This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa File: c686f937-000a-490a-846c-e2773b637b26.roa (raw, json) Hash identifier: 8gOlfvMvUqSBeP1UlpLNOnuSTAic3vzdkiU1l92TEqU= Subject key identifier: 81:9B:74:29:73:9E:CC:8C:BC:3B:AF:33:6C:AD:11:A3:D6:D6:DB:74 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 391433A14E430C99FF78D71D73DDE584B55659C1 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa Signing time: Sat 29 Nov 2025 00:00:08 +0000 ROA not before: Sat 29 Nov 2025 00:00:08 +0000 ROA not after: Fri 27 Feb 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:14:33:a1:4e:43:0c:99:ff:78:d7:1d:73:dd:e5:84:b5:56:59:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Nov 29 00:00:08 2025 GMT Not After : Feb 27 23:59:59 2026 GMT Subject: serialNumber=e5b08f4903af0aa609aaeac7aa7596bf71d1dbf21e938167547fef4ef9df8f98, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:6b:9f:f3:be:2b:49:83:2c:5f:c5:c3:69:75: 9e:45:e1:ad:85:9e:d8:28:78:13:39:fa:ef:64:99: c2:14:91:fa:62:8a:2a:48:22:26:36:c4:ad:39:a0: 1f:b9:32:d5:ba:42:85:78:ea:26:2f:6f:61:3b:f3: d4:d6:69:20:1a:f9:3b:ac:e2:41:7d:f4:3a:d3:33: 3c:a6:b2:ec:47:70:c9:53:06:45:22:52:bc:18:85: ab:f8:24:43:12:dc:4b:c4:9d:f3:1b:2d:6c:db:aa: a0:a5:56:df:d6:1c:fc:8a:99:ba:68:a1:a3:b1:da: 2d:04:6b:3f:dc:64:07:6e:2c:a9:7e:ed:69:15:22: 38:0e:ff:a7:01:d9:4a:27:59:83:2c:c6:e6:96:f1: f5:b3:77:6f:e8:cf:15:6d:56:49:c0:a8:b8:b2:5d: b6:38:c2:9b:c1:25:60:d2:6a:64:b6:12:1d:06:8b: 42:8d:27:11:1d:8e:24:21:ae:28:35:4c:6e:66:ac: 75:12:e9:20:55:29:9b:48:a0:eb:e4:d8:87:a3:c0: 89:fb:4f:32:46:56:43:be:bb:24:98:27:1d:c3:5e: 8d:41:8d:71:c4:e3:bd:47:e5:2e:2c:3c:5a:ff:11: 52:5c:08:00:3a:4e:de:3d:86:95:a5:80:bc:25:9e: b5:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:9B:74:29:73:9E:CC:8C:BC:3B:AF:33:6C:AD:11:A3:D6:D6:DB:74 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40::/32 Signature Algorithm: sha256WithRSAEncryption 4e:e5:56:f5:f7:dc:d5:66:b6:65:45:8e:24:1a:b2:3a:be:86: 69:63:3a:cf:08:33:cf:bf:ed:91:82:a6:52:26:17:6a:d0:7b: ed:50:69:40:45:b4:bd:38:55:27:2a:11:a3:fd:b3:22:46:f5: 0e:f4:85:51:66:03:df:87:5d:7e:f6:2b:b3:11:0f:9e:ab:d6: 65:45:0d:6c:0b:09:fe:9d:43:8c:2b:ad:2c:ac:e8:03:6b:08: 8a:75:e1:12:72:75:1c:d5:34:e2:b7:39:75:c6:9a:dd:ff:53: bf:ff:57:0f:66:42:a9:da:26:d2:65:ab:1b:30:2e:b3:ca:17: f7:fc:54:81:66:7a:a4:68:0c:b0:02:0b:17:05:b9:50:0f:37: 39:6d:eb:c4:08:48:0c:7c:93:81:3b:f4:4b:b2:43:11:d2:5b: f6:e2:17:e2:1b:60:3f:ef:8e:0c:86:eb:32:81:a6:a0:18:ef: 70:52:b9:5f:70:47:c8:05:74:5e:f1:61:cd:70:30:51:65:bc: 85:6d:db:0b:db:53:ae:9b:c1:31:1e:26:5f:07:5b:e2:ac:ea: 3d:5f:d0:a1:9a:89:20:16:f9:65:c1:f2:8c:b5:a5:78:b0:27: 32:fe:da:1b:8a:54:b4:f6:3d:72:d1:bf:ad:a6:f4:84:12:89: 89:f9:ea:bd -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUORQzoU5DDJn/eNcdc93lhLVWWcEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUxMTI5MDAwMDA4WhcNMjYwMjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNWIwOGY0OTAzYWYwYWE2MDlhYWVhYzdhYTc1OTZiZjcx ZDFkYmYyMWU5MzgxNjc1NDdmZWY0ZWY5ZGY4Zjk4MS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZa5/zvitJgyxfxcNpdZ5F4a2FntgoeBM5+u9kmcIUkfpi iipIIiY2xK05oB+5MtW6QoV46iYvb2E789TWaSAa+Tus4kF99DrTMzymsuxHcMlT BkUiUrwYhav4JEMS3EvEnfMbLWzbqqClVt/WHPyKmbpooaOx2i0Eaz/cZAduLKl+ 7WkVIjgO/6cB2UonWYMsxuaW8fWzd2/ozxVtVknAqLiyXbY4wpvBJWDSamS2Eh0G i0KNJxEdjiQhrig1TG5mrHUS6SBVKZtIoOvk2IejwIn7TzJGVkO+uySYJx3DXo1B jXHE471H5S4sPFr/EVJcCAA6Tt49hpWlgLwlnrXbAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUgZt0KXOezIy8O68zbK0Ro9bW23QwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjL2M2ODZmOTM3LTAwMGEtNDkwYS04NDZjLWUyNzczYjYzN2IyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBg9AMA0GCSqGSIb3DQEBCwUAA4IBAQBO5Vb199zVZrZlRY4kGrI6voZp YzrPCDPPv+2RgqZSJhdq0HvtUGlARbS9OFUnKhGj/bMiRvUO9IVRZgPfh11+9iuz EQ+eq9ZlRQ1sCwn+nUOMK60srOgDawiKdeEScnUc1TTitzl1xprd/1O//1cPZkKp 2ibSZasbMC6zyhf3/FSBZnqkaAywAgsXBblQDzc5bevECEgMfJOBO/RLskMR0lv2 4hfiG2A/744MhusygaagGO9wUrlfcEfIBXRe8WHNcDBRZbyFbdsL21Oum8ExHiZf B1virOo9X9ChmokgFvllwfKMtaV4sCcy/tobilS09j1y0b+tpvSEEomJ+eq9 -----END CERTIFICATE-----Generated at Sat Dec 6 16:57:02 2025 by rpki-client