This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3ad2ae9c-d505-4b53-8a03-c0034602d40e.roa File: 3ad2ae9c-d505-4b53-8a03-c0034602d40e.roa (raw, json) Hash identifier: bdQZDvBeQ97IKkZzGy6oFtrQa/mI0wDTKLsIbQRPm3M= Subject key identifier: 24:04:F4:AA:B8:35:F3:FA:79:B2:C8:77:71:26:6A:70:F1:CB:FA:76 Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 359E6316429875A25EAB7B3E557F5A0E94909E54 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3ad2ae9c-d505-4b53-8a03-c0034602d40e.roa Signing time: Sun 23 Nov 2025 00:30:11 +0000 ROA not before: Sun 23 Nov 2025 00:30:11 +0000 ROA not after: Sat 21 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.251.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 25 Nov 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:9e:63:16:42:98:75:a2:5e:ab:7b:3e:55:7f:5a:0e:94:90:9e:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Nov 23 00:30:11 2025 GMT Not After : Feb 21 23:59:59 2026 GMT Subject: serialNumber=99034114b508d0b2929a2e6f30dc77a250aa6e9241d9fd5fe5f3cc7afc1e8c19, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f2:2c:c6:91:f6:c9:31:64:be:9d:6c:7e:da: 70:1a:a7:9e:5a:f7:9f:ea:c8:97:2c:19:e4:ea:06: 59:2f:bd:27:d7:8c:e6:3d:de:0a:68:6f:31:5a:89: 01:2b:2f:81:b6:5b:84:d5:75:52:47:00:f9:1b:e7: 8a:ce:44:7c:66:4c:85:b9:32:f9:e4:79:23:4a:2d: 49:48:cc:c4:b6:a7:2e:7c:27:c9:55:e2:e1:bb:f7: 4c:d6:7f:f7:c8:eb:7d:99:e3:a7:0f:9b:1c:55:25: 9b:b0:9e:bb:c7:e2:92:b9:dc:2d:8e:a9:ec:9a:f9: 1e:84:78:9f:27:80:13:2e:9a:d2:83:c8:d2:57:08: f4:91:5e:45:cd:0b:fa:c6:da:14:b4:8b:ef:2c:24: 26:7a:94:4e:59:0d:ae:f8:d0:79:ac:63:bf:f8:63: fc:5c:d8:6b:5a:52:75:e8:24:67:cc:98:82:c9:ff: 09:8d:c1:26:b7:66:25:93:d8:8b:75:aa:74:52:5f: 62:74:73:d9:bf:1d:62:9c:bd:77:e7:0f:e2:35:f3: bb:2d:19:74:68:78:86:d6:2f:0f:f5:16:99:7a:9c: 18:f4:7e:34:fb:d5:df:27:fe:21:27:ad:7a:4a:4a: c9:e5:72:e0:72:0f:6c:bc:df:46:fc:cf:2c:80:fa: 9e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:04:F4:AA:B8:35:F3:FA:79:B2:C8:77:71:26:6A:70:F1:CB:FA:76 X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3ad2ae9c-d505-4b53-8a03-c0034602d40e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.251.224.0/24 Signature Algorithm: sha256WithRSAEncryption 23:33:e5:b0:f1:53:42:af:d7:83:88:57:1d:d6:46:ba:91:96: 2b:72:8d:1e:4b:e9:5b:dd:34:1c:f9:f3:64:2a:5f:33:fb:43: c9:67:b8:b9:c8:29:52:43:29:a8:3f:b5:59:6d:63:f9:3e:dd: 7d:b9:49:b8:6e:e6:22:30:ca:ff:84:4a:96:50:1c:a0:8d:cd: b5:c6:bf:4e:10:32:6d:e0:f7:20:33:bc:aa:fd:5a:09:f3:b2: df:39:2f:fd:b3:56:73:fd:eb:68:a9:68:6c:52:db:29:bd:7b: 55:b5:14:a8:fb:dd:07:4c:ef:6a:8b:fb:9d:e0:95:a7:11:5f: cb:35:16:f1:42:33:a0:22:6d:5d:62:56:64:95:83:5f:21:89: 74:84:e1:c2:5a:fa:5c:32:52:47:bd:29:2f:b5:aa:67:d9:e0: 51:aa:6e:e5:1b:db:b0:17:f1:9e:fb:5d:02:1c:cd:88:97:1d: 5a:b9:8f:03:e3:70:01:d4:81:a2:88:c4:f3:64:9d:79:79:71: 01:d3:66:a4:25:48:8a:d6:42:40:ad:0a:27:39:3b:21:d7:e9: d6:e5:c7:06:e2:da:f8:9e:62:bf:f8:6d:72:66:d8:11:5b:63: 9c:ca:de:74:6e:98:ad:03:a0:29:8e:aa:7e:57:7e:65:eb:2b: 95:ab:e5:b5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNZ5jFkKYdaJeq3s+VX9aDpSQnlQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUxMTIzMDAzMDExWhcNMjYwMjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5OTAzNDExNGI1MDhkMGIyOTI5YTJlNmYzMGRjNzdhMjUw YWE2ZTkyNDFkOWZkNWZlNWYzY2M3YWZjMWU4YzE5MS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCq8izGkfbJMWS+nWx+2nAap55a95/qyJcsGeTqBlkvvSfX jOY93gpobzFaiQErL4G2W4TVdVJHAPkb54rORHxmTIW5MvnkeSNKLUlIzMS2py58 J8lV4uG790zWf/fI632Z46cPmxxVJZuwnrvH4pK53C2Oqeya+R6EeJ8ngBMumtKD yNJXCPSRXkXNC/rG2hS0i+8sJCZ6lE5ZDa740HmsY7/4Y/xc2GtaUnXoJGfMmILJ /wmNwSa3ZiWT2It1qnRSX2J0c9m/HWKcvXfnD+I187stGXRoeIbWLw/1Fpl6nBj0 fjT71d8n/iEnrXpKSsnlcuByD2y830b8zyyA+p4NAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJAT0qrg18/p5ssh3cSZqcPHL+nYwHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzNhZDJhZTljLWQ1MDUtNGI1My04YTAzLWMwMDM0NjAyZDQwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX++AwDQYJKoZIhvcNAQELBQADggEBACMz5bDxU0Kv14OIVx3WRrqRlity jR5L6VvdNBz582QqXzP7Q8lnuLnIKVJDKag/tVltY/k+3X25Sbhu5iIwyv+ESpZQ HKCNzbXGv04QMm3g9yAzvKr9Wgnzst85L/2zVnP962ipaGxS2ym9e1W1FKj73QdM 72qL+53glacRX8s1FvFCM6AibV1iVmSVg18hiXSE4cJa+lwyUke9KS+1qmfZ4FGq buUb27AX8Z77XQIczYiXHVq5jwPjcAHUgaKIxPNknXl5cQHTZqQlSIrWQkCtCic5 OyHX6dblxwbi2vieYr/4bXJm2BFbY5zK3nRumK0DoCmOqn5XfmXrK5Wr5bU= -----END CERTIFICATE-----Generated at Mon Nov 24 05:07:46 2025 by rpki-client