This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0d414a18-fab9-4052-b9b5-07a662fab301.roa File: 0d414a18-fab9-4052-b9b5-07a662fab301.roa (raw, json) Hash identifier: rWrKeFwY8ccx6Ga7zAxL1qkB12K1jGECIYbhuiwrIrA= Subject key identifier: 43:CD:28:AF:B3:07:9B:5D:C7:16:92:0E:58:64:B7:83:C0:13:C9:63 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4B2D4FF7F2C2387C9616473D6892298E6D5070D2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0d414a18-fab9-4052-b9b5-07a662fab301.roa Signing time: Tue 02 Dec 2025 01:30:13 +0000 ROA not before: Tue 02 Dec 2025 01:30:13 +0000 ROA not after: Mon 02 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8a00::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Dec 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:2d:4f:f7:f2:c2:38:7c:96:16:47:3d:68:92:29:8e:6d:50:70:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Dec 2 01:30:13 2025 GMT Not After : Mar 2 23:59:59 2026 GMT Subject: serialNumber=b9696eaad5d8deb055c145d0942605d2804501a17b60db04a86c7233cbe7fcb2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:44:f2:c0:50:3e:27:f2:6b:57:cf:43:d4:f5: 37:68:13:30:1a:87:e8:39:32:91:f7:a9:25:40:50: 27:77:04:b0:43:6b:29:36:73:d3:de:e7:b0:6d:cb: 68:44:3d:30:c5:1b:c9:26:e2:5e:2c:ca:10:13:6d: 2a:6c:a0:68:6a:98:b7:2c:44:a8:0c:ba:d2:28:26: 2c:07:07:8c:25:e4:c2:ac:87:c7:f6:5a:35:7f:22: aa:43:95:5b:f9:4b:aa:19:56:6c:c3:48:4d:80:7a: 27:71:b1:9c:6a:bb:d1:55:f0:96:3e:6b:de:98:93: 62:d9:12:21:12:e8:20:a7:3b:ae:fd:68:ab:da:8b: f5:a9:4a:b0:3e:52:aa:35:0e:f0:f3:88:29:a2:bf: 1e:31:5e:e5:f4:2d:9c:70:de:2c:40:b5:76:5f:17: 92:8f:cb:84:84:1b:81:dc:72:d7:45:52:ed:03:29: 7e:9f:7f:02:cd:83:ca:39:40:70:a6:b2:4a:47:ee: b7:d9:2a:df:30:93:0d:48:11:86:36:6f:3d:82:1c: c8:65:73:ce:33:5e:cb:b7:d7:d6:3e:fe:3a:cc:7d: 61:db:aa:7d:32:ce:1f:0a:39:6c:50:8a:51:26:65: a1:60:5a:59:1b:db:16:c1:63:b8:8f:55:ea:e6:0d: f9:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:CD:28:AF:B3:07:9B:5D:C7:16:92:0E:58:64:B7:83:C0:13:C9:63 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0d414a18-fab9-4052-b9b5-07a662fab301.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8a00::/39 Signature Algorithm: sha256WithRSAEncryption 65:fc:82:c4:f5:c9:8d:c2:af:d7:9f:61:df:4b:48:89:53:ef: e0:0c:6b:23:01:f3:63:38:ef:a7:55:71:e0:2c:33:0a:fd:76: 90:ac:12:a5:78:5f:3d:f4:0a:f8:25:cb:6f:30:ad:cc:41:e5: a3:27:cf:81:73:c1:21:81:a1:1f:8b:d7:6e:7f:73:b0:36:96: 78:55:3d:6c:4d:5f:e5:d8:56:0e:3a:f1:18:5d:95:10:a5:4b: 3f:04:96:d0:ed:5f:30:d8:01:a6:e1:e5:35:ba:a2:d5:09:f6: 3c:d9:1b:db:3a:11:66:0c:82:a1:9a:3b:ee:bd:84:e8:ba:44: c9:23:83:8e:ba:24:46:dd:56:7e:a7:ae:50:7b:4b:ab:0b:16: 57:a5:34:73:52:e2:56:6d:d2:93:25:6a:d6:f6:c0:07:46:06: 07:3b:44:55:36:6c:67:b0:41:7c:d3:be:1f:df:d1:18:89:95: ba:4f:02:63:96:90:61:90:57:bb:5c:a3:75:47:91:54:6f:70: 1a:68:8b:73:98:f0:62:f4:2a:7a:dc:ad:75:2c:43:a8:18:be: 44:e3:6b:58:f9:a8:a9:c0:06:eb:6b:12:1a:c8:e2:c9:e2:59: 18:d5:e3:a1:17:4f:98:1d:c5:f8:17:1a:15:7d:a0:c4:f2:ff: fc:04:b4:dd -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSy1P9/LCOHyWFkc9aJIpjm1QcNIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMjAyMDEzMDEzWhcNMjYwMzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiOTY5NmVhYWQ1ZDhkZWIwNTVjMTQ1ZDA5NDI2MDVkMjgw NDUwMWExN2I2MGRiMDRhODZjNzIzM2NiZTdmY2IyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPRPLAUD4n8mtXz0PU9TdoEzAah+g5MpH3qSVAUCd3BLBD ayk2c9Pe57Bty2hEPTDFG8km4l4syhATbSpsoGhqmLcsRKgMutIoJiwHB4wl5MKs h8f2WjV/IqpDlVv5S6oZVmzDSE2AeidxsZxqu9FV8JY+a96Yk2LZEiES6CCnO679 aKvai/WpSrA+Uqo1DvDziCmivx4xXuX0LZxw3ixAtXZfF5KPy4SEG4HcctdFUu0D KX6ffwLNg8o5QHCmskpH7rfZKt8wkw1IEYY2bz2CHMhlc84zXsu319Y+/jrMfWHb qn0yzh8KOWxQilEmZaFgWlkb2xbBY7iPVermDflnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUQ80or7MHm13HFpIOWGS3g8ATyWMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBkNDE0YTE4LWZhYjktNDA1Mi1iOWI1LTA3YTY2MmZhYjMwMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPDxijANBgkqhkiG9w0BAQsFAAOCAQEAZfyCxPXJjcKv159h30tIiVPv 4AxrIwHzYzjvp1Vx4CwzCv12kKwSpXhfPfQK+CXLbzCtzEHloyfPgXPBIYGhH4vX bn9zsDaWeFU9bE1f5dhWDjrxGF2VEKVLPwSW0O1fMNgBpuHlNbqi1Qn2PNkb2zoR ZgyCoZo77r2E6LpEySODjrokRt1WfqeuUHtLqwsWV6U0c1LiVm3SkyVq1vbAB0YG BztEVTZsZ7BBfNO+H9/RGImVuk8CY5aQYZBXu1yjdUeRVG9wGmiLc5jwYvQqetyt dSxDqBi+RONrWPmoqcAG62sSGsjiyeJZGNXjoRdPmB3F+BcaFX2gxPL//AS03Q== -----END CERTIFICATE-----Generated at Sat Dec 6 11:42:38 2025 by rpki-client