This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f86ba14-ad5b-430e-a38d-fd5a48004721.roa File: 9f86ba14-ad5b-430e-a38d-fd5a48004721.roa (raw, json) Hash identifier: xP7MQyyCE5D3WApH4w4V8Zq3NXYgmJsc5LN+yaAEPe0= Subject key identifier: 22:BB:E9:3F:5A:CF:4A:D9:AB:5B:26:95:F9:3D:AE:1A:A2:F5:34:5A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3BA9A89A304BAD5B726225E44F801FA2F245A31B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f86ba14-ad5b-430e-a38d-fd5a48004721.roa Signing time: Thu 11 Dec 2025 00:01:14 +0000 ROA not before: Thu 11 Dec 2025 00:01:14 +0000 ROA not after: Wed 11 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffe:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:a9:a8:9a:30:4b:ad:5b:72:62:25:e4:4f:80:1f:a2:f2:45:a3:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 11 00:01:14 2025 GMT Not After : Mar 11 23:59:59 2026 GMT Subject: serialNumber=ada47178bababdac34fba068f9e23ac63235e293cdfe62c532f51c55e2424854, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:57:58:12:8c:65:43:9a:95:98:69:75:a7:46: 38:92:25:33:c7:28:c0:20:b9:d1:93:fb:63:33:b2: e1:84:c5:bb:54:82:e7:aa:2c:1e:fc:24:85:53:22: 85:a5:3f:ef:aa:30:ce:fe:3c:96:2c:df:82:82:c6: 4a:9d:8d:b0:b7:77:9a:ec:16:b1:3b:8d:57:4a:08: 7b:67:71:80:8c:9c:20:a8:34:3b:64:15:16:28:66: 07:cb:8f:a5:02:07:d9:b2:73:78:2a:86:9d:4a:ec: df:c5:fe:f3:b5:b3:bb:49:fb:63:cc:80:95:a4:1c: b0:4a:0a:1f:69:b8:6d:d4:c0:29:88:29:ca:9e:41: d0:39:01:1c:16:ee:b5:e2:16:76:52:8b:99:59:3d: a1:b8:d3:60:4d:d5:73:b2:6c:bb:60:dd:0b:7d:c6: 4c:0e:a9:03:e0:66:37:6d:cc:79:15:eb:f6:7c:dd: 62:d0:34:32:68:6b:fb:eb:f8:c2:fb:a4:fd:82:ba: dc:d8:0c:41:08:b2:b3:65:b6:40:90:2b:57:48:96: 3a:75:99:18:76:78:a4:70:4e:57:b1:ed:a6:25:30: 4b:43:43:dd:56:cf:7c:3b:53:cf:be:5b:15:b4:c8: 7b:2c:ce:6a:c8:aa:8b:82:82:0b:34:4c:62:09:ae: 29:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:BB:E9:3F:5A:CF:4A:D9:AB:5B:26:95:F9:3D:AE:1A:A2:F5:34:5A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f86ba14-ad5b-430e-a38d-fd5a48004721.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffe:6000::/40 Signature Algorithm: sha256WithRSAEncryption b0:57:2e:ab:45:ef:df:c6:56:10:6c:3a:72:cf:38:d5:81:fc: 37:05:49:3c:6b:0e:4a:47:14:19:36:30:93:e8:0e:17:5d:9d: c3:12:5b:ae:59:95:19:23:73:5b:f3:40:14:38:42:07:0a:c1: f9:4f:92:cd:92:4d:87:5b:a5:75:20:8a:3f:e4:ca:1d:b3:c0: 17:5b:31:f7:41:b0:82:29:24:63:78:12:2e:a1:6b:ea:65:f5: 47:1e:07:33:7f:e8:0b:54:a6:13:ee:9b:20:5f:5e:b2:a9:36: e4:cf:b2:73:28:25:6e:23:c0:15:5a:d1:31:7b:94:eb:83:2a: c0:f4:b5:fb:e6:fb:de:7b:94:29:2e:42:22:77:07:84:de:9b: b6:10:0a:0c:5b:38:25:6a:e7:a5:d4:ac:7a:08:f4:b2:00:7c: cb:7e:9e:df:2c:58:30:c4:e7:56:20:77:c4:0d:f7:74:60:1f: fc:5a:5b:98:1f:bc:57:54:87:f1:d2:76:46:08:93:32:41:ef: 83:b2:ef:32:c6:4a:3d:dc:21:6b:ec:2d:d1:f8:6e:9b:6f:fe: 31:ff:04:31:be:d4:f3:d2:11:c4:01:36:20:f3:d4:61:7c:cb: 97:f9:60:c4:7e:1a:48:ae:5f:5d:9d:64:44:37:bf:18:58:84: cd:b2:22:16 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUO6momjBLrVtyYiXkT4AfovJFoxswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjExMDAwMTE0WhcNMjYwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZGE0NzE3OGJhYmFiZGFjMzRmYmEwNjhmOWUyM2FjNjMy MzVlMjkzY2RmZTYyYzUzMmY1MWM1NWUyNDI0ODU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDV1gSjGVDmpWYaXWnRjiSJTPHKMAgudGT+2MzsuGExbtU gueqLB78JIVTIoWlP++qMM7+PJYs34KCxkqdjbC3d5rsFrE7jVdKCHtncYCMnCCo NDtkFRYoZgfLj6UCB9myc3gqhp1K7N/F/vO1s7tJ+2PMgJWkHLBKCh9puG3UwCmI KcqeQdA5ARwW7rXiFnZSi5lZPaG402BN1XOybLtg3Qt9xkwOqQPgZjdtzHkV6/Z8 3WLQNDJoa/vr+ML7pP2CutzYDEEIsrNltkCQK1dIljp1mRh2eKRwTlex7aYlMEtD Q91Wz3w7U8++WxW0yHsszmrIqouCggs0TGIJril3AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUIrvpP1rPStmrWyaV+T2uGqL1NFowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlmODZiYTE0LWFkNWItNDMwZS1hMzhkLWZkNWE0ODAwNDcyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/+YDANBgkqhkiG9w0BAQsFAAOCAQEAsFcuq0Xv38ZWEGw6cs841YH8 NwVJPGsOSkcUGTYwk+gOF12dwxJbrlmVGSNzW/NAFDhCBwrB+U+SzZJNh1uldSCK P+TKHbPAF1sx90GwgikkY3gSLqFr6mX1Rx4HM3/oC1SmE+6bIF9esqk25M+ycygl biPAFVrRMXuU64MqwPS1++b73nuUKS5CIncHhN6bthAKDFs4JWrnpdSsegj0sgB8 y36e3yxYMMTnViB3xA33dGAf/FpbmB+8V1SH8dJ2RgiTMkHvg7LvMsZKPdwha+wt 0fhum2/+Mf8EMb7U89IRxAE2IPPUYXzLl/lgxH4aSK5fXZ1kRDe/GFiEzbIiFg== -----END CERTIFICATE-----Generated at Thu Dec 18 11:23:05 2025 by rpki-client