This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/2dde36c0-2f63-460e-82c0-69cf2908a539.roa File: 2dde36c0-2f63-460e-82c0-69cf2908a539.roa (raw, json) Hash identifier: 53r7DX11grAnGug5krxqiTwIYP+1HP7pBsVWkbp6JTU= Subject key identifier: 31:5E:2B:DA:4A:88:55:96:51:18:47:00:88:8A:83:A1:A1:A4:28:C9 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 5BA746096C6D500F1BA1FC27D8B4A91F44330CF4 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/2dde36c0-2f63-460e-82c0-69cf2908a539.roa Signing time: Wed 12 Nov 2025 00:10:08 +0000 ROA not before: Wed 12 Nov 2025 00:10:08 +0000 ROA not after: Wed 17 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 198.41.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 24 Nov 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:a7:46:09:6c:6d:50:0f:1b:a1:fc:27:d8:b4:a9:1f:44:33:0c:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Nov 12 00:10:08 2025 GMT Not After : Dec 17 23:59:59 2025 GMT Subject: serialNumber=f1aafb91c4a74a3f172551ad0b938e87284e1549d92d632b3baf3712b60d4fce, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a1:29:5d:b9:18:e8:98:f1:71:f1:53:a9:6a: e6:b6:06:8e:3d:d1:58:08:ba:be:e2:4b:c9:98:a3: 2d:2d:49:2c:ad:ed:a8:ca:bb:5d:98:76:bb:7a:4e: 51:51:cb:fb:67:e8:79:22:25:14:77:41:5d:70:a7: 50:93:75:2a:9e:ca:84:5f:6f:d2:91:5f:76:3a:f5: 21:a0:02:7d:78:08:5a:a6:ed:44:50:2e:6e:4c:9c: 39:3c:ff:ed:e0:2d:93:91:5d:91:f5:88:55:8c:3f: eb:d5:60:23:8f:d6:b6:82:f4:af:93:75:a6:8f:40: 98:fd:41:d5:05:8f:10:df:86:5c:5c:8d:32:45:2c: 28:d5:ea:28:24:f0:cc:67:76:38:04:9d:f7:09:14: 58:e2:64:8f:93:9a:1c:3a:1c:b5:35:5c:80:ee:e1: f8:02:b7:fe:9f:64:2f:b7:b8:20:f2:db:52:c6:7b: 64:03:04:da:9b:e0:10:7a:bf:b2:19:85:a9:5b:86: fb:ad:2c:31:c6:d9:da:94:44:fb:a5:35:f9:4d:9b: ef:87:ff:68:57:85:08:16:ef:b4:bc:fc:d0:2b:2f: d3:18:a7:de:00:a8:16:7c:e4:71:d2:51:6e:1e:ac: 2d:d1:e9:aa:cd:70:24:0b:ab:7f:26:3c:e2:1e:03: 26:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:5E:2B:DA:4A:88:55:96:51:18:47:00:88:8A:83:A1:A1:A4:28:C9 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/2dde36c0-2f63-460e-82c0-69cf2908a539.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.99.0/24 Signature Algorithm: sha256WithRSAEncryption 53:73:61:f1:14:b0:85:91:ab:a6:3a:8c:9d:27:dc:0c:a5:2a: 33:d6:6d:2f:77:3c:78:e4:7f:a7:ad:95:b0:25:6c:51:be:d6: c1:c3:63:20:ea:04:a9:f1:06:49:0c:11:98:0e:1b:cf:ff:c5: 38:dc:0d:f1:e0:67:e5:b5:b9:09:6e:ce:ba:ec:ca:0f:21:72: 3b:b9:db:de:63:6f:92:2c:67:b8:88:09:97:62:5f:47:0f:69: 2b:8f:70:e0:24:47:e2:e3:93:96:31:e0:27:b6:d3:8b:c4:62: c0:b3:05:f0:d4:9b:8a:65:4a:44:e2:ca:fd:5b:45:89:c9:fa: 78:fe:ea:36:f4:a6:42:c6:01:4a:2d:b7:0f:fd:ee:f7:09:bb: 9a:01:2c:ed:ff:69:c7:7c:1b:17:2a:6d:18:59:5c:47:9c:d9: 55:9a:6d:a7:b9:c6:bc:33:6b:1c:9f:12:d7:5a:08:b4:4c:ee: 0c:30:7b:76:fb:f7:b0:02:5c:a5:af:09:76:a2:c4:75:03:bb: 31:4a:49:e0:af:f6:65:c7:e9:11:3c:16:be:9e:5d:b9:94:ba: f2:c2:80:a9:1a:53:6e:8d:7a:6f:9b:df:d5:d2:47:44:b3:69: 68:a4:01:a7:05:3f:8f:61:14:38:1c:04:48:4e:33:66:ea:49: 7f:dc:62:56 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW6dGCWxtUA8bofwn2LSpH0QzDPQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUxMTEyMDAxMDA4WhcNMjUxMjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMWFhZmI5MWM0YTc0YTNmMTcyNTUxYWQwYjkzOGU4NzI4 NGUxNTQ5ZDkyZDYzMmIzYmFmMzcxMmI2MGQ0ZmNlMS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMoSlduRjomPFx8VOpaua2Bo490VgIur7iS8mYoy0tSSyt 7ajKu12Ydrt6TlFRy/tn6HkiJRR3QV1wp1CTdSqeyoRfb9KRX3Y69SGgAn14CFqm 7URQLm5MnDk8/+3gLZORXZH1iFWMP+vVYCOP1raC9K+TdaaPQJj9QdUFjxDfhlxc jTJFLCjV6igk8MxndjgEnfcJFFjiZI+Tmhw6HLU1XIDu4fgCt/6fZC+3uCDy21LG e2QDBNqb4BB6v7IZhalbhvutLDHG2dqURPulNflNm++H/2hXhQgW77S8/NArL9MY p94AqBZ85HHSUW4erC3R6arNcCQLq38mPOIeAyafAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMV4r2kqIVZZRGEcAiIqDoaGkKMkwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzJkZGUzNmMwLTJmNjMtNDYwZS04MmMwLTY5Y2YyOTA4YTUzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWMwDQYJKoZIhvcNAQELBQADggEBAFNzYfEUsIWRq6Y6jJ0n3AylKjPW bS93PHjkf6etlbAlbFG+1sHDYyDqBKnxBkkMEZgOG8//xTjcDfHgZ+W1uQluzrrs yg8hcju5295jb5IsZ7iICZdiX0cPaSuPcOAkR+Ljk5Yx4Ce204vEYsCzBfDUm4pl SkTiyv1bRYnJ+nj+6jb0pkLGAUottw/97vcJu5oBLO3/acd8GxcqbRhZXEec2VWa bae5xrwzaxyfEtdaCLRM7gwwe3b797ACXKWvCXaixHUDuzFKSeCv9mXH6RE8Fr6e XbmUuvLCgKkaU26Nem+b39XSR0SzaWikAacFP49hFDgcBEhOM2bqSX/cYlY= -----END CERTIFICATE-----Generated at Sat Nov 22 21:29:53 2025 by rpki-client