This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af587f49-38bf-4b30-8bc9-8c7823a6b805.roa File: af587f49-38bf-4b30-8bc9-8c7823a6b805.roa (raw, json) Hash identifier: GVV5Eh31YciRfVt7BbQloL7zRY3PZuemmyZy+bxqwkQ= Subject key identifier: 42:7B:0A:65:E6:00:63:03:E9:D4:C0:8C:F0:18:4E:6C:F1:BC:C3:AF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 78088CFDA79D701BC978EB2E8F38B5325B5F034D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af587f49-38bf-4b30-8bc9-8c7823a6b805.roa Signing time: Sat 06 Dec 2025 00:31:26 +0000 ROA not before: Sat 06 Dec 2025 00:31:26 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fff:8120::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:08:8c:fd:a7:9d:70:1b:c9:78:eb:2e:8f:38:b5:32:5b:5f:03:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 6 00:31:26 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=9500162fdbcc26e0a176596244d5a8ab8eb4a68d64a1fc5a4d0ac2b0b16f19d8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ab:2c:06:bb:cf:2a:da:81:06:83:6a:a7:60: 44:79:48:59:b2:6a:92:43:03:2e:42:0d:9e:d7:44: b9:d2:64:b9:5d:c2:46:a5:55:84:9b:c4:cd:9d:78: da:47:c9:79:d1:1c:0b:a1:8f:61:d8:67:32:52:1d: 11:e2:0c:9b:50:cc:46:61:b0:22:f3:2d:d6:f5:f6: e0:9a:aa:12:09:3d:94:fc:09:25:65:9d:12:67:f8: b8:f9:8d:5f:bc:51:1c:de:99:ac:58:6f:5d:e6:eb: 01:67:4a:c4:76:d4:ff:b9:9f:af:fd:05:fb:d1:32: 52:f4:5d:50:04:1f:73:2d:87:d9:d5:56:9b:f3:3a: eb:ef:bf:85:94:61:a0:d9:ae:39:a2:61:c7:f2:26: f1:ad:11:97:3a:67:d8:48:45:77:69:15:ac:5a:2a: a9:30:af:3b:51:4c:43:e8:a2:44:78:d4:61:7e:b1: 6c:45:86:fe:1e:b7:eb:b2:61:20:5a:83:55:08:33: 43:be:8e:86:c3:f3:f7:d6:8a:f1:79:57:5e:81:94: 47:d3:90:ad:4b:ed:bf:b1:ae:14:ec:14:20:44:11: d8:54:25:c3:82:af:5f:4e:99:d7:dd:24:44:e8:5a: 85:b8:ad:18:4d:8a:7e:53:6a:18:51:6b:6b:3c:1c: 8d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:7B:0A:65:E6:00:63:03:E9:D4:C0:8C:F0:18:4E:6C:F1:BC:C3:AF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af587f49-38bf-4b30-8bc9-8c7823a6b805.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8120::/48 Signature Algorithm: sha256WithRSAEncryption 7e:ba:38:f8:a9:c7:53:a7:97:94:57:b1:69:7d:e4:5c:24:08: 44:b8:a8:0f:f4:b5:2c:7c:17:ff:ac:45:f8:13:cd:a6:6c:7c: e9:7b:cc:bc:00:6c:2b:eb:0e:d8:c2:ec:46:37:fb:fa:87:23: 65:cf:b8:bc:78:85:68:bc:31:9a:3b:e2:ca:56:89:eb:4f:6c: a2:1f:81:70:05:31:d1:ef:c7:86:b7:a8:f9:93:c9:d5:6a:8f: ee:03:14:62:1e:42:66:dd:33:55:eb:f0:4d:34:0d:c7:8a:e4: e9:d1:8a:9a:56:0d:28:1c:5b:a0:1f:54:d4:73:df:f5:7d:e2: 4f:77:3e:48:e5:3b:d2:21:8b:46:15:a6:27:e9:4d:4a:b4:a0: 93:af:77:be:fc:86:2b:48:77:1b:46:ce:a0:0e:6e:10:93:e5: 9c:f3:b2:38:93:6c:84:ec:d0:8c:37:1a:34:f1:2a:35:b2:ae: b5:00:74:bb:7a:93:c0:97:7b:10:76:05:2d:3b:af:27:29:7a: 67:38:92:97:fe:71:d9:c1:a6:2e:2a:cb:b8:1b:cd:23:9f:6b: 26:bd:c2:eb:20:eb:86:f1:5c:be:1d:c6:21:9b:b9:37:6d:80: b4:d1:a8:b0:1f:73:43:0e:12:b0:06:51:b3:82:6e:e5:34:e8: e6:bc:dc:8f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeAiM/aedcBvJeOsujzi1MltfA00wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA2MDAzMTI2WhcNMjYwMzA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NTAwMTYyZmRiY2MyNmUwYTE3NjU5NjI0NGQ1YThhYjhl YjRhNjhkNjRhMWZjNWE0ZDBhYzJiMGIxNmYxOWQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClqywGu88q2oEGg2qnYER5SFmyapJDAy5CDZ7XRLnSZLld wkalVYSbxM2deNpHyXnRHAuhj2HYZzJSHRHiDJtQzEZhsCLzLdb19uCaqhIJPZT8 CSVlnRJn+Lj5jV+8URzemaxYb13m6wFnSsR21P+5n6/9BfvRMlL0XVAEH3Mth9nV VpvzOuvvv4WUYaDZrjmiYcfyJvGtEZc6Z9hIRXdpFaxaKqkwrztRTEPookR41GF+ sWxFhv4et+uyYSBag1UIM0O+jobD8/fWivF5V16BlEfTkK1L7b+xrhTsFCBEEdhU JcOCr19OmdfdJEToWoW4rRhNin5TahhRa2s8HI29AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQnsKZeYAYwPp1MCM8BhObPG8w68wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FmNTg3ZjQ5LTM4YmYtNGIzMC04YmM5LThjNzgyM2E2YjgwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gSAwDQYJKoZIhvcNAQELBQADggEBAH66OPipx1Onl5RXsWl95Fwk CES4qA/0tSx8F/+sRfgTzaZsfOl7zLwAbCvrDtjC7EY3+/qHI2XPuLx4hWi8MZo7 4spWietPbKIfgXAFMdHvx4a3qPmTydVqj+4DFGIeQmbdM1Xr8E00DceK5OnRippW DSgcW6AfVNRz3/V94k93PkjlO9Ihi0YVpifpTUq0oJOvd778hitIdxtGzqAObhCT 5ZzzsjiTbITs0Iw3GjTxKjWyrrUAdLt6k8CXexB2BS07rycpemc4kpf+cdnBpi4q y7gbzSOfaya9wusg64bxXL4dxiGbuTdtgLTRqLAfc0MOErAGUbOCbuU06Oa83I8= -----END CERTIFICATE-----Generated at Sat Dec 6 17:46:00 2025 by rpki-client