This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a6e493f-275f-4a84-b751-a3051f88db2b.roa File: 1a6e493f-275f-4a84-b751-a3051f88db2b.roa (raw, json) Hash identifier: 0+fiBxRbTWixCJXhLzSs9P0LWD8GrTCuoGzR9Jw/2CY= Subject key identifier: E8:6B:28:36:5F:B8:E8:DF:1E:03:6D:BE:36:99:F2:6C:69:36:4A:F1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4B856B7099F0E4D8625EB94918C4C5C404D7740E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a6e493f-275f-4a84-b751-a3051f88db2b.roa Signing time: Thu 20 Nov 2025 00:00:47 +0000 ROA not before: Thu 20 Nov 2025 00:00:47 +0000 ROA not after: Wed 18 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fa0:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:85:6b:70:99:f0:e4:d8:62:5e:b9:49:18:c4:c5:c4:04:d7:74:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 20 00:00:47 2025 GMT Not After : Feb 18 23:59:59 2026 GMT Subject: serialNumber=e862086439bfbd0982009837660bd8ff2be5cc6a23f3b007d60419c3c510576b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fc:a8:23:eb:e8:47:b3:1e:e8:70:59:57:fa: a7:93:93:71:52:fb:b3:9f:3d:b3:69:25:bc:d2:f5: 37:cd:30:01:7d:0a:66:8e:b5:31:6d:9a:77:0b:31: f0:21:37:9f:a0:93:85:d2:55:b5:76:6a:9f:ff:64: 1e:b5:b3:7b:7b:24:a7:61:f8:c6:e9:8c:38:8a:ec: 18:b8:94:73:bc:57:96:4c:8c:9c:3f:81:a8:82:96: 07:54:0e:9b:65:a1:7b:ae:d6:97:ba:8e:c5:7d:a6: be:f6:2f:ce:dc:c6:9d:f4:7e:aa:d4:cc:ba:93:a0: 13:82:8a:97:0e:ee:aa:2b:65:e7:23:df:48:1f:9f: 68:e0:c4:de:70:8c:e6:00:21:84:8b:02:2c:90:5e: 9a:37:64:6b:80:bf:d7:50:3e:07:be:6b:66:e0:40: ec:50:7d:8d:07:31:a8:72:4f:6a:82:e8:f5:31:ac: 76:2d:68:9d:f4:b4:03:ad:d6:30:0b:f0:59:f7:49: ec:06:69:0b:d8:88:bd:d9:55:00:c4:d6:d0:de:e9: 48:bb:a1:87:f3:ef:c3:f7:02:fb:b0:29:ad:cc:38: 46:13:76:7b:a5:23:bf:a6:35:38:98:00:3e:1a:f9: 83:4f:a6:52:35:35:ad:ed:96:24:c5:b1:a1:29:ca: 77:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:6B:28:36:5F:B8:E8:DF:1E:03:6D:BE:36:99:F2:6C:69:36:4A:F1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a6e493f-275f-4a84-b751-a3051f88db2b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fa0:2000::/40 Signature Algorithm: sha256WithRSAEncryption b3:c5:64:95:9c:a5:36:53:37:b6:9c:0b:11:f3:c5:31:28:dd: 92:5c:4e:9f:a8:78:c5:74:b4:79:ad:e5:2c:c8:ff:6b:69:f2: 09:50:88:e3:f5:e7:92:c2:97:be:fe:ea:0e:a9:ea:bc:ec:ba: 2c:c6:c1:c4:8c:d7:9a:03:c1:e8:f3:c8:fc:e0:7c:a8:76:a1: 0f:51:8d:c8:79:6a:e0:4c:e2:5f:b9:ec:ba:f7:80:30:08:ee: 0f:45:65:08:30:f3:4c:ac:16:30:d2:2b:3e:d0:c2:be:05:e9: 04:66:40:12:31:d8:43:db:b2:d0:c3:6b:b1:32:cf:2b:48:a3: a2:fb:26:d2:23:c4:75:a1:3a:ef:68:3e:ff:f8:3c:03:bd:fa: 58:db:7c:95:7b:3d:85:a9:5d:b9:ec:1d:30:4e:b9:50:e0:c6: 3d:42:84:1e:52:99:9a:90:af:d1:36:1f:0d:bd:9c:62:55:67: 1d:6a:10:95:05:eb:01:6a:bd:7a:19:05:f6:38:42:33:37:f9: c6:44:0b:e8:3e:40:3f:23:b2:1b:3b:a1:06:a4:ce:1f:ab:ea: 71:70:28:8a:49:27:9f:9b:60:e2:48:ba:85:b8:7c:f0:99:ba: 01:85:1f:81:60:3e:9b:6f:04:20:08:e4:32:20:83:55:d1:d4: 14:15:9f:bd -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUS4VrcJnw5NhiXrlJGMTFxATXdA4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTIwMDAwMDQ3WhcNMjYwMjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlODYyMDg2NDM5YmZiZDA5ODIwMDk4Mzc2NjBiZDhmZjJi ZTVjYzZhMjNmM2IwMDdkNjA0MTljM2M1MTA1NzZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCv/Kgj6+hHsx7ocFlX+qeTk3FS+7OfPbNpJbzS9TfNMAF9 CmaOtTFtmncLMfAhN5+gk4XSVbV2ap//ZB61s3t7JKdh+MbpjDiK7Bi4lHO8V5ZM jJw/gaiClgdUDptloXuu1pe6jsV9pr72L87cxp30fqrUzLqToBOCipcO7qorZecj 30gfn2jgxN5wjOYAIYSLAiyQXpo3ZGuAv9dQPge+a2bgQOxQfY0HMahyT2qC6PUx rHYtaJ30tAOt1jAL8Fn3SewGaQvYiL3ZVQDE1tDe6Ui7oYfz78P3AvuwKa3MOEYT dnulI7+mNTiYAD4a+YNPplI1Na3tliTFsaEpynflAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU6GsoNl+46N8eA22+NpnybGk2SvEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFhNmU0OTNmLTI3NWYtNGE4NC1iNzUxLWEzMDUxZjg4ZGIyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+gIDANBgkqhkiG9w0BAQsFAAOCAQEAs8VklZylNlM3tpwLEfPFMSjd klxOn6h4xXS0ea3lLMj/a2nyCVCI4/XnksKXvv7qDqnqvOy6LMbBxIzXmgPB6PPI /OB8qHahD1GNyHlq4EziX7nsuveAMAjuD0VlCDDzTKwWMNIrPtDCvgXpBGZAEjHY Q9uy0MNrsTLPK0ijovsm0iPEdaE672g+//g8A736WNt8lXs9halduewdME65UODG PUKEHlKZmpCv0TYfDb2cYlVnHWoQlQXrAWq9ehkF9jhCMzf5xkQL6D5APyOyGzuh BqTOH6vqcXAoikknn5tg4ki6hbh88Jm6AYUfgWA+m28EIAjkMiCDVdHUFBWfvQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:59:17 2025 by rpki-client