This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d68b7ee9-305e-435f-9aa7-7fc27cefdec6.roa File: d68b7ee9-305e-435f-9aa7-7fc27cefdec6.roa (raw, json) Hash identifier: ESlfJIdP70QNfWv0ds4HZQ3up1K0rf6nBjTR8CRcSRg= Subject key identifier: AC:89:57:BC:9F:2F:C4:8F:69:EB:3B:27:A9:CD:85:93:54:06:C3:80 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 588F22305A067EF4367305F4C1C4598387EB1649 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d68b7ee9-305e-435f-9aa7-7fc27cefdec6.roa Signing time: Tue 25 Nov 2025 01:00:36 +0000 ROA not before: Tue 25 Nov 2025 01:00:36 +0000 ROA not after: Mon 23 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fb9:ec00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:8f:22:30:5a:06:7e:f4:36:73:05:f4:c1:c4:59:83:87:eb:16:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 25 01:00:36 2025 GMT Not After : Feb 23 23:59:59 2026 GMT Subject: serialNumber=fc352f4d9ef56b891c7fd6715f208b3f3dd1996ca9ea5937199b8d01a4393711, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:65:f9:a9:c1:07:9e:8c:66:b9:56:db:7d:6d: 47:c9:a2:b3:f2:33:e5:d1:8d:8f:a8:04:d6:18:66: 9d:50:59:c4:71:1f:15:87:c6:7a:35:42:f1:29:66: 20:8b:8e:f4:26:65:97:c4:f2:c8:64:68:ba:87:b2: ed:9e:0c:51:48:5b:cb:c4:2c:9e:ec:2d:15:3d:1a: 35:b9:a4:b3:19:00:b0:0f:21:e8:bd:fe:e7:37:8f: 7f:00:99:a0:42:8f:e9:96:91:3b:b0:a5:f1:65:f8: 73:84:90:1d:75:23:6e:1e:d7:b8:d1:8b:97:c8:38: 87:df:cf:eb:90:b1:ed:07:e4:f0:7d:e5:8d:49:a5: 0e:5c:f3:85:54:62:90:0f:51:47:19:b6:c5:58:ef: dc:d5:74:52:fb:81:3a:a2:2c:80:8e:48:6b:28:a8: dc:f5:90:45:21:ea:05:42:ed:a3:4e:03:f9:17:01: a7:f4:5f:64:c5:3f:6c:5d:f6:e2:c0:ba:8d:6e:91: 50:b1:a0:86:32:16:4d:1b:e0:1e:ee:c9:9f:99:92: 5c:c1:80:eb:71:d6:1f:57:86:db:3b:11:c5:50:bd: a6:ef:f0:a4:4d:1f:7f:03:07:d9:c4:c4:41:9d:79: 19:4b:cd:bd:96:1c:d1:85:56:d2:39:7a:5c:51:74: d4:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:89:57:BC:9F:2F:C4:8F:69:EB:3B:27:A9:CD:85:93:54:06:C3:80 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d68b7ee9-305e-435f-9aa7-7fc27cefdec6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb9:ec00::/40 Signature Algorithm: sha256WithRSAEncryption 09:51:be:5d:1f:06:73:f6:21:68:1c:ab:08:fa:73:fb:d4:5d: 87:dc:a3:7b:b5:e0:85:b2:5c:56:85:f9:e0:70:74:d0:a4:23: 8d:82:00:78:90:56:ca:c0:e7:80:f6:9d:0d:da:96:26:39:4a: ee:05:84:d2:a7:98:3f:49:f6:c3:7b:91:23:57:1e:79:e9:ee: 6b:68:44:8c:6c:39:24:1d:23:a8:a3:c0:27:38:a8:b1:b0:25: 0e:e1:d4:0f:10:40:df:50:8f:79:74:e0:d8:df:f1:b6:7e:f0: 4c:9f:bc:87:36:39:fa:0a:57:6e:ec:c9:af:f7:a8:07:b6:65: 32:b9:bb:71:75:33:06:7f:75:f1:11:4e:78:a7:11:ea:1e:80: 95:da:f2:2a:56:72:99:63:63:a3:1a:9b:b9:55:66:e1:8a:d9: bc:99:31:67:21:ab:55:25:5d:6f:e2:52:62:84:f5:e7:e5:a6: 1c:23:53:76:40:e5:f1:7b:d2:d2:35:59:6f:f8:e7:85:4e:8b: 8c:f4:01:bd:b3:f0:f6:92:02:55:e3:67:f1:71:f8:1b:41:2c: 2f:86:a4:74:06:9d:63:b4:ff:c4:6f:02:7d:75:65:be:7d:ad: 41:f9:f6:e0:37:f6:02:79:d7:5b:f5:3d:5e:24:c4:76:88:60: 31:a0:95:30 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUWI8iMFoGfvQ2cwX0wcRZg4frFkkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI1MDEwMDM2WhcNMjYwMjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYzM1MmY0ZDllZjU2Yjg5MWM3ZmQ2NzE1ZjIwOGIzZjNk ZDE5OTZjYTllYTU5MzcxOTliOGQwMWE0MzkzNzExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEZfmpwQeejGa5Vtt9bUfJorPyM+XRjY+oBNYYZp1QWcRx HxWHxno1QvEpZiCLjvQmZZfE8shkaLqHsu2eDFFIW8vELJ7sLRU9GjW5pLMZALAP Iei9/uc3j38AmaBCj+mWkTuwpfFl+HOEkB11I24e17jRi5fIOIffz+uQse0H5PB9 5Y1JpQ5c84VUYpAPUUcZtsVY79zVdFL7gTqiLICOSGsoqNz1kEUh6gVC7aNOA/kX Aaf0X2TFP2xd9uLAuo1ukVCxoIYyFk0b4B7uyZ+ZklzBgOtx1h9Xhts7EcVQvabv 8KRNH38DB9nExEGdeRlLzb2WHNGFVtI5elxRdNQnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUrIlXvJ8vxI9p6zsnqc2Fk1QGw4AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q2OGI3ZWU5LTMwNWUtNDM1Zi05YWE3LTdmYzI3Y2VmZGVjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+57DANBgkqhkiG9w0BAQsFAAOCAQEACVG+XR8Gc/YhaByrCPpz+9Rd h9yje7XghbJcVoX54HB00KQjjYIAeJBWysDngPadDdqWJjlK7gWE0qeYP0n2w3uR I1ceeenua2hEjGw5JB0jqKPAJziosbAlDuHUDxBA31CPeXTg2N/xtn7wTJ+8hzY5 +gpXbuzJr/eoB7ZlMrm7cXUzBn918RFOeKcR6h6AldryKlZymWNjoxqbuVVm4YrZ vJkxZyGrVSVdb+JSYoT15+WmHCNTdkDl8XvS0jVZb/jnhU6LjPQBvbPw9pICVeNn 8XH4G0EsL4akdAadY7T/xG8CfXVlvn2tQfn24Df2AnnXW/U9XiTEdohgMaCVMA== -----END CERTIFICATE-----Generated at Sat Dec 6 12:58:08 2025 by rpki-client