This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/298f7a82-24b8-4c48-8005-46f4c30ff875.roa File: 298f7a82-24b8-4c48-8005-46f4c30ff875.roa (raw, json) Hash identifier: lG1OweAhaE1fOU1317I/sSzwy1BE/C+mc4LCYteecU4= Subject key identifier: 96:D1:B2:E0:3B:97:15:78:DC:4F:50:59:64:69:57:BE:B6:25:02:45 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2C7677193F3B8EE203049FA6D5C8A0EA0EF6D02A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/298f7a82-24b8-4c48-8005-46f4c30ff875.roa Signing time: Sat 22 Nov 2025 00:21:42 +0000 ROA not before: Sat 22 Nov 2025 00:21:42 +0000 ROA not after: Fri 20 Feb 2026 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1fa0:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 27 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:76:77:19:3f:3b:8e:e2:03:04:9f:a6:d5:c8:a0:ea:0e:f6:d0:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 22 00:21:42 2025 GMT Not After : Feb 20 23:59:59 2026 GMT Subject: serialNumber=ce60527ac62a0ee6b84797ac9bed9e363a133f7c1f7fefc54a99bcfcba1e8ce3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:28:35:62:6b:75:54:56:c1:7b:58:f7:2b:30: 97:3f:2b:c0:0c:e4:a0:41:ac:1b:49:cd:5c:d0:53: 98:11:f0:32:d8:63:3c:5e:c1:d0:67:08:d4:14:72: aa:1e:6a:3c:b8:08:ea:32:88:e8:71:12:98:5f:2d: 24:9c:65:06:c8:f7:7c:b0:28:ec:47:2b:e8:6e:88: a8:80:75:25:df:41:16:59:4c:52:66:6c:8a:bc:ca: 9a:17:63:56:b6:3d:1f:c8:7f:60:99:c2:7a:44:fd: 68:60:d5:75:27:34:a8:82:d0:e3:06:8a:59:34:14: 0f:b7:08:a6:85:d1:47:1b:a9:5a:43:a5:68:c8:60: ac:56:69:7c:a0:69:f8:44:27:d9:0a:9f:a1:70:36: 8d:2c:3a:71:d2:34:95:b4:e9:f3:3e:c5:13:e6:97: e6:af:b6:86:14:64:6d:6c:02:30:0a:87:eb:be:d9: f1:38:86:35:26:43:87:3c:65:fb:53:2b:79:82:29: 46:3b:1c:45:04:f6:fb:6c:ad:c9:ca:b1:68:91:1c: 21:33:a3:f0:d1:8b:c4:9c:97:9c:75:8d:a5:e8:8c: e0:b9:4d:65:80:12:1b:5e:d7:01:88:c8:74:f2:14: 23:52:0b:44:fa:7f:ad:6f:92:99:79:c1:ac:22:6e: fb:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:D1:B2:E0:3B:97:15:78:DC:4F:50:59:64:69:57:BE:B6:25:02:45 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/298f7a82-24b8-4c48-8005-46f4c30ff875.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fa0:5000::/40 Signature Algorithm: sha256WithRSAEncryption 98:83:d9:1a:4a:9d:2a:a9:4c:a7:ae:e5:2d:b7:ee:06:8c:d5: 5d:d2:4d:ce:71:6a:e9:2f:f9:37:99:bd:44:3a:6b:c5:e1:2a: 20:16:10:a2:73:bb:6e:2c:3c:2e:95:35:33:74:d4:fd:b9:f5: 3f:57:46:f7:e3:02:5c:26:ae:0b:6d:66:e1:ce:04:0c:67:6b: 2b:4b:5c:64:de:06:6d:6d:81:59:51:c8:b7:47:fe:ad:d7:47: 48:ce:9e:6b:b7:3a:c1:83:71:f9:ed:60:44:c3:20:85:c0:51: 52:d3:7c:aa:87:3c:33:59:83:0e:5a:a8:b2:d4:d7:2e:65:f2: f8:c0:01:7a:01:2d:1f:06:e7:e2:23:06:96:c7:69:80:b5:f9: 6a:f1:93:ce:79:18:82:e0:13:f0:ce:fc:0e:a1:a9:4a:ca:22: a4:4b:ac:9e:06:1a:c5:6c:c2:84:9e:c3:96:b3:ae:dc:d1:14: 02:45:0a:96:d9:8d:86:b2:e2:3c:be:05:f5:c2:9a:60:e1:5f: 0f:fb:f8:83:43:48:36:dd:2a:26:b3:3d:25:77:ff:56:03:34: 57:7c:1d:6a:0e:2c:f3:b6:63:7c:1b:81:d0:0b:6d:c6:ec:7f: 24:f5:47:90:5a:a7:1e:09:42:58:25:d0:b3:c4:52:d2:44:da: 80:03:e0:4c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULHZ3GT87juIDBJ+m1cig6g720CowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTIyMDAyMTQyWhcNMjYwMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZTYwNTI3YWM2MmEwZWU2Yjg0Nzk3YWM5YmVkOWUzNjNh MTMzZjdjMWY3ZmVmYzU0YTk5YmNmY2JhMWU4Y2UzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7KDVia3VUVsF7WPcrMJc/K8AM5KBBrBtJzVzQU5gR8DLY YzxewdBnCNQUcqoeajy4COoyiOhxEphfLSScZQbI93ywKOxHK+huiKiAdSXfQRZZ TFJmbIq8ypoXY1a2PR/If2CZwnpE/Whg1XUnNKiC0OMGilk0FA+3CKaF0UcbqVpD pWjIYKxWaXygafhEJ9kKn6FwNo0sOnHSNJW06fM+xRPml+avtoYUZG1sAjAKh+u+ 2fE4hjUmQ4c8ZftTK3mCKUY7HEUE9vtsrcnKsWiRHCEzo/DRi8Scl5x1jaXojOC5 TWWAEhte1wGIyHTyFCNSC0T6f61vkpl5wawibvubAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUltGy4DuXFXjcT1BZZGlXvrYlAkUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI5OGY3YTgyLTI0YjgtNGM0OC04MDA1LTQ2ZjRjMzBmZjg3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+gUDANBgkqhkiG9w0BAQsFAAOCAQEAmIPZGkqdKqlMp67lLbfuBozV XdJNznFq6S/5N5m9RDprxeEqIBYQonO7biw8LpU1M3TU/bn1P1dG9+MCXCauC21m 4c4EDGdrK0tcZN4GbW2BWVHIt0f+rddHSM6ea7c6wYNx+e1gRMMghcBRUtN8qoc8 M1mDDlqostTXLmXy+MABegEtHwbn4iMGlsdpgLX5avGTznkYguAT8M78DqGpSsoi pEusngYaxWzChJ7DlrOu3NEUAkUKltmNhrLiPL4F9cKaYOFfD/v4g0NINt0qJrM9 JXf/VgM0V3wdag4s87ZjfBuB0Attxux/JPVHkFqnHglCWCXQs8RS0kTagAPgTA== -----END CERTIFICATE-----Generated at Tue Nov 25 19:55:14 2025 by rpki-client