This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f189e5be-37a6-4672-9a92-e8d2041c8b2d.roa File: f189e5be-37a6-4672-9a92-e8d2041c8b2d.roa (raw, json) Hash identifier: CpmGJ7Qj6dkLb2yLmC65URtRmcIAmS3Gg9Xuoxf7ATs= Subject key identifier: 28:97:F8:B4:15:E5:AC:33:B2:F4:C1:45:CC:E7:DF:1D:83:1C:8A:3F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 23DA0BE1CB85F6D6FAC857816465731C1638A939 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f189e5be-37a6-4672-9a92-e8d2041c8b2d.roa Signing time: Wed 26 Nov 2025 00:40:10 +0000 ROA not before: Wed 26 Nov 2025 00:40:10 +0000 ROA not after: Tue 24 Feb 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fff:81b0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:da:0b:e1:cb:85:f6:d6:fa:c8:57:81:64:65:73:1c:16:38:a9:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 26 00:40:10 2025 GMT Not After : Feb 24 23:59:59 2026 GMT Subject: serialNumber=58b54d3cd10fcdec7f10ac446b4ddeb334c7a9ac5546164f57539fecf56427ac, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:68:69:77:bd:0f:d8:77:75:d1:4a:01:08:8c: 8e:ea:f7:4b:71:c6:77:55:9d:5a:9c:59:6b:41:87: 89:ce:31:7d:3c:65:38:73:ec:2f:bf:01:26:f8:c9: 26:ef:34:f6:15:51:47:46:6b:ac:c3:72:3b:95:d1: bd:98:57:af:06:99:58:c4:75:e1:a5:32:39:77:84: f8:44:0f:cc:2b:2f:29:f0:b4:bf:29:cb:5d:11:9e: cf:23:5e:2e:2d:5a:7b:7d:b4:35:32:a0:63:c1:54: 37:e2:8c:38:ac:94:19:64:27:c6:ed:b0:a3:8b:83: cc:1c:0a:51:6a:03:56:30:49:fc:11:24:4e:58:56: 68:07:4e:06:80:19:68:e5:f4:d0:0c:a7:17:24:35: d1:cf:f4:1b:f0:8d:72:9f:68:6f:28:3c:4a:01:0c: 54:c0:49:8d:c3:ad:01:49:f2:79:cb:49:a9:eb:c0: 87:ce:41:f5:8d:6b:d7:a9:5b:15:e8:64:a9:b3:3a: 35:96:2a:72:a6:56:67:c5:69:79:a5:75:fd:4f:72: 3d:55:6a:34:de:66:9b:45:0f:d6:34:fd:ec:00:21: f5:5b:cd:62:65:64:32:20:27:40:4f:04:aa:37:a0: 1d:55:0a:ba:bb:01:71:0a:c3:dc:62:d3:8c:03:f0: 44:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:97:F8:B4:15:E5:AC:33:B2:F4:C1:45:CC:E7:DF:1D:83:1C:8A:3F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f189e5be-37a6-4672-9a92-e8d2041c8b2d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:81b0::/48 Signature Algorithm: sha256WithRSAEncryption 3f:0c:6e:48:b3:5c:d3:e8:37:f8:e1:14:05:03:cb:46:05:26: 29:b5:12:39:ab:d8:8d:be:2c:26:4a:83:8c:dd:81:f7:b4:8d: cc:48:e0:63:ab:aa:c6:4a:ec:12:63:d3:12:b3:39:d7:46:23: 49:01:b3:9c:51:18:80:3a:86:81:67:b7:e9:ab:15:d4:3d:7d: fa:a3:1d:e1:b8:21:7f:27:bb:c2:27:f3:df:a3:47:1d:4a:61: 8d:63:76:2c:d0:36:77:dc:45:b6:e3:62:46:e6:d9:c9:83:ff: 12:71:8b:e4:8a:28:8c:37:fd:0a:c3:65:c3:fe:61:3e:6c:5d: 48:9c:89:05:b4:3a:48:63:20:7e:d2:03:38:e0:de:bb:3a:3e: a0:10:09:47:2b:4a:ee:8c:09:5b:b2:ab:4b:66:f6:c1:6a:1b: 0e:63:33:78:9f:3c:f2:48:79:b1:b8:27:09:d4:43:22:88:7e: 2e:2d:7e:65:00:86:5a:d2:7d:0c:27:e7:57:32:04:62:39:f9: 2b:ee:b4:79:3c:11:3a:8d:d5:da:73:ec:62:9a:f2:b5:2c:af: c1:98:58:71:43:6d:71:f9:f2:b5:ee:0a:0f:8d:29:f5:ab:4b: 72:ac:ce:0e:4d:36:75:8f:80:71:28:1b:29:45:8b:16:9c:62: 1c:37:f7:ac -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUI9oL4cuF9tb6yFeBZGVzHBY4qTkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUxMTI2MDA0MDEwWhcNMjYwMjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OGI1NGQzY2QxMGZjZGVjN2YxMGFjNDQ2YjRkZGViMzM0 YzdhOWFjNTU0NjE2NGY1NzUzOWZlY2Y1NjQyN2FjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEaGl3vQ/Yd3XRSgEIjI7q90txxndVnVqcWWtBh4nOMX08 ZThz7C+/ASb4ySbvNPYVUUdGa6zDcjuV0b2YV68GmVjEdeGlMjl3hPhED8wrLynw tL8py10Rns8jXi4tWnt9tDUyoGPBVDfijDislBlkJ8btsKOLg8wcClFqA1YwSfwR JE5YVmgHTgaAGWjl9NAMpxckNdHP9BvwjXKfaG8oPEoBDFTASY3DrQFJ8nnLSanr wIfOQfWNa9epWxXoZKmzOjWWKnKmVmfFaXmldf1Pcj1VajTeZptFD9Y0/ewAIfVb zWJlZDIgJ0BPBKo3oB1VCrq7AXEKw9xi04wD8ETzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKJf4tBXlrDOy9MFFzOffHYMcij8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxODllNWJlLTM3YTYtNDY3Mi05YTkyLWU4ZDIwNDFjOGIyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gbAwDQYJKoZIhvcNAQELBQADggEBAD8MbkizXNPoN/jhFAUDy0YF Jim1Ejmr2I2+LCZKg4zdgfe0jcxI4GOrqsZK7BJj0xKzOddGI0kBs5xRGIA6hoFn t+mrFdQ9ffqjHeG4IX8nu8In89+jRx1KYY1jdizQNnfcRbbjYkbm2cmD/xJxi+SK KIw3/QrDZcP+YT5sXUiciQW0OkhjIH7SAzjg3rs6PqAQCUcrSu6MCVuyq0tm9sFq Gw5jM3ifPPJIebG4JwnUQyKIfi4tfmUAhlrSfQwn51cyBGI5+SvutHk8ETqN1dpz 7GKa8rUsr8GYWHFDbXH58rXuCg+NKfWrS3Kszg5NNnWPgHEoGylFixacYhw396w= -----END CERTIFICATE-----Generated at Sat Dec 6 18:15:59 2025 by rpki-client