This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/87f2d17b-bc00-4f7a-b7e8-788558dd25ae.roa File: 87f2d17b-bc00-4f7a-b7e8-788558dd25ae.roa (raw, json) Hash identifier: ArZdXPXLO298zr7GGDZQSxfQtHkmeQyN0CLdmhbR4MM= Subject key identifier: 9A:21:5B:77:05:E8:82:61:AE:23:10:18:18:11:7B:28:7D:56:C5:67 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 358C56DD271B6902391BA1D6F4BD75E4B8AB5191 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/87f2d17b-bc00-4f7a-b7e8-788558dd25ae.roa Signing time: Mon 08 Dec 2025 00:50:44 +0000 ROA not before: Mon 08 Dec 2025 00:50:44 +0000 ROA not after: Sun 08 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 149.44.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 10 Dec 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:8c:56:dd:27:1b:69:02:39:1b:a1:d6:f4:bd:75:e4:b8:ab:51:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 8 00:50:44 2025 GMT Not After : Mar 8 23:59:59 2026 GMT Subject: serialNumber=b5c0ccb6034fd4923ec32ca2af9204237dae025533db5a31b63dff3a4a9ae5c4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:bd:68:17:8d:2a:58:05:cb:de:96:36:90:be: a5:d6:7f:8c:be:7b:66:58:e0:f6:35:c0:e7:8e:dd: 61:f8:03:0b:61:c9:88:c7:af:d5:6a:f3:7b:33:56: 70:f6:b3:98:83:85:f5:47:e2:c5:b2:a2:c2:d9:bc: b1:26:66:b1:f1:51:50:34:31:34:e3:ed:61:00:36: d4:d2:89:c2:5a:81:27:b9:17:26:db:9f:15:62:4d: db:ff:dd:c5:67:f3:e8:24:90:2c:8e:e7:5f:59:bb: 42:b8:3b:b7:bc:dc:42:27:f1:4c:a2:95:38:5f:26: c9:dc:f2:ff:81:39:3f:24:ba:8a:1f:10:ec:8e:6c: 17:db:ca:b1:f3:67:da:78:9a:17:8e:22:64:06:eb: 37:cc:cd:76:3f:5d:94:ef:56:10:b0:f0:31:3d:f1: 24:a4:c8:8e:f5:fc:a3:e1:97:8f:a9:00:fa:4a:b3: f0:41:60:ba:1c:df:47:e6:2a:e9:d0:04:32:5c:a0: d2:9f:b8:1e:04:8f:36:17:e0:83:e7:ee:59:b9:91: d5:26:bb:a4:42:80:99:52:fc:b3:b9:a9:f9:eb:03: 53:a3:ab:21:86:74:0b:c0:49:9b:26:13:58:02:17: 60:1b:6c:dc:2d:40:bb:80:de:8d:2a:cc:ec:b6:03: d2:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:21:5B:77:05:E8:82:61:AE:23:10:18:18:11:7B:28:7D:56:C5:67 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/87f2d17b-bc00-4f7a-b7e8-788558dd25ae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.44.0.0/16 Signature Algorithm: sha256WithRSAEncryption 26:d8:dc:21:e1:ef:01:92:6f:60:9e:c4:0c:13:99:b8:d7:cc: a1:fb:22:3f:c8:1c:16:3f:18:1a:bb:de:69:1b:f9:bd:12:8b: 19:70:16:8f:86:51:7f:4d:42:83:a4:0d:8b:5a:fb:18:c3:54: 9f:22:5a:93:cc:70:e7:9e:df:ee:1e:7f:fc:9c:73:15:5f:8c: 2f:7b:79:a6:49:ef:04:c6:ce:32:b4:2a:88:6b:48:b5:91:2a: ac:bc:2a:cb:99:f1:ee:ec:00:6f:78:bf:36:43:57:6c:ef:3d: 5c:f3:0a:23:8f:94:e8:e9:02:12:9b:b9:e9:ba:70:69:75:78: 0c:f3:31:07:fd:b6:8d:16:f3:07:2b:db:67:97:0f:2c:5e:ac: cf:f7:7d:d1:15:bf:ac:b9:f5:b7:5e:6e:66:22:02:0b:16:18: 62:13:d1:0c:11:41:24:6a:54:c6:c2:d7:3d:ec:aa:8a:b7:d3: 88:63:bf:c3:d0:8d:ff:14:46:9f:89:be:7d:3f:2a:c8:1f:00: ad:30:cd:68:f2:8d:ef:1b:5e:b3:80:9f:73:f3:cf:41:81:d3: 5c:98:95:a7:7e:64:fc:a9:0c:cb:80:89:29:1b:1a:76:b0:9f: bb:0b:43:97:02:3b:80:68:cd:e0:cd:53:63:53:64:4a:15:c8: ad:2c:ab:34 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNYxW3ScbaQI5G6HW9L115LirUZEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA4MDA1MDQ0WhcNMjYwMzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNWMwY2NiNjAzNGZkNDkyM2VjMzJjYTJhZjkyMDQyMzdk YWUwMjU1MzNkYjVhMzFiNjNkZmYzYTRhOWFlNWM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdvWgXjSpYBcveljaQvqXWf4y+e2ZY4PY1wOeO3WH4Awth yYjHr9Vq83szVnD2s5iDhfVH4sWyosLZvLEmZrHxUVA0MTTj7WEANtTSicJagSe5 FybbnxViTdv/3cVn8+gkkCyO519Zu0K4O7e83EIn8UyilThfJsnc8v+BOT8kuoof EOyObBfbyrHzZ9p4mheOImQG6zfMzXY/XZTvVhCw8DE98SSkyI71/KPhl4+pAPpK s/BBYLoc30fmKunQBDJcoNKfuB4EjzYX4IPn7lm5kdUmu6RCgJlS/LO5qfnrA1Oj qyGGdAvASZsmE1gCF2AbbNwtQLuA3o0qzOy2A9IFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmiFbdwXogmGuIxAYGBF7KH1WxWcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg3ZjJkMTdiLWJjMDAtNGY3YS1iN2U4LTc4ODU1OGRkMjVhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCVLDANBgkqhkiG9w0BAQsFAAOCAQEAJtjcIeHvAZJvYJ7EDBOZuNfMofsi P8gcFj8YGrveaRv5vRKLGXAWj4ZRf01Cg6QNi1r7GMNUnyJak8xw557f7h5//Jxz FV+ML3t5pknvBMbOMrQqiGtItZEqrLwqy5nx7uwAb3i/NkNXbO89XPMKI4+U6OkC Epu56bpwaXV4DPMxB/22jRbzByvbZ5cPLF6sz/d90RW/rLn1t15uZiICCxYYYhPR DBFBJGpUxsLXPeyqirfTiGO/w9CN/xRGn4m+fT8qyB8ArTDNaPKN7xtes4Cfc/PP QYHTXJiVp35k/KkMy4CJKRsadrCfuwtDlwI7gGjN4M1TY1NkShXIrSyrNA== -----END CERTIFICATE-----Generated at Tue Dec 9 13:34:30 2025 by rpki-client