This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9489bef2-0a21-4c24-8378-03322c296a7b.roa File: 9489bef2-0a21-4c24-8378-03322c296a7b.roa (raw, json) Hash identifier: oL6TKT37M0xU9sm+6uEDK2kllLnMhlNzAkRv2Yv6Bgw= Subject key identifier: 71:4E:FD:04:5F:0A:DE:54:4C:08:D6:4E:9D:14:E4:A4:CC:2A:3F:BC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B502C32D0794738FEEC20CB300DC96BE78AF8C7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9489bef2-0a21-4c24-8378-03322c296a7b.roa Signing time: Mon 08 Dec 2025 00:11:11 +0000 ROA not before: Mon 08 Dec 2025 00:11:11 +0000 ROA not after: Sun 08 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 207.21.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 03 Jan 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:50:2c:32:d0:79:47:38:fe:ec:20:cb:30:0d:c9:6b:e7:8a:f8:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 8 00:11:11 2025 GMT Not After : Mar 8 23:59:59 2026 GMT Subject: serialNumber=34929898d2ac90b76ec6be163e3d7c3e9f0f356b5deb2c2866e397df7e6930ef, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:b4:08:d3:80:a9:31:c9:e8:22:50:6f:78:94: 48:bb:ca:5e:81:91:f1:fc:64:97:3e:53:a6:a2:65: 75:c7:02:92:d7:95:d1:06:aa:e5:95:9a:9c:02:47: e4:8f:ae:67:01:cf:40:9f:a5:a5:69:43:02:b4:dc: 77:bd:7c:8f:11:81:05:35:7d:62:d7:0b:d4:c0:bc: 36:58:ee:6a:02:58:1f:67:0a:1e:b4:9a:dc:9c:d9: 1a:91:d4:4b:a9:03:b7:cc:9c:75:ef:e2:8a:8d:5d: ff:84:e0:09:19:3d:0f:58:74:21:84:6f:dc:f5:ba: 5e:41:5e:09:32:03:36:ab:22:c5:65:bb:63:80:ba: cf:1c:b8:00:02:7b:20:a3:5b:58:b4:e3:4c:d1:1a: 66:53:37:b7:9e:f1:76:33:dd:ba:5c:9a:28:d7:d1: 8b:e8:9c:27:3f:71:68:cd:d7:04:62:37:e6:83:d7: 43:f3:4f:eb:39:e6:03:9c:36:53:0b:6d:03:66:1a: f5:a4:41:03:0c:75:dd:22:45:52:f3:e7:cc:4a:de: 2c:39:30:20:e3:21:ec:6c:64:1e:29:f2:e4:b3:fc: f5:4c:72:2f:99:8b:cd:35:76:43:92:22:a6:38:0c: 67:89:85:bb:b4:f5:05:39:a3:4f:44:67:1f:35:1c: 4d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:4E:FD:04:5F:0A:DE:54:4C:08:D6:4E:9D:14:E4:A4:CC:2A:3F:BC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9489bef2-0a21-4c24-8378-03322c296a7b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.21.211.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:4d:f4:b9:be:f8:3f:9b:d4:60:ef:a9:46:f1:ab:ca:77:28: d0:8d:ed:4d:b7:80:1f:7f:c9:8f:ce:7e:ba:41:ed:d2:2b:c6: 14:32:1f:c9:c2:f2:55:c9:38:75:30:fa:dd:a0:92:5f:9a:5a: 5f:ec:61:8b:1d:3d:a2:36:cd:ec:eb:ab:8b:06:f8:d7:b6:9e: df:5b:be:c1:1a:ac:4f:7e:ad:2b:e8:39:3a:78:12:5c:69:5f: 48:74:57:9c:e7:c7:cd:0a:02:c2:d6:4a:e4:8d:3e:58:48:f6: 4f:6a:4e:25:28:a3:a1:c2:d1:05:c8:2b:c5:80:ce:db:68:90: 10:34:6c:b6:d3:ce:56:3d:a6:0a:54:7e:57:58:4c:4f:b7:ff: ef:30:bf:e7:69:3e:7b:bd:a0:c1:c2:67:bb:f5:6c:7e:a7:3a: 53:6f:3c:32:64:09:c1:35:a0:e7:e6:e0:1f:b6:a3:18:80:82: 44:a4:85:06:4e:98:20:f1:f2:a7:49:a6:6c:fc:c3:e5:90:d4: 3a:be:86:ec:4b:1f:ef:46:ed:b1:bc:ec:fa:5c:b3:7d:a6:46: 68:73:1e:01:f7:79:22:cc:22:f8:7d:bc:81:be:bd:e3:1a:ca: 56:9c:4d:17:b2:ec:12:31:8b:c5:32:36:dd:4b:0f:85:b6:1b: c7:39:d4:ed -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa1AsMtB5Rzj+7CDLMA3Ja+eK+McwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA4MDAxMTExWhcNMjYwMzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNDkyOTg5OGQyYWM5MGI3NmVjNmJlMTYzZTNkN2MzZTlm MGYzNTZiNWRlYjJjMjg2NmUzOTdkZjdlNjkzMGVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZtAjTgKkxyegiUG94lEi7yl6BkfH8ZJc+U6aiZXXHApLX ldEGquWVmpwCR+SPrmcBz0CfpaVpQwK03He9fI8RgQU1fWLXC9TAvDZY7moCWB9n Ch60mtyc2RqR1EupA7fMnHXv4oqNXf+E4AkZPQ9YdCGEb9z1ul5BXgkyAzarIsVl u2OAus8cuAACeyCjW1i040zRGmZTN7ee8XYz3bpcmijX0YvonCc/cWjN1wRiN+aD 10PzT+s55gOcNlMLbQNmGvWkQQMMdd0iRVLz58xK3iw5MCDjIexsZB4p8uSz/PVM ci+Zi801dkOSIqY4DGeJhbu09QU5o09EZx81HE1rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcU79BF8K3lRMCNZOnRTkpMwqP7wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0ODliZWYyLTBhMjEtNGMyNC04Mzc4LTAzMzIyYzI5NmE3Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADPFdMwDQYJKoZIhvcNAQELBQADggEBAE5N9Lm++D+b1GDvqUbxq8p3KNCN 7U23gB9/yY/OfrpB7dIrxhQyH8nC8lXJOHUw+t2gkl+aWl/sYYsdPaI2zezrq4sG +Ne2nt9bvsEarE9+rSvoOTp4ElxpX0h0V5znx80KAsLWSuSNPlhI9k9qTiUoo6HC 0QXIK8WAzttokBA0bLbTzlY9pgpUfldYTE+3/+8wv+dpPnu9oMHCZ7v1bH6nOlNv PDJkCcE1oOfm4B+2oxiAgkSkhQZOmCDx8qdJpmz8w+WQ1Dq+huxLH+9G7bG87Ppc s32mRmhzHgH3eSLMIvh9vIG+veMaylacTRey7BIxi8UyNt1LD4W2G8c51O0= -----END CERTIFICATE-----Generated at Fri Jan 2 12:52:00 2026 by rpki-client