This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/595cf9d8-cab3-4f63-83fa-aba430c3eaf5.roa File: 595cf9d8-cab3-4f63-83fa-aba430c3eaf5.roa (raw, json) Hash identifier: sJUXNECkabys0/+XWg4UmLDZyB9oYxGokVcEcBHGR2Q= Subject key identifier: F0:F2:B1:F6:A1:D9:F7:78:3C:1D:03:8A:3F:52:42:C7:83:C8:DA:1F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6A1D9EF2CB65C0969349D2A172C0464964DF8B5C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/595cf9d8-cab3-4f63-83fa-aba430c3eaf5.roa Signing time: Wed 26 Nov 2025 00:20:06 +0000 ROA not before: Wed 26 Nov 2025 00:20:06 +0000 ROA not after: Tue 24 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fb9:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:1d:9e:f2:cb:65:c0:96:93:49:d2:a1:72:c0:46:49:64:df:8b:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 26 00:20:06 2025 GMT Not After : Feb 24 23:59:59 2026 GMT Subject: serialNumber=30ffb5261f91ced91142f46884f14b51e628ad2fdedfcd5df68123cc02632cf5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:81:11:f7:64:f5:e5:f5:6a:f8:27:21:a1:00: c9:41:09:b0:b5:1d:4e:f7:f9:ac:20:d0:a4:eb:3f: 8d:42:20:19:72:a1:2a:3c:fe:e6:44:f5:d2:cd:e5: 99:d1:c3:f8:68:1c:b6:6f:ef:38:98:ca:9f:fd:49: b5:f1:b5:0a:15:64:7f:72:41:c7:c5:75:10:3b:d5: 06:e6:1d:30:c2:e7:bb:45:d0:0d:29:ac:eb:03:15: 12:78:98:45:01:bf:a4:2b:a6:39:ac:ee:d2:18:16: 6d:8c:33:e5:45:34:c4:d1:10:cb:d0:1b:39:38:18: ff:65:36:b8:93:0b:63:05:15:91:89:67:a1:8d:92: 5a:67:d9:71:24:bd:4a:76:99:25:0b:f9:c4:b0:2c: 2d:af:e9:e4:2d:d1:24:d4:53:bc:e4:4c:7b:41:ff: b4:9e:88:b7:5f:10:d3:9c:99:4e:c3:3b:3e:74:0e: 7a:3e:98:70:2e:80:f4:c5:bb:0b:ac:8a:15:7c:94: 65:ad:b9:e3:7e:3b:60:75:47:66:53:5e:75:81:a7: dc:f2:e0:31:12:7f:4f:87:74:cb:dc:93:49:83:9c: b6:94:2a:f0:bd:e7:6f:6c:c5:53:37:bd:03:06:5a: a8:30:5d:2e:3d:51:91:3c:ea:55:76:94:ee:52:a8: 14:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:F2:B1:F6:A1:D9:F7:78:3C:1D:03:8A:3F:52:42:C7:83:C8:DA:1F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/595cf9d8-cab3-4f63-83fa-aba430c3eaf5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb9:e000::/40 Signature Algorithm: sha256WithRSAEncryption 0c:23:52:fe:f7:c0:c5:84:04:30:d1:cc:e5:f5:ea:b6:50:8e: 0a:3a:8a:4b:46:a9:14:ed:1e:51:bb:69:18:2a:67:bf:2a:97: 8c:2f:bb:86:63:c3:95:45:cb:d5:6c:69:4e:21:5d:30:c7:26: 62:7a:b5:83:b8:d8:6a:82:a8:e9:84:5f:e5:9d:e3:f0:44:58: d6:bd:3f:d5:16:5a:1f:81:20:db:f8:31:4e:c4:13:86:50:97: ab:28:92:c6:fb:00:87:35:42:25:ba:d9:bf:3f:51:19:26:c3: 6a:04:93:94:2e:3b:c6:7a:fe:0f:4d:af:54:ed:8d:99:99:91: 2a:f8:b7:a5:60:88:37:6c:58:8a:79:67:1b:0c:c0:1d:80:a9: b9:a0:e9:ef:fd:a0:1e:03:83:2b:79:00:8f:ca:3a:56:af:f3: 2d:b3:17:b4:34:13:21:56:0e:10:a7:a9:4d:38:3d:01:83:25: cf:55:1c:b1:ca:1e:d6:af:2b:fc:0e:b0:bf:b3:ef:56:9f:db: d6:17:e2:e3:c6:b1:ea:5a:00:92:c7:1f:69:19:25:8d:dc:1e: d4:e5:12:c5:64:02:24:3a:49:62:39:c7:41:35:ee:75:48:28: 11:e3:83:17:8c:aa:91:87:cb:d0:9e:21:41:43:c7:38:50:f6: be:65:9e:ef -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUah2e8stlwJaTSdKhcsBGSWTfi1wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI2MDAyMDA2WhcNMjYwMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMGZmYjUyNjFmOTFjZWQ5MTE0MmY0Njg4NGYxNGI1MWU2 MjhhZDJmZGVkZmNkNWRmNjgxMjNjYzAyNjMyY2Y1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdgRH3ZPXl9Wr4JyGhAMlBCbC1HU73+awg0KTrP41CIBly oSo8/uZE9dLN5ZnRw/hoHLZv7ziYyp/9SbXxtQoVZH9yQcfFdRA71QbmHTDC57tF 0A0prOsDFRJ4mEUBv6Qrpjms7tIYFm2MM+VFNMTREMvQGzk4GP9lNriTC2MFFZGJ Z6GNklpn2XEkvUp2mSUL+cSwLC2v6eQt0STUU7zkTHtB/7SeiLdfENOcmU7DOz50 Dno+mHAugPTFuwusihV8lGWtueN+O2B1R2ZTXnWBp9zy4DESf0+HdMvck0mDnLaU KvC9529sxVM3vQMGWqgwXS49UZE86lV2lO5SqBQfAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU8PKx9qHZ93g8HQOKP1JCx4PI2h8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5NWNmOWQ4LWNhYjMtNGY2My04M2ZhLWFiYTQzMGMzZWFmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+54DANBgkqhkiG9w0BAQsFAAOCAQEADCNS/vfAxYQEMNHM5fXqtlCO CjqKS0apFO0eUbtpGCpnvyqXjC+7hmPDlUXL1WxpTiFdMMcmYnq1g7jYaoKo6YRf 5Z3j8ERY1r0/1RZaH4Eg2/gxTsQThlCXqyiSxvsAhzVCJbrZvz9RGSbDagSTlC47 xnr+D02vVO2NmZmRKvi3pWCIN2xYinlnGwzAHYCpuaDp7/2gHgODK3kAj8o6Vq/z LbMXtDQTIVYOEKepTTg9AYMlz1Ucscoe1q8r/A6wv7PvVp/b1hfi48ax6loAkscf aRkljdwe1OUSxWQCJDpJYjnHQTXudUgoEeODF4yqkYfL0J4hQUPHOFD2vmWe7w== -----END CERTIFICATE-----Generated at Sat Dec 6 14:13:41 2025 by rpki-client