This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f2c37c5-eaa0-424a-ba1e-5ebd99f3b15c.roa File: 7f2c37c5-eaa0-424a-ba1e-5ebd99f3b15c.roa (raw, json) Hash identifier: BXk5Jp1W7KqfQF+1dyBdrOm4l+JnSMP7HuaymLLNZZo= Subject key identifier: 57:A4:FF:CA:60:7C:F1:FE:47:0A:79:99:5E:0D:86:E5:76:1E:50:7A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0D69D3A6B4225DFB5EDAA5B91134B2071F162342 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f2c37c5-eaa0-424a-ba1e-5ebd99f3b15c.roa Signing time: Thu 11 Dec 2025 00:40:21 +0000 ROA not before: Thu 11 Dec 2025 00:40:21 +0000 ROA not after: Wed 11 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 204.168.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 03 Jan 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:69:d3:a6:b4:22:5d:fb:5e:da:a5:b9:11:34:b2:07:1f:16:23:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 11 00:40:21 2025 GMT Not After : Mar 11 23:59:59 2026 GMT Subject: serialNumber=124e651619e9d9586396a25138ea5a0eeb2ffc0990cbc90305c8dfe92fc381f7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:b5:66:52:4f:28:6d:60:80:22:3f:e2:5e:a5: 65:21:eb:b1:43:80:c0:41:b0:0d:43:65:c4:d8:3e: ae:ed:56:f7:4b:cf:c6:a4:e5:6b:96:e6:55:e0:bd: 4f:f0:19:e8:e4:9e:0b:55:59:b5:fb:57:56:b2:85: 6e:dc:52:4d:a2:40:03:4a:ec:fe:74:7f:5e:9a:75: 31:e4:9e:e8:d5:fc:fe:36:af:e0:94:e7:d9:87:3b: fe:92:73:c2:61:d6:ca:c8:1f:84:8d:5c:0f:2f:df: ef:2f:a7:79:20:c8:85:70:01:7b:c8:c7:0c:75:97: bc:35:79:cd:e2:c6:20:95:c4:b8:78:7e:bd:a5:fa: 5c:ec:91:af:f2:e8:f1:75:05:f8:6b:ed:d5:ad:3a: 1d:a0:ae:e4:f6:4e:05:6e:89:c2:1a:b8:83:7e:9a: 25:d2:e8:8d:c1:78:d5:5d:4f:6c:ce:51:4a:75:a8: 5a:9c:6a:40:a4:da:db:9a:29:8d:3d:ed:cc:3f:3e: 27:c1:69:c5:1f:9c:69:b3:61:5c:30:3e:04:35:ae: af:a0:87:ab:db:e0:dd:62:e7:a6:2e:75:71:2b:e7: b2:cf:0c:d6:14:1d:05:c0:10:51:e8:55:76:9e:d9: 46:d6:6c:67:94:e9:23:b2:c5:3f:55:89:a5:88:a0: ba:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:A4:FF:CA:60:7C:F1:FE:47:0A:79:99:5E:0D:86:E5:76:1E:50:7A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f2c37c5-eaa0-424a-ba1e-5ebd99f3b15c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.168.0.0/17 Signature Algorithm: sha256WithRSAEncryption 2d:1b:35:de:0b:85:87:d0:3a:e7:dc:40:64:04:24:ce:8d:ff: 5b:b8:07:ce:b7:37:6b:b6:72:1b:91:30:68:00:5d:77:0d:cc: 8d:a7:68:a2:22:f4:c1:ae:3d:3f:f9:f3:b3:9c:f4:b4:0b:38: e8:28:a8:c9:a6:39:89:50:a4:f8:9e:bd:46:80:36:04:f3:4d: 94:85:78:cb:10:db:fd:bc:fc:08:90:b1:ae:bd:77:b1:80:6c: 32:91:fb:23:95:b7:c9:f0:c8:2d:32:5b:3b:1a:24:63:37:4a: 0f:d9:2e:88:6d:63:52:23:e8:e8:ff:fc:74:e6:7f:36:3a:38: 49:76:d6:0e:b5:b9:5d:fa:7b:fa:6a:fc:f4:c7:ec:b7:9c:9e: 9e:28:72:db:b6:a4:9c:91:3e:41:b2:0a:89:db:8e:09:8a:19: 64:e2:ed:96:f0:e3:01:cb:34:c5:f1:17:d2:74:93:9e:da:d3: e5:0f:5e:ea:96:98:94:78:09:87:f7:6d:d0:99:dc:4e:8a:82: 3a:6e:ae:04:fb:c7:a2:be:6c:3d:1f:fa:98:98:95:78:7a:df: ff:8a:91:52:e7:8e:a2:83:77:da:16:4b:d5:f5:94:e1:fc:67: 2c:83:53:04:4e:dc:29:24:aa:f7:b4:c3:e3:1e:a9:62:7f:ad: 4e:7e:9b:87 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDWnTprQiXfte2qW5ETSyBx8WI0IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjExMDA0MDIxWhcNMjYwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMjRlNjUxNjE5ZTlkOTU4NjM5NmEyNTEzOGVhNWEwZWVi MmZmYzA5OTBjYmM5MDMwNWM4ZGZlOTJmYzM4MWY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZtWZSTyhtYIAiP+JepWUh67FDgMBBsA1DZcTYPq7tVvdL z8ak5WuW5lXgvU/wGejkngtVWbX7V1ayhW7cUk2iQANK7P50f16adTHknujV/P42 r+CU59mHO/6Sc8Jh1srIH4SNXA8v3+8vp3kgyIVwAXvIxwx1l7w1ec3ixiCVxLh4 fr2l+lzska/y6PF1Bfhr7dWtOh2gruT2TgVuicIauIN+miXS6I3BeNVdT2zOUUp1 qFqcakCk2tuaKY097cw/PifBacUfnGmzYVwwPgQ1rq+gh6vb4N1i56YudXEr57LP DNYUHQXAEFHoVXae2UbWbGeU6SOyxT9ViaWIoLrfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUV6T/ymB88f5HCnmZXg2G5XYeUHowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdmMmMzN2M1LWVhYTAtNDI0YS1iYTFlLTVlYmQ5OWYzYjE1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfMqAAwDQYJKoZIhvcNAQELBQADggEBAC0bNd4LhYfQOufcQGQEJM6N/1u4 B863N2u2chuRMGgAXXcNzI2naKIi9MGuPT/587Oc9LQLOOgoqMmmOYlQpPievUaA NgTzTZSFeMsQ2/28/AiQsa69d7GAbDKR+yOVt8nwyC0yWzsaJGM3Sg/ZLohtY1Ij 6Oj//HTmfzY6OEl21g61uV36e/pq/PTH7Lecnp4octu2pJyRPkGyConbjgmKGWTi 7Zbw4wHLNMXxF9J0k57a0+UPXuqWmJR4CYf3bdCZ3E6KgjpurgT7x6K+bD0f+piY lXh63/+KkVLnjqKDd9oWS9X1lOH8ZyyDUwRO3Ckkqve0w+MeqWJ/rU5+m4c= -----END CERTIFICATE-----Generated at Fri Jan 2 10:59:43 2026 by rpki-client