This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45a29cb5-ef36-49b6-8d84-d87fbb54fd2e.roa File: 45a29cb5-ef36-49b6-8d84-d87fbb54fd2e.roa (raw, json) Hash identifier: v17WEL23uFXPj504hvSws2MOQhfnArDCxh6xjApfK80= Subject key identifier: 43:E6:9B:BE:89:C0:10:EF:FD:7F:BF:A1:3F:68:61:81:23:64:D8:48 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 453EBB6B335C2F81CC78F5EB462B697240BC5D82 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45a29cb5-ef36-49b6-8d84-d87fbb54fd2e.roa Signing time: Sun 07 Dec 2025 01:10:11 +0000 ROA not before: Sun 07 Dec 2025 01:10:11 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 23.20.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 09 Jan 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:3e:bb:6b:33:5c:2f:81:cc:78:f5:eb:46:2b:69:72:40:bc:5d:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 7 01:10:11 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=32a5fa11851ae3d7ce69d224203a939ea342dfd863106233343fc338c12e3fdb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:03:98:58:be:c3:81:4b:cc:22:ea:86:2c:3b: 99:90:d7:b9:e1:20:50:c9:52:5c:74:3e:7b:c7:af: b4:fd:12:45:9e:fe:4f:93:1b:2e:4c:fe:8d:1f:9d: 63:52:4f:ac:cc:a1:68:26:2e:75:04:82:87:2e:06: 4b:fe:d2:6a:99:de:68:17:56:e0:02:5a:f8:1b:cc: c6:c9:59:99:db:2c:82:45:a6:ab:91:9c:22:5c:6e: e6:28:bc:32:ec:ba:1b:f1:32:c0:59:03:5f:69:6e: 36:3c:5d:8d:b3:22:45:43:2e:e5:9a:a1:c8:80:7a: 80:b7:15:0f:08:8c:9a:ea:bb:4b:8b:65:05:2a:3e: 66:6d:79:73:5a:34:73:be:1e:b2:bc:e9:03:6d:05: 49:db:13:89:ca:ed:d7:15:eb:ee:59:bf:b0:f2:4e: 85:b3:83:ea:6f:78:a9:c5:9b:92:a4:2b:ef:ac:67: 6d:4a:10:89:d0:48:f2:b1:c6:8c:22:cb:d1:cf:02: 87:e1:c0:46:91:84:62:40:b3:0d:50:02:63:90:ba: e9:5b:3b:3f:74:bc:38:82:66:da:bb:60:7d:82:1f: 5a:88:8b:ff:91:1f:2d:21:48:19:f9:e1:54:33:36: 15:12:9c:fa:5e:14:94:ca:d7:b1:8b:cc:f4:ea:67: d8:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:E6:9B:BE:89:C0:10:EF:FD:7F:BF:A1:3F:68:61:81:23:64:D8:48 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45a29cb5-ef36-49b6-8d84-d87fbb54fd2e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.20.0.0/16 Signature Algorithm: sha256WithRSAEncryption 01:6c:41:e6:10:29:03:37:35:ef:62:44:a4:9d:31:d4:9e:ce: 11:f0:0d:bd:a7:6c:5c:a0:7d:87:6d:58:c4:db:fc:19:ea:02: 14:19:38:1d:23:e8:fe:34:fa:33:d5:14:38:03:ae:e3:a8:1e: 13:83:b8:bb:4c:0a:40:e1:6f:91:43:df:42:39:d4:71:8a:3a: b9:76:a2:9a:69:e6:ea:69:ca:83:80:cd:89:8e:3b:44:bc:30: 83:3d:d4:da:48:fd:93:c5:3a:1c:1e:fd:a6:5c:34:a5:eb:20: 23:ae:11:4d:b4:4e:fa:11:07:27:d3:6b:81:f8:8b:86:67:cf: 09:c7:66:ba:04:c3:de:9b:8c:ef:e7:4c:86:84:fd:63:3c:f4: a3:5c:e0:7f:3a:9f:9c:5b:15:5c:e1:9c:69:38:33:b8:29:f6: f6:0a:b8:7b:8b:e1:9d:6a:01:b6:7e:39:9e:3f:b8:26:96:88: 7f:d7:9d:9e:04:de:9d:a5:33:3c:f9:dc:29:e2:f4:5e:4e:64: 71:dd:93:f0:0a:56:52:85:5f:25:34:32:f6:e8:c9:4e:08:c0: 46:4d:68:67:17:01:63:32:d6:b7:7d:0c:7d:3c:e0:93:78:42: ba:be:72:6b:7d:38:10:71:92:9d:76:1a:d7:05:31:58:6c:92: 3b:8a:1d:e0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURT67azNcL4HMePXrRitpckC8XYIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA3MDExMDExWhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMmE1ZmExMTg1MWFlM2Q3Y2U2OWQyMjQyMDNhOTM5ZWEz NDJkZmQ4NjMxMDYyMzMzNDNmYzMzOGMxMmUzZmRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCA5hYvsOBS8wi6oYsO5mQ17nhIFDJUlx0PnvHr7T9EkWe /k+TGy5M/o0fnWNST6zMoWgmLnUEgocuBkv+0mqZ3mgXVuACWvgbzMbJWZnbLIJF pquRnCJcbuYovDLsuhvxMsBZA19pbjY8XY2zIkVDLuWaociAeoC3FQ8IjJrqu0uL ZQUqPmZteXNaNHO+HrK86QNtBUnbE4nK7dcV6+5Zv7DyToWzg+pveKnFm5KkK++s Z21KEInQSPKxxowiy9HPAofhwEaRhGJAsw1QAmOQuulbOz90vDiCZtq7YH2CH1qI i/+RHy0hSBn54VQzNhUSnPpeFJTK17GLzPTqZ9iBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQ+abvonAEO/9f7+hP2hhgSNk2EgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ1YTI5Y2I1LWVmMzYtNDliNi04ZDg0LWQ4N2ZiYjU0ZmQyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAXFDANBgkqhkiG9w0BAQsFAAOCAQEAAWxB5hApAzc172JEpJ0x1J7OEfAN vadsXKB9h21YxNv8GeoCFBk4HSPo/jT6M9UUOAOu46geE4O4u0wKQOFvkUPfQjnU cYo6uXaimmnm6mnKg4DNiY47RLwwgz3U2kj9k8U6HB79plw0pesgI64RTbRO+hEH J9NrgfiLhmfPCcdmugTD3puM7+dMhoT9Yzz0o1zgfzqfnFsVXOGcaTgzuCn29gq4 e4vhnWoBtn45nj+4JpaIf9edngTenaUzPPncKeL0Xk5kcd2T8ApWUoVfJTQy9ujJ TgjARk1oZxcBYzLWt30MfTzgk3hCur5ya304EHGSnXYa1wUxWGySO4od4A== -----END CERTIFICATE-----Generated at Wed Jan 7 23:49:30 2026 by rpki-client