This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/71148066-49a2-41d1-9e03-9f35254905d3.roa File: 71148066-49a2-41d1-9e03-9f35254905d3.roa (raw, json) Hash identifier: MR8EnSyPAbq9UN9DYm6uk+1rXpOYiq/2+DFtsQ8iNqc= Subject key identifier: 1B:1C:18:F5:5F:9E:36:0C:1D:F0:D4:02:03:D1:A3:9D:E3:E0:2B:21 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 40A03D7AA710069A0D4EB975D4D1427E8A65FE02 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/71148066-49a2-41d1-9e03-9f35254905d3.roa Signing time: Mon 08 Dec 2025 02:00:28 +0000 ROA not before: Mon 08 Dec 2025 02:00:28 +0000 ROA not after: Sun 08 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 11 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:a0:3d:7a:a7:10:06:9a:0d:4e:b9:75:d4:d1:42:7e:8a:65:fe:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Dec 8 02:00:28 2025 GMT Not After : Mar 8 23:59:59 2026 GMT Subject: serialNumber=05f3ba42eae77f820c49a8af9716bd4f07fa6f5704c32901044f06a3f6ad6184, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e1:42:9a:c8:45:d5:79:6b:14:ff:58:90:c3: e0:25:2b:35:71:05:3a:87:4d:ff:53:6f:d9:ce:85: a6:ec:1c:c7:30:0d:4c:58:e4:07:50:86:ba:a3:a1: 06:51:f1:78:24:d1:82:03:9d:f8:b1:0a:90:39:aa: 18:6b:0b:80:d6:52:51:a0:67:b0:42:96:f3:72:5f: bb:22:db:77:34:2f:43:c6:ef:ff:d4:1c:f3:33:71: 74:ef:df:86:dc:aa:c0:28:57:75:39:10:32:fe:51: ee:b3:13:01:9d:45:44:96:5c:8c:78:ea:65:fa:fc: 4a:9a:b6:20:41:c4:a4:83:7d:3d:b9:32:40:0e:04: e8:64:60:59:c0:e6:7f:ea:f4:27:dd:12:e4:dd:00: 2f:fc:c2:76:f6:24:35:3c:8f:b5:cd:96:41:d2:32: 5c:73:04:ef:7f:b3:bc:fe:c1:a6:cc:32:3e:9d:61: 6c:5d:30:f9:9e:39:05:75:99:a0:21:67:e9:cc:f0: ea:48:77:fc:24:38:d9:96:40:5d:39:bc:cd:ba:f1: 73:c6:5f:82:32:02:96:31:9e:85:07:75:37:f6:f4: 97:66:d2:ba:db:34:6f:7c:c3:96:dc:a7:6e:19:3d: a8:69:22:cd:0f:57:ba:f7:15:8b:bf:c6:dc:84:e3: 9d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:1C:18:F5:5F:9E:36:0C:1D:F0:D4:02:03:D1:A3:9D:E3:E0:2B:21 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/71148066-49a2-41d1-9e03-9f35254905d3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.41.0/24 Signature Algorithm: sha256WithRSAEncryption 46:08:c0:95:49:7a:6a:14:5c:a4:c6:0c:ec:48:04:a2:46:d0: 17:23:33:55:a9:c1:18:d1:2d:b4:5a:38:f2:72:35:03:47:fa: 51:d0:4f:61:dd:f2:82:5a:f3:09:54:35:7e:a3:be:37:28:b9: 4e:96:03:62:c2:6b:dc:e6:a1:ed:6d:1a:4a:f5:4a:c8:60:c7: f9:54:4c:79:0e:89:8e:50:5b:21:b3:e0:cd:d9:e4:61:94:7d: 1f:63:d2:b8:a0:a1:36:84:97:26:e6:b8:36:18:af:89:27:53: f0:4d:cd:48:88:e8:15:7a:39:c8:12:75:58:69:d2:43:65:8b: f4:a9:4f:f3:06:b4:34:ad:84:a4:97:d5:17:13:0c:a9:73:dc: 60:58:87:0f:c1:5b:8c:c7:d3:2d:81:0c:07:c7:b3:f8:fd:63: a8:41:47:a3:b8:cb:ee:ff:0a:93:50:9a:6f:11:98:55:f7:99: 7a:4a:46:31:14:ae:4c:f7:49:47:39:90:a8:39:55:93:6a:91: 9a:36:36:0d:92:82:05:39:a3:64:4a:d3:b7:d7:e5:e3:b7:0c: ab:4e:06:1b:a3:82:18:48:a6:36:30:8d:b6:fd:e1:07:b3:1d: 5b:bf:63:d9:0d:a4:cf:13:56:5d:a8:4c:8a:5c:e2:02:43:25: 2c:d7:20:39 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQKA9eqcQBpoNTrl11NFCfopl/gIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMjA4MDIwMDI4WhcNMjYwMzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNWYzYmE0MmVhZTc3ZjgyMGM0OWE4YWY5NzE2YmQ0ZjA3 ZmE2ZjU3MDRjMzI5MDEwNDRmMDZhM2Y2YWQ2MTg0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDa4UKayEXVeWsU/1iQw+AlKzVxBTqHTf9Tb9nOhabsHMcw DUxY5AdQhrqjoQZR8Xgk0YIDnfixCpA5qhhrC4DWUlGgZ7BClvNyX7si23c0L0PG 7//UHPMzcXTv34bcqsAoV3U5EDL+Ue6zEwGdRUSWXIx46mX6/EqatiBBxKSDfT25 MkAOBOhkYFnA5n/q9CfdEuTdAC/8wnb2JDU8j7XNlkHSMlxzBO9/s7z+wabMMj6d YWxdMPmeOQV1maAhZ+nM8OpId/wkONmWQF05vM268XPGX4IyApYxnoUHdTf29Jdm 0rrbNG98w5bcp24ZPahpIs0PV7r3FYu/xtyE452hAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGxwY9V+eNgwd8NQCA9GjnePgKyEwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzcxMTQ4MDY2LTQ5YTItNDFkMS05ZTAzLTlmMzUyNTQ5MDVkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCkwDQYJKoZIhvcNAQELBQADggEBAEYIwJVJemoUXKTGDOxIBKJG0Bcj M1WpwRjRLbRaOPJyNQNH+lHQT2Hd8oJa8wlUNX6jvjcouU6WA2LCa9zmoe1tGkr1 Sshgx/lUTHkOiY5QWyGz4M3Z5GGUfR9j0rigoTaElybmuDYYr4knU/BNzUiI6BV6 OcgSdVhp0kNli/SpT/MGtDSthKSX1RcTDKlz3GBYhw/BW4zH0y2BDAfHs/j9Y6hB R6O4y+7/CpNQmm8RmFX3mXpKRjEUrkz3SUc5kKg5VZNqkZo2Ng2SggU5o2RK07fX 5eO3DKtOBhujghhIpjYwjbb94QezHVu/Y9kNpM8TVl2oTIpc4gJDJSzXIDk= -----END CERTIFICATE-----Generated at Tue Dec 9 19:27:09 2025 by rpki-client