This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf99f295-53e6-4f75-8147-bd9a959935ff.roa File: cf99f295-53e6-4f75-8147-bd9a959935ff.roa (raw, json) Hash identifier: SzvoMzKogiuqxYG+8Khw7i9WsGfditufGkXWXcFnY9I= Subject key identifier: 14:D3:BD:90:FB:FC:7D:5D:4D:9F:8F:ED:A9:81:A2:B7:E6:A8:BA:4E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0A48D4B6730A92452EE131C19738C977ACBDF015 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf99f295-53e6-4f75-8147-bd9a959935ff.roa Signing time: Wed 26 Nov 2025 00:40:09 +0000 ROA not before: Wed 26 Nov 2025 00:40:09 +0000 ROA not after: Tue 24 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fb9:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:48:d4:b6:73:0a:92:45:2e:e1:31:c1:97:38:c9:77:ac:bd:f0:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 26 00:40:09 2025 GMT Not After : Feb 24 23:59:59 2026 GMT Subject: serialNumber=032cd24da1f3e3c1c5aab45871f499b067c63ac9b16b7e3ed6ea60a872ec9441, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:21:2e:72:ab:03:eb:8b:dd:76:c3:79:14:35: 17:5c:64:fc:6f:32:e6:31:f8:53:a3:d2:62:89:80: cb:1c:35:da:08:ee:07:77:31:2c:32:b7:6e:3b:60: 63:02:88:87:46:3b:ef:0b:5b:7f:cc:c8:88:1d:89: e9:d2:29:3f:36:ee:50:1b:ea:f0:07:14:a9:a0:2e: bb:ef:cc:cc:81:88:8d:3b:3b:52:1e:57:0b:30:5c: ec:0b:95:e9:01:86:86:1f:0e:0d:94:b4:5a:ec:45: f8:88:3f:63:56:11:ce:37:1c:f5:65:2e:98:63:95: 82:b5:2e:5e:e5:5b:bd:4d:c8:be:10:90:63:39:c2: 23:f2:18:c5:94:3a:fd:33:d8:0f:0f:14:cd:80:70: c1:bc:aa:0d:ae:01:f7:60:82:19:a7:43:9c:b6:21: 19:f9:97:ad:fa:e5:a3:c2:35:fe:c6:d9:87:5a:b9: 28:a9:94:ff:eb:ff:1e:f5:b5:61:bc:3c:35:04:01: 61:94:98:d0:f6:19:85:70:4e:5d:34:e2:d1:6c:54: 9d:8c:21:7d:80:88:f8:83:e8:e4:8f:ca:e7:20:71: 6f:02:bd:12:8f:ca:84:01:cb:56:5e:b6:f8:ed:40: d6:24:54:dd:c1:53:aa:53:cc:92:3e:c5:35:2e:33: c7:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:D3:BD:90:FB:FC:7D:5D:4D:9F:8F:ED:A9:81:A2:B7:E6:A8:BA:4E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf99f295-53e6-4f75-8147-bd9a959935ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb9:1000::/40 Signature Algorithm: sha256WithRSAEncryption 2c:fc:ce:3d:a6:b1:16:8a:f7:2d:ad:d2:ba:d3:52:84:12:4b: 69:71:82:e7:a5:ba:06:88:bf:13:bf:a7:5c:c6:82:56:45:3d: 0a:c3:55:a1:18:ba:4a:97:16:ab:c6:c8:c2:65:43:42:8e:04: 6e:c5:bc:ca:ca:51:81:94:00:17:d8:0f:c1:91:de:0c:a4:e5: d9:b2:2e:e4:c1:81:f7:2b:1e:90:3e:9b:ec:5a:dd:fb:4f:df: 73:d6:2a:15:9c:08:b2:f0:8f:95:cc:56:f8:32:9b:5e:70:1c: 9b:37:c7:f6:14:bd:7d:84:ff:6e:8a:38:6a:f6:5c:4a:24:32: 49:98:70:32:25:3a:aa:28:03:87:36:21:9f:fc:35:e9:b5:d4: ba:a9:bc:ef:10:2a:64:c6:6a:5b:77:b9:20:96:94:a5:0c:90: b8:9f:3d:56:cf:a2:2f:b8:db:46:e2:2f:67:a5:62:0f:24:cd: 9c:6c:86:ec:94:a3:a2:9f:f8:87:9c:ba:98:83:0c:86:a9:3e: 55:23:fe:a5:4e:8c:c8:f4:72:27:21:89:30:6d:68:8f:f3:14: 7e:91:6e:88:87:9e:bd:37:d4:9e:41:86:99:dd:0b:ce:75:65: f5:9e:50:d3:35:a6:d7:62:f1:a9:f0:b9:c1:5a:19:ca:24:7c: 93:dd:01:e0 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUCkjUtnMKkkUu4THBlzjJd6y98BUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI2MDA0MDA5WhcNMjYwMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMzJjZDI0ZGExZjNlM2MxYzVhYWI0NTg3MWY0OTliMDY3 YzYzYWM5YjE2YjdlM2VkNmVhNjBhODcyZWM5NDQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsIS5yqwPri912w3kUNRdcZPxvMuYx+FOj0mKJgMscNdoI 7gd3MSwyt247YGMCiIdGO+8LW3/MyIgdienSKT827lAb6vAHFKmgLrvvzMyBiI07 O1IeVwswXOwLlekBhoYfDg2UtFrsRfiIP2NWEc43HPVlLphjlYK1Ll7lW71NyL4Q kGM5wiPyGMWUOv0z2A8PFM2AcMG8qg2uAfdgghmnQ5y2IRn5l6365aPCNf7G2Yda uSiplP/r/x71tWG8PDUEAWGUmND2GYVwTl004tFsVJ2MIX2AiPiD6OSPyucgcW8C vRKPyoQBy1ZetvjtQNYkVN3BU6pTzJI+xTUuM8elAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUFNO9kPv8fV1Nn4/tqYGit+aouk4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NmOTlmMjk1LTUzZTYtNGY3NS04MTQ3LWJkOWE5NTk5MzVmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+5EDANBgkqhkiG9w0BAQsFAAOCAQEALPzOPaaxFor3La3SutNShBJL aXGC56W6Boi/E7+nXMaCVkU9CsNVoRi6SpcWq8bIwmVDQo4EbsW8yspRgZQAF9gP wZHeDKTl2bIu5MGB9ysekD6b7Frd+0/fc9YqFZwIsvCPlcxW+DKbXnAcmzfH9hS9 fYT/boo4avZcSiQySZhwMiU6qigDhzYhn/w16bXUuqm87xAqZMZqW3e5IJaUpQyQ uJ89Vs+iL7jbRuIvZ6ViDyTNnGyG7JSjop/4h5y6mIMMhqk+VSP+pU6MyPRyJyGJ MG1oj/MUfpFuiIeevTfUnkGGmd0LznVl9Z5Q0zWm12LxqfC5wVoZyiR8k90B4A== -----END CERTIFICATE-----Generated at Sat Dec 6 23:56:43 2025 by rpki-client