This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6694171a-aae2-4bbb-a718-43a3f95c6dc1.roa File: 6694171a-aae2-4bbb-a718-43a3f95c6dc1.roa (raw, json) Hash identifier: 5kdHv5FdxWcX0s/f1+darAp1xhuHNa621dE5dyHMi0E= Subject key identifier: 87:77:12:83:79:2F:D9:60:37:2F:83:4E:38:37:88:4B:3F:F6:00:E9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 29848C32268D103FB2A492F9FAD7620B8678A383 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6694171a-aae2-4bbb-a718-43a3f95c6dc1.roa Signing time: Sun 07 Dec 2025 00:50:08 +0000 ROA not before: Sun 07 Dec 2025 00:50:08 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 204.236.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 03 Jan 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:84:8c:32:26:8d:10:3f:b2:a4:92:f9:fa:d7:62:0b:86:78:a3:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 7 00:50:08 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=7c28ac235dadc77aaaea258ad52de01bff1c2516043c36c19b5928442308c3ce, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3e:b9:0e:3c:d1:49:5a:16:ff:de:7a:36:88: b5:4f:2c:6b:58:af:d0:6d:38:12:fd:b2:38:fd:7c: a5:3f:f7:fc:6e:9c:9e:e3:96:3c:51:ad:e4:77:5a: 9c:5b:ab:5a:a7:e7:0a:e2:e3:8f:2b:7d:04:27:c3: 7a:ad:ac:34:ed:cd:54:9d:d4:28:60:1b:ee:09:ea: 8f:fb:62:45:3e:82:72:20:ba:d6:83:46:08:ef:6b: 6b:7c:41:f8:63:a6:81:84:ed:4c:c9:9b:0e:fa:d0: c7:c4:7a:3a:50:fb:98:0c:78:19:33:c5:15:ab:e2: 06:30:1b:2a:98:06:fd:b6:97:8f:13:af:a9:e1:28: 7f:6f:df:8f:7d:42:6d:7a:22:77:27:07:13:59:6a: 3e:07:6a:87:e3:b4:cd:c3:35:72:95:46:3c:63:23: 16:83:60:75:56:1e:80:97:1b:85:7b:86:62:43:66: c3:c3:98:8e:8c:6d:08:89:aa:b7:8f:8f:71:50:95: 78:f8:cc:51:5c:8e:02:e4:7b:4a:56:c4:e2:7e:d6: d2:06:fc:85:4f:10:e9:ec:ee:ac:9b:cc:e1:90:95: c4:51:cd:de:09:20:5d:5d:e8:27:8d:72:36:80:43: df:df:d5:ac:51:f9:fe:9a:d9:52:cd:f0:5a:1b:39: ba:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:77:12:83:79:2F:D9:60:37:2F:83:4E:38:37:88:4B:3F:F6:00:E9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6694171a-aae2-4bbb-a718-43a3f95c6dc1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.144.0/20 Signature Algorithm: sha256WithRSAEncryption 60:4d:a6:f1:ba:5b:87:98:a2:66:71:82:65:c0:4f:0f:0a:96: 4e:d3:4b:be:27:f7:50:ea:5a:bf:0e:6b:d9:ae:db:ef:2f:5e: bf:63:5a:43:af:aa:ff:e9:9f:96:bd:88:43:7e:58:06:43:82: 0b:1d:c8:cf:8e:07:e6:dd:4f:6f:3f:35:f4:ee:83:73:8e:e8: 83:e4:81:e5:c8:50:4b:e5:03:96:2f:60:05:3c:00:60:f8:d0: 41:01:8d:d0:65:e7:1f:6f:16:ef:93:00:c2:f7:53:ae:fa:56: 9c:59:5d:2c:07:95:a1:e2:3a:72:a0:12:97:eb:d7:22:ac:30: a5:bb:e6:5b:c0:dc:24:e2:f6:e2:46:df:db:9b:91:18:88:fc: e5:c7:fe:73:86:a4:a0:b1:d2:55:2b:9a:06:cc:58:ad:6e:87: 30:6b:2c:b4:89:cc:fb:ee:b2:6f:ae:16:a0:03:53:58:50:b3: 05:f3:9e:d9:d8:84:ad:dd:06:21:45:39:90:21:6d:f0:ab:5a: 0a:44:f0:b5:98:39:4d:64:f1:d1:75:1c:ca:d3:c2:ae:86:d5: 2c:62:dc:35:93:2e:30:31:0b:81:1a:0d:b7:64:72:27:84:0a: dd:6f:7c:95:a6:a0:ed:88:29:dc:69:5c:ba:f7:9f:29:8c:9d: 65:4d:b7:2a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKYSMMiaNED+ypJL5+tdiC4Z4o4MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA3MDA1MDA4WhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YzI4YWMyMzVkYWRjNzdhYWFlYTI1OGFkNTJkZTAxYmZm MWMyNTE2MDQzYzM2YzE5YjU5Mjg0NDIzMDhjM2NlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIPrkOPNFJWhb/3no2iLVPLGtYr9BtOBL9sjj9fKU/9/xu nJ7jljxRreR3Wpxbq1qn5wri448rfQQnw3qtrDTtzVSd1ChgG+4J6o/7YkU+gnIg utaDRgjva2t8QfhjpoGE7UzJmw760MfEejpQ+5gMeBkzxRWr4gYwGyqYBv22l48T r6nhKH9v3499Qm16IncnBxNZaj4HaofjtM3DNXKVRjxjIxaDYHVWHoCXG4V7hmJD ZsPDmI6MbQiJqrePj3FQlXj4zFFcjgLke0pWxOJ+1tIG/IVPEOns7qybzOGQlcRR zd4JIF1d6CeNcjaAQ9/f1axR+f6a2VLN8FobObrLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUh3cSg3kv2WA3L4NOODeISz/2AOkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY2OTQxNzFhLWFhZTItNGJiYi1hNzE4LTQzYTNmOTVjNmRjMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATM7JAwDQYJKoZIhvcNAQELBQADggEBAGBNpvG6W4eYomZxgmXATw8Klk7T S74n91DqWr8Oa9mu2+8vXr9jWkOvqv/pn5a9iEN+WAZDggsdyM+OB+bdT28/NfTu g3OO6IPkgeXIUEvlA5YvYAU8AGD40EEBjdBl5x9vFu+TAML3U676VpxZXSwHlaHi OnKgEpfr1yKsMKW75lvA3CTi9uJG39ubkRiI/OXH/nOGpKCx0lUrmgbMWK1uhzBr LLSJzPvusm+uFqADU1hQswXzntnYhK3dBiFFOZAhbfCrWgpE8LWYOU1k8dF1HMrT wq6G1Sxi3DWTLjAxC4EaDbdkcieECt1vfJWmoO2IKdxpXLr3nymMnWVNtyo= -----END CERTIFICATE-----Generated at Fri Jan 2 11:17:47 2026 by rpki-client