This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3125e31-ed97-4e31-89e9-d4af00e5b32d.roa File: f3125e31-ed97-4e31-89e9-d4af00e5b32d.roa (raw, json) Hash identifier: pJYtMQSwVvFUbsyabGZHbBJ/CshwJcFxh1cKJIFEhxo= Subject key identifier: 0B:78:19:E3:ED:47:61:1A:2E:BC:D0:08:9B:12:11:A9:49:70:BB:90 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4A114DECA71BF12AB08EBFAEBE70E9480079AC48 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3125e31-ed97-4e31-89e9-d4af00e5b32d.roa Signing time: Thu 11 Dec 2025 00:30:15 +0000 ROA not before: Thu 11 Dec 2025 00:30:15 +0000 ROA not after: Wed 11 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.180.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 03 Jan 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:11:4d:ec:a7:1b:f1:2a:b0:8e:bf:ae:be:70:e9:48:00:79:ac:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 11 00:30:15 2025 GMT Not After : Mar 11 23:59:59 2026 GMT Subject: serialNumber=c2b68ebab2a003f8723a1304910a8700ad373fa411f750eac895617516ce237a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e7:c2:d7:ab:ee:26:d0:1a:f4:2b:99:c2:af: 85:13:ed:6e:82:76:57:3c:8a:d2:69:da:f7:53:b2: 63:d7:20:59:35:3a:8b:7e:c0:00:27:d7:37:e3:77: 62:05:a7:64:7f:f2:9c:ff:84:0a:57:be:6d:09:b6: 63:27:32:fb:b3:02:c1:52:f4:49:45:7d:28:f4:66: a9:ba:83:48:85:a9:f7:b8:65:53:87:04:29:b6:bb: 91:48:be:4d:ad:8d:d6:fd:e3:48:68:bd:cd:de:7f: 9d:07:0c:52:f5:8e:c0:1a:c2:4f:7a:2c:68:a7:10: d7:d9:d1:c3:9b:e1:b6:f3:6d:55:1d:15:0f:31:19: b9:7a:5b:1d:de:63:ff:37:63:45:9f:29:10:c0:b6: 81:20:60:36:4d:f8:23:95:60:36:0c:f0:b8:14:7d: a0:38:f6:e1:5e:8a:31:f0:75:2d:a5:aa:27:cc:58: f9:3d:45:5f:f5:a6:2f:b6:88:54:b8:6d:b6:ef:83: 39:31:b7:67:19:c6:e4:e1:a6:7d:f2:fb:0a:8a:0a: 2d:c5:a4:ff:5d:a7:63:15:f7:00:55:6e:19:7b:e7: d4:d1:08:90:4d:1b:5b:8a:24:78:7a:9b:ca:cc:b5: 46:c9:1e:9c:aa:d0:de:fc:33:31:23:bc:5b:3a:28: 52:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:78:19:E3:ED:47:61:1A:2E:BC:D0:08:9B:12:11:A9:49:70:BB:90 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3125e31-ed97-4e31-89e9-d4af00e5b32d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.180.0.0/15 Signature Algorithm: sha256WithRSAEncryption 46:29:29:11:32:82:1e:e6:0e:1f:d6:0d:30:6e:df:5c:aa:20: d1:a1:55:55:4d:9b:6f:00:8a:df:21:b3:24:de:25:1d:b2:1c: 15:f5:6b:f2:4a:85:f5:25:a7:d2:cd:db:99:2c:61:32:b4:4c: 79:3d:18:90:7b:ea:b3:31:31:74:fd:14:c2:c0:e3:71:e7:49: 9c:32:15:bc:eb:e3:67:03:c7:13:ec:f7:7f:68:16:2f:ff:f2: 37:9f:df:f4:3d:2e:be:8e:f0:c3:46:3d:da:0b:0f:fe:0c:1a: ba:ce:7d:a4:9a:83:4e:b6:fd:4b:41:9b:30:d6:c1:28:c0:3e: 9e:60:8d:5b:71:cb:d6:6c:34:6e:58:6a:ac:0f:ea:a8:68:01: bd:c2:84:44:fe:c1:d0:51:52:d1:d5:5a:bd:1d:f7:a4:8f:cf: 64:58:b5:f5:f8:d7:b6:13:80:2d:ec:e3:e0:dc:4a:ac:e6:0e: 66:45:12:ed:33:58:b2:dd:79:c4:56:81:b4:8d:49:74:2b:cb: bf:e4:6e:1a:65:e4:7c:48:d0:02:93:83:5a:5f:0c:49:07:25: f5:18:95:29:56:91:18:bb:00:16:29:6b:bb:55:57:37:96:a2: 86:18:5a:d6:7a:e3:c1:53:2c:81:83:d2:52:f7:58:3c:03:b9: 3f:25:bb:cd -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUShFN7Kcb8Sqwjr+uvnDpSAB5rEgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjExMDAzMDE1WhcNMjYwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMmI2OGViYWIyYTAwM2Y4NzIzYTEzMDQ5MTBhODcwMGFk MzczZmE0MTFmNzUwZWFjODk1NjE3NTE2Y2UyMzdhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDV58LXq+4m0Br0K5nCr4UT7W6Cdlc8itJp2vdTsmPXIFk1 Oot+wAAn1zfjd2IFp2R/8pz/hApXvm0JtmMnMvuzAsFS9ElFfSj0Zqm6g0iFqfe4 ZVOHBCm2u5FIvk2tjdb940hovc3ef50HDFL1jsAawk96LGinENfZ0cOb4bbzbVUd FQ8xGbl6Wx3eY/83Y0WfKRDAtoEgYDZN+COVYDYM8LgUfaA49uFeijHwdS2lqifM WPk9RV/1pi+2iFS4bbbvgzkxt2cZxuThpn3y+wqKCi3FpP9dp2MV9wBVbhl759TR CJBNG1uKJHh6m8rMtUbJHpyq0N78MzEjvFs6KFIfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUC3gZ4+1HYRouvNAImxIRqUlwu5AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YzMTI1ZTMxLWVkOTctNGUzMS04OWU5LWQ0YWYwMGU1YjMyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEotDANBgkqhkiG9w0BAQsFAAOCAQEARikpETKCHuYOH9YNMG7fXKog0aFV VU2bbwCK3yGzJN4lHbIcFfVr8kqF9SWn0s3bmSxhMrRMeT0YkHvqszExdP0UwsDj cedJnDIVvOvjZwPHE+z3f2gWL//yN5/f9D0uvo7ww0Y92gsP/gwaus59pJqDTrb9 S0GbMNbBKMA+nmCNW3HL1mw0blhqrA/qqGgBvcKERP7B0FFS0dVavR33pI/PZFi1 9fjXthOALezj4NxKrOYOZkUS7TNYst15xFaBtI1JdCvLv+RuGmXkfEjQApODWl8M SQcl9RiVKVaRGLsAFilru1VXN5aihhha1nrjwVMsgYPSUvdYPAO5PyW7zQ== -----END CERTIFICATE-----Generated at Fri Jan 2 11:00:46 2026 by rpki-client