This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/696c1b1e-0246-458d-a96e-56b6b29e333d.roa File: 696c1b1e-0246-458d-a96e-56b6b29e333d.roa (raw, json) Hash identifier: rHmv7Sb5Mhip2T5xNC/KNIsSQWaG6nxu3obhAjEyq8I= Subject key identifier: AE:76:08:F2:96:AA:3D:3B:9D:52:B8:DB:85:A7:12:4C:66:9A:75:47 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7CCB6C94432D389DC260956ED28BC487ABDF508F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/696c1b1e-0246-458d-a96e-56b6b29e333d.roa Signing time: Sun 07 Dec 2025 02:31:37 +0000 ROA not before: Sun 07 Dec 2025 02:31:37 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.70.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:cb:6c:94:43:2d:38:9d:c2:60:95:6e:d2:8b:c4:87:ab:df:50:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 7 02:31:37 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=cacf9ab70a09dbd9b60e9e1385f55ba6130b8a707aafba9c2743096e4b9a5e23, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:09:c6:f9:b8:1c:7e:5c:db:55:14:6f:80:87: 49:19:89:39:0d:65:47:5b:c3:07:73:0d:82:37:6c: 91:cf:2f:82:30:db:83:5d:e2:bf:45:20:94:97:59: 91:26:f8:ee:eb:61:20:99:e3:1e:3d:af:0c:9c:1a: 4c:20:45:b3:62:ad:04:ca:42:11:9e:d0:dd:c2:da: b2:49:e2:b4:a7:20:67:a1:e9:74:51:d1:86:cf:23: 09:ff:33:58:83:19:fb:dc:ad:0b:f3:ce:3c:f0:cf: 58:fa:33:8f:84:6b:ac:74:9b:7a:ff:4a:43:6a:45: ae:f4:0f:00:c9:a7:45:1b:55:8b:bd:9d:5e:1a:1e: 2e:f8:26:e9:80:fd:9a:6e:61:5d:5e:20:9a:ec:37: 27:3c:d9:d3:c9:4b:f6:c5:53:2f:e8:41:40:bb:91: b0:89:6f:6f:0c:cf:25:72:48:ee:67:fa:e4:b3:8a: 13:2d:a0:1f:c6:51:5a:69:48:02:c1:42:5c:b8:f1: 05:23:a1:c3:01:6f:de:be:8e:ff:a3:ad:2b:27:bf: 6d:1d:33:d0:11:95:f8:00:1e:04:f2:4e:a1:6e:ef: 1d:f3:b2:11:90:f4:19:ba:ec:52:d1:92:bd:21:26: 82:64:79:84:cc:fd:90:95:26:f8:37:56:07:9e:8b: 94:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:76:08:F2:96:AA:3D:3B:9D:52:B8:DB:85:A7:12:4C:66:9A:75:47 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/696c1b1e-0246-458d-a96e-56b6b29e333d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.70.0.0/16 Signature Algorithm: sha256WithRSAEncryption d6:ab:8d:6e:db:d9:81:e2:35:b4:71:7b:34:b0:f2:a3:5e:3f: 3a:df:80:9c:c4:90:22:4b:91:5b:5b:82:a2:af:0f:da:6a:05: a6:bf:06:36:9f:d3:16:70:14:f8:d6:11:bd:99:53:2e:a6:ec: 87:e4:88:e6:a0:5b:b1:8f:82:b8:26:27:31:30:0e:5e:06:4d: 1e:a0:38:59:f0:54:71:8f:23:71:91:94:5a:04:ac:19:4c:5e: f9:8f:18:03:95:a4:c3:74:1f:38:d5:02:e2:5f:c3:d1:c4:a2: ed:61:01:8e:64:54:dd:1a:22:c5:a9:96:38:44:eb:f8:48:a2: 75:42:67:0a:9f:a6:65:c8:ad:6d:58:9b:19:c9:3a:3b:14:18: 69:80:83:c3:ba:5f:7d:a2:1c:59:06:f9:bd:c7:c0:e3:3e:a7: cd:b0:ca:20:96:1e:4f:c9:b0:0a:df:63:42:90:bf:ea:56:0e: c5:40:b0:e0:c6:51:74:2a:76:c0:62:12:51:16:7a:4e:6f:3a: 07:02:e1:00:72:57:0d:a4:34:9f:3a:d4:8f:fd:1e:51:fd:e2: 4f:bc:7f:a3:05:38:06:fb:00:35:26:1d:45:cb:15:81:5c:c5: e9:62:e2:7e:b3:c4:14:70:b0:6e:c5:39:b8:28:ff:a6:6c:34: 4c:16:da:98 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfMtslEMtOJ3CYJVu0ovEh6vfUI8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA3MDIzMTM3WhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYWNmOWFiNzBhMDlkYmQ5YjYwZTllMTM4NWY1NWJhNjEz MGI4YTcwN2FhZmJhOWMyNzQzMDk2ZTRiOWE1ZTIzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChCcb5uBx+XNtVFG+Ah0kZiTkNZUdbwwdzDYI3bJHPL4Iw 24Nd4r9FIJSXWZEm+O7rYSCZ4x49rwycGkwgRbNirQTKQhGe0N3C2rJJ4rSnIGeh 6XRR0YbPIwn/M1iDGfvcrQvzzjzwz1j6M4+Ea6x0m3r/SkNqRa70DwDJp0UbVYu9 nV4aHi74JumA/ZpuYV1eIJrsNyc82dPJS/bFUy/oQUC7kbCJb28MzyVySO5n+uSz ihMtoB/GUVppSALBQly48QUjocMBb96+jv+jrSsnv20dM9ARlfgAHgTyTqFu7x3z shGQ9Bm67FLRkr0hJoJkeYTM/ZCVJvg3Vgeei5RBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUrnYI8paqPTudUrjbhacSTGaadUcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY5NmMxYjFlLTAyNDYtNDU4ZC1hOTZlLTU2YjZiMjllMzMzZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQRjANBgkqhkiG9w0BAQsFAAOCAQEA1quNbtvZgeI1tHF7NLDyo14/Ot+A nMSQIkuRW1uCoq8P2moFpr8GNp/TFnAU+NYRvZlTLqbsh+SI5qBbsY+CuCYnMTAO XgZNHqA4WfBUcY8jcZGUWgSsGUxe+Y8YA5Wkw3QfONUC4l/D0cSi7WEBjmRU3Roi xamWOETr+EiidUJnCp+mZcitbVibGck6OxQYaYCDw7pffaIcWQb5vcfA4z6nzbDK IJYeT8mwCt9jQpC/6lYOxUCw4MZRdCp2wGISURZ6Tm86BwLhAHJXDaQ0nzrUj/0e Uf3iT7x/owU4BvsANSYdRcsVgVzF6WLifrPEFHCwbsU5uCj/pmw0TBbamA== -----END CERTIFICATE-----Generated at Sat Dec 20 10:33:55 2025 by rpki-client