This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a541c4d2-1c45-48f2-9c5e-be1aa414666f.roa File: a541c4d2-1c45-48f2-9c5e-be1aa414666f.roa (raw, json) Hash identifier: n1OdLVtVEqHw420GAjGrrE1dhtwZkiAW8kIsxXxBlns= Subject key identifier: 28:BD:12:DA:41:B5:10:CA:B0:A4:04:9A:12:96:3C:B5:71:24:A2:0B Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 603B851A26D5E5E196E108DCB8CA1504C0D8FACE Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a541c4d2-1c45-48f2-9c5e-be1aa414666f.roa Signing time: Mon 08 Dec 2025 02:00:11 +0000 ROA not before: Mon 08 Dec 2025 02:00:11 +0000 ROA not after: Sun 08 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 11 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:3b:85:1a:26:d5:e5:e1:96:e1:08:dc:b8:ca:15:04:c0:d8:fa:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Dec 8 02:00:11 2025 GMT Not After : Mar 8 23:59:59 2026 GMT Subject: serialNumber=52c8da28db1622c24415583b9bce0a2ccdd1f13e50d351a5691ccbaada9d1335, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:39:66:9a:36:b0:d7:83:57:45:0e:a8:fc:2f: 95:ba:90:28:ae:9b:51:52:87:b4:b2:28:05:ac:4a: ae:b4:69:8c:36:0e:5a:8a:49:46:3b:c8:19:08:a1: 3a:a0:56:d2:fe:17:e5:26:35:53:b3:7e:60:e6:67: 50:71:90:42:b9:3a:8f:75:d5:01:b2:a2:a4:38:14: 19:54:ac:34:b5:03:c5:14:12:2c:cb:3b:81:e9:3b: b9:37:77:f2:01:1b:b9:3b:b1:ca:13:2b:64:7a:79: 79:2d:0c:59:67:69:1b:15:8d:26:7e:cb:5f:b1:6b: 65:7c:9e:07:8d:97:ed:74:9a:c3:3a:f0:a6:5c:4f: 07:83:82:89:39:00:7d:85:d7:6c:28:89:79:d2:64: d5:72:b8:f3:aa:0a:7e:2b:14:e9:24:de:1d:90:1b: 0c:6f:eb:4b:63:8d:d9:33:95:4e:01:78:72:6b:12: cd:95:81:07:71:00:32:7a:6b:ad:90:f7:b0:02:df: a4:f1:8b:fd:0f:eb:d8:0d:2f:f3:8d:1e:c9:b7:36: ba:b0:47:7b:bd:e9:51:9c:13:8e:47:ce:b8:67:a3: fa:93:cc:b8:19:36:aa:3f:64:5e:6e:f7:48:66:49: c7:f5:e6:24:a7:c3:1b:a1:e1:98:dc:f1:53:25:a9: d1:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:BD:12:DA:41:B5:10:CA:B0:A4:04:9A:12:96:3C:B5:71:24:A2:0B X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a541c4d2-1c45-48f2-9c5e-be1aa414666f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.36.0/24 Signature Algorithm: sha256WithRSAEncryption 64:16:4c:e9:22:b4:a2:32:6d:d6:e8:c5:de:38:34:94:f3:4c: fe:1d:9d:cf:de:81:09:7e:21:54:24:8b:4f:62:4d:ab:5f:8a: e5:ed:30:8f:81:fc:1f:a0:f2:5e:fa:15:64:a6:27:a1:1e:93: 4b:ac:40:c3:84:74:0e:e0:b2:bf:b2:01:b3:dd:d7:af:f0:af: 8e:d7:53:95:cc:2e:8e:a2:68:5d:71:67:26:f2:7b:5b:52:3f: e6:b8:f7:46:fb:fc:14:28:d2:b7:f6:5f:de:c5:fb:b9:0c:75: 7f:a8:cd:f3:45:42:06:4b:27:fa:c3:20:b2:50:58:da:43:16: 00:aa:c9:85:7d:5f:65:91:fd:0a:9e:c4:9b:2a:9e:35:79:5b: b1:84:1b:2d:54:00:bf:a8:92:24:7f:9b:a0:7d:7c:7a:60:c1: 60:16:8e:e1:db:e4:3f:9e:8a:4d:7d:5f:4f:45:62:f9:23:8b: 08:82:ff:32:d3:f0:56:47:36:1b:22:ee:f6:76:49:03:56:3f: c6:39:01:61:8e:e7:3f:16:62:9f:22:72:3a:2a:c9:8a:00:a8: c7:7b:1f:5a:79:21:34:36:89:72:37:e0:d7:78:03:c5:39:27: e1:6b:12:cb:a5:7c:49:26:06:03:b9:b5:cc:47:6b:01:af:58: 07:6f:04:aa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYDuFGibV5eGW4QjcuMoVBMDY+s4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMjA4MDIwMDExWhcNMjYwMzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MmM4ZGEyOGRiMTYyMmMyNDQxNTU4M2I5YmNlMGEyY2Nk ZDFmMTNlNTBkMzUxYTU2OTFjY2JhYWRhOWQxMzM1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkOWaaNrDXg1dFDqj8L5W6kCium1FSh7SyKAWsSq60aYw2 DlqKSUY7yBkIoTqgVtL+F+UmNVOzfmDmZ1BxkEK5Oo911QGyoqQ4FBlUrDS1A8UU EizLO4HpO7k3d/IBG7k7scoTK2R6eXktDFlnaRsVjSZ+y1+xa2V8ngeNl+10msM6 8KZcTweDgok5AH2F12woiXnSZNVyuPOqCn4rFOkk3h2QGwxv60tjjdkzlU4BeHJr Es2VgQdxADJ6a62Q97AC36Txi/0P69gNL/ONHsm3NrqwR3u96VGcE45Hzrhno/qT zLgZNqo/ZF5u90hmScf15iSnwxuh4Zjc8VMlqdHTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKL0S2kG1EMqwpASaEpY8tXEkogswHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2E1NDFjNGQyLTFjNDUtNDhmMi05YzVlLWJlMWFhNDE0NjY2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCQwDQYJKoZIhvcNAQELBQADggEBAGQWTOkitKIybdboxd44NJTzTP4d nc/egQl+IVQki09iTatfiuXtMI+B/B+g8l76FWSmJ6Eek0usQMOEdA7gsr+yAbPd 16/wr47XU5XMLo6iaF1xZybye1tSP+a490b7/BQo0rf2X97F+7kMdX+ozfNFQgZL J/rDILJQWNpDFgCqyYV9X2WR/QqexJsqnjV5W7GEGy1UAL+okiR/m6B9fHpgwWAW juHb5D+eik19X09FYvkjiwiC/zLT8FZHNhsi7vZ2SQNWP8Y5AWGO5z8WYp8icjoq yYoAqMd7H1p5ITQ2iXI34Nd4A8U5J+FrEsulfEkmBgO5tcxHawGvWAdvBKo= -----END CERTIFICATE-----Generated at Tue Dec 9 19:25:20 2025 by rpki-client