This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a72ebb99-aece-49aa-9f29-1f0286b84f4a.roa File: a72ebb99-aece-49aa-9f29-1f0286b84f4a.roa (raw, json) Hash identifier: iwJ3jDWYTT2EDSQOJewfQrTCvM3lK31xorCr9aCZHPk= Subject key identifier: BC:67:79:3C:B5:98:EC:7F:73:E7:69:F0:D0:E3:33:C7:96:3B:F5:19 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 0FE9E72A9FBB1C028053F2BAC9D61D28E3D55C9E Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a72ebb99-aece-49aa-9f29-1f0286b84f4a.roa Signing time: Thu 13 Nov 2025 01:50:09 +0000 ROA not before: Thu 13 Nov 2025 01:50:09 +0000 ROA not after: Thu 18 Dec 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 24 Nov 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:e9:e7:2a:9f:bb:1c:02:80:53:f2:ba:c9:d6:1d:28:e3:d5:5c:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Nov 13 01:50:09 2025 GMT Not After : Dec 18 23:59:59 2025 GMT Subject: serialNumber=1fbda7aa4d395a9a272c783b7865077952be32a92b461849c8a8a25974fd153c, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:74:f8:74:e7:a1:a5:47:58:d4:55:4a:ca:65: 94:da:60:42:da:c0:ed:80:31:0c:12:2a:8b:b7:8c: 70:ae:22:1d:57:d8:46:0d:d4:64:ca:97:73:cc:e4: 30:96:cf:5e:aa:27:1d:b1:ad:07:55:c6:02:88:f0: 30:be:da:3b:a6:2b:c2:f5:9b:e8:07:a1:3e:0e:a3: 89:78:14:88:64:b3:d2:c1:bb:54:18:ee:f4:82:23: 22:7a:66:52:25:95:a1:14:db:9a:44:82:11:1b:7b: f8:eb:50:8b:62:d1:bf:a0:39:be:9d:38:ac:14:be: 53:5c:e1:ea:a9:8b:1e:73:fc:e7:cb:0c:94:0d:8c: 10:93:11:1d:08:77:22:aa:82:3e:71:85:4a:7e:4e: ff:0e:24:69:8b:38:b1:91:f1:b9:57:23:35:29:92: d3:ff:de:cb:e5:3d:bf:34:69:bb:06:d8:da:4f:4f: 73:b0:41:40:27:9e:37:25:d9:cc:73:38:bf:ae:81: a9:d3:0f:4c:14:7b:48:29:44:37:bc:3f:76:d9:bc: 50:96:68:db:5e:34:4b:96:01:b3:0b:12:0b:b6:fe: ff:78:81:6e:e8:b2:a5:24:b4:53:58:19:7a:c6:c2: 05:e3:f7:be:a9:9c:be:b1:f9:6f:ee:1a:6c:fc:8f: 5d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:67:79:3C:B5:98:EC:7F:73:E7:69:F0:D0:E3:33:C7:96:3B:F5:19 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a72ebb99-aece-49aa-9f29-1f0286b84f4a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.40.0/24 Signature Algorithm: sha256WithRSAEncryption 86:ae:ee:97:22:12:8a:88:39:52:6f:d7:2e:54:d3:39:09:9c: 58:a8:da:6c:eb:a7:18:74:44:7b:8b:8f:d3:51:e5:8f:eb:81: 88:74:47:87:d5:56:c3:9b:f5:49:75:fb:a8:ae:85:54:a5:b5: 5e:4c:8d:ef:b2:33:40:56:a9:23:35:ce:be:2b:88:94:ad:0b: a2:c3:3f:5f:c0:d0:04:34:58:4d:53:74:9c:ad:68:7f:32:3a: 82:b3:73:66:1b:38:43:ca:e2:c9:b4:e5:90:3a:bc:ba:c2:6f: b7:38:5a:90:f2:31:3c:82:d6:b0:60:57:ff:57:8c:a1:22:fe: 67:41:b4:48:16:a8:be:06:a0:79:af:4f:01:dd:ab:57:d0:82: 01:93:13:b1:93:28:91:3c:fd:31:70:cf:d7:ec:cc:e5:d6:ad: 3c:84:a8:6a:b8:f7:71:44:a4:55:f1:d7:56:b1:54:7d:1f:6f: 48:ca:ee:26:36:8c:ed:35:48:00:37:e6:f5:de:bd:8a:1e:98: 51:36:16:c6:74:5c:a6:04:cb:4f:d5:d1:8c:ef:e1:07:89:15: 00:86:d7:2c:91:7d:8c:83:02:a6:24:cc:1c:ec:cc:2e:26:45: 09:ce:70:58:36:96:7f:f2:66:e4:ab:4a:d4:03:da:79:7d:07: 10:91:a3:bd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD+nnKp+7HAKAU/K6ydYdKOPVXJ4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMTEzMDE1MDA5WhcNMjUxMjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZmJkYTdhYTRkMzk1YTlhMjcyYzc4M2I3ODY1MDc3OTUy YmUzMmE5MmI0NjE4NDljOGE4YTI1OTc0ZmQxNTNjMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2dPh056GlR1jUVUrKZZTaYELawO2AMQwSKou3jHCuIh1X 2EYN1GTKl3PM5DCWz16qJx2xrQdVxgKI8DC+2jumK8L1m+gHoT4Oo4l4FIhks9LB u1QY7vSCIyJ6ZlIllaEU25pEghEbe/jrUIti0b+gOb6dOKwUvlNc4eqpix5z/OfL DJQNjBCTER0IdyKqgj5xhUp+Tv8OJGmLOLGR8blXIzUpktP/3svlPb80absG2NpP T3OwQUAnnjcl2cxzOL+uganTD0wUe0gpRDe8P3bZvFCWaNteNEuWAbMLEgu2/v94 gW7osqUktFNYGXrGwgXj976pnL6x+W/uGmz8j111AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvGd5PLWY7H9z52nw0OMzx5Y79RkwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2E3MmViYjk5LWFlY2UtNDlhYS05ZjI5LTFmMDI4NmI4NGY0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCgwDQYJKoZIhvcNAQELBQADggEBAIau7pciEoqIOVJv1y5U0zkJnFio 2mzrpxh0RHuLj9NR5Y/rgYh0R4fVVsOb9Ul1+6iuhVSltV5Mje+yM0BWqSM1zr4r iJStC6LDP1/A0AQ0WE1TdJytaH8yOoKzc2YbOEPK4sm05ZA6vLrCb7c4WpDyMTyC 1rBgV/9XjKEi/mdBtEgWqL4GoHmvTwHdq1fQggGTE7GTKJE8/TFwz9fszOXWrTyE qGq493FEpFXx11axVH0fb0jK7iY2jO01SAA35vXevYoemFE2FsZ0XKYEy0/V0Yzv 4QeJFQCG1yyRfYyDAqYkzBzszC4mRQnOcFg2ln/yZuSrStQD2nl9BxCRo70= -----END CERTIFICATE-----Generated at Sat Nov 22 21:30:56 2025 by rpki-client