This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8dd8af6-08d5-49b1-8425-477edba3254f.roa File: b8dd8af6-08d5-49b1-8425-477edba3254f.roa (raw, json) Hash identifier: 8jqdn3VVh23ZlvSgqrLF/7Mj/7Q7NacPCKc5ss8I2ig= Subject key identifier: 58:36:0E:EB:7A:A5:25:9D:8E:51:9C:00:F7:55:CC:6B:A6:96:D7:75 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 20362291B2B34F89AA8C25345601523A45034851 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8dd8af6-08d5-49b1-8425-477edba3254f.roa Signing time: Thu 20 Nov 2025 00:30:10 +0000 ROA not before: Thu 20 Nov 2025 00:30:10 +0000 ROA not after: Wed 18 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:4005::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:36:22:91:b2:b3:4f:89:aa:8c:25:34:56:01:52:3a:45:03:48:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 20 00:30:10 2025 GMT Not After : Feb 18 23:59:59 2026 GMT Subject: serialNumber=4876be19d90e26574c379209f53bdb548af78b4770027dea6405f98fe2240088, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6d:1a:59:ac:e1:51:7f:82:84:cb:6b:30:de: 64:03:d4:c0:12:3a:3b:a4:29:5b:d3:86:bc:89:43: d3:bb:de:cd:e2:f8:3d:90:25:40:31:b6:e1:c5:9a: ba:e7:6a:5c:dc:02:ce:5d:6f:18:a5:b6:6e:68:4d: dd:e9:63:61:b5:86:e7:67:f9:e6:bb:b4:2a:84:95: 2d:ce:0f:d4:c8:55:a5:5f:9a:fc:7e:38:c8:69:3c: b8:df:29:93:39:af:2e:46:71:d8:a7:2b:c1:69:97: 40:fa:34:5c:9d:57:ac:33:33:99:37:00:bd:24:82: dd:fa:af:5c:e7:49:0d:8d:d7:73:32:fa:60:f7:7d: b9:af:12:95:c4:0f:7b:55:38:9d:65:70:48:24:6a: a0:ec:ce:c7:c9:d9:60:5a:07:e1:b7:2a:7b:76:94: 1c:48:66:cf:e5:cd:ff:df:3b:f9:5b:00:f5:7a:61: df:c0:76:9f:a5:ca:33:91:bf:16:11:f1:02:ae:ec: 4d:9f:dd:b0:c5:37:e0:86:d7:ab:a3:89:9b:b3:c2: 5f:d1:d0:e4:d2:0a:dc:7f:93:f1:1c:42:40:98:e6: 44:0c:ba:b0:e9:b7:e8:a5:dd:93:45:b9:f0:aa:05: 7a:cb:06:47:46:3a:5f:2b:58:02:1a:a4:cd:ed:3f: 03:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:36:0E:EB:7A:A5:25:9D:8E:51:9C:00:F7:55:CC:6B:A6:96:D7:75 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8dd8af6-08d5-49b1-8425-477edba3254f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:4005::/48 Signature Algorithm: sha256WithRSAEncryption 45:3f:a2:79:b9:ba:3d:54:d7:03:e7:51:df:86:dd:27:fe:3a: 6b:eb:61:4f:6f:4a:60:13:18:18:b3:2f:61:0c:f7:a2:0d:7b: 4e:f9:88:9d:0f:30:87:85:06:4a:c9:c0:3d:8a:ed:eb:da:08: 11:80:36:ba:c9:e1:54:6b:5b:4d:a0:1e:a6:9a:cb:b7:d5:3b: 67:b5:6a:8e:8e:ee:56:8b:e2:6d:58:f2:11:4a:43:3f:46:bb: 27:80:d1:d8:d9:22:28:57:d8:29:a9:36:7b:f3:02:25:ed:54: 79:41:63:60:1c:cf:b7:d0:13:a2:73:a0:43:8b:98:aa:47:b0: 29:31:83:99:98:79:dd:d5:0a:00:e0:22:50:f8:d6:bb:5d:3c: 12:b9:32:6b:14:21:0a:ec:f0:92:90:6a:c6:d4:77:af:28:d4: 2d:6d:32:69:f7:c9:df:63:fe:aa:0b:6a:01:ba:e2:86:06:9e: 5f:de:a6:5b:69:29:c0:7e:cc:e6:5f:92:f9:56:18:94:21:3c: c3:a2:98:f1:4b:52:37:a5:56:3f:01:b5:6b:14:66:2c:52:dd: 5e:96:fd:38:d3:68:06:8e:10:05:30:8c:a5:c9:da:ff:13:f7: ac:2f:58:7b:b3:d9:8b:78:7b:6e:bc:a0:aa:12:7c:ae:35:2c: f6:52:a5:8e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIDYikbKzT4mqjCU0VgFSOkUDSFEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTIwMDAzMDEwWhcNMjYwMjE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ODc2YmUxOWQ5MGUyNjU3NGMzNzkyMDlmNTNiZGI1NDhh Zjc4YjQ3NzAwMjdkZWE2NDA1Zjk4ZmUyMjQwMDg4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAbRpZrOFRf4KEy2sw3mQD1MASOjukKVvThryJQ9O73s3i +D2QJUAxtuHFmrrnalzcAs5dbxiltm5oTd3pY2G1hudn+ea7tCqElS3OD9TIVaVf mvx+OMhpPLjfKZM5ry5GcdinK8Fpl0D6NFydV6wzM5k3AL0kgt36r1znSQ2N13My +mD3fbmvEpXED3tVOJ1lcEgkaqDszsfJ2WBaB+G3Knt2lBxIZs/lzf/fO/lbAPV6 Yd/Adp+lyjORvxYR8QKu7E2f3bDFN+CG16ujiZuzwl/R0OTSCtx/k/EcQkCY5kQM urDpt+il3ZNFufCqBXrLBkdGOl8rWAIapM3tPwM/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWDYO63qlJZ2OUZwA91XMa6aW13UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I4ZGQ4YWY2LTA4ZDUtNDliMS04NDI1LTQ3N2VkYmEzMjU0Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHQAUwDQYJKoZIhvcNAQELBQADggEBAEU/onm5uj1U1wPnUd+G3Sf+ OmvrYU9vSmATGBizL2EM96INe075iJ0PMIeFBkrJwD2K7evaCBGANrrJ4VRrW02g Hqaay7fVO2e1ao6O7laL4m1Y8hFKQz9GuyeA0djZIihX2CmpNnvzAiXtVHlBY2Ac z7fQE6JzoEOLmKpHsCkxg5mYed3VCgDgIlD41rtdPBK5MmsUIQrs8JKQasbUd68o 1C1tMmn3yd9j/qoLagG64oYGnl/epltpKcB+zOZfkvlWGJQhPMOimPFLUjelVj8B tWsUZixS3V6W/TjTaAaOEAUwjKXJ2v8T96wvWHuz2Yt4e268oKoSfK41LPZSpY4= -----END CERTIFICATE-----Generated at Sat Dec 6 20:04:43 2025 by rpki-client