This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bbab0547-cbf6-46b4-a813-d27a961352db.roa File: bbab0547-cbf6-46b4-a813-d27a961352db.roa (raw, json) Hash identifier: knzqW+Fd/PCO5yRDxsHYiEkk6ypjua6k5gBzCAGz0JA= Subject key identifier: 20:2A:EB:5B:82:16:7D:5E:6C:F1:78:DB:65:4D:C1:3E:75:D7:AA:A7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 29A0A102927B9332927B290DB89F7D8D7B2866C3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bbab0547-cbf6-46b4-a813-d27a961352db.roa Signing time: Sun 07 Dec 2025 00:31:29 +0000 ROA not before: Sun 07 Dec 2025 00:31:29 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.23.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:a0:a1:02:92:7b:93:32:92:7b:29:0d:b8:9f:7d:8d:7b:28:66:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 7 00:31:29 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=46c09ecc8c9422571add4462620bae6b446a59ba59daeec235c1a83f55a5db5d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ef:ee:73:12:11:cf:b9:0d:b4:40:85:fe:63: aa:2c:b6:28:b4:d3:74:4a:49:4b:e0:ac:c2:a3:a3: 0b:c9:5b:ea:d9:1d:d4:40:20:4d:99:c4:5f:9b:34: c3:bc:33:c6:fc:8e:49:83:15:fc:f8:5c:34:4a:48: 61:25:44:6a:30:2a:ec:86:f6:c2:8f:7d:61:d1:b9: 3e:6e:f6:86:09:bf:9e:7d:15:f9:7e:4b:40:dd:5a: 94:80:da:4a:30:ef:82:6d:eb:8e:67:e1:b3:c7:6c: 33:4c:1e:49:39:dc:9c:9d:c9:a1:af:e0:63:c4:49: 0a:11:c6:50:50:96:b5:b2:67:97:18:4c:84:30:8c: c1:f7:59:e3:9a:33:98:c5:f0:44:21:f1:ab:a5:ca: 3b:86:63:0d:be:51:0d:b6:a6:67:9f:1a:cb:d2:b8: a2:50:92:5e:08:cf:78:96:2e:b3:d6:8e:af:a0:a6: b3:43:dd:74:6a:8d:12:84:8f:a9:6f:ce:bf:c2:2b: 82:09:7a:ab:6b:2f:a6:66:6b:86:99:57:f0:86:89: 4d:bc:48:7a:41:4a:93:11:5e:4b:1f:d0:7a:14:c8: b5:95:5a:66:75:fa:00:c0:f2:4a:43:71:69:ad:07: c5:d2:67:8a:56:4d:24:55:37:fa:c6:ab:be:32:19: d7:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:2A:EB:5B:82:16:7D:5E:6C:F1:78:DB:65:4D:C1:3E:75:D7:AA:A7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bbab0547-cbf6-46b4-a813-d27a961352db.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.23.128.0/17 Signature Algorithm: sha256WithRSAEncryption c6:42:c4:d9:2c:96:0d:bc:b9:78:f2:c8:87:12:b4:46:ba:f7: e0:3b:71:28:f6:83:d3:b1:44:0b:1c:4b:b4:32:e3:e1:83:0c: 3d:e5:c2:7a:8d:f5:dc:2b:c4:a6:cb:df:45:1f:c9:ca:c5:25: 12:a7:fb:9d:64:d0:6e:34:86:1a:3c:7c:4c:56:70:50:e7:8f: ca:9d:4d:52:28:07:5f:3c:32:34:d5:68:ae:f9:9a:b9:1a:d7: 0d:31:5a:3e:04:70:b4:82:c9:2c:fa:7b:9d:96:de:4e:51:d8: d0:fe:1f:05:f2:fe:2a:0c:06:12:03:17:c6:22:1c:ed:14:f0: fb:c6:4b:f4:21:87:6b:bd:11:41:f2:4d:85:dd:87:1b:84:3d: 05:ca:24:71:c6:80:37:62:23:c7:f5:bf:37:8f:3a:02:1e:d0: 4b:ca:4b:b4:22:82:d3:1f:bc:44:a8:7a:47:fe:95:33:bc:86: 84:68:1c:f9:2b:60:97:35:36:2b:48:18:4d:dc:46:87:dd:f0: e8:a4:d5:ce:dd:e2:fc:ef:88:f5:26:0e:27:f7:4c:e5:20:5f: fa:f8:31:14:68:08:f8:31:8d:71:ab:7e:93:9d:a9:eb:da:94: c8:3e:c6:e5:93:fe:a6:d0:4f:83:9f:f4:de:cb:87:b0:1e:9c: 1e:de:fd:92 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKaChApJ7kzKSeykNuJ99jXsoZsMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA3MDAzMTI5WhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NmMwOWVjYzhjOTQyMjU3MWFkZDQ0NjI2MjBiYWU2YjQ0 NmE1OWJhNTlkYWVlYzIzNWMxYTgzZjU1YTVkYjVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDO7+5zEhHPuQ20QIX+Y6ostii003RKSUvgrMKjowvJW+rZ HdRAIE2ZxF+bNMO8M8b8jkmDFfz4XDRKSGElRGowKuyG9sKPfWHRuT5u9oYJv559 Ffl+S0DdWpSA2kow74Jt645n4bPHbDNMHkk53JydyaGv4GPESQoRxlBQlrWyZ5cY TIQwjMH3WeOaM5jF8EQh8aulyjuGYw2+UQ22pmefGsvSuKJQkl4Iz3iWLrPWjq+g prND3XRqjRKEj6lvzr/CK4IJeqtrL6Zma4aZV/CGiU28SHpBSpMRXksf0HoUyLWV WmZ1+gDA8kpDcWmtB8XSZ4pWTSRVN/rGq74yGdctAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUICrrW4IWfV5s8XjbZU3BPnXXqqcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JiYWIwNTQ3LWNiZjYtNDZiNC1hODEzLWQyN2E5NjEzNTJkYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcXF4AwDQYJKoZIhvcNAQELBQADggEBAMZCxNkslg28uXjyyIcStEa69+A7 cSj2g9OxRAscS7Qy4+GDDD3lwnqN9dwrxKbL30UfycrFJRKn+51k0G40hho8fExW cFDnj8qdTVIoB188MjTVaK75mrka1w0xWj4EcLSCySz6e52W3k5R2ND+HwXy/ioM BhIDF8YiHO0U8PvGS/Qhh2u9EUHyTYXdhxuEPQXKJHHGgDdiI8f1vzePOgIe0EvK S7QigtMfvESoekf+lTO8hoRoHPkrYJc1NitIGE3cRofd8Oik1c7d4vzviPUmDif3 TOUgX/r4MRRoCPgxjXGrfpOdqevalMg+xuWT/qbQT4Of9N7Lh7AenB7e/ZI= -----END CERTIFICATE-----Generated at Thu Dec 18 23:33:21 2025 by rpki-client