This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f18d1fe-3be4-46b5-8c45-f26a31912e5e.roa File: 0f18d1fe-3be4-46b5-8c45-f26a31912e5e.roa (raw, json) Hash identifier: 9jH8mPhhR88+ZCydZtj+q5QXy0aubd4G8tg9oWmS7wE= Subject key identifier: C0:E6:88:E9:EC:61:53:2C:3C:DA:3D:FE:1B:83:33:D8:81:84:AD:70 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 11952BC71144C8327B917474EFBC23F28AEAAEE3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f18d1fe-3be4-46b5-8c45-f26a31912e5e.roa Signing time: Sat 29 Nov 2025 00:10:31 +0000 ROA not before: Sat 29 Nov 2025 00:10:31 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff4:4000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:95:2b:c7:11:44:c8:32:7b:91:74:74:ef:bc:23:f2:8a:ea:ae:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 29 00:10:31 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=d1e4c40b3326b4aeafd2ef98918dba4cbd567524916afa66229428fa30800515, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:8d:22:79:b0:c0:4e:8c:60:55:40:9d:ee:df: 50:85:0b:ad:65:51:75:2a:84:d9:1f:b5:fc:43:74: 18:b8:23:83:7e:0e:7d:24:8e:84:a3:60:85:7a:ba: d6:aa:69:38:a7:ac:91:77:7b:9e:43:ee:31:95:9a: 7e:ed:72:1d:2a:88:1a:45:18:19:c3:e1:84:eb:7a: 0f:d0:8d:b4:b0:ea:0d:6a:09:4d:c2:45:b6:1f:51: 83:39:9c:9c:5b:0d:b4:83:ed:29:6b:2a:85:89:2a: 15:fe:71:b6:64:b0:16:7d:e2:5a:d7:cb:da:ad:33: 63:35:c9:bd:c8:73:10:05:ea:87:c4:b0:43:32:ed: 73:4d:75:06:b3:91:f5:2e:99:6c:91:6c:31:b6:64: 44:6b:94:48:b5:8c:aa:f1:db:3d:91:09:89:77:4e: e4:1c:33:d2:1b:6c:b9:b7:a3:94:a7:da:3c:3a:54: 28:55:3a:a2:c5:52:8c:53:9b:32:95:42:5e:23:61: 0e:ce:4a:06:9a:dd:24:6a:90:3c:e9:6f:77:ad:5f: 2b:cd:c5:77:cf:25:7b:86:9e:c4:78:fa:85:9c:da: cd:1e:08:38:a2:57:8b:ad:49:71:89:b8:88:8b:a8: f9:2e:a4:e1:2f:4b:63:a5:97:38:76:5b:2b:c5:ff: 1a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:E6:88:E9:EC:61:53:2C:3C:DA:3D:FE:1B:83:33:D8:81:84:AD:70 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f18d1fe-3be4-46b5-8c45-f26a31912e5e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff4:4000::/39 Signature Algorithm: sha256WithRSAEncryption a5:31:21:0a:ea:41:94:38:53:3c:bd:0f:a5:61:ac:89:95:a1: 32:2d:af:70:a7:b3:ec:47:d0:fd:ce:c3:9e:74:70:f1:e8:10: 60:5b:78:cb:fe:dc:58:c9:10:b9:cd:c3:43:7d:30:ce:88:ed: 92:ca:1e:9e:7d:38:dd:5c:28:35:76:2f:a7:0d:b9:9a:b9:94: d2:0e:0f:74:75:73:7b:3f:97:b7:ea:fc:9e:3c:a6:6b:1e:d4: e8:cc:8f:98:bc:ff:4e:2b:2c:d3:db:c0:4b:e9:4a:d5:af:6a: f1:a4:b3:03:ca:85:55:8c:9c:5f:83:a2:11:f1:b8:9c:f6:da: 02:2b:f3:cd:16:79:43:e1:02:7d:3e:34:81:d1:23:2f:d4:e6: ae:5a:8b:8e:8e:31:32:4f:b9:ae:77:51:73:ed:bb:13:7f:5d: fc:3f:a7:da:b7:42:d7:9c:69:a3:7a:ee:38:0b:b5:a8:ca:50: 21:62:9c:eb:d0:fe:16:c8:82:b2:33:0f:e7:0a:f2:44:b7:cb: c8:52:58:19:98:db:5d:24:46:21:ec:0a:c1:6d:c7:c9:bc:68: ca:5f:23:df:5e:01:28:3a:f9:d4:f4:e1:6b:e7:0f:fd:1a:90: b8:23:1a:66:be:a4:d1:3d:64:33:2b:08:1d:38:9d:2f:a8:68: 78:dd:04:8c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUEZUrxxFEyDJ7kXR077wj8orqruMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI5MDAxMDMxWhcNMjYwMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMWU0YzQwYjMzMjZiNGFlYWZkMmVmOTg5MThkYmE0Y2Jk NTY3NTI0OTE2YWZhNjYyMjk0MjhmYTMwODAwNTE1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQjSJ5sMBOjGBVQJ3u31CFC61lUXUqhNkftfxDdBi4I4N+ Dn0kjoSjYIV6utaqaTinrJF3e55D7jGVmn7tch0qiBpFGBnD4YTreg/QjbSw6g1q CU3CRbYfUYM5nJxbDbSD7SlrKoWJKhX+cbZksBZ94lrXy9qtM2M1yb3IcxAF6ofE sEMy7XNNdQazkfUumWyRbDG2ZERrlEi1jKrx2z2RCYl3TuQcM9IbbLm3o5Sn2jw6 VChVOqLFUoxTmzKVQl4jYQ7OSgaa3SRqkDzpb3etXyvNxXfPJXuGnsR4+oWc2s0e CDiiV4utSXGJuIiLqPkupOEvS2Ollzh2WyvF/xqPAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUwOaI6exhUyw82j3+G4Mz2IGErXAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBmMThkMWZlLTNiZTQtNDZiNS04YzQ1LWYyNmEzMTkxMmU1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/0QDANBgkqhkiG9w0BAQsFAAOCAQEApTEhCupBlDhTPL0PpWGsiZWh Mi2vcKez7EfQ/c7DnnRw8egQYFt4y/7cWMkQuc3DQ30wzojtksoenn043VwoNXYv pw25mrmU0g4PdHVzez+Xt+r8njymax7U6MyPmLz/Tiss09vAS+lK1a9q8aSzA8qF VYycX4OiEfG4nPbaAivzzRZ5Q+ECfT40gdEjL9TmrlqLjo4xMk+5rndRc+27E39d /D+n2rdC15xpo3ruOAu1qMpQIWKc69D+FsiCsjMP5wryRLfLyFJYGZjbXSRGIewK wW3Hybxoyl8j314BKDr51PTha+cP/RqQuCMaZr6k0T1kMysIHTidL6hoeN0EjA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:00:07 2025 by rpki-client