This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/707b5de7-4469-4150-b167-4708f1391d71.roa File: 707b5de7-4469-4150-b167-4708f1391d71.roa (raw, json) Hash identifier: zBq5bze9uN0O2jlgHvaSR1scBWKD1OwiecHAhYAOfAk= Subject key identifier: A0:1D:5D:F6:12:4E:22:B3:FC:35:CF:95:C9:A8:7F:19:80:05:F6:1F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 08EB5907971DED1F1E833491DF0DCD5561C31751 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/707b5de7-4469-4150-b167-4708f1391d71.roa Signing time: Wed 10 Dec 2025 00:20:39 +0000 ROA not before: Wed 10 Dec 2025 00:20:39 +0000 ROA not after: Tue 10 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 158.254.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:eb:59:07:97:1d:ed:1f:1e:83:34:91:df:0d:cd:55:61:c3:17:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 10 00:20:39 2025 GMT Not After : Mar 10 23:59:59 2026 GMT Subject: serialNumber=8a0382665897b8b952a847e64e2c5a970c3375f61fd419f50171f7795482bf69, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f3:89:38:7a:c9:05:1a:f0:6e:ce:f0:39:ef: 28:1c:9c:f4:a6:b8:54:35:ba:34:fc:15:9d:eb:d3: 12:a6:09:a0:e1:3d:d2:45:94:96:a0:a0:40:89:37: a5:f3:6b:59:7d:3e:45:89:9d:46:5f:e3:22:98:f0: 6c:25:0d:5a:3e:f2:35:53:71:88:1e:65:19:b0:3a: 5e:7b:98:16:7d:96:ed:c3:65:62:1c:e9:ab:99:49: ac:5b:06:73:81:31:f5:6f:2f:41:7c:e6:af:6b:b8: d1:95:de:39:80:ce:db:fb:5b:06:49:40:50:9c:a5: 34:d9:7e:55:e6:72:f7:70:5c:2a:17:e0:38:ca:f5: 21:e5:ac:36:3b:7a:98:9e:65:43:fb:cb:30:57:a6: 72:a5:83:8b:c6:c4:bd:ee:02:b0:94:e4:53:47:7c: e1:cd:cc:bf:59:27:2f:ec:51:94:5b:c1:2d:c0:10: b0:df:84:a7:5e:c3:49:79:a1:79:d9:e6:d7:1e:0f: 04:12:c5:ee:05:b3:6c:2e:31:68:20:b7:8b:31:cd: a7:db:c3:33:87:06:3f:f2:3b:fc:b2:59:92:aa:57: b5:70:9c:e8:82:86:a4:42:61:5e:ed:46:df:70:51: 84:5a:76:cc:fc:c6:09:1d:40:6c:2b:d6:88:5e:c5: 7d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:1D:5D:F6:12:4E:22:B3:FC:35:CF:95:C9:A8:7F:19:80:05:F6:1F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/707b5de7-4469-4150-b167-4708f1391d71.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.254.0.0/16 Signature Algorithm: sha256WithRSAEncryption b8:d4:46:00:12:7b:d7:52:af:81:5d:c1:18:cc:eb:5c:17:4d: 75:60:4e:fa:f6:3b:c2:80:2d:51:eb:c2:80:bd:ab:6a:4c:b6: 79:27:30:be:41:fd:2d:c2:30:1f:ce:42:6d:33:6b:43:b4:6c: 2c:43:39:04:25:e1:83:56:5a:47:e2:1e:69:87:35:f0:ef:d4: ac:fd:ea:5f:52:f6:c2:6a:de:59:66:d3:04:66:d4:0b:f0:f9: 9a:c0:bc:7a:c9:a8:c1:b4:41:9f:aa:34:99:41:a7:c3:96:20: 90:24:c1:76:fd:3e:a7:f7:ed:1d:97:cb:e2:62:86:de:e3:ea: 0b:56:c6:26:24:43:9e:fc:b1:e1:c4:fb:b4:74:26:20:58:2e: 2c:64:7c:e3:d2:ec:74:33:b3:f7:eb:e4:17:d2:e9:cc:8f:8e: fe:8a:92:46:17:f0:f0:c0:c3:da:a4:64:8d:e2:87:a7:c6:dc: ae:d1:1e:99:3c:01:2a:af:08:79:f4:1c:21:ca:50:da:f0:02: da:9b:2c:6b:5f:03:99:5d:6e:85:a2:20:c2:b2:12:ac:49:c5: b5:58:cf:3a:d7:02:02:d3:d5:0e:d0:71:79:d4:1c:ee:fa:84: 15:4d:2b:fd:f8:73:ac:e8:3f:14:44:38:8a:92:bd:0b:f1:38: 8d:8a:bc:7b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCOtZB5cd7R8egzSR3w3NVWHDF1EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjEwMDAyMDM5WhcNMjYwMzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4YTAzODI2NjU4OTdiOGI5NTJhODQ3ZTY0ZTJjNWE5NzBj MzM3NWY2MWZkNDE5ZjUwMTcxZjc3OTU0ODJiZjY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC184k4eskFGvBuzvA57ygcnPSmuFQ1ujT8FZ3r0xKmCaDh PdJFlJagoECJN6Xza1l9PkWJnUZf4yKY8GwlDVo+8jVTcYgeZRmwOl57mBZ9lu3D ZWIc6auZSaxbBnOBMfVvL0F85q9ruNGV3jmAztv7WwZJQFCcpTTZflXmcvdwXCoX 4DjK9SHlrDY7epieZUP7yzBXpnKlg4vGxL3uArCU5FNHfOHNzL9ZJy/sUZRbwS3A ELDfhKdew0l5oXnZ5tceDwQSxe4Fs2wuMWggt4sxzafbwzOHBj/yO/yyWZKqV7Vw nOiChqRCYV7tRt9wUYRadsz8xgkdQGwr1ohexX25AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUoB1d9hJOIrP8Nc+Vyah/GYAF9h8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcwN2I1ZGU3LTQ0NjktNDE1MC1iMTY3LTQ3MDhmMTM5MWQ3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCe/jANBgkqhkiG9w0BAQsFAAOCAQEAuNRGABJ711KvgV3BGMzrXBdNdWBO +vY7woAtUevCgL2raky2eScwvkH9LcIwH85CbTNrQ7RsLEM5BCXhg1ZaR+IeaYc1 8O/UrP3qX1L2wmreWWbTBGbUC/D5msC8esmowbRBn6o0mUGnw5YgkCTBdv0+p/ft HZfL4mKG3uPqC1bGJiRDnvyx4cT7tHQmIFguLGR849LsdDOz9+vkF9LpzI+O/oqS Rhfw8MDD2qRkjeKHp8bcrtEemTwBKq8IefQcIcpQ2vAC2pssa18DmV1uhaIgwrIS rEnFtVjPOtcCAtPVDtBxedQc7vqEFU0r/fhzrOg/FEQ4ipK9C/E4jYq8ew== -----END CERTIFICATE-----Generated at Sat Dec 20 08:52:54 2025 by rpki-client