This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/daa21079-0b9a-4fa2-aa2f-8706b125633e.roa File: daa21079-0b9a-4fa2-aa2f-8706b125633e.roa (raw, json) Hash identifier: dU8Pbpagyj8H+Bd05dCQxSfKl9azeaTRMtXHW1E/gDU= Subject key identifier: B3:FE:BA:25:B8:5A:19:92:4D:5A:68:C8:88:C0:3F:75:6D:D5:C2:B5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A2D57F8E3FC56FCA580B29979C0867EB892F71E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/daa21079-0b9a-4fa2-aa2f-8706b125633e.roa Signing time: Sat 06 Dec 2025 01:20:09 +0000 ROA not before: Sat 06 Dec 2025 01:20:09 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:40e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Dec 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:2d:57:f8:e3:fc:56:fc:a5:80:b2:99:79:c0:86:7e:b8:92:f7:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Dec 6 01:20:09 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=697676e62c2c235455118a0f6ecb488f16b01d82aadf080fb9bebc4dcd92c5e1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:28:4a:e0:8f:ea:2c:88:8a:87:25:f1:97:e5: 0b:3f:59:fb:47:8a:ce:0e:2f:43:1a:b0:7a:93:fc: 7f:ad:59:61:3b:da:bc:fe:20:8f:a5:cc:eb:3d:7d: d1:7b:0a:11:51:74:ac:6a:c0:af:31:59:a6:dd:48: a5:96:5f:ff:a8:b8:69:4e:f3:c5:39:97:07:89:7c: 8c:15:c6:3d:c7:74:9e:53:9f:08:14:cd:8b:e2:d1: e6:19:fa:cc:4f:a5:1a:9c:61:2c:54:29:7d:a7:ee: 92:78:0f:dd:f3:70:54:25:b2:20:a7:ee:d5:26:01: f2:c2:11:b6:51:14:d6:7a:87:b0:64:69:07:63:d4: 3f:b2:92:08:76:1c:dc:44:bd:1a:62:42:f5:50:e3: d0:9a:20:cd:ec:5e:ee:f5:88:35:58:c6:1f:34:86: 49:11:5e:a4:79:dc:b7:ad:22:ed:55:cc:3a:11:c1: ea:8c:81:c7:af:58:20:99:f2:33:95:ed:35:b6:fb: ad:5f:c2:3d:81:91:58:c2:fa:8b:be:a8:1a:e3:d7: 7f:de:de:e6:33:89:76:89:8d:12:71:2a:e1:2a:b7: c3:42:71:4f:eb:f1:70:0b:ab:d6:6d:0b:f8:fd:e6: aa:8d:15:ab:18:3e:78:df:ca:b1:3a:be:09:d5:64: fc:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:FE:BA:25:B8:5A:19:92:4D:5A:68:C8:88:C0:3F:75:6D:D5:C2:B5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/daa21079-0b9a-4fa2-aa2f-8706b125633e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:40e0::/48 Signature Algorithm: sha256WithRSAEncryption 07:86:9a:85:44:cc:fa:29:68:f4:ff:36:b1:47:ef:49:3e:f3: 7f:43:f9:1d:c6:04:9b:c4:cc:98:ee:b8:87:73:42:c7:f8:4b: 6f:b1:f6:fb:59:16:0c:f3:92:1d:4b:54:0e:c7:1f:04:e6:17: b6:26:23:13:94:e5:b3:95:32:ed:ea:b4:87:2c:17:11:47:1d: 24:35:f1:ce:dc:66:de:a0:5d:76:84:5b:49:fc:25:e9:f8:4f: 82:84:dd:1c:fc:fc:49:67:ef:f5:66:1f:1e:66:b3:59:77:8c: 5f:7b:a4:05:8c:45:c5:cf:84:52:cb:de:3b:ac:cc:d0:8c:a9: 2a:50:4d:25:3c:d4:bc:41:c6:30:4e:a7:b0:4d:80:8d:39:20: ee:e3:dd:69:e4:58:31:f9:61:86:56:a0:04:47:48:ec:05:ef: d7:cd:99:fc:9c:32:71:ba:23:d6:fd:c2:03:c6:47:fc:3e:60: ba:8a:e3:f9:c1:a2:7f:3c:52:20:92:21:d6:8f:aa:b9:89:6e: 38:d1:9f:7d:9f:95:b7:56:cd:ba:9c:79:fa:4d:8d:41:fd:e8: 3d:9e:c0:63:0a:74:c1:34:47:8f:61:ca:94:31:92:23:61:89: a8:dc:a4:d9:e6:8b:4c:de:af:49:8f:81:38:1b:32:ae:2c:cf: c9:bb:43:c8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOi1X+OP8VvylgLKZecCGfriS9x4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMjA2MDEyMDA5WhcNMjYwMzA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2OTc2NzZlNjJjMmMyMzU0NTUxMThhMGY2ZWNiNDg4ZjE2 YjAxZDgyYWFkZjA4MGZiOWJlYmM0ZGNkOTJjNWUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVKErgj+osiIqHJfGX5Qs/WftHis4OL0MasHqT/H+tWWE7 2rz+II+lzOs9fdF7ChFRdKxqwK8xWabdSKWWX/+ouGlO88U5lweJfIwVxj3HdJ5T nwgUzYvi0eYZ+sxPpRqcYSxUKX2n7pJ4D93zcFQlsiCn7tUmAfLCEbZRFNZ6h7Bk aQdj1D+ykgh2HNxEvRpiQvVQ49CaIM3sXu71iDVYxh80hkkRXqR53LetIu1VzDoR weqMgcevWCCZ8jOV7TW2+61fwj2BkVjC+ou+qBrj13/e3uYziXaJjRJxKuEqt8NC cU/r8XALq9ZtC/j95qqNFasYPnjfyrE6vgnVZPzlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUs/66JbhaGZJNWmjIiMA/dW3VwrUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhYTIxMDc5LTBiOWEtNGZhMi1hYTJmLTg3MDZiMTI1NjMzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//QOAwDQYJKoZIhvcNAQELBQADggEBAAeGmoVEzPopaPT/NrFH70k+ 839D+R3GBJvEzJjuuIdzQsf4S2+x9vtZFgzzkh1LVA7HHwTmF7YmIxOU5bOVMu3q tIcsFxFHHSQ18c7cZt6gXXaEW0n8Jen4T4KE3Rz8/Eln7/VmHx5ms1l3jF97pAWM RcXPhFLL3juszNCMqSpQTSU81LxBxjBOp7BNgI05IO7j3WnkWDH5YYZWoARHSOwF 79fNmfycMnG6I9b9wgPGR/w+YLqK4/nBon88UiCSIdaPqrmJbjjRn32flbdWzbqc efpNjUH96D2ewGMKdME0R49hypQxkiNhiajcpNnmi0zer0mPgTgbMq4sz8m7Q8g= -----END CERTIFICATE-----Generated at Sat Dec 6 20:00:34 2025 by rpki-client