This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86854fd8-2d2b-4d47-96ba-9c104a4b28a8.roa File: 86854fd8-2d2b-4d47-96ba-9c104a4b28a8.roa (raw, json) Hash identifier: jUcvw8gGRvZdkB8USAJzdlioHF1re/AdYd5RmRfHi8U= Subject key identifier: D0:62:A2:99:B1:77:3D:EC:85:9E:FA:8E:72:E5:A9:C3:02:24:49:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14E0421AF771B946A773C079BB8CB73926443DFB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86854fd8-2d2b-4d47-96ba-9c104a4b28a8.roa Signing time: Sun 07 Dec 2025 00:31:25 +0000 ROA not before: Sun 07 Dec 2025 00:31:25 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 23.21.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 09 Jan 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:e0:42:1a:f7:71:b9:46:a7:73:c0:79:bb:8c:b7:39:26:44:3d:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 7 00:31:25 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=86600f7a4118b01600974b1d881ce450a29c47ea8efe6d7de5b7bac46ee371be, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:87:22:3e:d1:79:ee:44:39:49:77:59:87:73: 47:09:aa:97:4b:91:14:06:41:95:8e:41:39:b9:70: 7d:b2:1f:08:69:b9:12:ff:89:b6:03:6c:15:ad:e5: 4c:5b:ec:8e:8a:44:00:5f:0c:5f:34:74:44:b0:00: 98:da:bf:b5:26:c6:26:2a:3f:4a:fd:22:b0:db:c2: 2c:0e:2c:65:0b:29:00:8e:8a:43:9e:4d:61:a2:24: ea:2d:57:7c:a0:07:c6:21:06:0e:b8:ef:4d:49:50: 8c:6d:3b:0c:7e:a5:7c:7d:00:58:05:50:e5:ba:7a: 07:c4:5c:a7:d2:11:94:33:58:94:a7:f3:ab:24:5c: ab:76:7d:a6:d4:2c:56:3b:dd:65:48:fa:ff:ef:a1: c4:58:32:c6:5e:e5:d4:3d:60:18:47:96:43:ac:9b: d4:18:72:e1:5a:df:34:e7:96:fa:cb:b9:7c:ff:b6: b3:b1:c7:c6:7a:ef:44:51:93:44:90:7e:31:ba:34: 07:4b:b9:2f:77:5a:36:4d:df:0f:30:74:5c:6f:27: 65:b5:9b:20:27:63:2b:8b:40:74:e3:ab:c4:ae:13: 3e:85:e3:10:b3:31:43:75:50:1c:75:1f:61:d9:2c: 85:4f:7e:12:9e:c7:35:e1:3f:19:5a:e4:0f:e1:2f: 93:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:62:A2:99:B1:77:3D:EC:85:9E:FA:8E:72:E5:A9:C3:02:24:49:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86854fd8-2d2b-4d47-96ba-9c104a4b28a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.21.64.0/18 Signature Algorithm: sha256WithRSAEncryption 56:ab:26:4c:e1:01:09:87:60:51:80:9a:ba:77:7d:a3:8f:bb: c0:14:7a:46:f3:f4:35:4a:24:44:1a:a6:95:61:64:06:96:c0: 27:1c:48:35:bd:c4:82:fe:1a:a8:03:9f:8b:5e:2a:f7:02:2b: d1:af:0e:d1:75:9e:38:12:e4:4d:2b:8c:bf:30:33:f5:ea:c2: 0b:85:de:56:17:4a:db:e2:c6:02:cb:90:48:d0:15:9d:f2:8f: f8:31:34:79:20:a2:6d:80:e9:e7:c7:5f:77:32:4f:e1:11:c3: 5f:9c:d2:ec:4b:4b:a8:e7:a3:cf:49:07:16:26:e1:bd:e2:b0: 4d:d5:91:2d:d9:ab:e7:62:f1:2f:fd:1a:60:fc:3c:4a:c1:52: c3:50:3f:f3:c8:c2:f7:31:1f:d9:b2:93:a9:db:fb:8b:da:ce: cd:80:ae:b7:cb:e6:4f:d0:a6:5b:e9:03:05:89:06:2d:84:4f: 2d:eb:ac:ee:6a:76:72:80:3e:fe:0d:c9:cc:f2:ac:b1:cf:c4: 93:05:29:9c:79:86:67:a5:91:ce:27:97:37:cc:c0:05:1c:3f: 0a:31:a1:29:26:c4:77:10:84:68:b1:5d:d6:b1:e7:13:76:db: 5a:d0:40:48:77:9f:d6:e8:3b:4a:83:80:50:9d:f1:57:a8:51: ce:64:3b:51 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFOBCGvdxuUanc8B5u4y3OSZEPfswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA3MDAzMTI1WhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NjYwMGY3YTQxMThiMDE2MDA5NzRiMWQ4ODFjZTQ1MGEy OWM0N2VhOGVmZTZkN2RlNWI3YmFjNDZlZTM3MWJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXhyI+0XnuRDlJd1mHc0cJqpdLkRQGQZWOQTm5cH2yHwhp uRL/ibYDbBWt5Uxb7I6KRABfDF80dESwAJjav7UmxiYqP0r9IrDbwiwOLGULKQCO ikOeTWGiJOotV3ygB8YhBg64701JUIxtOwx+pXx9AFgFUOW6egfEXKfSEZQzWJSn 86skXKt2fabULFY73WVI+v/vocRYMsZe5dQ9YBhHlkOsm9QYcuFa3zTnlvrLuXz/ trOxx8Z670RRk0SQfjG6NAdLuS93WjZN3w8wdFxvJ2W1myAnYyuLQHTjq8SuEz6F 4xCzMUN1UBx1H2HZLIVPfhKexzXhPxla5A/hL5PnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0GKimbF3PeyFnvqOcuWpwwIkSQYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg2ODU0ZmQ4LTJkMmItNGQ0Ny05NmJhLTljMTA0YTRiMjhhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYXFUAwDQYJKoZIhvcNAQELBQADggEBAFarJkzhAQmHYFGAmrp3faOPu8AU ekbz9DVKJEQappVhZAaWwCccSDW9xIL+GqgDn4teKvcCK9GvDtF1njgS5E0rjL8w M/XqwguF3lYXStvixgLLkEjQFZ3yj/gxNHkgom2A6efHX3cyT+ERw1+c0uxLS6jn o89JBxYm4b3isE3VkS3Zq+di8S/9GmD8PErBUsNQP/PIwvcxH9myk6nb+4vazs2A rrfL5k/QplvpAwWJBi2ETy3rrO5qdnKAPv4NyczyrLHPxJMFKZx5hmelkc4nlzfM wAUcPwoxoSkmxHcQhGixXdax5xN221rQQEh3n9boO0qDgFCd8VeoUc5kO1E= -----END CERTIFICATE-----Generated at Wed Jan 7 23:51:57 2026 by rpki-client