This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/ca3490d0-1e9e-400b-af5e-b8236be17139.roa File: ca3490d0-1e9e-400b-af5e-b8236be17139.roa (raw, json) Hash identifier: YgjE8pKxx3pgo4WvQqgb7IU7wqopZIVNnFA3We0/WVg= Subject key identifier: 1E:03:02:D1:8E:9E:BA:1A:04:EF:5C:78:FC:C2:4C:27:7E:78:39:CD Certificate issuer: /CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Certificate serial: 31FE814860319ADD385AB4E0E5DB5558C539EEDC Authority key identifier: CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/ca3490d0-1e9e-400b-af5e-b8236be17139.roa Signing time: Sun 07 Dec 2025 00:10:07 +0000 ROA not before: Sun 07 Dec 2025 00:10:07 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 198.41.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:fe:81:48:60:31:9a:dd:38:5a:b4:e0:e5:db:55:58:c5:39:ee:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173 Validity Not Before: Dec 7 00:10:07 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=6fa49a5aa9438c41ac55114d948da15a7022c6dce1331f9a57335ffc35770e38, CN=88af7b95-2ef7-49fc-a37d-1b8f0547180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:3b:c4:91:48:94:05:74:ca:cb:1c:54:49:77: 56:ae:da:1c:8b:8c:a6:f1:e1:d4:76:d2:d4:d0:4a: c4:72:a9:e7:f3:0d:01:45:d5:7f:67:e7:14:3a:f1: bf:01:0e:30:aa:92:f3:13:d2:05:99:49:3c:a2:ab: b4:ea:27:52:52:02:cc:44:e1:e3:9d:89:c8:7f:5e: 08:4c:7e:a5:e5:93:1d:1f:eb:65:8e:48:5e:a1:6f: 07:80:02:50:ed:c1:2d:5a:f5:b4:1b:7a:98:bd:c7: dd:50:08:2d:4b:7b:9c:e1:85:8d:b8:e7:e8:c7:f6: 62:95:29:82:07:79:c6:43:4e:61:e5:4a:83:1d:53: 37:07:80:79:f5:3f:9b:52:d2:e6:84:77:4c:85:6f: 72:22:dc:49:87:c8:87:b6:24:d6:cc:55:1a:c1:9c: 63:f7:2d:b2:02:13:85:dc:77:e0:0f:3f:b9:1d:91: 9a:9b:80:36:7f:ec:3e:e7:d2:c8:cf:04:ed:a7:bf: 24:e8:c6:49:77:f8:fd:7e:73:ed:85:08:cd:d2:a8: 8f:86:54:da:2f:88:5a:a7:f5:4e:75:67:53:1d:d8: 5d:30:19:93:bf:e0:72:8a:7b:77:9e:e6:89:16:dd: f4:23:1d:fc:b3:63:bb:28:17:7f:0f:3c:94:49:74: cd:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:03:02:D1:8E:9E:BA:1A:04:EF:5C:78:FC:C2:4C:27:7E:78:39:CD X509v3 Authority Key Identifier: keyid:CC:10:61:27:3F:FF:76:3F:76:D2:DE:E2:85:83:E8:BA:3B:05:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/e5dea660-bf59-4b4c-b9ad-4a6787e03fce/c319424e039f86d6ad9fc4e7223df841d20ae6d0ff12428173.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/ca3490d0-1e9e-400b-af5e-b8236be17139.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2df51cd2-e6af-493a-a88a-3221d01f7d90/n4bWrZ_E5yI9-EHSCubQ_xJCgXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.41.96.0/19 Signature Algorithm: sha256WithRSAEncryption 88:b3:bc:4e:cb:f6:41:59:77:c0:c6:bc:09:87:a8:c6:b2:9a: a7:6f:f0:36:7a:64:51:9f:83:d4:01:bd:b7:d8:ca:78:ae:6c: 39:be:29:66:9f:d7:c2:42:b8:ad:58:00:0c:f0:0c:15:bf:cc: 51:93:11:85:09:e8:09:31:b3:d0:53:ca:30:b8:c1:bb:3d:ce: 11:a5:4d:26:a4:32:f3:76:4e:3c:df:c6:ac:16:82:d6:c4:65: 34:6e:f5:2b:d6:b9:98:d2:c2:b2:c4:0c:5e:bc:5f:cf:e0:4e: d4:87:bc:0f:03:8a:21:22:c4:70:03:b1:ad:31:84:4c:38:24: 9a:53:cd:08:55:15:c7:fc:ef:3f:66:25:88:d0:68:62:c1:48: d6:01:3b:a9:ee:ab:c5:c5:81:17:72:4e:d5:79:b2:38:b9:a0: d2:80:c8:2b:81:c3:15:88:24:da:cd:03:8b:b7:99:a2:13:07: da:13:9b:06:72:83:9e:3f:40:43:09:1a:b0:14:2f:36:e8:06: bc:a8:ad:f7:03:de:65:7a:73:8d:58:19:48:c8:84:58:49:fb: 14:49:23:94:bb:a4:4f:e8:a1:c0:49:ab:94:b2:55:e7:d9:8c: 8a:c1:de:6a:6d:76:3a:85:6a:cd:0e:2f:79:39:5d:1f:5d:17: 20:cf:cf:cb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMf6BSGAxmt04WrTg5dtVWMU57twwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzMxOTQyNGUwMzlmODZkNmFkOWZjNGU3MjIzZGY4NDFk MjBhZTZkMGZmMTI0MjgxNzMwHhcNMjUxMjA3MDAxMDA3WhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZmE0OWE1YWE5NDM4YzQxYWM1NTExNGQ5NDhkYTE1YTcw MjJjNmRjZTEzMzFmOWE1NzMzNWZmYzM1NzcwZTM4MS0wKwYDVQQDEyQ4OGFmN2I5 NS0yZWY3LTQ5ZmMtYTM3ZC0xYjhmMDU0NzE4MGQwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbO8SRSJQFdMrLHFRJd1au2hyLjKbx4dR20tTQSsRyqefz DQFF1X9n5xQ68b8BDjCqkvMT0gWZSTyiq7TqJ1JSAsxE4eOdich/XghMfqXlkx0f 62WOSF6hbweAAlDtwS1a9bQbepi9x91QCC1Le5zhhY245+jH9mKVKYIHecZDTmHl SoMdUzcHgHn1P5tS0uaEd0yFb3Ii3EmHyIe2JNbMVRrBnGP3LbICE4Xcd+APP7kd kZqbgDZ/7D7n0sjPBO2nvyToxkl3+P1+c+2FCM3SqI+GVNoviFqn9U51Z1Md2F0w GZO/4HKKe3ee5okW3fQjHfyzY7soF38PPJRJdM3fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHgMC0Y6euhoE71x4/MJMJ354Oc0wHwYDVR0jBBgwFoAUzBBhJz//dj92 0t7ihYPoujsFxDAwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy9lNWRlYTY2MC1i ZjU5LTRiNGMtYjlhZC00YTY3ODdlMDNmY2UvYzMxOTQyNGUwMzlmODZkNmFkOWZj NGU3MjIzZGY4NDFkMjBhZTZkMGZmMTI0MjgxNzMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmRmNTFjZDItZTZhZi00OTNhLWE4OGEtMzIy MWQwMWY3ZDkwL2NhMzQ5MGQwLTFlOWUtNDAwYi1hZjVlLWI4MjM2YmUxNzEzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJkZjUxY2QyLWU2YWYtNDkzYS1hODhh LTMyMjFkMDFmN2Q5MC9uNGJXclpfRTV5STktRUhTQ3ViUV94SkNnWE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGKWAwDQYJKoZIhvcNAQELBQADggEBAIizvE7L9kFZd8DGvAmHqMaymqdv 8DZ6ZFGfg9QBvbfYyniubDm+KWaf18JCuK1YAAzwDBW/zFGTEYUJ6Akxs9BTyjC4 wbs9zhGlTSakMvN2TjzfxqwWgtbEZTRu9SvWuZjSwrLEDF68X8/gTtSHvA8DiiEi xHADsa0xhEw4JJpTzQhVFcf87z9mJYjQaGLBSNYBO6nuq8XFgRdyTtV5sji5oNKA yCuBwxWIJNrNA4u3maITB9oTmwZyg54/QEMJGrAULzboBryorfcD3mV6c41YGUjI hFhJ+xRJI5S7pE/oocBJq5SyVefZjIrB3mptdjqFas0OL3k5XR9dFyDPz8s= -----END CERTIFICATE-----Generated at Fri Dec 19 20:48:07 2025 by rpki-client