This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c977a0d3-92fd-44ae-90a6-a6ccf49130b8.roa File: c977a0d3-92fd-44ae-90a6-a6ccf49130b8.roa (raw, json) Hash identifier: HJXHjMcgY+TMBLMustJroDHnVuW4RVKt1f4vMZmCCRw= Subject key identifier: 64:E8:7C:38:70:74:AD:7E:26:6C:4E:8C:70:EE:F3:E7:84:FD:15:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0142428BE9FC77DE47FE76EA58BCA0D877B1825D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c977a0d3-92fd-44ae-90a6-a6ccf49130b8.roa Signing time: Sat 22 Nov 2025 00:31:44 +0000 ROA not before: Sat 22 Nov 2025 00:31:44 +0000 ROA not after: Fri 20 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 27 Nov 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:42:42:8b:e9:fc:77:de:47:fe:76:ea:58:bc:a0:d8:77:b1:82:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 22 00:31:44 2025 GMT Not After : Feb 20 23:59:59 2026 GMT Subject: serialNumber=dc341636aba0efcdfc18955f0a0c92c240d417131498b3cf4a1d448efae21d64, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:21:af:67:24:33:73:a7:ab:9d:9d:ee:24:77: 20:81:95:17:39:0e:ae:0c:79:be:21:cb:9b:7e:82: d6:e9:4e:c2:4f:36:e6:50:b7:70:99:02:66:d2:03: 21:14:bb:73:42:df:bf:54:8e:bc:a2:26:a4:7d:ab: 1b:2e:0d:d3:21:61:37:70:a0:12:7e:bc:3c:43:27: 86:74:07:ec:1b:55:f3:c3:39:11:f9:4c:3c:de:24: 95:1f:38:8e:60:02:d5:ad:07:9e:10:80:ae:20:ed: f2:7f:5c:cb:a0:28:23:79:68:8a:e3:e4:4c:4f:aa: 72:34:54:e2:3e:02:34:a8:25:ed:17:19:f3:6f:d5: 55:81:5f:6b:fe:4e:28:4c:17:8d:5c:01:89:49:52: 28:c2:9f:48:d2:8d:53:ca:14:64:b9:dc:59:9a:40: 22:b6:a9:28:34:ea:7e:10:e2:62:34:e0:32:c7:13: 9a:5f:74:a6:dd:70:d4:90:09:9b:58:22:85:27:67: b5:8d:64:d2:f6:ab:d0:36:a8:df:96:b3:0a:b9:f5: a6:34:c3:0c:5e:e7:59:59:30:bd:ed:29:18:27:47: b8:ca:c2:1f:f2:f5:a9:42:6c:a7:49:be:90:9c:be: a6:c7:67:85:aa:32:c1:1d:e3:ec:5f:c3:e2:42:79: 0f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:E8:7C:38:70:74:AD:7E:26:6C:4E:8C:70:EE:F3:E7:84:FD:15:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c977a0d3-92fd-44ae-90a6-a6ccf49130b8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.20.0/22 Signature Algorithm: sha256WithRSAEncryption 87:fb:44:73:d3:c8:92:d7:c9:c7:81:1a:e0:65:42:ea:3a:e6: 6f:d9:bf:f3:fc:bb:d3:ef:a1:6c:2f:16:88:ad:90:9d:d4:02: cc:1f:42:17:ca:4c:da:97:a9:8b:81:e7:28:cb:88:84:1a:6a: d6:c4:b2:e2:21:f8:65:75:d7:b6:06:4a:f8:d0:43:41:40:6f: 26:e0:8f:88:63:c0:ee:55:76:a8:06:44:ac:8e:ab:54:dc:f4: dd:ec:60:fa:af:ba:f1:e2:9f:75:66:4c:8d:5f:c0:08:b7:59: b6:cd:6b:fc:dd:12:e6:d0:69:56:ca:2f:75:20:4b:86:ee:90: 74:1d:8f:2a:f8:ac:47:99:e6:2e:c8:9c:43:be:62:e2:95:80: b1:50:6b:11:38:39:54:b5:ed:4e:3b:23:19:06:1d:12:c6:17: bf:bf:0e:d6:67:81:18:4a:51:58:2e:8e:2c:f7:bb:9b:9e:96: bf:57:69:82:3c:3a:ac:1b:99:9d:c9:49:a0:fe:ab:c4:be:0a: 61:46:0b:0c:82:f7:44:a5:79:66:73:46:08:f5:3f:7a:f6:65: b7:6f:53:c8:15:03:6e:5a:d8:b5:de:de:ba:7e:48:6e:58:fa: 0f:1e:be:da:85:a6:6d:74:d4:f5:2b:f8:01:7e:97:6f:69:22: bb:9c:b8:b7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAUJCi+n8d95H/nbqWLyg2Hexgl0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTIyMDAzMTQ0WhcNMjYwMjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYzM0MTYzNmFiYTBlZmNkZmMxODk1NWYwYTBjOTJjMjQw ZDQxNzEzMTQ5OGIzY2Y0YTFkNDQ4ZWZhZTIxZDY0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+Ia9nJDNzp6udne4kdyCBlRc5Dq4Meb4hy5t+gtbpTsJP NuZQt3CZAmbSAyEUu3NC379UjryiJqR9qxsuDdMhYTdwoBJ+vDxDJ4Z0B+wbVfPD ORH5TDzeJJUfOI5gAtWtB54QgK4g7fJ/XMugKCN5aIrj5ExPqnI0VOI+AjSoJe0X GfNv1VWBX2v+TihMF41cAYlJUijCn0jSjVPKFGS53FmaQCK2qSg06n4Q4mI04DLH E5pfdKbdcNSQCZtYIoUnZ7WNZNL2q9A2qN+Wswq59aY0wwxe51lZML3tKRgnR7jK wh/y9alCbKdJvpCcvqbHZ4WqMsEd4+xfw+JCeQ8pAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZOh8OHB0rX4mbE6McO7z54T9FWkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M5NzdhMGQzLTkyZmQtNDRhZS05MGE2LWE2Y2NmNDkxMzBiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKIEhQwDQYJKoZIhvcNAQELBQADggEBAIf7RHPTyJLXyceBGuBlQuo65m/Z v/P8u9PvoWwvFoitkJ3UAswfQhfKTNqXqYuB5yjLiIQaatbEsuIh+GV117YGSvjQ Q0FAbybgj4hjwO5VdqgGRKyOq1Tc9N3sYPqvuvHin3VmTI1fwAi3WbbNa/zdEubQ aVbKL3UgS4bukHQdjyr4rEeZ5i7InEO+YuKVgLFQaxE4OVS17U47IxkGHRLGF7+/ DtZngRhKUVgujiz3u5uelr9XaYI8OqwbmZ3JSaD+q8S+CmFGCwyC90SleWZzRgj1 P3r2ZbdvU8gVA25a2LXe3rp+SG5Y+g8evtqFpm101PUr+AF+l29pIrucuLc= -----END CERTIFICATE-----Generated at Wed Nov 26 10:08:02 2025 by rpki-client