12kZaZjz65zl+ae8/3WoDirlJvUStKe2yHPIuE+ElarW eFj75f/w4f1iP3yjX+HUtIGg45GRNAyrHarTBcG8xxxL8pBwLVeEgH4S42IzMDnb lh4dMcU6j9ekyLpDtTEXbkCH8p7Sj3X2z8rvkduXCpntpVhs0xP49VuWx/s= -----END CERTIFICATE-----Generated at Fri Jan 2 14:24:12 2026 by rpki-client