This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e3c846b1-fb00-4cb7-823d-3a58bedd6659.roa File: e3c846b1-fb00-4cb7-823d-3a58bedd6659.roa (raw, json) Hash identifier: VlpT89NvQjuGaPS7gXsxfONy2t76vPnioWU65SQMAzE= Subject key identifier: 54:E5:2A:1C:CA:B8:40:05:62:C3:D3:9A:ED:82:63:62:2A:B9:0A:9A Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Certificate serial: 397478F2B08CBCF7EFE2157D1FCD9C45ED30D224 Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e3c846b1-fb00-4cb7-823d-3a58bedd6659.roa Signing time: Sun 07 Dec 2025 00:00:08 +0000 ROA not before: Sun 07 Dec 2025 00:00:08 +0000 ROA not after: Sat 07 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 184.169.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 31 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:74:78:f2:b0:8c:bc:f7:ef:e2:15:7d:1f:cd:9c:45:ed:30:d2:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64 Validity Not Before: Dec 7 00:00:08 2025 GMT Not After : Mar 7 23:59:59 2026 GMT Subject: serialNumber=13e971964d6980c85c48afa1bd4d8e3fb151348b5ff883eac1b0cbc149ab7f62, CN=71c3876e-b944-4600-92c7-cec33d89523f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b4:d9:a5:b1:57:90:b6:9e:96:5f:3f:87:f7: bc:23:6a:4f:41:1e:7d:2c:6a:de:11:e0:bb:f2:2e: 6e:b2:51:12:95:90:5e:50:f0:e1:7e:16:69:f8:fa: fc:7e:24:8f:1c:82:cb:42:62:fe:67:83:85:7c:25: da:36:de:89:b6:0b:3f:ec:37:07:4b:93:cf:40:f0: fd:20:44:e9:6d:d5:c8:df:b2:c2:a1:74:9f:98:8b: f3:45:a0:9c:5e:f0:31:38:ba:52:51:bc:ae:6a:3c: 09:62:0a:09:b6:03:f0:ea:fc:ae:01:c3:f1:48:51: f3:fa:d0:77:32:a4:af:66:8f:80:0a:6e:38:e2:e4: 7b:0b:9a:fa:6f:02:a2:9d:86:84:36:5c:9c:ea:8f: 38:67:d4:a8:20:88:b8:70:e7:a0:8b:89:20:75:b8: bb:b5:83:1d:08:d5:e9:d5:56:25:60:15:2d:0d:68: f4:01:0d:65:3a:67:0f:65:35:75:81:ea:8c:88:d7: ac:cb:b7:1e:a7:d8:56:00:c5:90:b8:0c:ef:de:fb: e5:26:01:21:04:fe:de:65:a1:5c:f8:3a:c6:18:51: bb:3a:d3:05:f8:0e:42:b5:44:fa:e9:28:1e:dc:17: 62:a1:48:45:22:53:23:f2:74:8f:0e:7a:68:54:fe: 2c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:E5:2A:1C:CA:B8:40:05:62:C3:D3:9A:ED:82:63:62:2A:B9:0A:9A X509v3 Authority Key Identifier: keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/e3c846b1-fb00-4cb7-823d-3a58bedd6659.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.169.176.0/21 Signature Algorithm: sha256WithRSAEncryption 06:cd:4f:1c:c5:4b:eb:e2:73:48:fa:40:82:22:5c:09:cf:5f: 33:be:86:dd:1d:1f:b5:34:31:10:0d:c9:ff:a2:64:fc:60:a3: 6b:93:a5:41:f0:4b:26:35:80:b4:90:91:f7:5d:de:05:1e:3d: 38:66:35:b2:99:b9:a8:0f:4a:6d:42:c9:64:71:39:f9:6a:39: 4a:9a:30:2e:da:92:05:08:c3:65:b1:b8:2f:c0:ed:f7:08:7f: 51:51:f9:62:4e:0f:e9:b9:d4:4f:8f:b1:89:33:cd:5d:89:5a: 85:17:c1:ff:77:4d:eb:d0:ec:8b:31:06:43:75:a3:9e:c0:65: 47:78:d1:a6:8f:3e:51:55:f6:86:ea:c3:99:da:13:a3:c4:2e: 4e:c4:fb:61:20:92:ca:84:5e:94:62:35:5b:f4:f4:e8:b5:9f: 17:c1:c7:3b:ad:bc:bd:9f:37:5f:f2:21:3b:d1:c7:7d:74:b8: e2:34:fa:1a:65:70:ec:16:89:b4:04:c0:ee:ea:52:66:94:d0: cd:22:b4:e0:e2:79:35:a9:18:ba:d4:97:fd:30:6f:3a:8f:62: d3:e7:6b:29:5a:13:3e:c8:a5:9a:ef:c9:d4:06:cf:33:ec:ae: a2:ec:6c:f7:67:9a:d0:ad:76:b3:91:be:50:80:7c:33:6c:c2: b8:dd:c7:fd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOXR48rCMvPfv4hV9H82cRe0w0iQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNWQ4MDM4MDVlMjE4MjNjOTMxOTg3ZTljOWMzN2YwNDAy MGFhYmFiZjliNGRmZjliNjQwHhcNMjUxMjA3MDAwMDA4WhcNMjYwMzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxM2U5NzE5NjRkNjk4MGM4NWM0OGFmYTFiZDRkOGUzZmIx NTEzNDhiNWZmODgzZWFjMWIwY2JjMTQ5YWI3ZjYyMS0wKwYDVQQDEyQ3MWMzODc2 ZS1iOTQ0LTQ2MDAtOTJjNy1jZWMzM2Q4OTUyM2YwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMtNmlsVeQtp6WXz+H97wjak9BHn0sat4R4LvyLm6yURKV kF5Q8OF+Fmn4+vx+JI8cgstCYv5ng4V8Jdo23om2Cz/sNwdLk89A8P0gROlt1cjf ssKhdJ+Yi/NFoJxe8DE4ulJRvK5qPAliCgm2A/Dq/K4Bw/FIUfP60HcypK9mj4AK bjji5HsLmvpvAqKdhoQ2XJzqjzhn1KggiLhw56CLiSB1uLu1gx0I1enVViVgFS0N aPQBDWU6Zw9lNXWB6oyI16zLtx6n2FYAxZC4DO/e++UmASEE/t5loVz4OsYYUbs6 0wX4DkK1RPrpKB7cF2KhSEUiUyPydI8OemhU/iwVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVOUqHMq4QAViw9Oa7YJjYiq5CpowHwYDVR0jBBgwFoAU/iLg9yLMTwYM WFoSb+aiZQA2XkgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi80MmIyOTkxZi0y MmM3LTQyZjctOGNmNS00ZjMxMzg4NTk3MzIvNWQ4MDM4MDVlMjE4MjNjOTMxOTg3 ZTljOWMzN2YwNDAyMGFhYmFiZjliNGRmZjliNjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYTg0MTgyM2MtYTEwZC00NzdjLWJmZGYtNDA4 NmYwYjE1OTRjL2UzYzg0NmIxLWZiMDAtNGNiNy04MjNkLTNhNThiZWRkNjY1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2E4NDE4MjNjLWExMGQtNDc3Yy1iZmRm LTQwODZmMGIxNTk0Yy9HQ1BKTVpoLW5KdzM4RUFncXJxX20wM19tMlEuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAO4qbAwDQYJKoZIhvcNAQELBQADggEBAAbNTxzFS+vic0j6QIIiXAnPXzO+ ht0dH7U0MRANyf+iZPxgo2uTpUHwSyY1gLSQkfdd3gUePThmNbKZuagPSm1CyWRx OflqOUqaMC7akgUIw2WxuC/A7fcIf1FR+WJOD+m51E+PsYkzzV2JWoUXwf93TevQ 7IsxBkN1o57AZUd40aaPPlFV9obqw5naE6PELk7E+2EgksqEXpRiNVv09Oi1nxfB xzutvL2fN1/yITvRx310uOI0+hplcOwWibQEwO7qUmaU0M0itODieTWpGLrUl/0w bzqPYtPnaylaEz7IpZrvydQGzzPsrqLsbPdnmtCtdrORvlCAfDNswrjdx/0= -----END CERTIFICATE-----Generated at Mon Dec 29 14:51:25 2025 by rpki-client