This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d95f8068-47af-46c4-a4b4-517faacf64b7.roa File: d95f8068-47af-46c4-a4b4-517faacf64b7.roa (raw, json) Hash identifier: n44Se3rlzcosw906dutVoWS3fFjA8pIU2ZgCSZZKJcw= Subject key identifier: 39:42:78:FE:00:0D:33:38:5E:0D:F0:71:62:0D:AA:4F:E9:6E:DC:AF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 087E44F891FD56AAE9E507AE88C4837CB361405E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d95f8068-47af-46c4-a4b4-517faacf64b7.roa Signing time: Sun 07 Dec 2025 00:51:05 +0000 ROA not before: Sun 07 Dec 2025 00:51:05 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 123.200.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 03 Jan 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:7e:44:f8:91:fd:56:aa:e9:e5:07:ae:88:c4:83:7c:b3:61:40:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 7 00:51:05 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=5ad323cd8db62f52e01bb46225509fabe6c287570bdcdf5317c860463240dc3b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:13:ac:27:ac:b7:14:4e:f9:18:31:44:6e:82: e8:bb:5d:31:11:10:03:da:5c:f7:03:5a:70:7f:3d: a7:85:f8:d6:b5:5c:95:c2:96:42:06:4f:8a:06:a8: a3:f0:b3:48:9e:c8:cc:ac:38:1c:15:b5:12:97:53: e0:aa:39:89:28:89:60:4c:a3:4b:33:4b:d4:da:77: 14:a7:8a:61:66:f2:f8:83:cd:78:bb:fb:80:dd:1b: f1:95:5a:b4:f3:6c:e7:38:a1:c9:a1:06:53:04:05: 39:02:7a:f0:72:bf:4d:c7:8b:dd:b4:0f:56:99:09: 30:28:38:2c:6c:35:ce:e9:ea:f4:88:97:bb:72:59: c3:84:25:8a:9b:c9:fe:75:7c:c5:4f:d8:e8:ba:dc: 1f:e7:e9:61:97:70:1e:37:38:7f:58:96:1c:ef:90: fc:70:46:b5:f5:92:d9:18:1a:0f:5c:a4:7c:84:1a: e5:4c:c1:03:6c:df:07:25:04:44:00:ea:66:2d:f9: fd:27:a4:e3:ee:93:ee:49:fc:5b:34:2c:d5:20:e4: 0d:d5:7f:9d:a3:73:57:0c:ac:44:53:84:d1:b8:de: 3e:7b:39:f3:32:29:ec:d5:d4:a5:70:85:83:8d:3b: 9e:81:6e:f8:40:60:96:b9:6a:79:a9:5d:9c:48:63: a4:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:42:78:FE:00:0D:33:38:5E:0D:F0:71:62:0D:AA:4F:E9:6E:DC:AF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d95f8068-47af-46c4-a4b4-517faacf64b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.200.244.0/22 Signature Algorithm: sha256WithRSAEncryption 92:c4:16:5a:9f:58:03:63:27:59:5e:77:b4:fb:29:68:32:72: 9b:a6:8f:cb:c0:46:43:a5:b1:1e:63:53:dd:63:7e:d3:18:98: d1:92:4f:0c:c7:c4:9d:de:ff:e3:33:c7:a6:49:76:7e:8c:9e: 66:62:d4:6c:e5:5b:c4:63:6c:70:68:b3:28:73:20:4b:16:8f: 17:54:f6:a5:07:4e:ca:10:1f:c2:51:a0:d2:53:65:2c:03:f8: e6:37:48:ce:26:d2:da:ff:b1:f4:06:7d:03:73:56:29:4d:1d: 2a:a7:e3:0a:3c:97:97:aa:23:aa:9a:b0:da:0c:68:ca:1d:48: 41:fd:36:ad:f5:9a:39:31:aa:61:ec:77:69:81:4c:e1:37:29: 24:8c:33:bf:c7:64:6d:15:33:d5:92:2e:5b:3b:cb:a0:39:e4: 1c:df:23:5f:14:d9:f9:39:1c:d5:b6:51:aa:7b:ba:53:17:58: 89:48:95:56:7c:d9:59:a8:75:eb:f6:e8:a8:0a:0c:a5:ac:e5: 38:e8:1a:d5:e6:b4:9d:b1:94:6c:b5:65:17:11:69:f2:6e:8c: bb:85:24:d5:7a:b6:0a:14:42:e9:08:6b:92:cd:fa:d7:f5:5a: 73:70:6f:22:8f:5a:a3:c6:57:12:62:98:a3:c4:89:cf:68:1e: b6:5c:26:ad -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCH5E+JH9Vqrp5QeuiMSDfLNhQF4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA3MDA1MTA1WhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YWQzMjNjZDhkYjYyZjUyZTAxYmI0NjIyNTUwOWZhYmU2 YzI4NzU3MGJkY2RmNTMxN2M4NjA0NjMyNDBkYzNiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5E6wnrLcUTvkYMURugui7XTEREAPaXPcDWnB/PaeF+Na1 XJXClkIGT4oGqKPws0ieyMysOBwVtRKXU+CqOYkoiWBMo0szS9TadxSnimFm8viD zXi7+4DdG/GVWrTzbOc4ocmhBlMEBTkCevByv03Hi920D1aZCTAoOCxsNc7p6vSI l7tyWcOEJYqbyf51fMVP2Oi63B/n6WGXcB43OH9YlhzvkPxwRrX1ktkYGg9cpHyE GuVMwQNs3wclBEQA6mYt+f0npOPuk+5J/Fs0LNUg5A3Vf52jc1cMrERThNG43j57 OfMyKezV1KVwhYONO56BbvhAYJa5anmpXZxIY6SVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOUJ4/gANMzheDfBxYg2qT+lu3K8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q5NWY4MDY4LTQ3YWYtNDZjNC1hNGI0LTUxN2ZhYWNmNjRiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJ7yPQwDQYJKoZIhvcNAQELBQADggEBAJLEFlqfWANjJ1led7T7KWgycpum j8vARkOlsR5jU91jftMYmNGSTwzHxJ3e/+Mzx6ZJdn6MnmZi1GzlW8RjbHBosyhz IEsWjxdU9qUHTsoQH8JRoNJTZSwD+OY3SM4m0tr/sfQGfQNzVilNHSqn4wo8l5eq I6qasNoMaModSEH9Nq31mjkxqmHsd2mBTOE3KSSMM7/HZG0VM9WSLls7y6A55Bzf I18U2fk5HNW2Uap7ulMXWIlIlVZ82Vmodev26KgKDKWs5TjoGtXmtJ2xlGy1ZRcR afJujLuFJNV6tgoUQukIa5LN+tf1WnNwbyKPWqPGVxJimKPEic9oHrZcJq0= -----END CERTIFICATE-----Generated at Fri Jan 2 11:03:02 2026 by rpki-client