This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f9e4c99-1745-41a5-a36b-cdd7f466d60a.roa File: 6f9e4c99-1745-41a5-a36b-cdd7f466d60a.roa (raw, json) Hash identifier: KsaHf346CVmbk7zQZT9697+3FCZKIHwTFZ01LAP1Ugs= Subject key identifier: 7D:C9:18:07:D6:43:FF:A1:41:5D:F7:1E:5A:1E:EF:BF:2A:38:11:B0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1D03DA6E2A8F5686932FDC2E9161E9F2FBE4CFB6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f9e4c99-1745-41a5-a36b-cdd7f466d60a.roa Signing time: Mon 08 Dec 2025 00:50:07 +0000 ROA not before: Mon 08 Dec 2025 00:50:07 +0000 ROA not after: Sun 08 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 136.8.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 03 Jan 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:03:da:6e:2a:8f:56:86:93:2f:dc:2e:91:61:e9:f2:fb:e4:cf:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 8 00:50:07 2025 GMT Not After : Mar 8 23:59:59 2026 GMT Subject: serialNumber=3e2fc81dc9a5500d91f8a2b005f586d0c1f602b807c8202653c394e843e642e2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5f:b5:b2:0b:6f:2a:b7:f0:0a:4f:6b:f1:59: 7d:91:70:cc:f3:c9:80:73:1f:76:ca:8c:99:6e:af: 76:a8:92:da:0c:bc:77:45:2c:b5:aa:52:b0:dd:50: fa:d3:3b:9a:c2:b3:c1:94:e4:60:3f:2c:e7:b3:03: 28:20:2a:5e:21:83:5c:ab:01:b9:e5:8b:9e:96:87: b8:16:91:fe:0f:d9:a5:cc:7c:00:96:f1:5a:f6:91: cb:ed:4f:23:b6:05:fe:c2:1b:78:46:50:d8:39:ef: fc:e8:4e:7c:4e:a8:6a:f9:43:5d:72:6c:63:40:aa: 1a:34:4e:93:d0:b4:29:a1:ff:d3:b5:56:45:02:4b: 42:5c:4e:02:72:4c:03:cc:15:db:a4:c5:dd:19:88: b1:71:ba:0d:22:65:42:d5:2c:0f:e6:3b:18:c7:79: d5:69:0d:fc:ca:0d:0d:c0:04:8d:53:db:76:69:60: 54:8e:f9:bb:de:79:c1:54:f6:99:8f:ff:bc:20:60: 81:e6:58:d5:59:57:37:ff:95:59:9a:5d:85:d2:79: 1d:50:2a:8d:50:22:78:cd:1f:2f:9c:0c:84:f6:b4: 38:39:9b:0d:69:29:96:ec:47:e8:05:e8:2f:f4:2d: ca:d8:fe:69:cf:e9:4c:8b:9c:93:a1:68:95:42:28: cf:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:C9:18:07:D6:43:FF:A1:41:5D:F7:1E:5A:1E:EF:BF:2A:38:11:B0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f9e4c99-1745-41a5-a36b-cdd7f466d60a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.8.0.0/15 Signature Algorithm: sha256WithRSAEncryption 99:b6:2a:7c:b3:00:b2:67:70:bd:3d:a4:e9:83:71:10:04:d7: 90:b7:f5:5e:51:2c:38:48:4d:24:fb:8c:04:97:aa:63:a3:7f: 99:7e:a0:be:4a:e0:27:d7:e2:de:e7:b6:23:b5:35:4f:fa:d3: 1f:e4:49:2c:63:92:9e:7f:00:8b:c8:02:21:36:17:af:a8:22: 60:f8:bd:d7:ce:a4:a9:21:32:24:4f:f2:84:10:eb:db:5c:fd: ec:14:36:7a:4f:f9:39:51:6a:83:7f:62:b0:02:bc:13:dd:68: 6b:c7:93:54:89:68:2d:3f:2c:5c:1c:e1:09:82:6c:e0:e6:16: 3c:89:92:98:a8:e3:ce:83:3d:73:05:56:6e:5d:86:28:8a:c4: b2:d6:75:15:a7:10:fd:7c:9c:62:0a:8a:25:9d:d8:f4:f9:5f: d8:60:e3:0b:9f:b1:96:cc:74:e8:79:78:f3:4f:d0:0f:a7:42: 09:41:1f:5c:b0:30:7c:51:e5:9c:85:3b:1c:ce:c1:bb:53:fc: 07:3a:23:7d:64:7c:cd:f2:ff:53:b0:83:d1:ed:0d:bc:55:a8: 14:fc:11:a5:59:18:ba:72:2e:88:d9:af:3c:70:f2:a6:75:0f: 08:5b:ce:32:df:af:16:50:67:8c:3c:0d:42:11:0d:25:e8:52: 02:bd:fd:60 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHQPabiqPVoaTL9wukWHp8vvkz7YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA4MDA1MDA3WhcNMjYwMzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTJmYzgxZGM5YTU1MDBkOTFmOGEyYjAwNWY1ODZkMGMx ZjYwMmI4MDdjODIwMjY1M2MzOTRlODQzZTY0MmUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOX7WyC28qt/AKT2vxWX2RcMzzyYBzH3bKjJlur3aoktoM vHdFLLWqUrDdUPrTO5rCs8GU5GA/LOezAyggKl4hg1yrAbnli56Wh7gWkf4P2aXM fACW8Vr2kcvtTyO2Bf7CG3hGUNg57/zoTnxOqGr5Q11ybGNAqho0TpPQtCmh/9O1 VkUCS0JcTgJyTAPMFdukxd0ZiLFxug0iZULVLA/mOxjHedVpDfzKDQ3ABI1T23Zp YFSO+bveecFU9pmP/7wgYIHmWNVZVzf/lVmaXYXSeR1QKo1QInjNHy+cDIT2tDg5 mw1pKZbsR+gF6C/0LcrY/mnP6UyLnJOhaJVCKM+tAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUfckYB9ZD/6FBXfceWh7vvyo4EbAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZmOWU0Yzk5LTE3NDUtNDFhNS1hMzZiLWNkZDdmNDY2ZDYwYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwGICDANBgkqhkiG9w0BAQsFAAOCAQEAmbYqfLMAsmdwvT2k6YNxEATXkLf1 XlEsOEhNJPuMBJeqY6N/mX6gvkrgJ9fi3ue2I7U1T/rTH+RJLGOSnn8Ai8gCITYX r6giYPi9186kqSEyJE/yhBDr21z97BQ2ek/5OVFqg39isAK8E91oa8eTVIloLT8s XBzhCYJs4OYWPImSmKjjzoM9cwVWbl2GKIrEstZ1FacQ/XycYgqKJZ3Y9Plf2GDj C5+xlsx06Hl480/QD6dCCUEfXLAwfFHlnIU7HM7Bu1P8BzojfWR8zfL/U7CD0e0N vFWoFPwRpVkYunIuiNmvPHDypnUPCFvOMt+vFlBnjDwNQhENJehSAr39YA== -----END CERTIFICATE-----Generated at Fri Jan 2 12:49:15 2026 by rpki-client