This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cb336a48-8f3f-4a38-8d83-16df977c3695.roa File: cb336a48-8f3f-4a38-8d83-16df977c3695.roa (raw, json) Hash identifier: Nh/yO35aDxn/onmLRxriQACIMFhgo8cAYwfRrueFJCM= Subject key identifier: 48:9F:77:BD:98:61:43:F9:54:6E:5A:40:C8:B0:88:56:BD:E1:9F:08 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1DA8E7139F069069D5510A5B7B6EE62633A95291 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cb336a48-8f3f-4a38-8d83-16df977c3695.roa Signing time: Mon 08 Dec 2025 02:00:09 +0000 ROA not before: Mon 08 Dec 2025 02:00:09 +0000 ROA not after: Sun 08 Mar 2026 23:59:59 +0000 asID: 801 IP address blocks: 35.96.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 24 Dec 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:a8:e7:13:9f:06:90:69:d5:51:0a:5b:7b:6e:e6:26:33:a9:52:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Dec 8 02:00:09 2025 GMT Not After : Mar 8 23:59:59 2026 GMT Subject: serialNumber=1569204c595c5a356a01c913349ae37858d99ba7784e19ab01e5d6d59964de99, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a1:e2:41:11:2d:a9:cd:18:77:25:9d:ba:5d: c7:a9:a5:9c:09:76:60:7f:a0:01:d7:d5:b5:20:c9: 53:d5:e1:42:5e:0a:97:32:31:68:c2:d2:e8:85:39: f3:db:f9:d1:91:0c:38:70:8f:4e:cd:2e:d5:50:2c: 92:98:de:ea:b9:cb:28:1c:26:ee:f9:a8:3f:2e:ed: 96:fc:05:10:c2:a1:95:8c:49:01:7f:54:ae:95:f1: e5:ae:57:b0:44:90:ca:25:78:43:9e:a5:08:85:8b: be:c1:bc:38:55:6d:f0:35:a4:59:e5:90:a1:d2:62: 40:75:f2:1a:75:5c:cf:d6:df:d4:97:ea:2c:2c:9d: 34:05:9f:f2:7a:9e:9e:8c:6b:3b:2c:ca:f0:f8:27: d7:72:9c:40:86:77:9f:83:e8:b0:05:b8:1f:44:d9: 55:33:50:cc:08:1d:d7:7e:44:d0:06:ac:07:f0:1a: 68:a5:18:c4:3a:f3:95:42:8d:d0:0f:51:f8:fd:f9: 2a:d9:70:04:7a:e6:6e:be:4f:96:87:76:82:c2:c5: 4e:a3:29:82:9e:dc:6a:21:f3:bd:da:b6:34:67:91: f2:ad:55:a4:75:46:e1:14:c5:26:ad:35:0e:4a:26: 95:43:e3:d5:5d:ca:c3:73:95:a6:ef:56:50:fc:27: f9:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:9F:77:BD:98:61:43:F9:54:6E:5A:40:C8:B0:88:56:BD:E1:9F:08 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cb336a48-8f3f-4a38-8d83-16df977c3695.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.39.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:9a:80:c5:81:bb:22:e5:0a:c0:00:cf:f7:ba:90:fc:75:83: e8:55:04:28:4a:ce:cc:4c:59:62:02:fc:4f:bf:05:8c:dc:fa: e3:29:86:df:98:e0:ac:55:38:63:2e:20:2b:1f:de:39:d3:ad: be:a3:71:fe:f3:1e:3e:2f:68:c0:75:f4:f8:de:c1:e5:51:8a: a2:ed:ac:93:28:79:f5:a1:2a:02:41:90:15:08:4a:c7:31:28: b0:83:ef:54:10:d5:77:f6:d0:e0:76:b6:03:33:21:78:98:9e: 5d:b7:d3:97:fa:d2:4e:0d:c7:e4:d7:2d:99:2a:dd:c3:66:94: 66:77:ae:d2:38:1e:58:a0:72:a2:d5:93:f4:4b:cc:63:84:a8: 0f:ee:10:5d:1b:00:4c:eb:0f:81:ce:83:d5:ae:c9:d2:97:96: 14:1c:bc:e4:62:b9:f0:e6:30:99:58:18:58:bb:ad:03:a7:ee: c3:4b:71:e6:31:93:34:41:a8:a9:99:19:73:a6:b4:6d:44:da: be:df:14:56:b9:05:6e:8b:1a:8b:48:f1:58:fb:30:f8:12:51: 8d:6f:f9:49:ae:eb:a8:22:72:fc:d8:4e:2b:66:90:8c:39:38: db:ab:d0:39:4d:8b:4a:ab:b2:e8:8b:78:e7:cc:4e:fb:51:45: a7:27:47:b8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHajnE58GkGnVUQpbe27mJjOpUpEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUxMjA4MDIwMDA5WhcNMjYwMzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNTY5MjA0YzU5NWM1YTM1NmEwMWM5MTMzNDlhZTM3ODU4 ZDk5YmE3Nzg0ZTE5YWIwMWU1ZDZkNTk5NjRkZTk5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKoeJBES2pzRh3JZ26XceppZwJdmB/oAHX1bUgyVPV4UJe CpcyMWjC0uiFOfPb+dGRDDhwj07NLtVQLJKY3uq5yygcJu75qD8u7Zb8BRDCoZWM SQF/VK6V8eWuV7BEkMoleEOepQiFi77BvDhVbfA1pFnlkKHSYkB18hp1XM/W39SX 6iwsnTQFn/J6np6MazssyvD4J9dynECGd5+D6LAFuB9E2VUzUMwIHdd+RNAGrAfw GmilGMQ685VCjdAPUfj9+SrZcAR65m6+T5aHdoLCxU6jKYKe3Goh873atjRnkfKt VaR1RuEUxSatNQ5KJpVD49VdysNzlabvVlD8J/krAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSJ93vZhhQ/lUblpAyLCIVr3hnwgwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2NiMzM2YTQ4LThmM2YtNGEzOC04ZDgzLTE2ZGY5NzdjMzY5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCcwDQYJKoZIhvcNAQELBQADggEBAH6agMWBuyLlCsAAz/e6kPx1g+hV BChKzsxMWWIC/E+/BYzc+uMpht+Y4KxVOGMuICsf3jnTrb6jcf7zHj4vaMB19Pje weVRiqLtrJMoefWhKgJBkBUISscxKLCD71QQ1Xf20OB2tgMzIXiYnl2305f60k4N x+TXLZkq3cNmlGZ3rtI4HligcqLVk/RLzGOEqA/uEF0bAEzrD4HOg9WuydKXlhQc vORiufDmMJlYGFi7rQOn7sNLceYxkzRBqKmZGXOmtG1E2r7fFFa5BW6LGotI8Vj7 MPgSUY1v+Umu66gicvzYTitmkIw5ONur0DlNi0qrsuiLeOfMTvtRRacnR7g= -----END CERTIFICATE-----Generated at Tue Dec 23 06:37:48 2025 by rpki-client