This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/8a0cac28-29b8-4996-b010-5eab278cc342.roa File: 8a0cac28-29b8-4996-b010-5eab278cc342.roa (raw, json) Hash identifier: rrm9U4u3ThkdFftHCdHeXpPWUS7M6nU0k3ZwDAJ4Uz0= Subject key identifier: 27:8E:E8:2E:0F:27:39:B3:11:69:A8:2F:61:EC:04:94:00:2A:AA:52 Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 57F41D95F97DD4A08CB62D6C00161BE04969A8F4 Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/8a0cac28-29b8-4996-b010-5eab278cc342.roa Signing time: Sun 07 Dec 2025 00:10:10 +0000 ROA not before: Sun 07 Dec 2025 00:10:10 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:f4:1d:95:f9:7d:d4:a0:8c:b6:2d:6c:00:16:1b:e0:49:69:a8:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Dec 7 00:10:10 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=c3b30f720dd11e564b6fdd0f6d292a04f5ced4dfa95025689ca7c27c4023aa57, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3c:41:18:ed:6f:5a:88:66:41:2b:d7:17:d0: f2:c5:51:f8:c2:23:88:3a:cd:4d:60:00:64:dc:1f: 11:09:50:93:f3:ef:15:53:44:27:0f:00:cf:0e:5c: 2a:c6:ae:6d:49:59:6e:da:a3:57:f3:26:ed:30:de: 79:89:be:23:4c:4f:9e:57:73:d2:c7:87:09:a2:21: 6a:b3:5f:74:5e:8c:79:d4:b8:d4:82:4f:9d:7a:88: a0:43:98:dd:86:76:f2:39:f2:47:39:9f:d4:d8:6f: 0b:3d:1a:ff:c2:84:79:63:59:c1:10:34:23:fd:f3: 5d:1e:ff:dc:9e:0f:e7:f9:c5:5b:b7:1f:13:97:ab: ff:58:38:aa:8f:76:fd:fc:69:02:f2:01:ce:a4:4b: 80:f6:6b:2f:62:9f:b4:8f:b5:ad:4d:8b:6d:7d:16: 0e:bd:bf:03:a1:8a:d1:48:0b:cb:00:0c:ac:3b:d0: 2a:20:2d:90:db:e0:b5:7b:db:8d:bb:12:04:ef:95: 41:ca:07:8b:4c:fb:f9:9e:ae:9c:ec:65:7f:39:77: af:38:5a:63:92:d3:bb:c7:56:33:7b:27:d3:ee:fe: 7c:10:4e:8f:87:83:be:18:77:70:ca:63:f2:71:00: d0:f0:25:7a:77:14:b4:2c:6e:29:cd:c2:94:e1:db: a4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:8E:E8:2E:0F:27:39:B3:11:69:A8:2F:61:EC:04:94:00:2A:AA:52 X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/8a0cac28-29b8-4996-b010-5eab278cc342.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.100.0/24 Signature Algorithm: sha256WithRSAEncryption a8:39:c0:25:aa:d1:05:fc:ba:6b:9d:fe:a8:87:a2:9f:06:bf: 89:5c:fc:9c:d5:c6:a3:15:ad:7e:9e:fd:ef:f8:89:cb:6b:85: 1b:a6:b6:40:56:8b:69:e7:37:65:0c:92:4a:43:47:5d:71:88: cf:52:a7:80:34:39:42:80:f6:41:47:f4:7b:73:0c:d3:6f:0a: dc:ba:d7:44:b2:cb:95:85:3d:33:bd:06:8e:e0:85:11:c1:5e: ad:f0:29:6f:8d:e2:d0:bb:33:19:3e:04:31:05:e9:c3:92:b4: ab:5e:fb:c3:6f:03:d8:e4:2a:f1:e3:e2:e6:21:ba:40:b1:07: 63:9b:ab:07:55:d5:90:63:eb:d1:cc:67:f9:d2:8b:4c:81:64: 63:05:b6:67:3c:54:d5:c6:71:f3:d3:9a:46:93:65:22:3b:79: 74:25:74:21:f8:9d:d3:af:b7:d2:5a:54:d9:83:39:08:8c:b2: 2c:56:d4:bd:ec:51:89:60:ab:cd:63:7f:37:62:e9:d6:9d:73: f2:31:7f:35:9e:3f:62:67:fc:9e:bd:b4:4c:eb:a7:f0:f7:b8: 88:0d:0a:3a:58:fb:22:f4:03:d1:26:5c:ee:c3:99:57:bb:42: af:a4:52:a1:c4:46:c5:e6:b0:d9:70:b2:12:02:59:2e:0f:7c: 49:fd:47:e4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV/Qdlfl91KCMti1sABYb4ElpqPQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUxMjA3MDAxMDEwWhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjM2IzMGY3MjBkZDExZTU2NGI2ZmRkMGY2ZDI5MmEwNGY1 Y2VkNGRmYTk1MDI1Njg5Y2E3YzI3YzQwMjNhYTU3MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+PEEY7W9aiGZBK9cX0PLFUfjCI4g6zU1gAGTcHxEJUJPz 7xVTRCcPAM8OXCrGrm1JWW7ao1fzJu0w3nmJviNMT55Xc9LHhwmiIWqzX3RejHnU uNSCT516iKBDmN2GdvI58kc5n9TYbws9Gv/ChHljWcEQNCP9810e/9yeD+f5xVu3 HxOXq/9YOKqPdv38aQLyAc6kS4D2ay9in7SPta1Ni219Fg69vwOhitFIC8sADKw7 0CogLZDb4LV72427EgTvlUHKB4tM+/merpzsZX85d684WmOS07vHVjN7J9Pu/nwQ To+Hg74Yd3DKY/JxANDwJXp3FLQsbinNwpTh26TfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJ47oLg8nObMRaagvYewElAAqqlIwHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwLzhhMGNhYzI4LTI5YjgtNDk5Ni1iMDEwLTVlYWIyNzhjYzM0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADGKWQwDQYJKoZIhvcNAQELBQADggEBAKg5wCWq0QX8umud/qiHop8Gv4lc /JzVxqMVrX6e/e/4ictrhRumtkBWi2nnN2UMkkpDR11xiM9Sp4A0OUKA9kFH9Htz DNNvCty610Syy5WFPTO9Bo7ghRHBXq3wKW+N4tC7Mxk+BDEF6cOStKte+8NvA9jk KvHj4uYhukCxB2ObqwdV1ZBj69HMZ/nSi0yBZGMFtmc8VNXGcfPTmkaTZSI7eXQl dCH4ndOvt9JaVNmDOQiMsixW1L3sUYlgq81jfzdi6dadc/IxfzWeP2Jn/J69tEzr p/D3uIgNCjpY+yL0A9EmXO7DmVe7Qq+kUqHERsXmsNlwshICWS4PfEn9R+Q= -----END CERTIFICATE-----Generated at Fri Dec 19 20:51:05 2025 by rpki-client