This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d71a0d0-152f-4f2e-ba5f-6eda48d8e284.roa File: 3d71a0d0-152f-4f2e-ba5f-6eda48d8e284.roa (raw, json) Hash identifier: f5NNG6s9Mc8IPOOrZf5HSFvwKpEJOqjFwMq3wqiV9gM= Subject key identifier: B8:19:9D:03:EE:B6:1D:C6:16:8E:F7:75:19:DF:A5:1A:DE:BA:C3:7C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6253002286D6ECA73A6D97C248A36DF731B19894 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d71a0d0-152f-4f2e-ba5f-6eda48d8e284.roa Signing time: Sat 29 Nov 2025 00:20:42 +0000 ROA not before: Sat 29 Nov 2025 00:20:42 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f25:c000::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:53:00:22:86:d6:ec:a7:3a:6d:97:c2:48:a3:6d:f7:31:b1:98:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 29 00:20:42 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=5cee88915cf2ed6c55b0ea9d5d231441f3d7bfc506e2f943f18aee24c272cb35, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:38:c2:91:99:08:d0:9f:3d:71:7b:2a:55:c2: 1f:86:c6:94:e1:36:51:0c:42:1e:32:82:0e:11:94: 8c:ad:5e:30:a0:95:64:97:b6:70:51:9a:d5:92:b8: 60:e5:8a:50:98:3c:f6:b9:6b:5a:38:0d:6d:a6:5c: 34:1e:08:75:87:4a:60:2a:2f:db:4a:33:72:ec:63: 30:bf:bf:90:32:58:39:83:7f:50:be:9e:d4:64:c2: 00:e7:74:ed:7f:3b:f9:3d:3d:02:fd:e8:00:44:a2: 31:ba:44:58:53:1e:27:af:98:30:4e:46:f5:2e:8f: 5a:b7:e1:eb:b2:1a:27:c9:bc:ff:d2:fa:3d:c2:bc: a3:84:ad:b8:50:e9:5f:78:54:81:d8:8c:41:5a:63: d4:6d:07:d9:cf:89:77:ca:b1:28:16:87:08:67:51: ab:9b:dc:15:92:2c:97:ab:a4:ab:9c:8c:b0:8f:64: e2:36:28:d2:da:78:b9:4b:36:49:6a:1e:46:67:8b: 2c:03:fe:65:46:d1:c0:b4:60:e3:2b:12:81:d6:da: b4:db:4f:ee:c2:e7:ec:34:75:16:b9:c6:71:14:8a: df:d0:59:4b:35:c4:bb:3e:5c:40:c4:d1:74:de:34: 6f:b2:0e:3d:ef:ef:55:ea:d3:b6:9a:80:e4:4f:4e: a0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:19:9D:03:EE:B6:1D:C6:16:8E:F7:75:19:DF:A5:1A:DE:BA:C3:7C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d71a0d0-152f-4f2e-ba5f-6eda48d8e284.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f25:c000::/37 Signature Algorithm: sha256WithRSAEncryption ce:f3:54:b5:57:1d:d8:48:54:94:57:5a:6a:a5:1f:c4:58:f5: a2:8a:10:3f:f9:9f:70:d7:4f:24:7e:3e:ac:2e:66:6a:bc:c1: 36:59:ea:30:12:e2:90:43:91:fa:fa:d1:4b:a2:be:a9:9d:02: 02:c8:73:2d:b9:fc:a4:3a:0b:9f:32:ee:be:2e:1e:b5:5e:26: a0:47:cb:b5:f2:4f:d5:7f:9e:8f:02:9b:e2:6f:a3:94:c1:d9: 06:ab:d2:50:2d:33:0d:4d:a1:47:5c:fe:ea:75:f4:24:32:79: 64:86:e8:ea:7f:7b:fa:f7:a7:d9:67:93:2f:66:3b:ee:da:27: 8c:d3:7f:0a:20:fb:9f:43:50:fc:20:1b:ee:f2:e6:87:cd:90: bc:5b:74:c5:c9:ed:35:d1:57:12:d2:0a:e7:78:f7:ef:36:ba: 43:a2:9b:b4:20:1e:c5:03:25:8e:ab:43:08:30:7c:99:96:ad: c0:47:b0:03:c8:77:61:04:7a:92:44:34:28:ea:69:17:7e:50: 1a:ba:ff:33:21:bf:1c:ea:5d:70:48:5d:75:6f:f9:cd:d4:0a: 8a:02:ff:e6:87:16:00:cb:5f:a8:b8:00:88:f1:13:b4:82:d5: 61:a5:ea:42:d5:e5:f3:f3:3d:c0:67:bf:4d:bf:37:79:84:fc: 8e:4a:c1:2e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYlMAIobW7Kc6bZfCSKNt9zGxmJQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI5MDAyMDQyWhcNMjYwMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1Y2VlODg5MTVjZjJlZDZjNTViMGVhOWQ1ZDIzMTQ0MWYz ZDdiZmM1MDZlMmY5NDNmMThhZWUyNGMyNzJjYjM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVOMKRmQjQnz1xeypVwh+GxpThNlEMQh4ygg4RlIytXjCg lWSXtnBRmtWSuGDlilCYPPa5a1o4DW2mXDQeCHWHSmAqL9tKM3LsYzC/v5AyWDmD f1C+ntRkwgDndO1/O/k9PQL96ABEojG6RFhTHievmDBORvUuj1q34euyGifJvP/S +j3CvKOErbhQ6V94VIHYjEFaY9RtB9nPiXfKsSgWhwhnUaub3BWSLJerpKucjLCP ZOI2KNLaeLlLNklqHkZniywD/mVG0cC0YOMrEoHW2rTbT+7C5+w0dRa5xnEUit/Q WUs1xLs+XEDE0XTeNG+yDj3v71Xq07aagORPTqBHAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUuBmdA+62HcYWjvd1Gd+lGt66w3wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkNzFhMGQwLTE1MmYtNGYyZS1iYTVmLTZlZGE0OGQ4ZTI4NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8lwDANBgkqhkiG9w0BAQsFAAOCAQEAzvNUtVcd2EhUlFdaaqUfxFj1 oooQP/mfcNdPJH4+rC5marzBNlnqMBLikEOR+vrRS6K+qZ0CAshzLbn8pDoLnzLu vi4etV4moEfLtfJP1X+ejwKb4m+jlMHZBqvSUC0zDU2hR1z+6nX0JDJ5ZIbo6n97 +ven2WeTL2Y77tonjNN/CiD7n0NQ/CAb7vLmh82QvFt0xcntNdFXEtIK53j37za6 Q6KbtCAexQMljqtDCDB8mZatwEewA8h3YQR6kkQ0KOppF35QGrr/MyG/HOpdcEhd dW/5zdQKigL/5ocWAMtfqLgAiPETtILVYaXqQtXl8/M9wGe/Tb83eYT8jkrBLg== -----END CERTIFICATE-----Generated at Sat Dec 6 11:20:14 2025 by rpki-client